, r0}}]}) truncate(&(0x7f0000000180)='./file0\x00', 0x3f) 20:00:51 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x6, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x109000, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/battery', 0x40080, 0x65) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/block/ram2', 0x40, 0x12e) ioctl$UI_SET_SNDBIT(r3, 0x4004556a, 0x6) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f0000000040)) ioctl$EVIOCGREP(r0, 0x40004580, 0x0) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r1) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x54, r4, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffff4d}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x800}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x9}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1f}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000000) 20:00:51 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x404140, 0x6e) 20:00:51 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x7fffffff) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file1\x00') bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000140)={&(0x7f00000000c0)='./file0\x00', 0x1}, 0x10) lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000100)=@known='system.posix_acl_default\x00', 0x0, 0x0) 20:00:51 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x4000) ioctl$EVIOCGREP(r0, 0x80004506, 0x0) r1 = syz_io_uring_setup(0x11f3, &(0x7f0000000040)={0x0, 0x5498, 0x4, 0xffffffff, 0x370}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000180)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x10010, r1, 0x8000000) openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0xf8) [ 3215.074626][T31616] cgroup2: Unknown parameter 'fsmagic' 20:00:51 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.upper\x00', 0x0, 0x0) 20:00:51 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) r0 = geteuid() mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt={'fowner<', r0}}]}) truncate(&(0x7f0000000180)='./file0\x00', 0x3f) 20:00:51 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_NOP={0x0, 0x3}, 0x7fffffff) 20:00:51 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40004580, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x20c002, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) socketpair(0x9, 0x2, 0x20, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$BATADV_CMD_TP_METER_CANCEL(r3, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x24, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040) recvmsg$unix(r2, 0x0, 0x0) accept$nfc_llcp(r2, &(0x7f0000000400), &(0x7f0000000480)=0x60) recvmsg$unix(r1, &(0x7f00000003c0)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000140)=""/228, 0xe4}, {&(0x7f0000000240)=""/163, 0xa3}, {&(0x7f0000000080)=""/11, 0xb}, {&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000000300)=""/44, 0x2c}], 0x5}, 0x10041) 20:00:51 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) 20:00:51 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'osx.', 'user.incfs.id\x00'}, 0x0, 0x0) utime(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x7ff, 0x8}) [ 3215.128317][T31625] cgroup2: Unknown parameter 'fsmagic' 20:00:51 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2362541d}]}, 0x3c}}, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)=@known='trusted.overlay.impure\x00', 0x0, 0x0) 20:00:51 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xfffffffffffffffc, 0xb0503) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x80000000, 0x8000) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000080)=""/20) ioctl$EVIOCGREP(r0, 0x40004580, 0x0) 20:00:51 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) r0 = geteuid() mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt={'fowner<', r0}}]}) 20:00:51 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x10e) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) 20:00:51 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80086601, 0x0) 20:00:51 executing program 3: socketpair(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x37fe0}}, 0x0) recvmsg(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/virtio_pci', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) bind$nfc_llcp(r2, &(0x7f00000000c0)={0x27, 0x1, 0x0, 0x1, 0x1f, 0x1, "697737b949d371946b146655fceab396407b74766224c10f8e19884671e3ffb98fd96ab66667440d0db9ae027dc5b7e7d931ddc07279cbf824e3405044eabb", 0x12}, 0x60) recvmsg$unix(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000b80)=""/102400, 0x19000}, {&(0x7f00000002c0)=""/14, 0xe}], 0x2, 0x0, 0x48}, 0x0) [ 3215.184786][T31638] cgroup2: Unknown parameter 'fsmagic' 20:00:51 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000080)=@known='security.apparmor\x00', 0x0, 0x0) 20:00:51 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4010) 20:00:51 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0xba3f2205342c13cd}, 0x10) truncate(&(0x7f0000000000)='./file0\x00', 0x10001) 20:00:51 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x8000450a, 0x0) 20:00:51 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:51 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'security.', 'user.incfs.id\x00'}) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000540)={'#! ', './file0', [{0x20, 'user.incfs.id\x00'}, {0x20, 'user.incfs.id\x00'}, {0x20, 'user.incfs.id\x00'}, {0x20, '{^,'}, {0x20, 'security.'}, {}, {0x20, '+/^!N]\\@\x95[$'}, {0x20, 'security.'}], 0xa, "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"}, 0x105d) 20:00:51 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0xba3f2205342c13cd}, 0x10) truncate(&(0x7f0000000000)='./file0\x00', 0x10001) [ 3215.247223][T31660] cgroup2: Unknown parameter 'fsmagic' [ 3215.272195][T31665] cgroup2: Unknown parameter 'dont_appraise' 20:00:51 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x1001) 20:00:51 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) [ 3215.306930][T31670] cgroup2: Unknown parameter 'fsmagic' 20:00:51 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) fspick(r0, &(0x7f0000000000)='./file0\x00', 0x1) 20:00:51 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) [ 3215.328236][T31679] cgroup2: Unknown parameter 'dont_appraise' [ 3215.371210][T31684] cgroup2: Unknown parameter 'fsmagic' 20:00:52 executing program 3: socketpair(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0) r2 = accept4$nfc_llcp(r0, &(0x7f00000000c0), &(0x7f0000000000)=0x60, 0x800) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r3) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f00000001c0)={r2, r4, 0x8000, 0x1000, &(0x7f0000019b80)="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", 0xfb, 0x9, 0x8, 0x7, 0x1ff, 0x2, 0x400, 'syz0\x00'}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x37fe0}}, 0x0) recvmsg(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000b80)=""/102400, 0x19000}, {&(0x7f00000002c0)=""/14, 0xe}], 0x2, 0x0, 0x48}, 0x0) 20:00:52 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) syz_io_uring_setup(0x678d, &(0x7f0000000080)={0x0, 0xf759, 0x0, 0x0, 0x38e}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)) syz_io_uring_setup(0x4b20, &(0x7f0000000140)={0x0, 0x5a42, 0x2, 0x0, 0x1db}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x1, 0x4a2, 0x0, 0x1f9e, 0x5}, 0x7) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) 20:00:52 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) 20:00:52 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0xba3f2205342c13cd}, 0x10) truncate(&(0x7f0000000000)='./file0\x00', 0x10001) 20:00:52 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:52 executing program 4: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:52 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) 20:00:52 executing program 4: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:52 executing program 1: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) 20:00:52 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3216.093522][T31692] cgroup2: Unknown parameter 'fsmagic' [ 3216.096835][T31696] cgroup2: Unknown parameter 'dont_appraise' 20:00:52 executing program 4: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:52 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0xba3f2205342c13cd}, 0x10) [ 3216.195501][T31710] cgroup2: Unknown parameter 'dont_appraise' 20:00:53 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) (fail_nth: 1) 20:00:53 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 1) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, 0x0, 0x301840, 0x0) 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') 20:00:53 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x4000) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0x5, &(0x7f0000000340)=[{&(0x7f00000000c0)="134a241c821684878d58ac269790f32a7b109e8f96601ea7d53f4d6bc3255598516cbefc8349908570c8d7c2ae46d76bd12fb66aa5143c4f9f696b9aacd4d142381226242db59fb7699cfe308e0d08092c45", 0x52, 0x7}, {&(0x7f0000000140)="ecbab54abfc17e84fe447f2b3f0207e55369822b83a7a17bb5b0e61928195223a600627e902d0ca66e68f97088e2d4e12a76e7b7aff90d0a194fb97a28f896e65e79306062da4a8773bcfc19b397fd9f4398c7ac42712e11d3201d0319832b9ebb175fd485", 0x65, 0x3f}, {&(0x7f0000000540)="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", 0x1000, 0xfff}, {&(0x7f0000000280)="98fe8ef6e8303435c5fd3a2c90e6d9be3a05c1f5aeee9ae7bd610333384fc3937ba27d30f883a6f1d7e2926f9c16cb712c7911d30b70129137c0264d3afb0972139567e6bba6ff4333e33c7faf3bb888a5591217d7a15e0e2b70d7ec62ec2a72371e26c3ea3ccf5a4927e71417c06203d8bb1c772cdf7ba0b529c2204d507550f69d037d3a191210b9b746c8037c65edb5525a71", 0x94, 0x7}, {&(0x7f00000001c0), 0x0, 0x32fb0d98}], 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB='dioread_nolock,func=MMAP_CHECK,subj_role=user.incfs.id\x00,euid>', @ANYRESDEC=0xee01, @ANYBLOB="2c7063723d303030303030303030303030303030303030d0372c736d61636b66736465663d2c7065726d69745f646972656374696f2c00"]) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001800)=@security={'security\x00', 0xe, 0x4, 0x308, 0xffffffff, 0x0, 0xd0, 0x0, 0xffffffff, 0xffffffff, 0x270, 0x270, 0x270, 0xffffffff, 0x4, &(0x7f0000001640), {[{{@ip={@local, @broadcast, 0xff, 0xffffff00, 'ip_vti0\x00', 'team_slave_1\x00', {}, {}, 0x5c, 0x1, 0x41}, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @broadcast, 0x6fe4, 0x5, [0x3e, 0x12, 0x1f, 0x38, 0x1d, 0x20, 0x37, 0x8, 0x11, 0x36, 0x38, 0x1f, 0x8, 0x12, 0x3e, 0x18], 0x1, 0x0, 0x4}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @multicast, 0xfffe, 0x10, [0x24, 0x2, 0x18, 0x3e, 0x2c, 0x3, 0x9, 0x26, 0x2c, 0x18, 0x24, 0x2e, 0x39, 0x1d, 0x4, 0x1c], 0x1, 0x5bff, 0x4}}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff, 0x0, 'wlan1\x00', 'bond_slave_0\x00', {}, {0xff}, 0x67, 0x0, 0x43}, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, 0x4, 0x1, [0x30, 0x34, 0x1e, 0x33, 0x2d, 0x2e, 0x0, 0x34, 0x25, 0xb, 0x2b, 0x22, 0x30, 0x2, 0x37, 0x27], 0x1, 0x8, 0x5}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x368) syz_mount_image$tmpfs(&(0x7f0000001d80), &(0x7f0000001dc0)='./file0\x00', 0x4, 0x8, &(0x7f0000002380)=[{&(0x7f0000001e00)="08cf9d6e4345a6d5b354d57c881dbc397d20e9355fada0333ebbd88293ad3e860ea0127bc5a42daabfb48a13f13397aee977f3138ec6c1a078cdc376249e3409e4eb32adb973c5c107be7387c52bd4e05a138f64c2021328f74be589610f262dbc2ec6a4ac70e61c9c1303c707596d9ced32d09d226dde58b651d6d675245ed76f5cc01f3db1896b608d98571c90f217027f1b2638f3b06096bfbca28a6e042192568a71769165a983b91f416e3b9b5053", 0xb1, 0x800}, {&(0x7f0000001ec0)="96afcf7065b212ab332c1bfa897aca4c53c78469e891a68c6ba7afda8ac7b8520cd1e8d7cd791637400d321efd8e2cfd58e154e1a97ad4c3093c94792778e22075bb16c42f0c56ec02b156a19cc0e28007a27b6db20115a9cac9ad25d3e126ad82f23d20dd052ac4d996b091d6d5751218b13c2c2b7ac954b23ad1728cd4401e4e5cfaf641a6783a21755f3b9370a6d13a99e80e3e7d0ff3f1a67ac1911b9fb62f9845a7db8c887fe76e828cfd053e5aa1935ae74cfa2b0d1e34bc5334ff1496083f5e8408b8cc82ec8c881efe4f4445940437376b", 0xd5}, {&(0x7f0000001fc0)="db210618baeb70284741510e4411ba08016e969494a3a63312002fedfdd90df369f8a6f75147a037d62cff663a2fe0b80ded9861283bef25d141cdedc37ff221793e4d56f4ea3d01b30e843f351fd356685d3a1a73a44606326562c7c1c94207ef4cc4829729b27ad3b5baae9a349e6145e4812490", 0x75, 0x20}, {&(0x7f0000002040)="40390dc287a740e76f15375180484247596aa58c408d1a45f7c405d5cb24f5265e46b20393d4885375eddd7b9270a8ff3a3e4287d31a4090eae2f813bf1cbe7e0e42fe46a7234794a779c0464dac6134eb219645707433b8b601e058ad71b4461b23bf3cc116dc3440996e5b9b3d88e4d9e9fef4b4", 0x75, 0x8}, {&(0x7f00000020c0)="2fbf957a5249be771d07bcb8a36c414fecbf6188ca7436e2df7aa080164408a254e1730713ce31f8ba7c1df6b2cd61ce2ff692a94af310050ba9bf58a00dd3c45ed0045c9dbe11c43f6f379d5f4efc419d8e0c01307c8ddacbe5ae117b3019b58da0656d1384b7fe1df7bcfe134a27c5bcec39375aa7b07305e4c306644eca2694708aa44b9053c6ba17d36047f4fd5b03d6f97270cab4d70eda6ec55157a7dedeeceff221e4315ede4d5f021dc43e1c0c0c3128445bd4df01ebb6dd351e68b23f9cac3d7862b725a748d5575519ee4effc2ce1520ab02e1c6aec5c3015a7bd6f018760f59bf02bdf3f36670d893070b1d86", 0xf2, 0x4}, {&(0x7f00000021c0)="dac818606c1437b04d785a5665be3f1302fba3f0b39baa2c5135f5b6e6ba654957a1a5c7e1e95042dd65db495c8fd6990e13e527f1d191213b4ff59311d46f535b0f77deffc78cdb4d2a4efd7ff2", 0x4e, 0x6}, {&(0x7f0000002240)="c69f464b5c8c7b9b0e5509d3746fd4cb4e89f56de4bb760b9d94f286d01e39c3716bc4d2b1207614f34e93b19a6232254b56b3b9c6462bc49f576a572b633d3a7aca8dcea06a5c597dec27e253c3861935cb49c755ec94e908012e03c5acc605652c1d140bc34989426c7852f1a508502aa0e3ced6742f34a899619914695808d42261dad04b9fbe463849381f64a19e71911c56370e4f2d6d8a88079634d939acfc1e325fcf79ff", 0xa8, 0x101}, {&(0x7f0000002300)="d33012ac66ab8bf68c09d72d3d063ee8a6a7584db39898ec91595393e586e8c65bc6ebd04337b42c618990eb491e882837fca31251fde0a1004accc7c9e608497e02d6826b19524d9586309050104c5b63ca64310338fc73a7c4450e5b120f9bf65fdcc6afd63a13", 0x68, 0x7c000000}], 0x8810, &(0x7f0000002440)={[{@nr_inodes={'nr_inodes', 0x3d, [0x36, 0x1a, 0x36]}}, {@mode={'mode', 0x3d, 0x3}}, {@size={'size', 0x3d, [0x70, 0x31, 0x25, 0x67, 0x30, 0x6d, 0x70, 0x78]}}, {@gid={'gid', 0x3d, 0xee01}}, {@huge_always}, {@mode={'mode', 0x3d, 0x1}}], [{@seclabel}, {@fowner_lt={'fowner<', 0xee01}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, ')*#})['}}, {@dont_appraise}, {@smackfsdef={'smackfsdef', 0x3d, '\'/'}}]}) syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0x4, &(0x7f0000001700)=[{&(0x7f0000000480)="6ad5b0dc086651a721c2348353bb2a3b6842e34cd0ba2ebb89768a6b221520fb7323526bf05df9b201e0a742d21a703242eced87ddc1341ba6b6f0c22903fe4d824d4a50d623b7ad4c0d8793", 0x4c, 0x9}, {&(0x7f0000001540)="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", 0xfd, 0x38}, {&(0x7f0000001640), 0x0, 0x9}, {&(0x7f0000001680)="c6392b184ac2f2c9cd8bc026550388f2d0700f3d41825eb8ffdf02019cbfa193913b4c7173412bec205fb71809f3d40ce3ad34446e346594390c0bb5ca4a5ebbd37df0d13f008801a779ebc1a34bb6002fa7585300ace71b72f871d797964662c970441f65bb68b9fd2c3c85c57de16915513f1e", 0x74, 0x5}], 0x1000, &(0x7f0000001780)={[{@utf8}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '{:\''}}, {@smackfsroot={'smackfsroot', 0x3d, 'ext4\x00'}}, {@dont_appraise}]}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000001b80)={'wg2\x00'}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001c00), 0x8) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000001c40)={'batadv_slave_0\x00', 0x0}) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000001d40)={&(0x7f0000001bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001d00)={&(0x7f0000001c80)={0x54, 0x0, 0x8, 0x70bd26, 0x25dfdbff, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_FLOW={0x6, 0x6, 0x2}, @GTPA_MS_ADDRESS={0xfffffffffffffed2, 0x5, @local}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_I_TEI={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x3}, @GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_LINK={0x8, 0x1, r3}]}, 0x54}}, 0x2000c8c4) 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, 0x0, 0x301840, 0x0) 20:00:53 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3216.952855][T31716] cgroup2: Unknown parameter 'dont_appraise' [ 3216.961200][T31720] FAULT_INJECTION: forcing a failure. [ 3216.961200][T31720] name failslab, interval 1, probability 0, space 0, times 0 [ 3217.011080][T31720] CPU: 1 PID: 31720 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3217.021322][T31720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3217.031368][T31720] Call Trace: [ 3217.034651][T31720] dump_stack+0x18e/0x1de [ 3217.038974][T31720] should_fail+0x5d8/0x740 [ 3217.043377][T31720] ? loop_add+0x56/0x710 [ 3217.047608][T31720] should_failslab+0x5/0x20 [ 3217.052097][T31720] kmem_cache_alloc_trace+0x39/0x2b0 [ 3217.057370][T31720] loop_add+0x56/0x710 [ 3217.061425][T31720] ? radix_tree_lookup+0x1c0/0x1d0 [ 3217.066519][T31720] loop_control_ioctl+0x468/0x680 [ 3217.071528][T31720] ? xor_init+0x60/0x60 [ 3217.075672][T31720] do_vfs_ioctl+0x6fb/0x15b0 [ 3217.080272][T31720] __x64_sys_ioctl+0xd4/0x110 [ 3217.084934][T31720] do_syscall_64+0xcb/0x1e0 [ 3217.089420][T31720] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3217.095295][T31720] RIP: 0033:0x7f145855da39 [ 3217.099692][T31720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3217.119299][T31720] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3217.127694][T31720] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3217.135654][T31720] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3217.143611][T31720] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3217.151569][T31720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, 0x0, 0x301840, 0x0) 20:00:53 executing program 2: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:53 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 2) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) 20:00:53 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_GET_SYSNAME(r1, 0x8040552c, &(0x7f0000000000)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3217.159625][T31720] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) [ 3217.216374][T31742] FAULT_INJECTION: forcing a failure. [ 3217.216374][T31742] name failslab, interval 1, probability 0, space 0, times 0 [ 3217.231471][T31741] cgroup2: Unknown parameter 'dont_appraise' 20:00:53 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) (fail_nth: 1) 20:00:53 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000080)={0xb}) connect$nfc_llcp(r1, &(0x7f0000000000)={0x27, 0x0, 0x1, 0x3, 0x0, 0x7, "73164098b51eadc3c21ee72954688185f948abc541cf65e291d20bf8810e31c261b0e590f88373781fed9512a33712ff9289d324f6b2aaa4ae0b28f7de6eb8", 0x23}, 0x60) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3217.256950][T31748] cgroup2: Unknown parameter 'dont_appraise' [ 3217.268398][T31742] CPU: 1 PID: 31742 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3217.278626][T31742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3217.288665][T31742] Call Trace: [ 3217.291950][T31742] dump_stack+0x18e/0x1de [ 3217.296276][T31742] should_fail+0x5d8/0x740 [ 3217.299729][T31758] cgroup2: Unknown parameter 'dont_appraise' 20:00:53 executing program 5: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:53 executing program 5: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3217.300680][T31742] ? radix_tree_node_alloc+0x84/0x370 [ 3217.300701][T31742] should_failslab+0x5/0x20 [ 3217.316565][T31742] kmem_cache_alloc+0x36/0x290 [ 3217.321319][T31742] radix_tree_node_alloc+0x84/0x370 [ 3217.326504][T31742] idr_get_free+0x2aa/0x900 [ 3217.331001][T31742] idr_alloc+0x156/0x280 [ 3217.335230][T31742] loop_add+0xa8/0x710 [ 3217.339288][T31742] ? radix_tree_lookup+0x1c0/0x1d0 [ 3217.344388][T31742] loop_control_ioctl+0x468/0x680 [ 3217.349401][T31742] ? xor_init+0x60/0x60 20:00:53 executing program 5: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3217.353544][T31742] do_vfs_ioctl+0x6fb/0x15b0 [ 3217.358127][T31742] __x64_sys_ioctl+0xd4/0x110 [ 3217.362790][T31742] do_syscall_64+0xcb/0x1e0 [ 3217.367368][T31742] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3217.373243][T31742] RIP: 0033:0x7f145855da39 [ 3217.377646][T31742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3217.397236][T31742] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:00:53 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 3) 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:53 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:00:53 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) connect$nfc_raw(r1, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x2}, 0x10) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3217.405637][T31742] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3217.413593][T31742] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3217.421549][T31742] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3217.429505][T31742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3217.437460][T31742] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:53 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:53 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3217.518818][T31778] FAULT_INJECTION: forcing a failure. [ 3217.518818][T31778] name failslab, interval 1, probability 0, space 0, times 0 [ 3217.545023][T31778] CPU: 0 PID: 31778 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3217.555611][T31778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3217.565752][T31778] Call Trace: [ 3217.569040][T31778] dump_stack+0x18e/0x1de [ 3217.573366][T31778] should_fail+0x5d8/0x740 [ 3217.577777][T31778] ? blk_mq_alloc_tag_set+0x312/0xe60 [ 3217.583150][T31778] should_failslab+0x5/0x20 [ 3217.587643][T31778] __kmalloc+0x5f/0x2f0 [ 3217.591788][T31778] blk_mq_alloc_tag_set+0x312/0xe60 [ 3217.596980][T31778] ? idr_alloc+0x1c3/0x280 [ 3217.601385][T31778] loop_add+0x22b/0x710 [ 3217.605529][T31778] ? radix_tree_lookup+0x1c0/0x1d0 [ 3217.610629][T31778] loop_control_ioctl+0x468/0x680 [ 3217.615639][T31778] ? xor_init+0x60/0x60 [ 3217.617707][T31785] cgroup2: Unknown parameter 'dont_appraise' [ 3217.619785][T31778] do_vfs_ioctl+0x6fb/0x15b0 [ 3217.619798][T31778] __x64_sys_ioctl+0xd4/0x110 [ 3217.619813][T31778] do_syscall_64+0xcb/0x1e0 [ 3217.639490][T31778] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3217.645376][T31778] RIP: 0033:0x7f145855da39 [ 3217.649777][T31778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:00:53 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x2) lgetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)=@known='user.incfs.id\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3217.669455][T31778] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3217.677858][T31778] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3217.685818][T31778] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3217.693780][T31778] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3217.694060][T31787] cgroup2: Unknown parameter 'dont_appraise' [ 3217.701743][T31778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 20:00:54 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 4) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x2, 0x0) 20:00:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000140), 0x7, 0x3bdc40) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000000)=""/199) 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) [ 3217.701748][T31778] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3217.730749][T31791] FAULT_INJECTION: forcing a failure. [ 3217.730749][T31791] name failslab, interval 1, probability 0, space 0, times 0 [ 3217.746920][T31791] CPU: 1 PID: 31791 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3217.757152][T31791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3217.767255][T31791] Call Trace: [ 3217.770545][T31791] dump_stack+0x18e/0x1de [ 3217.774870][T31791] should_fail+0x5d8/0x740 [ 3217.779300][T31791] ? blk_mq_alloc_tag_set+0x3ca/0xe60 [ 3217.784662][T31791] should_failslab+0x5/0x20 [ 3217.789244][T31791] __kmalloc+0x5f/0x2f0 [ 3217.793386][T31791] ? blk_mq_alloc_tag_set+0x312/0xe60 [ 3217.798745][T31791] blk_mq_alloc_tag_set+0x3ca/0xe60 [ 3217.803933][T31791] loop_add+0x22b/0x710 [ 3217.808077][T31791] ? radix_tree_lookup+0x1c0/0x1d0 [ 3217.813172][T31791] loop_control_ioctl+0x468/0x680 [ 3217.818183][T31791] ? xor_init+0x60/0x60 [ 3217.822339][T31791] do_vfs_ioctl+0x6fb/0x15b0 [ 3217.826929][T31791] __x64_sys_ioctl+0xd4/0x110 [ 3217.831596][T31791] do_syscall_64+0xcb/0x1e0 [ 3217.836092][T31791] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3217.841975][T31791] RIP: 0033:0x7f145855da39 [ 3217.846379][T31791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:00:54 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x4b47, 0x0) 20:00:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wg1\x00'}) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xc240, 0x168) ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f0000000080)={@none, 0x3}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3217.866060][T31791] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3217.874462][T31791] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3217.882428][T31791] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3217.890393][T31791] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3217.898361][T31791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3217.906318][T31791] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) (fail_nth: 1) 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x4b49, 0x0) [ 3217.989520][T31810] FAULT_INJECTION: forcing a failure. [ 3217.989520][T31810] name failslab, interval 1, probability 0, space 0, times 0 [ 3218.008686][T31810] CPU: 1 PID: 31810 Comm: syz-executor.0 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3218.018928][T31810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3218.028969][T31810] Call Trace: [ 3218.032253][T31810] dump_stack+0x18e/0x1de [ 3218.036594][T31810] should_fail+0x5d8/0x740 [ 3218.040997][T31810] ? fsnotify+0x1130/0x11e0 [ 3218.045488][T31810] ? getname_flags+0xba/0x640 [ 3218.050148][T31810] should_failslab+0x5/0x20 [ 3218.054637][T31810] kmem_cache_alloc+0x36/0x290 [ 3218.059390][T31810] getname_flags+0xba/0x640 [ 3218.063882][T31810] do_sys_open+0x2a0/0x6d0 [ 3218.068290][T31810] ? check_preemption_disabled+0xde/0x2c0 [ 3218.073997][T31810] do_syscall_64+0xcb/0x1e0 [ 3218.078578][T31810] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3218.084457][T31810] RIP: 0033:0x7f6c9bac2a39 [ 3218.088859][T31810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3218.108640][T31810] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3218.117040][T31810] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3218.125000][T31810] RDX: 0000000000301840 RSI: 0000000020000040 RDI: ffffffffffffff9c 20:00:54 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 5) 20:00:54 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) pselect6(0x40, &(0x7f0000000000)={0x81, 0x1, 0xffff, 0xffff, 0x0, 0xffffffffffffff00, 0x0, 0x3}, &(0x7f0000000040)={0x80000000, 0xffff, 0x1, 0x0, 0x1f, 0x2bd7cd67, 0x7ff, 0xffffffffffffffe1}, &(0x7f0000000080)={0x4, 0x8, 0x3ff, 0x80000001, 0x75e, 0x5, 0x0, 0x1}, &(0x7f00000000c0), &(0x7f0000000180)={&(0x7f0000000140)={[0x8]}, 0x8}) 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) (fail_nth: 2) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x541b, 0x0) [ 3218.132972][T31810] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3218.141191][T31810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3218.149150][T31810] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 20:00:54 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5421, 0x0) 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x420400) ioctl$UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f0000000000)={0x1, 0x8000, 0x7ff}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x210) [ 3218.207294][T31825] FAULT_INJECTION: forcing a failure. [ 3218.207294][T31825] name failslab, interval 1, probability 0, space 0, times 0 [ 3218.207675][T31826] FAULT_INJECTION: forcing a failure. [ 3218.207675][T31826] name failslab, interval 1, probability 0, space 0, times 0 [ 3218.257450][T31825] CPU: 1 PID: 31825 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3218.266817][T31833] cgroup2: Unknown parameter 'dont_appraise' [ 3218.267772][T31825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3218.267775][T31825] Call Trace: [ 3218.267789][T31825] dump_stack+0x18e/0x1de [ 3218.267805][T31825] should_fail+0x5d8/0x740 [ 3218.295783][T31825] ? blk_mq_init_tags+0x74/0x290 [ 3218.300713][T31825] should_failslab+0x5/0x20 [ 3218.305306][T31825] kmem_cache_alloc_trace+0x39/0x2b0 [ 3218.310565][T31825] blk_mq_init_tags+0x74/0x290 [ 3218.315306][T31825] ? blk_mq_hw_queue_to_node+0xeb/0x100 [ 3218.320825][T31825] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3218.325826][T31825] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3218.331008][T31825] loop_add+0x22b/0x710 [ 3218.335187][T31825] ? radix_tree_lookup+0x1c0/0x1d0 [ 3218.340283][T31825] loop_control_ioctl+0x468/0x680 [ 3218.345297][T31825] ? xor_init+0x60/0x60 [ 3218.349443][T31825] do_vfs_ioctl+0x6fb/0x15b0 [ 3218.354026][T31825] __x64_sys_ioctl+0xd4/0x110 [ 3218.358689][T31825] do_syscall_64+0xcb/0x1e0 [ 3218.363174][T31825] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3218.369044][T31825] RIP: 0033:0x7f145855da39 [ 3218.373443][T31825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3218.393312][T31825] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3218.401715][T31825] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3218.409669][T31825] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3218.417622][T31825] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3218.425585][T31825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3218.433538][T31825] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3218.441498][T31826] CPU: 0 PID: 31826 Comm: syz-executor.0 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3218.451718][T31826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3218.452744][T31825] blk-mq: reduced tag depth (128 -> 64) [ 3218.461755][T31826] Call Trace: [ 3218.461769][T31826] dump_stack+0x18e/0x1de [ 3218.461780][T31826] should_fail+0x5d8/0x740 [ 3218.461794][T31826] ? unwind_get_return_address+0x48/0x80 [ 3218.484882][T31826] ? __alloc_file+0x26/0x380 [ 3218.489460][T31826] should_failslab+0x5/0x20 [ 3218.493955][T31826] kmem_cache_alloc+0x36/0x290 [ 3218.498705][T31826] __alloc_file+0x26/0x380 [ 3218.503111][T31826] ? alloc_empty_file+0x49/0x1b0 [ 3218.508036][T31826] alloc_empty_file+0xa9/0x1b0 [ 3218.512784][T31826] path_openat+0xa2/0x3a50 [ 3218.517192][T31826] ? kmem_cache_alloc+0x115/0x290 [ 3218.522206][T31826] ? getname_flags+0xba/0x640 [ 3218.526868][T31826] ? do_sys_open+0x2a0/0x6d0 [ 3218.531451][T31826] ? do_syscall_64+0xcb/0x1e0 [ 3218.536127][T31826] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3218.542196][T31826] do_filp_open+0x19a/0x3a0 [ 3218.546696][T31826] do_sys_open+0x2e2/0x6d0 [ 3218.551101][T31826] ? check_preemption_disabled+0xde/0x2c0 [ 3218.556814][T31826] do_syscall_64+0xcb/0x1e0 [ 3218.561307][T31826] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3218.567187][T31826] RIP: 0033:0x7f6c9bac2a39 [ 3218.571589][T31826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3218.591279][T31826] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3218.599688][T31826] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x7, 0x10000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0) 20:00:54 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 6) 20:00:54 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5450, 0x0) 20:00:54 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:54 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3218.607650][T31826] RDX: 0000000000301840 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 3218.615613][T31826] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3218.623577][T31826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3218.631538][T31826] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 20:00:54 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) (fail_nth: 3) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3218.722122][T31848] FAULT_INJECTION: forcing a failure. [ 3218.722122][T31848] name failslab, interval 1, probability 0, space 0, times 0 [ 3218.731298][T31851] FAULT_INJECTION: forcing a failure. [ 3218.731298][T31851] name failslab, interval 1, probability 0, space 0, times 0 [ 3218.743674][T31848] CPU: 0 PID: 31848 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3218.757503][T31848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3218.767539][T31848] Call Trace: [ 3218.770820][T31848] dump_stack+0x18e/0x1de [ 3218.775145][T31848] should_fail+0x5d8/0x740 [ 3218.779552][T31848] ? sbitmap_init_node+0x145/0x3d0 [ 3218.784646][T31848] should_failslab+0x5/0x20 [ 3218.789143][T31848] __kmalloc+0x5f/0x2f0 [ 3218.793287][T31848] sbitmap_init_node+0x145/0x3d0 [ 3218.798209][T31848] sbitmap_queue_init_node+0x2f/0xbe0 [ 3218.803567][T31848] ? kmem_cache_alloc_trace+0x139/0x2b0 [ 3218.809089][T31848] ? blk_mq_init_tags+0x74/0x290 [ 3218.814024][T31848] blk_mq_init_tags+0xef/0x290 [ 3218.818779][T31848] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3218.823790][T31848] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3218.828974][T31848] loop_add+0x22b/0x710 [ 3218.833117][T31848] ? radix_tree_lookup+0x1c0/0x1d0 [ 3218.838217][T31848] loop_control_ioctl+0x468/0x680 [ 3218.843223][T31848] ? xor_init+0x60/0x60 [ 3218.847366][T31848] do_vfs_ioctl+0x6fb/0x15b0 [ 3218.852049][T31848] __x64_sys_ioctl+0xd4/0x110 [ 3218.856712][T31848] do_syscall_64+0xcb/0x1e0 [ 3218.861197][T31848] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3218.863425][T31862] cgroup2: Unknown parameter 'dont_appraise' [ 3218.867185][T31848] RIP: 0033:0x7f145855da39 [ 3218.867195][T31848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3218.867199][T31848] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3218.905529][T31848] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3218.913479][T31848] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:00:55 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:55 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x404000) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r3, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x221}]}, 0x1c}}, 0x80) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000040)) r4 = socket$nl_generic(0x10, 0x3, 0x10) write$binfmt_script(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="2321202e2f66696c6530207d5e28202f6465762f696e70949e2b7b76656e742300202924247d7d7b5d2d262d25262d280ad942f32a5913f04b082cc042c2e260c11c8af9880fc527b20ee04183544331e15ff4129b8dfc5f21fc1e67d6816dec7c491c88aa20aa31c22e748dbbc25c579eda66f3ffdd8df4e1b81fc2ce7b60706e63d4964140d2301db6ff6cf1d39b2aa676c874858d8291a384aaf47a41d7bec4f01d75b9a8ff4777574690f7294dc4d61c3650400b1d72a4a2b24cbf2e0d072fca41b63a48ed1a5d7e6836c87a435559abf0"], 0xda) ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f00000000c0)) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/bluetooth', 0x6000, 0x20) syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r5) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xa00c08, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}, {}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3218.921428][T31848] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3218.929376][T31848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3218.937323][T31848] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3218.945278][T31851] CPU: 1 PID: 31851 Comm: syz-executor.0 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3218.955496][T31851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3218.965536][T31851] Call Trace: [ 3218.968902][T31851] dump_stack+0x18e/0x1de [ 3218.973222][T31851] should_fail+0x5d8/0x740 [ 3218.977626][T31851] ? security_file_alloc+0x32/0x1f0 [ 3218.982810][T31851] should_failslab+0x5/0x20 [ 3218.987303][T31851] kmem_cache_alloc+0x36/0x290 [ 3218.992056][T31851] security_file_alloc+0x32/0x1f0 [ 3218.997062][T31851] __alloc_file+0xba/0x380 [ 3219.001460][T31851] alloc_empty_file+0xa9/0x1b0 [ 3219.006208][T31851] path_openat+0xa2/0x3a50 [ 3219.010615][T31851] ? kmem_cache_alloc+0x115/0x290 [ 3219.015632][T31851] ? getname_flags+0xba/0x640 [ 3219.020296][T31851] ? do_sys_open+0x2a0/0x6d0 [ 3219.024871][T31851] ? do_syscall_64+0xcb/0x1e0 [ 3219.029538][T31851] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3219.035596][T31851] do_filp_open+0x19a/0x3a0 [ 3219.040092][T31851] do_sys_open+0x2e2/0x6d0 [ 3219.044499][T31851] ? check_preemption_disabled+0xde/0x2c0 [ 3219.050208][T31851] do_syscall_64+0xcb/0x1e0 [ 3219.054705][T31851] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3219.060581][T31851] RIP: 0033:0x7f6c9bac2a39 [ 3219.064978][T31851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3219.084574][T31851] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3219.093057][T31851] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3219.101015][T31851] RDX: 0000000000301840 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 3219.108999][T31851] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 20:00:55 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 7) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:55 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:55 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5451, 0x0) 20:00:55 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) (fail_nth: 4) 20:00:55 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xfffffffffffffffc, 0x101800) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000180), r3) recvmsg$unix(r2, 0x0, 0x0) r4 = syz_mount_image$tmpfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x8, 0x6, &(0x7f00000015c0)=[{&(0x7f0000000240)="a54a7b1309c2c9cbd969be96115d337a1c0a7d091229d04746803b29abb65d2c6dc2199017b490248833eda2185db783515c87bc329c28e2ec44a7a85ae8d26861355a64fd88b3ffbe4da9b389316dc3a6c53abded68cc32441508e9f9d3eeb30171ff1311b39fcbe42eaaff1f8921a814008600779a5d3b3c219d4cc2d22861731d7de519975fb26600331a30d42e32530c1af15b9aa2ad59d2", 0x9a, 0x7b}, {&(0x7f0000000300)="989aca6671bb1f538b9202c816fed292994151844704579644d3bd0513b8274ad90825e419ae82c4e37590ae2cd0eb1d957ed29b8a344b9dcc957f55f393e1e42f2501a2e24190d29ac4ea8ddeaaedc99fad04f12a8ffaa53e7afa77e90a9f3eda8ccfaac9c879d08e1a822ff4c4d10ed8928ae31c181cf98645a21c0ba4d63d5953e9fd4491676ed82663d212ae669d0f62209fcd8fc2bcb956e61e43728fde1170712d175b29e8abc7f4cfb76657aaa9bea26ef630f33122b1f6", 0xbb, 0x8}, {&(0x7f00000003c0)="5d8012d9c252ccdb405470c4e5a0d699c7130203b981bf116393462de696b434bf147d55a80e4d2dac3c61c615398fc523b750d1b020a3ba865cc578a9b6957de780e41ec702217fd54b4b212bc08310066ebd2aced80c6044fdcb1cf3fc98696c78839089c91c11a5245f21a044d9c6836d6413aba61a0db2005c4371beb2817fd3777b3160a99e93b258676730aba5af", 0x91, 0x9}, {&(0x7f0000000480)="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", 0x1000, 0xffff}, {&(0x7f0000001480)="2508a067f023182662a6bfd7e8126267fa4fd2ce0da70b3dd47b424eabd6cba87366a1f3584be76b29d4500b01f207d6201fbda333df043bb30f82665229eee341cf4024aa15def0073290700bc8a51e606bb049fff40dc8093e07b522d7bad0b7cda1465f6885c26a35a41bf8ab8d1023423ae4ed973f62da5033122da9090445aa841679fd31e8aed91c166869c670bdf0b113b859caf0621eb597b9f1b5c1a94fc7123e91da6904f31fd010237fe3b3f817862bb520c5927453ac83df518d5cd360cb779fee3a3b65307953e91c665886ca683653bfe63918b2dfd8085389bca535625fe027f9592af848ee90180634431f92", 0xf4, 0x6}, {&(0x7f0000001580)="fa3abd6ab91b854ea4be16f6a2ea1f013f6d6adbf7803d31cb344376789b9a6e5d7bc94d4a94d09a91d4c956ab68120ec37423540562f66215ba09", 0x3b, 0x50}], 0x804000, &(0x7f0000001680)={[{@gid}, {@size={'size', 0x3d, [0x25, 0x48, 0x32, 0x35]}}, {@size={'size', 0x3d, [0x34, 0xfa, 0x25, 0x6d, 0x2d]}}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee01}}, {}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}], [{@subj_user={'subj_user', 0x3d, 'rfdno'}}, {@smackfshat={'smackfshat', 0x3d, '9p\x00'}}, {@euid_eq={'euid', 0x3d, 0xee00}}]}) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x2113002, &(0x7f0000001740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@privport}]}}) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r5, 0x0, 0x0) r6 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000100), 0x4) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000140)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) syz_open_dev$evdev(&(0x7f0000000040), 0x89c, 0x210000) [ 3219.117044][T31851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3219.125003][T31851] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3219.138373][T31848] blk-mq: reduced tag depth (128 -> 64) 20:00:55 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:00:55 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5452, 0x0) 20:00:55 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3219.186941][T31872] cgroup2: Unknown parameter 'fsmagic' 20:00:55 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301802, 0x0) 20:00:55 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/bus/sdio', 0x503000, 0x11) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000200)=""/46) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffffd}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x7}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x10001}, @BATADV_ATTR_GW_MODE={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40018}, 0x40800) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c00f5f2010301bfde1fa71ff742e9818ed99a3a0ffb86b8d30cd7d3d8c1ddb94d53f7da302de65287aa76cf4e7740f11412a52104004d1d3eca90ee6a505fd39e8654e39eae301c799e06f3c3ba5f85890000ad6932fb9793e39fa8b5bcc46c0005ba9353adb6a1f0cb0b32e6e7169741be50dd0a7894ba06fd55b1d463cece5370b48e4121c645465bdbfe43eacbeaa93d2ee6"], 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3219.266205][T31878] FAULT_INJECTION: forcing a failure. [ 3219.266205][T31878] name failslab, interval 1, probability 0, space 0, times 0 [ 3219.283765][T31878] CPU: 0 PID: 31878 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3219.294011][T31878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3219.304090][T31878] Call Trace: [ 3219.307375][T31878] dump_stack+0x18e/0x1de [ 3219.311697][T31878] should_fail+0x5d8/0x740 [ 3219.316105][T31878] ? sbitmap_queue_init_node+0x3db/0xbe0 [ 3219.321728][T31878] should_failslab+0x5/0x20 [ 3219.326218][T31878] kmem_cache_alloc_trace+0x39/0x2b0 [ 3219.331492][T31878] sbitmap_queue_init_node+0x3db/0xbe0 [ 3219.336938][T31878] blk_mq_init_tags+0xef/0x290 [ 3219.341696][T31878] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3219.346703][T31878] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3219.351889][T31878] loop_add+0x22b/0x710 [ 3219.356038][T31878] ? radix_tree_lookup+0x1c0/0x1d0 [ 3219.361137][T31878] loop_control_ioctl+0x468/0x680 [ 3219.366149][T31878] ? xor_init+0x60/0x60 [ 3219.370300][T31878] do_vfs_ioctl+0x6fb/0x15b0 [ 3219.374902][T31878] __x64_sys_ioctl+0xd4/0x110 [ 3219.379567][T31878] do_syscall_64+0xcb/0x1e0 [ 3219.384056][T31878] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3219.389933][T31878] RIP: 0033:0x7f145855da39 [ 3219.394338][T31878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3219.413931][T31878] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3219.422328][T31878] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3219.430285][T31878] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3219.438328][T31878] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3219.446284][T31878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3219.454246][T31878] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:55 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 8) 20:00:55 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5460, 0x0) 20:00:55 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:55 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301803, 0x0) 20:00:55 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x79e, 0x7, &(0x7f0000000580)=[{&(0x7f0000000140)="a3dc66c7a142b311d0f242945ba17cb3b7bb0b1b8ea4edf8013836f2b34b50473135e53ff50a943591e2bf03b88bb9328ccd043ccb035fa8ea1abf7cc6feeaf44e5c8e45aa7b1928b91871667dc433e28f6919335745e747bd694e8643f211684fb117482413b11a761c5e457895c521761aa3abf2f5de3a5de724470d3e37dee3ed416c49132cf8d65f8dc9c8b6b734fe2841f5d825f2085535d223a2f0", 0x9e}, {&(0x7f0000000080)="f666a329d494072c89ee7e", 0xb, 0x6}, {&(0x7f0000000200)="84b5efecc64c3ccd1fc4cb6c29fdb444b4a41ddd680d5b284b18f0ab9aa589aadb256ded6cadcd71156037cac3a9a7f309d17312b0e5eff4946d2cf95f0f68b18aa57e0ab76507f45310172a719ff9f6eb70bc6be03eef7a3d08f087ec155cc5f6f1bd77c16b358bfff5afcda8634e0e7b3b76bff24f329161ee66", 0x7b, 0x3}, {&(0x7f0000000280)="c22d349bdf4062867160b9ec3ad691beaf8ec31ac9f605854d23ca23391ffc01f2f5565e6d96427814ba0f19731e90421064fc40655f29e2452e769b5c90456bd58569a9d7c7979ddaf80f33a8ca4c5275a6", 0x52, 0x3}, {&(0x7f0000000300)="9d658ccbfec92348284d40785fac9174f16fb8d5a8fdea8ee80ff0c430bf7e673d21c0d601998910ea2b49eadacb882f265fe76f782d5819409ebb6778e0a67d1563a43ca32efa008ebc8629984b7787d01d025957782e96227caece94b65bbc13c8079473deb20ea1f87a426045eae9dedc1e9b45de0506951ca52c50b59d8b12f7531dbcc539b5973ff40ee2bc9234dfbd0663833640725aed1596fff40cceac0d755c209a8b9a1eb2cebe277856f4293148764d332ddf3924cbde70cb2e4c51fc473e1d424a0624b861bea65dcc2690d7dbf32b62905d9472091629a15d06b8a7071aac5482f55bb444719b4569", 0xef, 0x4}, {&(0x7f0000000400)="4924613e9b36a5cbd369dd58b81dc289c9197490d52b1ac20c376bb68e46e36f30a00c5b30cfe178e0e8bad8b6753ff6842e81fa773f764707a37aef3c37f360de02a6b04dbf047d767a24059945579d", 0x50, 0xfffffffffffff800}, {&(0x7f0000000480)="90415b7a9b31f7c2b745f18451da414fadc226578e2a9cd086e1f2dafa4d3edb8c1ebf6d389cb24616cd8268c018d78eca50ff9a1ffbcef2cce158734c148009b410ac97d261e2171ea49a1d59faad3dce8446b13fa9a42edf07ba86ab602bd79255b56865f20d9e4b03a2c35294a54f53389afa00f3b238979f2bbf3180e358bef1f63e298dffb5e763a8dcfcaf4e5412a633a0ea1c20071effa794161e512aaf1bf51595e7cb41e7abe7d5d389abb3f1e551be2991127759fc1edc982b3c3422ca938fae803857dc8e59cc319f1030018eefae42e56225f66bc9c711598c9af7d34cd5068107e82bc260d769588c36", 0xf0, 0x5f2}], 0x20040, &(0x7f0000000640)={[{@nouser_xattr}, {}, {@fault_injection={'fault_injection', 0x3d, 0x8}}, {@acl}, {@acl}, {@fault_injection={'fault_injection', 0x3d, 0x6fe}}], [{@subj_user}, {@obj_user={'obj_user', 0x3d, '/dev/input/event#\x00'}}]}) 20:00:55 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301804, 0x0) 20:00:55 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}, {}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3219.467755][T31878] blk-mq: reduced tag depth (128 -> 64) 20:00:55 executing program 3: ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000000)={0xe, 0x8, {0x51, 0x8, 0x0, {0x8001, 0xd3}, {0x1, 0xfff}, @const={0x2, {0x7fff, 0x80, 0x2, 0x2}}}, {0x51, 0x40, 0x3f, {0x3ff, 0x3d}, {0x800}, @const={0x2, {0x20, 0x3, 0x8, 0x8}}}}) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003700)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f00000038c0)=[{&(0x7f0000000140)=""/66, 0x42}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000003540)=""/122, 0x7a}, {&(0x7f0000001240)=""/111, 0x6f}, {&(0x7f00000012c0)=""/28, 0x1c}, {&(0x7f0000001300)=""/220, 0xdc}, {&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/198, 0xc6}, {&(0x7f0000002500)=""/4096, 0x1000}, {&(0x7f0000003500)=""/45, 0x2d}, {&(0x7f0000003880)=""/51, 0x33}], 0xb, &(0x7f0000003b80)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c0000000000000001000000007852d8473b7d6c3830da60f63e959811ba991061371583e0f5cb5f0e84450785c88520c14b856c1d303ddc94c0e31f591b5e2fff5bd123f025b39f155fb2593183a31aa49192a6f8dff6531f0ee47395d0d52b9855ffff08d8f955abc3dc574ae259000000d7d83745b8060248584a2fa3d5d4755f311a4dc4b162dfb9ea8bc2275625a2bebe8d7f348b381a9b5f8eef5086f11174165a025bdcdf95d950", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYBLOB="1000000000000000010000000100000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000f7f5b7a04204fd59fef84823f499183d00000000000007ff9983f82078a643e2600c638cece345b74259da1a8170478ddaab968067a34a3142b2d793a664f251f20000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x118}, 0x40002040) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000003840)={&(0x7f0000003740)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000003800)={&(0x7f0000003780)={0x78, 0x3, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x10000}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7613}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}]}, 0x78}, 0x1, 0x0, 0x0, 0x4050}, 0x200000c1) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:55 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40004580, 0x0) [ 3219.530493][T31903] FAULT_INJECTION: forcing a failure. [ 3219.530493][T31903] name failslab, interval 1, probability 0, space 0, times 0 [ 3219.549795][T31910] cgroup2: Unknown parameter 'dont_appraise' [ 3219.566886][T31903] CPU: 0 PID: 31903 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3219.577123][T31903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3219.587165][T31903] Call Trace: [ 3219.590449][T31903] dump_stack+0x18e/0x1de [ 3219.594783][T31903] should_fail+0x5d8/0x740 [ 3219.599198][T31903] ? sbitmap_queue_init_node+0x3db/0xbe0 [ 3219.604817][T31903] should_failslab+0x5/0x20 [ 3219.609304][T31903] kmem_cache_alloc_trace+0x39/0x2b0 [ 3219.614689][T31903] sbitmap_queue_init_node+0x3db/0xbe0 [ 3219.620159][T31903] blk_mq_init_tags+0x153/0x290 [ 3219.625001][T31903] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3219.630018][T31903] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3219.635211][T31903] loop_add+0x22b/0x710 [ 3219.639364][T31903] ? radix_tree_lookup+0x1c0/0x1d0 [ 3219.644468][T31903] loop_control_ioctl+0x468/0x680 [ 3219.649506][T31903] ? xor_init+0x60/0x60 [ 3219.653660][T31903] do_vfs_ioctl+0x6fb/0x15b0 [ 3219.658243][T31903] __x64_sys_ioctl+0xd4/0x110 [ 3219.662909][T31903] do_syscall_64+0xcb/0x1e0 [ 3219.667403][T31903] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3219.673278][T31903] RIP: 0033:0x7f145855da39 [ 3219.677678][T31903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3219.697725][T31903] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3219.706121][T31903] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3219.714079][T31903] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3219.722045][T31903] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301805, 0x0) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}, {}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3219.730005][T31903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3219.737960][T31903] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3219.750835][T31903] blk-mq: reduced tag depth (128 -> 64) 20:00:56 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 9) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40044581, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301806, 0x0) 20:00:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xffffffffffffffff, 0x304080) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000080)=""/201) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301807, 0x0) [ 3219.771692][T31919] cgroup2: Unknown parameter 'dont_appraise' 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40044590, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301808, 0x0) [ 3219.814775][T31932] cgroup2: Unknown parameter 'dont_appraise' [ 3219.822013][T31929] FAULT_INJECTION: forcing a failure. [ 3219.822013][T31929] name failslab, interval 1, probability 0, space 0, times 0 [ 3219.862383][T31929] CPU: 0 PID: 31929 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3219.872624][T31929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3219.875582][T31940] cgroup2: Unknown parameter 'fsmagic' [ 3219.882664][T31929] Call Trace: [ 3219.882682][T31929] dump_stack+0x18e/0x1de [ 3219.882695][T31929] should_fail+0x5d8/0x740 [ 3219.882709][T31929] ? blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3219.905290][T31929] should_failslab+0x5/0x20 [ 3219.909781][T31929] __kmalloc+0x5f/0x2f0 [ 3219.913928][T31929] ? blk_mq_init_tags+0x209/0x290 [ 3219.918942][T31929] blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3219.923957][T31929] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3219.929149][T31929] loop_add+0x22b/0x710 [ 3219.933290][T31929] ? radix_tree_lookup+0x1c0/0x1d0 [ 3219.938518][T31929] loop_control_ioctl+0x468/0x680 [ 3219.943535][T31929] ? xor_init+0x60/0x60 [ 3219.947681][T31929] do_vfs_ioctl+0x6fb/0x15b0 [ 3219.952265][T31929] __x64_sys_ioctl+0xd4/0x110 [ 3219.956933][T31929] do_syscall_64+0xcb/0x1e0 [ 3219.961426][T31929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3219.967306][T31929] RIP: 0033:0x7f145855da39 [ 3219.971706][T31929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3219.991296][T31929] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3219.999697][T31929] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:00:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) socketpair(0x11, 0x6, 0x3f, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x90742198cd6398fc}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x98, 0x2, 0x7, 0x301, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x1ff}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x1ff}, @NFACCT_BYTES={0xc}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FILTER={0x34, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xffffd230}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1ff}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}]}]}, 0x98}}, 0x40081) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) [ 3220.007658][T31929] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3220.015700][T31929] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3220.023657][T31929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3220.031610][T31929] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:56 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 10) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3220.058124][T31929] blk-mq: reduced tag depth (128 -> 64) [ 3220.064639][T31946] cgroup2: Unknown parameter 'fsmagic' 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40044591, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301809, 0x0) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:00:56 executing program 3: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x15c, 0x0, 0x0, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_SEC_DEVKEY={0x114, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x80, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x401}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x9}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x60, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}]}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x5}, @NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x10001}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}]}, @NL802154_DEVKEY_ATTR_ID={0x70, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x50, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x80000000000000}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x15c}, 0x1, 0x0, 0x0, 0x90}, 0x20000090) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44040001}, 0x4000004) ioctl$EVIOCGREP(0xffffffffffffffff, 0x80004508, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x400, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000440)="c0f81ca0e4601cdb41d7fa86e3909cc96a08278a1a14c1e741045a54b2ff4b3af290f639ebd963bb566636e3d0100b3a152fc6673707a1c325159ee2c36ece979cf1d6c335083e7ec269685e6670bcdb9c5d7cc9fd5235c1a646", 0x5a, 0x100}, {&(0x7f00000004c0)="c37a", 0x2, 0x6}, {&(0x7f0000000500)="559ac844265f38ed2c02592a498052dc1fc577277ed57bc9fa1392f50d0c9db9e6d2b2f2675e55315a97fce60b731f3de0766249a2af21efb4586a8db1840c84fb2e6a4721fd2ecab86fe2fdc5e72d56ab5ad9703bf52001c75759c469718c3275e17479b34eb0df035bc639bf4284bdccb96948985fe742c12f689bc296c2e0a226dcf9bbc42dc837a805b0cf990e10bfe348bbf57a5b7542da5fefe09845e220a450e10a4eece3645cdc7f8a976dfabcebb78c85d6edd627420c4c712e2d", 0xbf, 0x7}], 0x1204008, &(0x7f0000000640)={[{@noacl}], [{@subj_user={'subj_user', 0x3d, 'wpan4\x00'}}, {@obj_type={'obj_type', 0x3d, '%}'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@fsuuid={'fsuuid', 0x3d, {[0x30, 0x32, 0x31, 0x38, 0x0, 0x37, 0x5b, 0x63], 0x2d, [0x64, 0x63, 0x35, 0x32], 0x2d, [0x32, 0x66, 0x38, 0xd], 0x2d, [0x32, 0x31, 0x36, 0x30], 0x2d, [0x66, 0x65, 0x65, 0x37, 0x38, 0x62, 0x50, 0x62]}}}, {@uid_gt={'uid>', 0xee01}}, {@dont_appraise}, {@uid_gt={'uid>', 0xffffffffffffffff}}]}) fspick(r3, &(0x7f0000000700)='./file0\x00', 0x0) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x400445a0, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x30180a, 0x0) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40049409, 0x0) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) [ 3220.144166][T31954] cgroup2: Unknown parameter 'dont_appraise' [ 3220.151355][T31957] cgroup2: Unknown parameter 'fsmagic' [ 3220.179952][T31951] FAULT_INJECTION: forcing a failure. [ 3220.179952][T31951] name failslab, interval 1, probability 0, space 0, times 0 [ 3220.214062][T31951] CPU: 0 PID: 31951 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3220.214758][T31965] cgroup2: Unknown parameter 'dont_appraise' [ 3220.224328][T31951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3220.224331][T31951] Call Trace: [ 3220.224348][T31951] dump_stack+0x18e/0x1de [ 3220.224360][T31951] should_fail+0x5d8/0x740 [ 3220.224369][T31951] ? blk_mq_alloc_rq_map+0xe9/0x1a0 [ 3220.224379][T31951] should_failslab+0x5/0x20 [ 3220.224389][T31951] __kmalloc+0x5f/0x2f0 [ 3220.224396][T31951] ? blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3220.224405][T31951] blk_mq_alloc_rq_map+0xe9/0x1a0 [ 3220.224415][T31951] blk_mq_alloc_tag_set+0x6bc/0xe60 [ 3220.224427][T31951] loop_add+0x22b/0x710 [ 3220.224435][T31951] ? radix_tree_lookup+0x1c0/0x1d0 [ 3220.224449][T31951] loop_control_ioctl+0x468/0x680 [ 3220.295712][T31951] ? xor_init+0x60/0x60 [ 3220.299865][T31951] do_vfs_ioctl+0x6fb/0x15b0 [ 3220.304445][T31951] __x64_sys_ioctl+0xd4/0x110 [ 3220.309106][T31951] do_syscall_64+0xcb/0x1e0 [ 3220.313599][T31951] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3220.319481][T31951] RIP: 0033:0x7f145855da39 [ 3220.323881][T31951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3220.343475][T31951] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3220.351878][T31951] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x2) 20:00:56 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 11) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40084503, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x3) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}]}) 20:00:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0xfffffffffffffff7, 0x408000) rt_sigpending(&(0x7f0000000000), 0x8) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r1) [ 3220.359838][T31951] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3220.367797][T31951] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3220.375755][T31951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3220.383713][T31951] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3220.403354][T31973] cgroup2: Unknown parameter 'fsmagic' [ 3220.406994][T31951] blk-mq: reduced tag depth (128 -> 64) 20:00:56 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40084504, 0x0) 20:00:56 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x4) 20:00:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x41400) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x1, 0x1, 0x5, 0x0, 0x0, {0x3, 0x0, 0x8}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4044084) 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}]}) 20:00:56 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}]}) [ 3220.456684][T31984] cgroup2: Unknown parameter 'dont_appraise' [ 3220.466130][T31986] cgroup2: Unknown parameter 'fsmagic' [ 3220.481249][T31985] FAULT_INJECTION: forcing a failure. [ 3220.481249][T31985] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3220.518211][T31985] CPU: 1 PID: 31985 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3220.524716][T31997] cgroup2: Unknown parameter 'dont_appraise' [ 3220.528449][T31985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3220.528452][T31985] Call Trace: [ 3220.528467][T31985] dump_stack+0x18e/0x1de [ 3220.528484][T31985] should_fail+0x5d8/0x740 [ 3220.556455][T31985] __alloc_pages_nodemask+0x12e/0x740 [ 3220.561820][T31985] blk_mq_alloc_rqs+0x252/0x660 [ 3220.566663][T31985] ? blk_mq_alloc_rq_map+0x11a/0x1a0 [ 3220.571933][T31985] blk_mq_alloc_tag_set+0x74b/0xe60 [ 3220.577129][T31985] loop_add+0x22b/0x710 [ 3220.581274][T31985] ? radix_tree_lookup+0x1c0/0x1d0 [ 3220.586372][T31985] loop_control_ioctl+0x468/0x680 [ 3220.591386][T31985] ? xor_init+0x60/0x60 [ 3220.595528][T31985] do_vfs_ioctl+0x6fb/0x15b0 [ 3220.599548][T31992] cgroup2: Unknown parameter 'fsmagic' [ 3220.600191][T31985] __x64_sys_ioctl+0xd4/0x110 [ 3220.600205][T31985] do_syscall_64+0xcb/0x1e0 [ 3220.614779][T31985] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3220.620659][T31985] RIP: 0033:0x7f145855da39 [ 3220.625147][T31985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3220.644745][T31985] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3220.653140][T31985] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3220.661191][T31985] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:00:56 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}]}) [ 3220.669168][T31985] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3220.677133][T31985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3220.685139][T31985] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:57 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 12) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}]}) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x300) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40086602, 0x0) 20:00:57 executing program 3: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x12002, 0x0) sendmsg$NFT_MSG_GETSET(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x404}}, 0x4004884) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}]}) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40087602, 0x0) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x4000) [ 3220.722883][T32000] cgroup2: Unknown parameter 'fsmagic' [ 3220.756687][T32009] cgroup2: Unknown parameter 'dont_appraise' 20:00:57 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x10080) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}]}) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}]}) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x1000000) [ 3220.779576][T32013] cgroup2: Unknown parameter 'fsmagic' [ 3220.802154][T32011] FAULT_INJECTION: forcing a failure. [ 3220.802154][T32011] name failslab, interval 1, probability 0, space 0, times 0 [ 3220.827914][T32011] CPU: 0 PID: 32011 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3220.838154][T32011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3220.839504][T32024] cgroup2: Unknown parameter 'fsmagic' [ 3220.848343][T32011] Call Trace: [ 3220.848363][T32011] dump_stack+0x18e/0x1de [ 3220.848384][T32011] should_fail+0x5d8/0x740 [ 3220.856245][T32025] cgroup2: Unknown parameter 'dont_appraise' [ 3220.857077][T32011] ? blk_alloc_queue_node+0x2c/0x570 [ 3220.857093][T32011] should_failslab+0x5/0x20 [ 3220.881477][T32011] kmem_cache_alloc+0x36/0x290 [ 3220.886234][T32011] ? __mutex_init+0x9d/0xf0 [ 3220.890730][T32011] blk_alloc_queue_node+0x2c/0x570 [ 3220.895833][T32011] blk_mq_init_queue+0x33/0xa0 [ 3220.900580][T32011] loop_add+0x256/0x710 [ 3220.904722][T32011] ? radix_tree_lookup+0x1c0/0x1d0 [ 3220.909826][T32011] loop_control_ioctl+0x468/0x680 [ 3220.914836][T32011] ? xor_init+0x60/0x60 [ 3220.918979][T32011] do_vfs_ioctl+0x6fb/0x15b0 [ 3220.923556][T32011] __x64_sys_ioctl+0xd4/0x110 [ 3220.928216][T32011] do_syscall_64+0xcb/0x1e0 [ 3220.932713][T32011] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3220.938588][T32011] RIP: 0033:0x7f145855da39 [ 3220.942987][T32011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3220.962664][T32011] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3220.971062][T32011] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:00:57 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 13) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}]}) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40104593, 0x0) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}]}) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x2000000) 20:00:57 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) sendmsg$WG_CMD_GET_DEVICE(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@WGDEVICE_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x80) recvmsg$unix(r1, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000000)={0x80000010}) [ 3220.979017][T32011] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3220.987010][T32011] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3220.994968][T32011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3221.002925][T32011] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x3000000) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x4020940d, 0x0) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}]}) 20:00:57 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x16, 0x3d2, 0x0, 0x2}, 0x40) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}]}) [ 3221.064601][T32033] cgroup2: Unknown parameter 'dont_appraise' [ 3221.073804][T32035] FAULT_INJECTION: forcing a failure. [ 3221.073804][T32035] name failslab, interval 1, probability 0, space 0, times 0 [ 3221.124514][T32035] CPU: 1 PID: 32035 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3221.134761][T32035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3221.144808][T32035] Call Trace: [ 3221.148090][T32035] dump_stack+0x18e/0x1de [ 3221.152415][T32035] should_fail+0x5d8/0x740 [ 3221.156816][T32035] ? mempool_init_node+0x131/0x500 [ 3221.157163][T32049] cgroup2: Unknown parameter 'dont_appraise' [ 3221.161931][T32035] should_failslab+0x5/0x20 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}]}) [ 3221.161939][T32035] __kmalloc+0x5f/0x2f0 [ 3221.161949][T32035] mempool_init_node+0x131/0x500 [ 3221.161958][T32035] ? ida_alloc_range+0x8e5/0x940 [ 3221.161971][T32035] ? mempool_free+0x380/0x380 [ 3221.191013][T32035] ? mempool_alloc_slab+0x20/0x20 [ 3221.196027][T32035] mempool_init+0x35/0x50 [ 3221.200347][T32035] bioset_init+0x465/0x610 [ 3221.204757][T32035] blk_alloc_queue_node+0xc4/0x570 [ 3221.209867][T32035] blk_mq_init_queue+0x33/0xa0 [ 3221.214619][T32035] loop_add+0x256/0x710 [ 3221.218777][T32035] ? radix_tree_lookup+0x1c0/0x1d0 [ 3221.223885][T32035] loop_control_ioctl+0x468/0x680 [ 3221.228893][T32035] ? xor_init+0x60/0x60 [ 3221.233035][T32035] do_vfs_ioctl+0x6fb/0x15b0 [ 3221.237633][T32035] __x64_sys_ioctl+0xd4/0x110 [ 3221.242293][T32035] do_syscall_64+0xcb/0x1e0 [ 3221.246781][T32035] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3221.252656][T32035] RIP: 0033:0x7f145855da39 20:00:57 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 14) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x4000000) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[{}], [{@dont_appraise}]}) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}]}) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40284504, 0x0) [ 3221.257053][T32035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3221.276643][T32035] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3221.285052][T32035] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3221.293018][T32035] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3221.300977][T32035] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3221.308936][T32035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3221.316894][T32035] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:57 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/nf_conntrack_netbios_ns', 0x32040, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000540), 0x6e, &(0x7f0000000600)=[{&(0x7f00000005c0)}], 0x1, &(0x7f0000000640)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x100) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00') ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000700)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x40000000) 20:00:57 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x41400) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x1, 0x1, 0x5, 0x0, 0x0, {0x3, 0x0, 0x8}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4044084) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@memory_localevents}], [{@fsmagic}]}) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004506, 0x0) [ 3221.372929][T32058] cgroup2: Unknown parameter 'dont_appraise' [ 3221.379862][T32060] FAULT_INJECTION: forcing a failure. [ 3221.379862][T32060] name failslab, interval 1, probability 0, space 0, times 0 [ 3221.420010][T32060] CPU: 1 PID: 32060 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3221.427804][T32071] cgroup2: Unknown parameter 'fsmagic' [ 3221.430592][T32060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3221.430596][T32060] Call Trace: [ 3221.430611][T32060] dump_stack+0x18e/0x1de [ 3221.430623][T32060] should_fail+0x5d8/0x740 [ 3221.430633][T32060] ? mempool_alloc_slab+0x16/0x20 [ 3221.430643][T32060] should_failslab+0x5/0x20 [ 3221.430658][T32060] kmem_cache_alloc+0x36/0x290 [ 3221.472389][T32060] ? __kmalloc+0x174/0x2f0 [ 3221.476793][T32060] ? mempool_init_node+0x131/0x500 [ 3221.481945][T32060] mempool_alloc_slab+0x16/0x20 [ 3221.486781][T32060] ? mempool_free+0x380/0x380 [ 3221.491444][T32060] mempool_init_node+0x1f6/0x500 [ 3221.496368][T32060] ? mempool_free+0x380/0x380 [ 3221.501032][T32060] ? mempool_alloc_slab+0x20/0x20 [ 3221.506041][T32060] mempool_init+0x35/0x50 [ 3221.510358][T32060] bioset_init+0x465/0x610 [ 3221.514759][T32060] blk_alloc_queue_node+0xc4/0x570 [ 3221.519872][T32060] blk_mq_init_queue+0x33/0xa0 [ 3221.524618][T32060] loop_add+0x256/0x710 [ 3221.528758][T32060] ? radix_tree_lookup+0x1c0/0x1d0 [ 3221.533853][T32060] loop_control_ioctl+0x468/0x680 [ 3221.538859][T32060] ? xor_init+0x60/0x60 [ 3221.542997][T32060] do_vfs_ioctl+0x6fb/0x15b0 [ 3221.547573][T32060] __x64_sys_ioctl+0xd4/0x110 [ 3221.552235][T32060] do_syscall_64+0xcb/0x1e0 [ 3221.556725][T32060] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3221.562692][T32060] RIP: 0033:0x7f145855da39 [ 3221.567091][T32060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3221.586678][T32060] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3221.595073][T32060] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3221.603028][T32060] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3221.611085][T32060] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0xf6ffffff) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000280)={[], [{@dont_appraise}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}]}) [ 3221.619136][T32060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3221.627092][T32060] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3221.654298][T32078] cgroup2: Unknown parameter 'dont_appraise' 20:00:57 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 15) 20:00:57 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0xfffffff6) 20:00:57 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:57 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004507, 0x0) 20:00:57 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:57 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x140) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x78, 0x2, 0x1, 0x401, 0x0, 0x0, {0x0, 0x0, 0x3}, [@CTA_LABELS={0x2c, 0x16, 0x1, 0x0, [0x8, 0x2, 0x3, 0x9, 0x2, 0xffffff81, 0x7fffffff, 0xa963, 0x80000001, 0x4]}, @CTA_PROTOINFO={0x28, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x24, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x20}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x2}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x2}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x3}]}}, @CTA_LABELS={0x8, 0x16, 0x1, 0x0, [0x1]}, @CTA_ID={0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x44}, 0x20000002) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) [ 3221.720955][T32086] FAULT_INJECTION: forcing a failure. [ 3221.720955][T32086] name failslab, interval 1, probability 0, space 0, times 0 [ 3221.738877][T32086] CPU: 0 PID: 32086 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3221.749231][T32086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3221.759271][T32086] Call Trace: [ 3221.762552][T32086] dump_stack+0x18e/0x1de [ 3221.766878][T32086] should_fail+0x5d8/0x740 [ 3221.771291][T32086] ? mempool_alloc_slab+0x16/0x20 [ 3221.776386][T32086] should_failslab+0x5/0x20 [ 3221.780872][T32086] kmem_cache_alloc+0x36/0x290 [ 3221.785620][T32086] ? __kmalloc+0x174/0x2f0 [ 3221.790022][T32086] ? mempool_init_node+0x131/0x500 [ 3221.795116][T32086] mempool_alloc_slab+0x16/0x20 [ 3221.799952][T32086] ? mempool_free+0x380/0x380 [ 3221.804616][T32086] mempool_init_node+0x1f6/0x500 [ 3221.809538][T32086] ? mempool_free+0x380/0x380 [ 3221.814196][T32086] ? mempool_alloc_slab+0x20/0x20 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x1000000000000) [ 3221.819205][T32086] mempool_init+0x35/0x50 [ 3221.823522][T32086] bioset_init+0x465/0x610 [ 3221.827928][T32086] blk_alloc_queue_node+0xc4/0x570 [ 3221.833030][T32086] blk_mq_init_queue+0x33/0xa0 [ 3221.837780][T32086] loop_add+0x256/0x710 [ 3221.841928][T32086] ? radix_tree_lookup+0x1c0/0x1d0 [ 3221.847024][T32086] loop_control_ioctl+0x468/0x680 [ 3221.852029][T32086] ? xor_init+0x60/0x60 [ 3221.856178][T32086] do_vfs_ioctl+0x6fb/0x15b0 [ 3221.860761][T32086] __x64_sys_ioctl+0xd4/0x110 [ 3221.865612][T32086] do_syscall_64+0xcb/0x1e0 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x100000000000000) 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x200000000000000) [ 3221.870107][T32086] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3221.875984][T32086] RIP: 0033:0x7f145855da39 [ 3221.880387][T32086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3221.899981][T32086] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3221.908379][T32086] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x300000000000000) 20:00:58 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 16) 20:00:58 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xf, 0x1, 0x1c000, 0x0, 0x320, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x2}, 0x40) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r2) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:58 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x400000000000000) [ 3221.916340][T32086] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3221.924304][T32086] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3221.932266][T32086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3221.940227][T32086] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:58 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) syz_io_uring_setup(0x7753, &(0x7f0000000000)={0x0, 0xf5ff, 0x20, 0x0, 0xb2}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x8000450a, 0x0) 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x4000000000000000) 20:00:58 executing program 5: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 4: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004518, 0x0) [ 3222.020023][T32114] FAULT_INJECTION: forcing a failure. [ 3222.020023][T32114] name failslab, interval 1, probability 0, space 0, times 0 [ 3222.085071][T32114] CPU: 0 PID: 32114 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3222.095397][T32114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3222.105435][T32114] Call Trace: [ 3222.108714][T32114] dump_stack+0x18e/0x1de [ 3222.113033][T32114] should_fail+0x5d8/0x740 [ 3222.117435][T32114] ? mempool_init_node+0x131/0x500 [ 3222.122533][T32114] should_failslab+0x5/0x20 [ 3222.127019][T32114] __kmalloc+0x5f/0x2f0 [ 3222.131162][T32114] ? mempool_init_node+0x131/0x500 [ 3222.136255][T32114] mempool_init_node+0x131/0x500 [ 3222.141180][T32114] ? mempool_free+0x380/0x380 [ 3222.145844][T32114] ? mempool_alloc_slab+0x20/0x20 [ 3222.150924][T32114] mempool_init+0x35/0x50 [ 3222.155244][T32114] bioset_init+0x4da/0x610 [ 3222.159650][T32114] blk_alloc_queue_node+0xc4/0x570 [ 3222.164749][T32114] blk_mq_init_queue+0x33/0xa0 [ 3222.169492][T32114] loop_add+0x256/0x710 [ 3222.173635][T32114] ? radix_tree_lookup+0x1c0/0x1d0 [ 3222.178757][T32114] loop_control_ioctl+0x468/0x680 [ 3222.183765][T32114] ? xor_init+0x60/0x60 [ 3222.187909][T32114] do_vfs_ioctl+0x6fb/0x15b0 [ 3222.192753][T32114] __x64_sys_ioctl+0xd4/0x110 [ 3222.197417][T32114] do_syscall_64+0xcb/0x1e0 [ 3222.201904][T32114] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3222.207782][T32114] RIP: 0033:0x7f145855da39 [ 3222.212178][T32114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:00:58 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 17) 20:00:58 executing program 4: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0xf6ffffff00000000) 20:00:58 executing program 5: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKALIGNOFF(0xffffffffffffffff, 0x127a, &(0x7f0000000000)) ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x127e, &(0x7f00000000c0)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000040), 0x6e, &(0x7f0000000640), 0x0, &(0x7f0000000200)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x2) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000600)) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004519, 0x0) [ 3222.231767][T32114] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3222.240164][T32114] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3222.248120][T32114] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3222.256079][T32114] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3222.264037][T32114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3222.271993][T32114] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0xffffffff00000000) 20:00:58 executing program 4: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 5: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20380, 0x12) accept$nfc_llcp(r1, &(0x7f0000000080), &(0x7f0000000140)=0x60) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000180)=""/103) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x8000451a, 0x0) [ 3222.324679][T32140] FAULT_INJECTION: forcing a failure. [ 3222.324679][T32140] name failslab, interval 1, probability 0, space 0, times 0 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3222.374196][T32140] CPU: 0 PID: 32140 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3222.384437][T32140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3222.394598][T32140] Call Trace: [ 3222.397878][T32140] dump_stack+0x18e/0x1de [ 3222.402198][T32140] should_fail+0x5d8/0x740 [ 3222.406605][T32140] ? mempool_alloc_slab+0x16/0x20 [ 3222.411619][T32140] should_failslab+0x5/0x20 [ 3222.416111][T32140] kmem_cache_alloc+0x36/0x290 [ 3222.420867][T32140] ? __kmalloc+0x174/0x2f0 [ 3222.425275][T32140] ? mempool_init_node+0x131/0x500 [ 3222.430373][T32140] mempool_alloc_slab+0x16/0x20 [ 3222.435293][T32140] ? mempool_free+0x380/0x380 [ 3222.439958][T32140] mempool_init_node+0x1f6/0x500 [ 3222.444884][T32140] ? mempool_free+0x380/0x380 [ 3222.449549][T32140] ? mempool_alloc_slab+0x20/0x20 [ 3222.454567][T32140] mempool_init+0x35/0x50 [ 3222.458891][T32140] bioset_init+0x4da/0x610 [ 3222.463301][T32140] blk_alloc_queue_node+0xc4/0x570 [ 3222.468400][T32140] blk_mq_init_queue+0x33/0xa0 [ 3222.473151][T32140] loop_add+0x256/0x710 [ 3222.477374][T32140] ? radix_tree_lookup+0x1c0/0x1d0 [ 3222.482469][T32140] loop_control_ioctl+0x468/0x680 [ 3222.487477][T32140] ? xor_init+0x60/0x60 [ 3222.491619][T32140] do_vfs_ioctl+0x6fb/0x15b0 [ 3222.496200][T32140] __x64_sys_ioctl+0xd4/0x110 [ 3222.500862][T32140] do_syscall_64+0xcb/0x1e0 [ 3222.505354][T32140] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3222.511231][T32140] RIP: 0033:0x7f145855da39 [ 3222.515633][T32140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3222.535223][T32140] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3222.543619][T32140] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3222.551584][T32140] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3222.559553][T32140] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:00:58 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 18) 20:00:58 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003580)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000003480)=[{&(0x7f0000000100)=""/82, 0x52}, {&(0x7f0000000180)=""/239, 0xef}, {&(0x7f0000000000)=""/34, 0x22}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/96, 0x60}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/131, 0x83}, {&(0x7f00000033c0)=""/155, 0x9b}], 0x9, &(0x7f0000003540)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x5f8a3fe3f3e39978) 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:58 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x8000451b, 0x0) 20:00:58 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x30a, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x200) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x80000000, 0x10000, 0x0, 0x12, 0x1b, 0x4, "ce5ba232ddac40a6a44e05712f4b071a8c8c6f8d5a2a5a248465f81165a77bc29003ba59158ec03d0f2721d8cfcf6da880fc567078c25e588654fb634534e693", "15b7fbf76f28193e63039e441a136937a9a1ac864891bad5e341c76a41b234a9ee6f16e9ab832a65176f0a4952604837da33cdc1494cc93a1be980abdb50d092", "af52792a69337008517d6ef2a793447d91d97376ddbac5dd473add7bbfd243c5", [0xfffffffffffffff8, 0x9b]}) [ 3222.567522][T32140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3222.575490][T32140] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:58 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/typec', 0x6189c1, 0x1) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000040)={0x4, &(0x7f00000000c0)=[{@none}, {@fixed}, {@fixed}, {@none}]}) recvmsg$unix(r0, 0x0, 0x0) ioctl$UI_DEV_DESTROY(r0, 0x5502) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0xb09, {0xff, 0x1000, 0xff, 0x6, 0x0, 0x5c8}}) 20:00:58 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3222.636449][T32165] FAULT_INJECTION: forcing a failure. [ 3222.636449][T32165] name failslab, interval 1, probability 0, space 0, times 0 [ 3222.669156][T32165] CPU: 0 PID: 32165 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 20:00:58 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3222.679397][T32165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3222.689437][T32165] Call Trace: [ 3222.692719][T32165] dump_stack+0x18e/0x1de [ 3222.697045][T32165] should_fail+0x5d8/0x740 [ 3222.701455][T32165] ? mempool_alloc_slab+0x16/0x20 [ 3222.706470][T32165] should_failslab+0x5/0x20 [ 3222.710956][T32165] kmem_cache_alloc+0x36/0x290 [ 3222.715715][T32165] ? __kmalloc+0x174/0x2f0 [ 3222.720123][T32165] ? mempool_init_node+0x131/0x500 [ 3222.725209][T32165] mempool_alloc_slab+0x16/0x20 [ 3222.730036][T32165] ? mempool_free+0x380/0x380 [ 3222.734687][T32165] mempool_init_node+0x1f6/0x500 [ 3222.739600][T32165] ? mempool_free+0x380/0x380 [ 3222.744249][T32165] ? mempool_alloc_slab+0x20/0x20 [ 3222.749245][T32165] mempool_init+0x35/0x50 [ 3222.753565][T32165] bioset_init+0x4da/0x610 [ 3222.757963][T32165] blk_alloc_queue_node+0xc4/0x570 [ 3222.763051][T32165] blk_mq_init_queue+0x33/0xa0 [ 3222.767793][T32165] loop_add+0x256/0x710 [ 3222.771936][T32165] ? radix_tree_lookup+0x1c0/0x1d0 [ 3222.777050][T32165] loop_control_ioctl+0x468/0x680 [ 3222.782051][T32165] ? xor_init+0x60/0x60 [ 3222.786181][T32165] do_vfs_ioctl+0x6fb/0x15b0 [ 3222.790752][T32165] __x64_sys_ioctl+0xd4/0x110 [ 3222.795406][T32165] do_syscall_64+0xcb/0x1e0 [ 3222.799884][T32165] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3222.805752][T32165] RIP: 0033:0x7f145855da39 [ 3222.810146][T32165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80044501, 0x0) 20:00:59 executing program 3: ioctl$EVIOCGREP(0xffffffffffffffff, 0x80004508, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0x6) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0xb) [ 3222.829724][T32165] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3222.838199][T32165] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3222.846158][T32165] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3222.854104][T32165] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3222.862047][T32165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3222.869992][T32165] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:59 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 19) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:00:59 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x739240, 0x0) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80044584, 0x0) 20:00:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$UI_GET_SYSNAME(0xffffffffffffffff, 0x8040552c, &(0x7f0000000000)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80201, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x10080, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$BLKGETSIZE(0xffffffffffffffff, 0x1260, &(0x7f0000000040)) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x8000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:59 executing program 0: utime(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x2, 0x2}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) openat(r0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x60) 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80084502, 0x0) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3222.963881][T32193] FAULT_INJECTION: forcing a failure. [ 3222.963881][T32193] name failslab, interval 1, probability 0, space 0, times 0 [ 3223.007215][T32193] CPU: 1 PID: 32193 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3223.017469][T32193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3223.027546][T32193] Call Trace: [ 3223.030828][T32193] dump_stack+0x18e/0x1de [ 3223.035149][T32193] should_fail+0x5d8/0x740 [ 3223.039555][T32193] ? bdi_alloc_node+0x76/0xc0 [ 3223.044225][T32193] should_failslab+0x5/0x20 [ 3223.048717][T32193] kmem_cache_alloc_trace+0x39/0x2b0 [ 3223.053986][T32193] ? bioset_init+0x51b/0x610 [ 3223.058574][T32193] bdi_alloc_node+0x76/0xc0 [ 3223.063068][T32193] blk_alloc_queue_node+0x10b/0x570 [ 3223.068267][T32193] blk_mq_init_queue+0x33/0xa0 [ 3223.073022][T32193] loop_add+0x256/0x710 [ 3223.077164][T32193] ? radix_tree_lookup+0x1c0/0x1d0 [ 3223.082263][T32193] loop_control_ioctl+0x468/0x680 [ 3223.087268][T32193] ? xor_init+0x60/0x60 [ 3223.091414][T32193] do_vfs_ioctl+0x6fb/0x15b0 [ 3223.096001][T32193] __x64_sys_ioctl+0xd4/0x110 [ 3223.100666][T32193] do_syscall_64+0xcb/0x1e0 [ 3223.105162][T32193] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3223.111039][T32193] RIP: 0033:0x7f145855da39 [ 3223.115440][T32193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3223.135034][T32193] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3223.143520][T32193] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:00:59 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 20) 20:00:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:00:59 executing program 0: getpgrp(0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x6a) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000800)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000007c0)={&(0x7f00000001c0)={0x5dc, 0x14, 0xa, 0x101, 0x70bd2a, 0x25dfdbfc, {0xc, 0x0, 0x8}, [@nested={0x28a, 0x38, 0x0, 0x1, [@typed={0x4, 0x13}, @typed={0xa, 0x60, 0x0, 0x0, @str='#-\xb3)+\x00'}, @generic="4cdbfc1eeaebf4005d51818096015b5f604782373f10f40393a35ae9adb80d253d7f1a390c95af82bf7643ba78c560c7b598814b2b83051cf1dfa136390110003659aa72273426d70cb60013c67650c64fba70fc1e36052982f5af4fc2a960434d114c703a3e99896f7b598615400bf0087f4858a5be929559cf3f97990ac0ac2f5e47d928ac1a7b5b4c6c9537c5825f1b65ebf26ab75475599c375a3f745780d8d16baec4992d2d97d8771c812764a4aeacc72107461ea5459187070c879aa38d78d6f40419835feaa9b2137dd63dd162ca900d21ef2cf49b80a0153fc6990f85596af8f735de2778eee3fe1054e224bcc468648269daaa14", @generic="cbf36d9a513622236c5da54a77feb763294e1e70d4810fe450c9138b961cede0bcd9165c765c2c9ba136fa4b4fadf92ff7d78417f2a0d31839e9e41da84aaf423501ea445ba6c83ffcd4b5dbc8830e36983a575cc91181f795a5dba4593b8d0d6d2e993f892a511d4abcfd4631d48c826ed33cfdee90920521298515833ce7e2d5e5e46dbb92cbdce5e8fd53dcda96205cd42f9205a8a9ca81da4df27ee62c01e863cf928d6daf6cf729b80fa20d0721dc34962cf0", @typed={0xc6, 0x30, 0x0, 0x0, @binary="2ec7db5a4e37d56da31bbaa39a068b5845db0f5014a1e3db55cf671b5381b5785e2e61b940bb7f18cf20abeb422ae0c444b6a9eb36c63c97572c291f7604f80daafc94ebd3d326965c6afd5c0257d688243a9713a6f313956dbe8ac371b97386bb66b468a768018c4892edb1444bd04ba2a7a95a7ddb9583e79d4392ae559440d8b8f10e4b924a18c79b72a0daafb75d8ce6ca895df771ffb86460e8f42017b5fd5aa134a338c6306ce289a638f6dabb240fc88dfa860b62912e3fbf90ea8cbd3a3a"}]}, @typed={0x8, 0x11, 0x0, 0x0, @str='@+-\x00'}, @typed={0x7, 0x30, 0x0, 0x0, @str='%:\x00'}, @generic="cda2fd533b05515dcacb3d78e33e3dab9553fb23281f91d8d76ed3cc63cd7f2d1361ad4ffd6a4522f2509cbb8072e8bc0301e9e3769fee4aaf23b0c1d5a6a7728387752045df613a04b90d2ac40731ea5cf15a57b64e7c158fd160399a7f9b479da388a3a293dede94", @nested={0x1d8, 0x13, 0x0, 0x1, [@typed={0xcf, 0x31, 0x0, 0x0, @binary="71f80fad37bee24dc5ece58b6941b8dfd7468e7a1c7b6a0a9d3993512c9b15cb10fbae9b31751cb519c36d29805465db931a946c1609aa5ff3d87adf4b7911092547ab8036f6153c55e3bb78fd25250456b2a604c8288a0f3ee3bbb511be94ec1a502103887eef548f3b092c61927a0740ce7cdacb15c5cd7241b4a90a78c99e786da8b076da4c0b96368c68221177b34a9e1bb489a043840f91d3cc9d073a6774d042cdbfd811a6650774adbd524088f5995c12fb5e012cd800657fc6802ec1291cb33dde4fdc615cccef"}, @typed={0x8, 0x62, 0x0, 0x0, @uid}, @generic="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"]}, @typed={0xc, 0x5b, 0x0, 0x0, @u64=0x4}, @generic="40fe21c1e418355aad42ee6527218be9be0d4fa57968e06e688deba95e197eb005cb8f15fbf240eb183ab4f01fb2ee853843faa13c2f0c526a35947cfb351a23f7c30e95e18896d05a7e26841a8093721960c7fc5034004df12ceea3da377a472854b6bfb365741937d1e80fbbeb1a21e4cf483393dd7262781648445bc6838c0dac9eeae513febe5f078a895c48424a10280f814f586826a1ca57c156b362b065b1f8717e586e11cc81dccddc839b089242f75b8ebfacd97789c9ae5d712c1541af5bd2c3", @typed={0x8, 0x81, 0x0, 0x0, @ipv4=@multicast2}, @typed={0xd, 0x42, 0x0, 0x0, @str='&:%+{].[{'}]}, 0x5dc}, 0x1, 0x0, 0x0, 0x8080}, 0x44) 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, 0x0) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3223.151481][T32193] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3223.159441][T32193] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3223.167395][T32193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3223.175353][T32193] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80084504, 0x0) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0) 20:00:59 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x199000, 0x60) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) 20:00:59 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/koneplus', 0x40c40, 0x1a) sendmsg$NFNL_MSG_ACCT_GET(r2, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x48, 0x1, 0x7, 0x3, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x533}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffffb}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xfff}]}, 0x48}, 0x1, 0x0, 0x0, 0x8880}, 0x20040001) recvmsg$unix(r1, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x804000, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB="da4414a76a92bec2b31c00b47b4f3b16c48176835d0e1acc5b914096af72dba380ee3097d8e6af4c1c1188d1d10de04a0ed334cd9b8af639392d6ade882a0417bb7512e1cb51f0595ed7fe7b632e282bfea042e8f61f5f70b1d0d1de7a6b", @ANYRESOCT=r0, @ANYRESHEX, @ANYRES64=r0, @ANYRESDEC=0x0, @ANYRESDEC=r1, @ANYRESDEC=r0, @ANYRESOCT]) r3 = syz_open_dev$evdev(&(0x7f0000000100), 0x2fd, 0x0) ioctl$EVIOCGREP(r3, 0x80004508, 0x0) [ 3223.263348][T32223] FAULT_INJECTION: forcing a failure. [ 3223.263348][T32223] name failslab, interval 1, probability 0, space 0, times 0 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) [ 3223.314377][T32223] CPU: 0 PID: 32223 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3223.324621][T32223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3223.334662][T32223] Call Trace: [ 3223.337945][T32223] dump_stack+0x18e/0x1de [ 3223.342274][T32223] should_fail+0x5d8/0x740 [ 3223.346682][T32223] ? bdi_init+0x196/0x940 [ 3223.351000][T32223] should_failslab+0x5/0x20 [ 3223.355494][T32223] kmem_cache_alloc_trace+0x39/0x2b0 [ 3223.360767][T32223] ? bdi_alloc_node+0x76/0xc0 [ 3223.365428][T32223] bdi_init+0x196/0x940 [ 3223.369654][T32223] ? bdi_alloc_node+0x76/0xc0 [ 3223.374348][T32223] bdi_alloc_node+0x86/0xc0 [ 3223.378844][T32223] blk_alloc_queue_node+0x10b/0x570 [ 3223.384035][T32223] blk_mq_init_queue+0x33/0xa0 [ 3223.388825][T32223] loop_add+0x256/0x710 [ 3223.392966][T32223] ? radix_tree_lookup+0x1c0/0x1d0 [ 3223.398062][T32223] loop_control_ioctl+0x468/0x680 [ 3223.403073][T32223] ? xor_init+0x60/0x60 [ 3223.407222][T32223] do_vfs_ioctl+0x6fb/0x15b0 [ 3223.411801][T32223] __x64_sys_ioctl+0xd4/0x110 [ 3223.416466][T32223] do_syscall_64+0xcb/0x1e0 [ 3223.420957][T32223] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3223.426920][T32223] RIP: 0033:0x7f145855da39 [ 3223.431343][T32223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3223.450930][T32223] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:00:59 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 21) 20:00:59 executing program 0: syz_mount_image$f2fs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000001500)='./file0\x00', 0x436a02, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x290842, 0x18) r0 = socket$bt_hidp(0x1f, 0x3, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x1}, 0x3) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80086601, 0x0) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0) 20:00:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x420002) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3223.459329][T32223] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3223.467291][T32223] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3223.475253][T32223] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3223.483213][T32223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3223.491169][T32223] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80087601, 0x0) 20:00:59 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) 20:00:59 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) 20:00:59 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x4) 20:00:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0xa, &(0x7f00000008c0)=[{&(0x7f0000000140)="4a2362a27b766371b5556255042109ca310305b3698872fc604d899cd8b48b8b33a74ce8c327bce75f9b1809f5bf8c34c48b9d4f810ffcce0b66786d882daad1a9365ff4cee2a1b7d51e24b14bfbe02b017f386c97e543f0b646a523d2aefcacf7c963f1aee07d252baefb975b98f42c8f75ddb81e789adb40e38637476ca8aa6228d104502e0d3e9dfe0b07024637e4510d8ac16b82b0ac5d637c94a342076b17ffb596e651eff24dd7077dcda72426c77468e44331345c23621cf8841df7dc91afac69d0c70a5d4d823660f4f513082d0bfbdab076cbd5016e966c22b31917d8f1d1d9caaeb05e80aa9cd39a0a7a", 0xef, 0x100}, {&(0x7f0000000240)="5b2d7380909b12df8fdf64f13460c304854d207885518ef07f518bf2c8015be9febd988e9af1e233670cf013d73b4c57ff062a2fc714917108251bce017ad8142387e7708480d60eb9e49f4122c39990d0c9f2a0be896c053199b7aa75290ddf39bb977382e787c18e8a220bf71ededc9af32576d894d4978f55683db4058a1bb8a25a560ff9c081", 0x88, 0x81}, {&(0x7f0000000300)}, {&(0x7f0000000340)="34d5f3fd23050d456b903190324c467a086dc5eda83b6927e86345eb7dda7e730ba2047b980fe3ebaef1f08a4c27528254a3a9e95733afd9a6802ed46409495da4329564bfa03c17f258541e2bdf89866fbe8bd417330818cbfbcdcd1e57a92cf734f8316654e519be01fc7bf78f96d4f302319b1c99d62c36c10b86e05ce3091b032d", 0x83, 0x26b1}, {&(0x7f0000000400)="a76cc22a68850258079a46aa154a4ac69a637143123ff75744b3a1fc7bb5c78f4099ed94964d7f7d5a9aa01844ed367101ebe4041ce71a5b5e0f0c80f4498b2079b729933c3221d99bc3349b109b958bb2b8c5943d8c94691a3f292390fd2b6420073edc3e2c6471ece9b7d1ab4f159c2d850c8eb88a9a002063", 0x7a, 0xfffffffffffffc01}, {&(0x7f0000000480)="cac2dfc5bce3638f417c8c137848fa40da5dd2eb2b1f6d8e86189a7a87763d6e93b25b15340f99a9894b224054e2f8325bc761f10eefbd2cb776410cb4ab867636e693ccdeda15fe60576563c3da93fa7ff757c7df657b478f701025c2c12caccadf82564633f1c67fca221cb65e495be675cc51f6f98f52ba8fa4d83875b9c86cfdffdfb25602c55146f51783d477bd0518fbcd", 0x94, 0x80000001}, {&(0x7f0000000540)="7355421cdceea8b5c45e3ecf15bf425bc1502d5bc7d47705b5c71498d489495190cb49f55147de60e35c2cf87a9a1a10f808b48504337cc29a80cd29aa8d77bf19c5b5a815c8e0c01a4554535711bcd5282c5aab3fa63d8510719e4130d0ecaae769abcfda4d3491f12cf1fc94c829e8f2e9713e40eceda4f69efa03c36413d407d21d4cd17cb1c8c51392055fac6e1116cca5ab47b8e631edb2f3009944e3c2444c01bc6019b989f25873bcef66e790e98179745aeba0114a6a468e92a3abddcc4859e72732c0eec8c8c1330d4b8f99cd63302763ee6642f425e150cb", 0xdd, 0xffffffff}, {&(0x7f0000000640)="7b2b9c7abd271e99ed36dda74f2c2c9e3cf7a4af57e47d257e9df39302921c4c04e6f904d6aa358fa690d4a74d738331d4c274c65bb9c7a456164ec481c87861aaa43b77d39a79316c526d93f981cba5505defd4ae2cfcf44186d223703a885d3b1708459617737028db305cd7f59f6c0c936216c0091ae75256c3bdc3a72abc00d82528b68c78a1d2d88feb8692e935ab439d71213a88b541e0118525a3601987b0d991af95994f", 0xa8, 0x9}, {&(0x7f0000000700)="3b96f0f1e8a39030c4cc754ff30ad110b8a5d0e8be5d4315357268cfd2048c57613a1c884e2fb27ad12737497d4c3b541fa88375daabc31ba51cf4d80d23b6ba135ddf5b574fdacd87d206d63bf6e383782275db9eae2d720c4558973d5dbaa62fb76be8c93234682a4d99bd54dd35bff87c160da20fae49e0e95931ed12f9e9e42c6961419346bb5a5168bd81722cf6da7707b33a4525dce35ab460aaabf695c957a4348e31623e526ae10b3500f781ab57a760b526f421137816fd8f288936568b4420e55ccd14d74e9b307379b4e34722d1f2a0e6d6c85c4214a6f1188b7b", 0xe0, 0x4}, {&(0x7f0000000800)="15c1f262a3d8e1d7dac8968fa0ca6a9bd4a3c539e8c50b2ad6dddb2231a6bb5923100f30914f442671c0fcb036453cfaa2ec99f5a2aa9e4a774e3db54187008d1402e059d17aa2dfda8bf22b49794bc47aa3ba1920babc8c2741c49e226fdd6f272e7a23c6f55af5336bdb23f2ee5caf863b99e9d27be73e9b69a91027cf9e487255cf8aa499fabed360b9", 0x8b, 0xa7}], 0x228000, &(0x7f00000009c0)={[{@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@init_itable}, {@minixdf}, {@nobarrier}], [{@measure}, {@fowner_gt={'fowner>', 0xee01}}, {@appraise}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@dont_appraise}, {@seclabel}, {@seclabel}]}) fspick(r2, &(0x7f0000000a80)='./file0\x00', 0x1) ioctl$UI_END_FF_ERASE(r1, 0x400c55cb, &(0x7f0000000000)={0x10, 0x439, 0x8000}) 20:00:59 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80104592, 0x0) [ 3223.573257][T32250] FAULT_INJECTION: forcing a failure. [ 3223.573257][T32250] name failslab, interval 1, probability 0, space 0, times 0 [ 3223.607657][T32250] CPU: 0 PID: 32250 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3223.617903][T32250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3223.627944][T32250] Call Trace: [ 3223.631226][T32250] dump_stack+0x18e/0x1de [ 3223.635561][T32250] should_fail+0x5d8/0x740 [ 3223.639964][T32250] ? __percpu_counter_init+0x1aa/0x1e0 [ 3223.645411][T32250] ? blk_alloc_queue_stats+0x48/0x100 [ 3223.650782][T32250] should_failslab+0x5/0x20 [ 3223.655277][T32250] kmem_cache_alloc_trace+0x39/0x2b0 [ 3223.660552][T32250] blk_alloc_queue_stats+0x48/0x100 [ 3223.665738][T32250] blk_alloc_queue_node+0x14d/0x570 [ 3223.670927][T32250] blk_mq_init_queue+0x33/0xa0 [ 3223.675683][T32250] loop_add+0x256/0x710 [ 3223.679825][T32250] ? radix_tree_lookup+0x1c0/0x1d0 [ 3223.684927][T32250] loop_control_ioctl+0x468/0x680 [ 3223.689938][T32250] ? xor_init+0x60/0x60 [ 3223.694078][T32250] do_vfs_ioctl+0x6fb/0x15b0 [ 3223.698662][T32250] __x64_sys_ioctl+0xd4/0x110 [ 3223.703326][T32250] do_syscall_64+0xcb/0x1e0 [ 3223.707816][T32250] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3223.713776][T32250] RIP: 0033:0x7f145855da39 [ 3223.718174][T32250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3223.737766][T32250] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3223.746160][T32250] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3223.754203][T32250] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3223.762157][T32250] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:00 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 22) 20:01:00 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80284504, 0x0) 20:01:00 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x7, 0x7, &(0x7f0000000440)=[{&(0x7f00000000c0)="760c93f546892b8aef3352ddcbca176a37bf5c990a59b575f8f5e5f20e8159b1b8d7b36d2a1504739ea505b75ad449e09dd1115ad7ad7023f68500fc1a41f778c5b7bf3e486d55a149e62bbdfe56369aa7c6e7de9f76910068adb8bd7834beb550e4e7f2249e9e68834dfd278f43afeaacdc7b215cf81a3c0cd022db6711ef3ff939635f01af2f70", 0x88, 0x7}, {&(0x7f00000005c0)="6ec94745e79013bb5822d24ff5ea62d9c2c5a169724f1d29b0d1a5e23bd0a41d555fcf81844dc60801db70ca0cbbdf983cdc707b3a25addfc9b795065be0948ba42b2d8150682971b40b383e94ce3be8c594649117a66a3c9203f29c", 0x5c, 0x3}, {&(0x7f0000000200), 0x0, 0x100}, {&(0x7f0000000240)="a2e22a7d7de0ff58b53a1578efd52eef3e61f178c16a1f82", 0x18, 0x4}, {&(0x7f0000000280)="710ea3bc49dea51b38757a01aa77ae0b7fe044a476ff925867", 0x19, 0x4}, {&(0x7f00000002c0)="8b62b0d1f9237203a9ca6f1a7c35d420d3eb25b552dcea2e148b5c83b70f8c47438d477ee496ddc21f3ac7855a8af21acf20dd75fb76b6cf89c3b39d9b073e2f54663bda6486c6ec9030cf7059beb4711a0953ba528c7ea40fb654dcfcc667e4303f", 0x62, 0xa59}, {&(0x7f0000000340)="bcb5ab6b324ce3b8a301be9da323426f6de3d086d2add4710c9d0afd9e6cf2ebe8f310b81a7cf4704e7557f8281a4185530e4a570a88edf69d7c36b00c2f5ac7d9c5ab9211d3ebb433adab6aab1cfe5fe053b592e9cad8e0f1dcf072cf2350d9d51bd6b10398a8420638bebc9eeb9f9f40db5bf152160b23a3c3525e584408ddf83f9f23ccc3791bfb1e561578093854934453ba3b2bbd7e541ddd0375e79327545ce43bb5611088bd745b80c546c4827f0dde9e807a84913ec8e97e235a15870da643df240e575ee81b563a5b29937cfa527fd70cdea13727b3", 0xda, 0x1}], 0x10002, &(0x7f0000000500)={[{@noflush_merge}, {@noheap}, {@grpquota}], [{@appraise}]}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) move_mount(r0, &(0x7f0000000540)='./file0\x00', r1, &(0x7f0000000580)='./file0\x00', 0x0) [ 3223.770116][T32250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3223.778077][T32250] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) 20:01:00 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) 20:01:00 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x100000000, 0x2a20a2) [ 3223.830147][T32266] FAULT_INJECTION: forcing a failure. [ 3223.830147][T32266] name failslab, interval 1, probability 0, space 0, times 0 [ 3223.865503][T32266] CPU: 0 PID: 32266 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0xc0045878, 0x0) 20:01:00 executing program 0: sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xeac1ad66986fe3ee}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x0, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x2a00, 0x80) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r0, 0x20, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x400000004}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40800}, 0x10) [ 3223.875742][T32266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3223.885778][T32266] Call Trace: [ 3223.889059][T32266] dump_stack+0x18e/0x1de [ 3223.893381][T32266] should_fail+0x5d8/0x740 [ 3223.897788][T32266] ? blk_stat_alloc_callback+0x5c/0x210 [ 3223.903408][T32266] should_failslab+0x5/0x20 [ 3223.907902][T32266] kmem_cache_alloc_trace+0x39/0x2b0 [ 3223.913175][T32266] ? blk_mq_poll_stats_fn+0x1b0/0x1b0 [ 3223.918536][T32266] ? blk_mq_free_tag_set+0x470/0x470 [ 3223.923807][T32266] blk_stat_alloc_callback+0x5c/0x210 [ 3223.929166][T32266] blk_mq_init_allocated_queue+0x86/0x16e0 [ 3223.934973][T32266] ? blk_timeout_work+0x10/0x10 [ 3223.939825][T32266] ? blk_alloc_queue_node+0x4e0/0x570 [ 3223.945194][T32266] blk_mq_init_queue+0x48/0xa0 [ 3223.949950][T32266] loop_add+0x256/0x710 [ 3223.954090][T32266] ? radix_tree_lookup+0x1c0/0x1d0 [ 3223.959185][T32266] loop_control_ioctl+0x468/0x680 [ 3223.964205][T32266] ? xor_init+0x60/0x60 [ 3223.968347][T32266] do_vfs_ioctl+0x6fb/0x15b0 [ 3223.972930][T32266] __x64_sys_ioctl+0xd4/0x110 [ 3223.977593][T32266] do_syscall_64+0xcb/0x1e0 [ 3223.982081][T32266] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3223.987956][T32266] RIP: 0033:0x7f145855da39 [ 3223.992365][T32266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3224.011955][T32266] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3224.020351][T32266] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) 20:01:00 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_io_uring_setup(0x25a5, &(0x7f0000000080)={0x0, 0xf4cd, 0x20, 0x2, 0x3da}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000100)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0xfff) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)=@abs, 0x6e, &(0x7f0000000200), 0x0, &(0x7f0000000240)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}, 0x2041) [ 3224.028313][T32266] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3224.036270][T32266] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3224.044662][T32266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3224.052628][T32266] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0xc0045878, 0x0) 20:01:00 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 23) 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) 20:01:00 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x310, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="9d98ae6f67b4"}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x4) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x2c, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}, @FOU_ATTR_PEER_V4={0x8, 0x8, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @FOU_ATTR_PEER_V4={0x8, 0x8, @loopback}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x804) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:00 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x8000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0xc0189436, 0x0) 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, 0x0, 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:00 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x120) 20:01:00 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x200080, &(0x7f00000000c0)={[{@memory_localevents}, {@memory_localevents}], [{@fsmagic={'fsmagic', 0x3d, 0x401}}, {@euid_gt={'euid>', 0xee00}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fsname={'fsname', 0x3d, 'user.incfs.id\x00'}}, {@measure}, {@fowner_lt}]}) 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0xc020660b, 0x0) [ 3224.176105][T32300] FAULT_INJECTION: forcing a failure. [ 3224.176105][T32300] name failslab, interval 1, probability 0, space 0, times 0 20:01:00 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 1) 20:01:00 executing program 0: ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000080)={{0x90be, 0x7, 0xf26, 0x3}, 'syz1\x00', 0x3d}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3224.253217][T32300] CPU: 1 PID: 32300 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3224.258780][T32313] FAULT_INJECTION: forcing a failure. [ 3224.258780][T32313] name failslab, interval 1, probability 0, space 0, times 0 [ 3224.263464][T32300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3224.263467][T32300] Call Trace: [ 3224.263481][T32300] dump_stack+0x18e/0x1de [ 3224.263494][T32300] should_fail+0x5d8/0x740 [ 3224.263503][T32300] ? blk_mq_poll_stats_fn+0x1b0/0x1b0 [ 3224.263511][T32300] ? blk_stat_alloc_callback+0x95/0x210 [ 3224.263521][T32300] should_failslab+0x5/0x20 [ 3224.263530][T32300] __kmalloc+0x5f/0x2f0 [ 3224.263538][T32300] ? blk_stat_alloc_callback+0x5c/0x210 [ 3224.263547][T32300] ? blk_mq_poll_stats_fn+0x1b0/0x1b0 [ 3224.263554][T32300] ? blk_mq_free_tag_set+0x470/0x470 [ 3224.263562][T32300] blk_stat_alloc_callback+0x95/0x210 [ 3224.263569][T32300] ? blk_mq_free_tag_set+0x470/0x470 [ 3224.263582][T32300] ? blk_mq_poll_stats_fn+0x1b0/0x1b0 [ 3224.350089][T32300] blk_mq_init_allocated_queue+0x86/0x16e0 [ 3224.355892][T32300] ? blk_timeout_work+0x10/0x10 [ 3224.360726][T32300] ? blk_alloc_queue_node+0x4e0/0x570 [ 3224.366082][T32300] blk_mq_init_queue+0x48/0xa0 [ 3224.370830][T32300] loop_add+0x256/0x710 [ 3224.374976][T32300] ? radix_tree_lookup+0x1c0/0x1d0 [ 3224.380074][T32300] loop_control_ioctl+0x468/0x680 [ 3224.385089][T32300] ? xor_init+0x60/0x60 [ 3224.389229][T32300] do_vfs_ioctl+0x6fb/0x15b0 [ 3224.393806][T32300] __x64_sys_ioctl+0xd4/0x110 [ 3224.398555][T32300] do_syscall_64+0xcb/0x1e0 [ 3224.403135][T32300] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3224.409012][T32300] RIP: 0033:0x7f145855da39 [ 3224.413414][T32300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3224.433012][T32300] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3224.441413][T32300] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:00 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000001480)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001440)={&(0x7f00000013c0)={0x54, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x10000}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x65ac}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x2f}]}, 0x54}}, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x8000) r1 = accept$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000000)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000012c0)) recvmsg(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000000040)=""/105, 0x69}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000001140)=""/51, 0x33}, {&(0x7f0000001180)=""/112, 0x70}], 0x5}, 0x20) r2 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) move_mount(r3, &(0x7f0000001300)='./file0\x00', r4, &(0x7f0000001340)='./file0\x00', 0x36) ioctl$EVIOCGREP(r2, 0x80004508, 0x0) [ 3224.449377][T32300] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3224.457340][T32300] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3224.465297][T32300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3224.473247][T32300] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3224.481208][T32313] CPU: 0 PID: 32313 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3224.491437][T32313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3224.501477][T32313] Call Trace: [ 3224.504757][T32313] dump_stack+0x18e/0x1de [ 3224.509206][T32313] should_fail+0x5d8/0x740 [ 3224.513615][T32313] ? check_preemption_disabled+0x51/0x2c0 [ 3224.519324][T32313] ? ksys_mount+0x30/0xf0 [ 3224.523645][T32313] should_failslab+0x5/0x20 [ 3224.528138][T32313] __kmalloc_track_caller+0x5d/0x2e0 [ 3224.533415][T32313] ? __sb_end_write+0xb5/0x100 [ 3224.538168][T32313] ? strnlen_user+0x186/0x210 [ 3224.542833][T32313] strndup_user+0x73/0x150 [ 3224.547238][T32313] ksys_mount+0x30/0xf0 [ 3224.551379][T32313] __x64_sys_mount+0xb1/0xc0 [ 3224.555957][T32313] do_syscall_64+0xcb/0x1e0 [ 3224.560451][T32313] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3224.566336][T32313] RIP: 0033:0x7fecccaeda39 [ 3224.570743][T32313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3224.590335][T32313] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 20:01:00 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 24) 20:01:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000003, 0x810, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x41cc, &(0x7f0000000000)={0x0, 0x739e, 0x8, 0x2, 0xa5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x1e5, 0x2, &(0x7f0000000140)="7dcf60255e850bb4e88faedebb6ab639c65a450e1b94c2ea2697f6c754bfea9c749f41bee427b1af014b64ac962f4884f798094e7e694b762450dae299573b20791a39d7b55c0af2989647f54a8f30e1410df1dc2ae208776e510de3fbcaa5b88765d185005feda830b531ab93ab0cff1cc98d2805b396534e2f5ea0cda85a08c356a02f4f43f026a9f2a0f70a404ef29ddaf64e622c3317253a410d1dc38042766ff6818c984323466bdd8142f253fafadc2daafe77a9bf996b622975f4c88f7ebb4330221c36d69d07638141de5e2805f7a6fb7cb8e332454d6ef63866b912dd", 0x9}, 0x1) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x120) 20:01:00 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x8001, 0x4, &(0x7f0000000280)=[{&(0x7f00000000c0)="1258f6efcbc7503ddc3968a0f71f6cd0c8849674b9fc3111d99910cfa3e582e5152a50b927efb38d6bccf24ef370a9fb1fc3380267944ea79d5eff55", 0x3c, 0xfffffffffffffffe}, {&(0x7f0000000100)="84c07a3f56b4eab2151e1e0426817962ddd7c77625d5fea6116b4ba19306bbac7d444260a363773038c9f00e37c6b8d5f93c58af72b75150b67b", 0x3a, 0x5}, {&(0x7f0000000140)="7a82e051a513fd6e9bc95b34f3577a94c78b08a082b3eab8ec9308e3e0fbecb37d8ce08c9157e8b29a3280607d98bad36ded8e979dd0cfb0b4389e9108aee9b4fcfbece31d61a0e643ee9bc26d72f326f96518011b4a2d012ccab1081d11462cbe42b266d273b74d30824a2829bf778fc415ed4805766ffcb92f94", 0x7b, 0x2}, {&(0x7f00000001c0)="ba5f7f7edf6c4a6584b08956c9b37c5afb502ff918f2d1ec93d48dd5054734f966bc40507601cfdad3f53802bd48b3a25f8662ddc7131061680df90daca801570f859b9ce868d2205f250d91aa4974ef7ea81146f9ab918ce530885f30629be74fbf8e545e53994a99251e10df8dc14dd70c052c88439e42e27778fa56225205cee3d7773954ca6d30262b8f3cfdc7662b800bfb4e7617e322f2f8323101b265", 0xa0}], 0x2073040, &(0x7f0000000300)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x46d3}}, {@bsdgroups}, {@test_dummy_encryption}, {@lazytime}, {@nobarrier}, {@test_dummy_encryption}, {@grpjquota}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}, {@noinit_itable}], [{@euid_gt={'euid>', 0xee01}}]}) [ 3224.598745][T32313] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3224.606880][T32313] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3224.614839][T32313] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 [ 3224.622799][T32313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3224.630757][T32313] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 20:01:00 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 1) [ 3224.679760][T32325] FAULT_INJECTION: forcing a failure. [ 3224.679760][T32325] name failslab, interval 1, probability 0, space 0, times 0 [ 3224.701145][T32325] CPU: 0 PID: 32325 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3224.711398][T32325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3224.721467][T32325] Call Trace: [ 3224.724750][T32325] dump_stack+0x18e/0x1de [ 3224.729071][T32325] should_fail+0x5d8/0x740 [ 3224.733481][T32325] ? blk_mq_init_allocated_queue+0xf0/0x16e0 [ 3224.739452][T32325] should_failslab+0x5/0x20 [ 3224.743945][T32325] kmem_cache_alloc_trace+0x39/0x2b0 [ 3224.749217][T32325] ? blk_stat_alloc_callback+0x1a4/0x210 [ 3224.754834][T32325] ? blk_mq_free_tag_set+0x470/0x470 [ 3224.760107][T32325] ? blk_mq_poll_stats_fn+0x1b0/0x1b0 [ 3224.765469][T32325] blk_mq_init_allocated_queue+0xf0/0x16e0 [ 3224.768249][T32331] FAULT_INJECTION: forcing a failure. 20:01:01 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, 0x0, 0x2, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x40000) 20:01:01 executing program 2: r0 = getuid() syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x6df, 0x6, &(0x7f0000000540)=[{&(0x7f0000000140)="f127e094660ff9215be85fd18087fff104702e6ae1a48debaf608ed3d632988a0a146b81dddf60aef2df38f44ed8638feee017d9ec64eb3c5fbedf7640ae6a2b04e0242781723c9d3f6ee8786c8a36c3aaa7ba2ddc4d19eeac170121f2eb6a000653973a224a56ac3275a4e5bfe2800f81ff26278c1aeae100e630baebee6ce413e25ada7e133adf5c4035e1b4d8cb10b2687e3baf7541219f31f87668af8793645094ae60b46e0042664eaab70df8af13357e2d38a81c8f4d30ebbe619656c94455c2e849318bbf4915b987422eb1281f994efc184314", 0xd7, 0x1ff}, {&(0x7f0000000240)="44df338e27f69ce3b87f9cbf81035318369ca93ccbcf51987c9b9b3b487bee9c8403237aacaa926c4bbce224ce51c78daa86dbcea1958659be3f6eecbc57ed7067ea703bc846779a0613c2a38c25eb7907da7490df62eb1596828e17afb98f9d55492526f48126d563f6b4a7caff9806a0a422e30ba824ec9f8ad3940e9cd2bbba42b108ab46989012fcf1e3ba4a278b7a218c6ff07f55", 0x97, 0x8000004}, {&(0x7f0000000080)="1361518ff002516e23624f51f413b5b694246b78b3e0dadd00e3101271e07560e4ca2c7cf6a641630b9470ce909843110a8f56baf0c4fda3a595a9340645b5f75beb4cee2bcc8f64dc34b48871f8db", 0x4f, 0x8}, {&(0x7f0000000300)="75e274ae06b5f23ac93582ab22fcc6f8fb8fecd3f980a99a00d60a5915ff2263b1432c7380c0e31e015f617b1d2d43a4b884b283ddca099173ae3501792f7f4e52911e", 0x43, 0xffffffffffffff81}, {&(0x7f0000000380)="5875c6bfc09230a9de47a46b940e85cbb094ac3467428fe9802ea0dabe27f86009e58ebfea610903d4fbb3b6597963452eca684ef88e88419d8f24b226d68a2e803889f305ca7fd4ff5c531b0e8dd72ce8ad92ad393248f0a1cfc81652d4329fe5a26a4f512d48277dbd0c7294de01416868dc673dab82202fc834c21fe19805909f3552177b3f52f88ade6bac238f72e7a9d2f45a51b8ab72ef8384ad1110e3eef4130e", 0xa4, 0x4}, {&(0x7f0000000440)="283507ddea7316b8e77a46dc1ae5425de74809297b9a8eca56afc2d0ee3b96a71395453414a038766e3cb18b04f1f6124a87696ea9aaad82181f436ed9ce6a9a2bfa0f75b19c5b7b4dd41400b3c9896a28ca787a573c18c97fdd50689877255e93e68aba7ff3558d0ad321a7771a6828e6352b5264ff3fbba2d04afb0f8640afa32ed65d940a45b05d1082dea49e10432ea4f6fd6768a97613e164d94523c25d7679b480110a4eda1e7a5e88bf43eb18ab097ef4c29c2376d924d3385cb2455cee02cbdc0c14", 0xc6, 0x1009}], 0x20400, &(0x7f0000000900)={[{@resuid={'resuid', 0x3d, r0}}, {@nobarrier}, {@oldalloc}, {@nobh}], [{@appraise_type}, {@subj_role={'subj_role', 0x3d, '#{'}}]}) r1 = syz_open_dev$loop(&(0x7f0000000600), 0x3, 0x400000) ioctl$BLKREPORTZONE(r1, 0xc0101282, &(0x7f0000000980)={0x1ff, 0x7, 0x0, [{0x5, 0x1, 0xa8, 0x0, 0xff, 0x4, 0xfe}, {0x1, 0x0, 0x1, 0x1, 0xaf, 0x5, 0x1}, {0xc5, 0x81, 0x3, 0x7, 0x6, 0x40, 0x2}, {0x6, 0x6, 0x10001, 0xf3, 0x2, 0x9d, 0x7b}, {0x10001, 0x1, 0x401, 0x1, 0xff, 0x3, 0x1f}, {0x7, 0x5, 0x20, 0x5, 0x80, 0x7f, 0x8}, {0x7fffffff, 0x0, 0x70d0, 0xb6, 0x1, 0x7, 0x1}]}) r2 = syz_open_dev$evdev(&(0x7f0000000100), 0xfffffffffffffffd, 0x80) syz_genetlink_get_family_id$fou(&(0x7f00000008c0), 0xffffffffffffffff) ioctl$EVIOCGREP(r2, 0x80004509, 0x0) syz_mount_image$vfat(&(0x7f0000000680), &(0x7f00000006c0)='./file0\x00', 0xf9e, 0x2, &(0x7f0000000840)=[{&(0x7f0000000700)="a6d09d6a098811174b643201b4c6168eb89a8ca6d10212f3ea695614e0965ef09815abd72aa85b15ad1ec857ab17376c457c59c9213754e432954ba639b65c3130ed712b25db", 0x46, 0x9}, {&(0x7f0000000780)="ed4931dafa1d82f9c19828c100b04105928ae827ddd865d17dfec5ccab424adc1eca31fa5ef965e9cbb0af58e7ac369042a713607a8c3a01e5a6490348bc1af2ba7bbe65777f55da6ea9500b552ba5ce7da8bd3191e6149fa60a09d18bff082e69a579fefd1d9851a47a752d02e727c2679ea859233580de04341729dbfee103a230a4e0eb6987369d44e325e8f9030a219e44ead1f6731672a9756fa04668913784be09053173ee1c9f529233f64b947be18c08bdc4a84892c8cb7f", 0xbc, 0x9}], 0x10, &(0x7f0000000880)=ANY=[@ANYBLOB='errors=remount-ro,uni_xlAte=0,uni_xlate=1,mask=,\x00'/59]) [ 3224.768249][T32331] name failslab, interval 1, probability 0, space 0, times 0 [ 3224.771299][T32325] ? blk_alloc_queue_node+0x4e0/0x570 [ 3224.771308][T32325] blk_mq_init_queue+0x48/0xa0 [ 3224.771316][T32325] loop_add+0x256/0x710 [ 3224.771331][T32325] ? radix_tree_lookup+0x1c0/0x1d0 [ 3224.803229][T32325] loop_control_ioctl+0x468/0x680 [ 3224.808590][T32325] ? xor_init+0x60/0x60 [ 3224.812736][T32325] do_vfs_ioctl+0x6fb/0x15b0 [ 3224.817320][T32325] __x64_sys_ioctl+0xd4/0x110 [ 3224.821983][T32325] do_syscall_64+0xcb/0x1e0 [ 3224.826486][T32325] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3224.832370][T32325] RIP: 0033:0x7f145855da39 [ 3224.836769][T32325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3224.856356][T32325] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3224.864936][T32325] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3224.872900][T32325] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3224.880860][T32325] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3224.888816][T32325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3224.896772][T32325] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3224.904915][T32331] CPU: 1 PID: 32331 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3224.915145][T32331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3224.925190][T32331] Call Trace: 20:01:01 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000000)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x1, 0x8001, 0x0, 0x5, 0x1000, "4fce625a6aa431506dcb7045007044efe4c94e64648c00216db9ae10df7c561e713a8a50386b676609265d6c6fec240a78d78d24d8271c531da79b63f13cbcca76ca8be9a8336b166625623953149f6c59e5cd585e2ac0c1509b10c9e6abf1d166e8d3643d140a4f658c90751e0093a7606f5052db035c2abad6bfd3518524ff"}) [ 3224.928475][T32331] dump_stack+0x18e/0x1de [ 3224.932799][T32331] should_fail+0x5d8/0x740 [ 3224.937208][T32331] ? check_preemption_disabled+0x51/0x2c0 [ 3224.942920][T32331] ? ksys_mount+0x30/0xf0 [ 3224.947236][T32331] should_failslab+0x5/0x20 [ 3224.951732][T32331] __kmalloc_track_caller+0x5d/0x2e0 [ 3224.957022][T32331] ? __sb_end_write+0xb5/0x100 [ 3224.961802][T32331] ? strnlen_user+0x186/0x210 [ 3224.966472][T32331] strndup_user+0x73/0x150 [ 3224.970881][T32331] ksys_mount+0x30/0xf0 [ 3224.975026][T32331] __x64_sys_mount+0xb1/0xc0 [ 3224.979607][T32331] do_syscall_64+0xcb/0x1e0 [ 3224.984105][T32331] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3224.989984][T32331] RIP: 0033:0x7f2023c52a39 [ 3224.994400][T32331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3225.013993][T32331] RSP: 002b:00007f20219a8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3225.022397][T32331] RAX: ffffffffffffffda RBX: 00007f2023d56020 RCX: 00007f2023c52a39 20:01:01 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 2) 20:01:01 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x1000, 0x3, &(0x7f00000002c0)=[{&(0x7f00000000c0)="17dcc9d69329b0715439fd816b0f6fb4ed0697f6e81e0578f4046ecf9d0b660ce4e5cf53c455e6cb07607ff12d81fa0157efe0b7653a7fbfb59c19cf8a36c4db85cab22f5cd32a3928cdb8dc28948293034d257a2a164ff0d4e1e826ae571e9f31b3ca73162259e98491423c35f81f6373d64369c49b534c0ec46df88d3f26ff76d58363627ae4df0c49fdc0b1052361e4e1b46eab016babeb097b547c51de962a1a529c985d85d0cffaa726876332af14e672a96c25c111e79742d9a6bd628e7b537f36f1e0ac92a6f7989950eb4e0c588dfd948bca980d9ab2b928eebb7694df1d8e733d6f8635be412a3e7f0b561948c3817dcb", 0xf5, 0x1000}, {&(0x7f00000001c0)="2021faa223502dbed7c9512c27f5", 0xe, 0x4}, {&(0x7f0000000200)="027424315f5b0835f96d4e2dd155d4498592aa8c776c1afed3e89e27b139e6129905cc72f712331ec1a493536eb9a42062028d643f3645602ebcd33b3a4b8183e1c3362c58cede6458968714017370988bffdba0a6b9885e4221fe8618b82385b607ebb02eefccc53ba2f13970da75a61e3cb9d355095677105813a203c689e6e4cb6f73f18cb44b55d036a0c0494db3", 0x90, 0x401}], 0x1000, &(0x7f0000000340)=ANY=[@ANYBLOB='barrier=0x0000000000000006,jqfmt=vfsold,acl,bh,nodelalloc\fdata_enore,fowner=\x00\x00\x00\x00\x00', @ANYRESDEC, @ANYBLOB=',dont_appraise,smackfsroot=,euid=', @ANYRESDEC, @ANYBLOB="2c7065726d69745f646972656374696f2c736d61636b6673726f6f743d23c62d2c66736d616769633d3078303030303030303030303030303030382c7063723d30303030303030303030303030303030303035392c00"]) [ 3225.030361][T32331] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3225.038318][T32331] RBP: 00007f20219a81d0 R08: 0000000000000000 R09: 0000000000000000 [ 3225.046275][T32331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3225.054236][T32331] R13: 00007ffdedaeea5f R14: 00007f20219a8300 R15: 0000000000022000 20:01:01 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 25) 20:01:01 executing program 3: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) 20:01:01 executing program 2: ioctl$BLKDISCARD(0xffffffffffffffff, 0x1277, &(0x7f0000000080)=0x800) syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)={0x80000008}) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x5}, 0x4) [ 3225.086914][T32344] FAULT_INJECTION: forcing a failure. [ 3225.086914][T32344] name failslab, interval 1, probability 0, space 0, times 0 [ 3225.119886][T32344] CPU: 1 PID: 32344 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3225.122991][T32346] FAULT_INJECTION: forcing a failure. [ 3225.122991][T32346] name failslab, interval 1, probability 0, space 0, times 0 [ 3225.130130][T32344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3225.130133][T32344] Call Trace: [ 3225.130150][T32344] dump_stack+0x18e/0x1de [ 3225.130161][T32344] should_fail+0x5d8/0x740 [ 3225.130172][T32344] ? getname_flags+0xba/0x640 [ 3225.130190][T32344] should_failslab+0x5/0x20 [ 3225.174065][T32344] kmem_cache_alloc+0x36/0x290 [ 3225.178812][T32344] getname_flags+0xba/0x640 [ 3225.183301][T32344] user_path_at_empty+0x28/0x50 [ 3225.188163][T32344] do_mount+0xd8/0x2390 [ 3225.192307][T32344] ? __virt_addr_valid+0x1fd/0x290 [ 3225.197405][T32344] ? copy_mount_options+0xc9/0x300 [ 3225.202494][T32344] ksys_mount+0xc2/0xf0 [ 3225.206652][T32344] __x64_sys_mount+0xb1/0xc0 [ 3225.211234][T32344] do_syscall_64+0xcb/0x1e0 [ 3225.215721][T32344] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3225.221596][T32344] RIP: 0033:0x7fecccaeda39 [ 3225.225991][T32344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3225.245575][T32344] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3225.254062][T32344] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3225.262014][T32344] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3225.269965][T32344] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 [ 3225.277922][T32344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3225.285883][T32344] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 [ 3225.293845][T32346] CPU: 0 PID: 32346 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3225.304166][T32346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3225.314246][T32346] Call Trace: [ 3225.317529][T32346] dump_stack+0x18e/0x1de [ 3225.321852][T32346] should_fail+0x5d8/0x740 [ 3225.326263][T32346] ? blk_mq_init_allocated_queue+0x429/0x16e0 [ 3225.332318][T32346] should_failslab+0x5/0x20 [ 3225.336813][T32346] __kmalloc+0x5f/0x2f0 [ 3225.341042][T32346] ? blk_mq_sysfs_init+0x18b/0x1c0 [ 3225.341167][T32357] FAULT_INJECTION: forcing a failure. [ 3225.341167][T32357] name failslab, interval 1, probability 0, space 0, times 0 [ 3225.346142][T32346] blk_mq_init_allocated_queue+0x429/0x16e0 [ 3225.346161][T32346] ? blk_alloc_queue_node+0x4e0/0x570 [ 3225.369928][T32346] blk_mq_init_queue+0x48/0xa0 [ 3225.374683][T32346] loop_add+0x256/0x710 [ 3225.378830][T32346] ? radix_tree_lookup+0x1c0/0x1d0 [ 3225.383933][T32346] loop_control_ioctl+0x468/0x680 [ 3225.389025][T32346] ? xor_init+0x60/0x60 [ 3225.393159][T32346] do_vfs_ioctl+0x6fb/0x15b0 [ 3225.397751][T32346] __x64_sys_ioctl+0xd4/0x110 [ 3225.402428][T32346] do_syscall_64+0xcb/0x1e0 [ 3225.406920][T32346] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3225.412795][T32346] RIP: 0033:0x7f145855da39 [ 3225.417474][T32346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:01 executing program 0: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/199, 0xc7}], 0x1, &(0x7f0000000200)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x148}, 0x0) sched_getattr(r0, &(0x7f00000003c0)={0x38}, 0x38, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_open_dev$evdev(&(0x7f0000000080), 0x3, 0x888000) 20:01:01 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) mknodat(r0, &(0x7f0000000000)='./file0\x00', 0x40, 0xffffffff) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/mac80211', 0x508403, 0xa3) recvmsg$unix(r1, 0x0, 0x0) mknodat(r1, &(0x7f0000000080)='./file0\x00', 0x20, 0x9) 20:01:01 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 3) [ 3225.437069][T32346] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3225.445466][T32346] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3225.453419][T32346] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3225.461368][T32346] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3225.469318][T32346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3225.477275][T32346] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3225.485234][T32357] CPU: 1 PID: 32357 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3225.495460][T32357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3225.505499][T32357] Call Trace: [ 3225.508782][T32357] dump_stack+0x18e/0x1de [ 3225.513111][T32357] should_fail+0x5d8/0x740 [ 3225.517520][T32357] ? alloc_fs_context+0x60/0x610 [ 3225.522448][T32357] should_failslab+0x5/0x20 [ 3225.526940][T32357] kmem_cache_alloc_trace+0x39/0x2b0 [ 3225.532213][T32357] alloc_fs_context+0x60/0x610 [ 3225.536962][T32357] ? _raw_read_unlock+0x21/0x40 [ 3225.541799][T32357] do_mount+0x126a/0x2390 [ 3225.546115][T32357] ? copy_mount_options+0xc9/0x300 [ 3225.551214][T32357] ksys_mount+0xc2/0xf0 [ 3225.555358][T32357] __x64_sys_mount+0xb1/0xc0 [ 3225.559936][T32357] do_syscall_64+0xcb/0x1e0 [ 3225.564425][T32357] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3225.570298][T32357] RIP: 0033:0x7fecccaeda39 [ 3225.574967][T32357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3225.594560][T32357] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3225.602961][T32357] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3225.610920][T32357] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3225.618879][T32357] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 [ 3225.626839][T32357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 20:01:01 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 2) 20:01:01 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0xa) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x301840, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x8, 0x9, {0x52, 0x46, 0x2bb, {0x8, 0x9}, {0x20, 0xff}, @cond=[{0x6, 0x9f00, 0x7da7, 0x8, 0xe8b, 0x3}, {0x3f, 0x101, 0x1, 0x7, 0x4, 0x8}]}, {0x52, 0x1, 0x1e, {0xc2a2, 0xfff}, {0x7, 0x6}, @cond=[{0x712c, 0x9, 0x0, 0xfff, 0x4, 0xb36b}, {0x6, 0x7f, 0x8000, 0x0, 0x8001, 0xf5b3}]}}) 20:01:01 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 26) [ 3225.634800][T32357] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 [ 3225.653991][T32363] FAULT_INJECTION: forcing a failure. [ 3225.653991][T32363] name failslab, interval 1, probability 0, space 0, times 0 [ 3225.666831][T32363] CPU: 1 PID: 32363 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3225.677050][T32363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3225.687179][T32363] Call Trace: [ 3225.690456][T32363] dump_stack+0x18e/0x1de [ 3225.694780][T32363] should_fail+0x5d8/0x740 [ 3225.699184][T32363] ? blk_mq_realloc_hw_ctxs+0x38a/0x1440 [ 3225.704804][T32363] should_failslab+0x5/0x20 [ 3225.709301][T32363] __kmalloc+0x5f/0x2f0 [ 3225.713468][T32363] ? _raw_spin_lock+0x6c/0x170 [ 3225.718218][T32363] blk_mq_realloc_hw_ctxs+0x38a/0x1440 [ 3225.720429][T32367] FAULT_INJECTION: forcing a failure. [ 3225.720429][T32367] name failslab, interval 1, probability 0, space 0, times 0 [ 3225.723663][T32363] ? blk_mq_sysfs_init+0x18b/0x1c0 [ 3225.723678][T32363] blk_mq_init_allocated_queue+0x4d8/0x16e0 [ 3225.747369][T32363] ? blk_alloc_queue_node+0x4e0/0x570 [ 3225.752733][T32363] blk_mq_init_queue+0x48/0xa0 [ 3225.757483][T32363] loop_add+0x256/0x710 [ 3225.761630][T32363] ? radix_tree_lookup+0x1c0/0x1d0 [ 3225.766731][T32363] loop_control_ioctl+0x468/0x680 [ 3225.771738][T32363] ? xor_init+0x60/0x60 [ 3225.775878][T32363] do_vfs_ioctl+0x6fb/0x15b0 [ 3225.780456][T32363] __x64_sys_ioctl+0xd4/0x110 [ 3225.785110][T32363] do_syscall_64+0xcb/0x1e0 [ 3225.789597][T32363] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3225.795469][T32363] RIP: 0033:0x7f145855da39 [ 3225.799866][T32363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3225.819450][T32363] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3225.827946][T32363] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3225.835905][T32363] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3225.843862][T32363] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3225.851905][T32363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3225.859862][T32363] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3225.867826][T32367] CPU: 0 PID: 32367 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3225.878045][T32367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3225.888084][T32367] Call Trace: [ 3225.891361][T32367] dump_stack+0x18e/0x1de [ 3225.895678][T32367] should_fail+0x5d8/0x740 [ 3225.900118][T32367] ? getname_flags+0xba/0x640 [ 3225.904781][T32367] should_failslab+0x5/0x20 [ 3225.909272][T32367] kmem_cache_alloc+0x36/0x290 [ 3225.914023][T32367] getname_flags+0xba/0x640 [ 3225.918515][T32367] user_path_at_empty+0x28/0x50 [ 3225.923501][T32367] do_mount+0xd8/0x2390 [ 3225.927649][T32367] ? __virt_addr_valid+0x1fd/0x290 [ 3225.932749][T32367] ? copy_mount_options+0xc9/0x300 [ 3225.937845][T32367] ksys_mount+0xc2/0xf0 [ 3225.941986][T32367] __x64_sys_mount+0xb1/0xc0 [ 3225.946560][T32367] do_syscall_64+0xcb/0x1e0 [ 3225.951049][T32367] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3225.957011][T32367] RIP: 0033:0x7f2023c52a39 [ 3225.961410][T32367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3225.981003][T32367] RSP: 002b:00007f20219a8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 20:01:02 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0xb9, 0x800) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:02 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 4) 20:01:02 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 27) 20:01:02 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x400) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/firmware/devicetree', 0x90000, 0x8) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_SET_RELBIT(r1, 0x40045566, 0x4) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000040)) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/ufshcd_pltfrm', 0x80000, 0x122) 20:01:02 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000a80), 0x800, 0x0) r0 = geteuid() syz_mount_image$erofs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x7, 0x6, &(0x7f00000008c0)=[{&(0x7f00000004c0)="4673afc4fa13f79cb8e24440d94dbe3702b25a8462b949ebe7c3dcc77502469e43b2f2f004e26dac95893242057261e48bef5796612d5522c7", 0x39, 0x7}, {&(0x7f0000000580)="ce659f2ebf9eed9c2d4d7889a644a96d732dacd653435af180eac5581a9dcba76cbd0393401feb50746a9c156d373385826c404250e32dc91462747dba1a39623dbdb6d6f5c34c7de45e65565943583c6fb5cea607cc1d1b0dca2452f563a7792d2062fec238fa86839a3d08e08daa488350a92d0e169ddaed12bf3565bde7d892ffb9b5b55e429a1af4df2d7a38e1d133fbac08fc9c17c7045fb088b9e2c351d39cf2cd0786e039e52ee96db9a970e25dc88fa22db60abf885d3dce96a5d4cdfd831d6546fc38f1c0b8604cd447e7f62c3c69c523f90d6e", 0xd8, 0x9}, {&(0x7f0000000680)="67e76490b01b691bb6b04f26732afcef8c6d35aa80b34bd62e06576686fb66130eb4dc24cefaec3f4176e8bf7532784a995b358481e44bb52f54914551f680fa4429098f846e2e9eb2ac199c15", 0x4d, 0x80000001}, {&(0x7f0000000700)="51e2db4a1fe956db5c293469e3db0351059bb9c29cac41e0417bcce32607bf66f25141fa493ea9cc61f5c83ec5ad346ccc4eb7b09390c534d634b2a624fae8683e472ffb60d55c7921fc407067f4483d35a957202d9415ec0364bd9cb3379e484557f37fa25c9b9946ab2ec529e2355a69547677704271353542b02be8fdbbfb5b34f8b6aae9ffc54c1d85cb15f13d5da434ea", 0x93, 0x3}, {&(0x7f00000007c0)="d43781358ea635d66efa13f5bb0351d1a9bed4ed8bf79351dd8c4d1e9a9e19410d916faa4e2d0a3bb2ebf37df1d132a3c9f8509927bad85fb41e666b8e1d750614b3082247758e05af1ca1d7497583b1900c0afa7f94dbe76e1199d11e9fb5b8fcf6848df13eb81a857688e012170e81f118b1e67db001fe78647d", 0x7b, 0x49}, {&(0x7f0000000840)="3c30a62863bae293615a161a4a318255c75e548f7f8f73d2e4ed76ce69f5ea9c0177c6bdcfa276ebaa62ff7ea170a9b73b07538ebc9998754293aca77facb0a9442c6afebeb995aa4f2f2566a27b52892c6194c33b52e5f8b5dff1831be394cfea01778462409bc238d4ddaf6fd18de6c0f3f6e1b892f4b3ca8d", 0x7a, 0x4}], 0xc0, &(0x7f0000000980)={[{@noacl}, {@nouser_xattr}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'smackfsdef'}}, {@permit_directio}, {@permit_directio}, {@smackfstransmute={'smackfstransmute', 0x3d, 'Q-l'}}, {@smackfsdef={'smackfsdef', 0x3d, '-}!'}}, {@obj_user}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x32, 0x30, 0x36, 0x31, 0x36, 0x37, 0x32], 0x2d, [0x37, 0x34, 0x37, 0x31], 0x2d, [0x36, 0x32, 0x61, 0x64], 0x2d, [0x5d, 0x65, 0x36, 0x39], 0x2d, [0x62, 0x63, 0x38, 0x30, 0x39, 0x34, 0x36, 0x33]}}}, {@uid_lt={'uid<', r0}}]}) r1 = geteuid() syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x7, 0x6, &(0x7f0000000380)=[{&(0x7f00000000c0)="ca6ba3426ebcc6cf1e6dc7eb31bde289f84146c30c8ae75a11c73bb3a3ad42b822f6f7bad78037356b756d0ee8122e9f62d4b6ca1d62934e1425dd9d10f097cce241644235afb82f7543e5f055e6e5ec", 0x50, 0xeb130}, {&(0x7f0000000140)="fcda4755a94d95ce88e92b9cdce92681ad92d6ed8fbafb099351e967134f42348a25bd728d3053a8bd302877adbe56ee74e380a76dc8924ab54da32df1eb30694bb82db061f48d23f2b1d58829a8eb2bf1aa32793eaed32238327de38acd1ab7a5199e28111f8a", 0x67, 0x9a}, {&(0x7f00000001c0)="14e881a186", 0x5, 0x6}, {&(0x7f0000000200)="ba309b7f73d5467f5902b34d17200059c60ef6b5bd799729", 0x18, 0x9}, {&(0x7f0000000240)="b2a8e1b708bc05cd3da26f91b8cddaea14dd4ee7c3dc4d423b4eca849a8fa935adfee4139da7651fc10d30e548c1b181c0ea2639abffd1f7f68f4a61dac019d10e5265cff8ef256edf4ed428df4574a2af0b37f659ae0b6242db7b4f04fc2317e6efab1f206ed0f80a82821828d022114f907b1eea1ad0c6b4e10b4b0cfebfb3cb3b72473f1fe38dfa9ccf39010c50f5175cbc42c5276b", 0x97, 0xb912}, {&(0x7f0000000300)="8db87eba3fe8dfa233fad8d419081ab9a3d2c27aaef6a60460bb56bc72a28c1cdbb8fc5ff59d6f9157ecb21df9a4863c3c125cbd697c0d156c328301ce571d8ae98694c11ce9b6d5033a9aea417b944a42138beef9123a76e031123961cb07e2", 0x60, 0xc75618b}], 0x150c11, &(0x7f0000000500)={[{@nodiscard}, {@discard}, {@nombcache}, {@grpjquota}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'Q-l'}}, {@smackfsdef={'smackfsdef', 0x3d, '-}!'}}, {@uid_gt={'uid>', r0}}, {@uid_eq={'uid', 0x3d, r1}}]}) [ 3225.989404][T32367] RAX: ffffffffffffffda RBX: 00007f2023d56020 RCX: 00007f2023c52a39 [ 3225.997370][T32367] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3226.005330][T32367] RBP: 00007f20219a81d0 R08: 0000000000000000 R09: 0000000000000000 [ 3226.013295][T32367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3226.021429][T32367] R13: 00007ffdedaeea5f R14: 00007f20219a8300 R15: 0000000000022000 20:01:02 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000), 0xffffffffffffffe0, 0x404281) ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000040)={0x1, 0x526, 0xfffffffb, 0xcdbd}) [ 3226.065505][T32372] FAULT_INJECTION: forcing a failure. [ 3226.065505][T32372] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.090875][T32375] FAULT_INJECTION: forcing a failure. [ 3226.090875][T32375] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.100029][T32372] CPU: 0 PID: 32372 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3226.113672][T32372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3226.123711][T32372] Call Trace: [ 3226.126999][T32372] dump_stack+0x18e/0x1de [ 3226.131336][T32372] should_fail+0x5d8/0x740 [ 3226.135742][T32372] ? alloc_fs_context+0x60/0x610 [ 3226.140683][T32372] should_failslab+0x5/0x20 [ 3226.145176][T32372] kmem_cache_alloc_trace+0x39/0x2b0 [ 3226.150459][T32372] alloc_fs_context+0x60/0x610 [ 3226.155210][T32372] ? _raw_read_unlock+0x21/0x40 [ 3226.160048][T32372] do_mount+0x126a/0x2390 [ 3226.164364][T32372] ? copy_mount_options+0xc9/0x300 [ 3226.169463][T32372] ksys_mount+0xc2/0xf0 [ 3226.173604][T32372] __x64_sys_mount+0xb1/0xc0 [ 3226.178180][T32372] do_syscall_64+0xcb/0x1e0 [ 3226.182668][T32372] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3226.188551][T32372] RIP: 0033:0x7fecccaeda39 [ 3226.192948][T32372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:02 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x105000, 0xa9) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x87) sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0xa, 0xa, 0x201, 0x0, 0x0, {0xc, 0x0, 0x3}, [@NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x15}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0xd}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x41014}, 0x20040080) 20:01:02 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x321841, 0x0) fspick(r0, &(0x7f0000000080)='./file0\x00', 0x0) truncate(&(0x7f0000000000)='./file0\x00', 0x2) 20:01:02 executing program 0: ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000500)={{0x0, 0x1250, 0x97fe, 0xdd5}, 'syz0\x00', 0x1d}) sendmsg$NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x24, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x7}]}, 0x24}}, 0x24004001) sched_getattr(0xffffffffffffffff, &(0x7f0000000340)={0x38}, 0x38, 0x0) tkill(0xffffffffffffffff, 0x1e) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xf8, 0x1, 0x2, 0x605, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_EXPECT_TUPLE={0x40, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_MASTER={0xa4, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x27}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x23}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010101}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x2b}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x15}}}}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x4008040}, 0x800) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000200), 0x8) r1 = gettid() sched_getattr(r1, &(0x7f0000000380)={0x38}, 0x38, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, 0x1, 0x1, 0x3, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_SEQ_ADJ_ORIG={0x24, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x80000000}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x10000}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4090}, 0x41) sched_getaffinity(0x0, 0x8, &(0x7f00000004c0)) getpriority(0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3226.212536][T32372] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3226.220937][T32372] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3226.228896][T32372] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3226.236854][T32372] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 [ 3226.244812][T32372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3226.252858][T32372] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 [ 3226.260845][T32375] CPU: 1 PID: 32375 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3226.271065][T32375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3226.281131][T32375] Call Trace: [ 3226.284412][T32375] dump_stack+0x18e/0x1de [ 3226.288735][T32375] should_fail+0x5d8/0x740 [ 3226.293227][T32375] ? blk_mq_realloc_hw_ctxs+0x637/0x1440 [ 3226.298845][T32375] should_failslab+0x5/0x20 [ 3226.303334][T32375] __kmalloc+0x5f/0x2f0 [ 3226.307473][T32375] ? blk_mq_realloc_hw_ctxs+0x38a/0x1440 [ 3226.313091][T32375] ? _raw_spin_lock+0x6c/0x170 [ 3226.317931][T32375] blk_mq_realloc_hw_ctxs+0x637/0x1440 [ 3226.323433][T32375] blk_mq_init_allocated_queue+0x4d8/0x16e0 [ 3226.329311][T32375] ? blk_alloc_queue_node+0x4e0/0x570 [ 3226.334682][T32375] blk_mq_init_queue+0x48/0xa0 [ 3226.339437][T32375] loop_add+0x256/0x710 [ 3226.343608][T32375] ? radix_tree_lookup+0x1c0/0x1d0 [ 3226.348707][T32375] loop_control_ioctl+0x468/0x680 [ 3226.353721][T32375] ? xor_init+0x60/0x60 [ 3226.357952][T32375] do_vfs_ioctl+0x6fb/0x15b0 [ 3226.362531][T32375] __x64_sys_ioctl+0xd4/0x110 [ 3226.367194][T32375] do_syscall_64+0xcb/0x1e0 [ 3226.371685][T32375] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3226.377559][T32375] RIP: 0033:0x7f145855da39 [ 3226.381960][T32375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3226.401549][T32375] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:01:02 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 3) 20:01:02 executing program 0: sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x3, 0x3, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x8}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x4}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x8001}}]}, 0x34}, 0x1, 0x0, 0x0, 0x200008d0}, 0x4040810) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0\x00', 0x301040, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_END_FF_ERASE(r1, 0x400c55cb, &(0x7f0000000180)={0xa, 0xfffffffa, 0x7fffffff}) recvmsg$unix(r0, 0x0, 0x0) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140)={0x5b8f}, 0x4) 20:01:02 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 5) [ 3226.409980][T32375] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3226.417952][T32375] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3226.425920][T32375] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3226.433880][T32375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3226.441840][T32375] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:02 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'batadv0\x00', 0x0}) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140), 0x6e, &(0x7f0000000380)=[{&(0x7f00000001c0)=""/71, 0x47}, {&(0x7f0000000240)=""/37, 0x25}], 0x2, &(0x7f0000000600)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000010000000200000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c00000092b02940010000000200000074bed310b86fd641fa3e579e80c5fe24755c1d19d7a21a1c483c093e9c06f72f2d80f0f960704978f7c226b913d2fcbac6ccd26ff09f74ba2a952275343a39db71c39c992d4b0366d47cc0", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32], 0x110}, 0x2000) r3 = getuid() r4 = geteuid() mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1000400, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {}, 0x2c, {[], [{@func={'func', 0x3d, 'POLICY_CHECK'}}, {@uid_eq={'uid', 0x3d, r3}}, {@fowner_lt}, {@fowner_lt={'fowner<', r4}}]}}) sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x8, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40800}, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r5, 0x0, 0x0) ioctl$ION_IOC_ALLOC(r5, 0xc0184900, &(0x7f0000000040)={0x1, 0x2, 0x1}) 20:01:02 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 28) [ 3226.522182][T32400] FAULT_INJECTION: forcing a failure. [ 3226.522182][T32400] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.535427][T32399] FAULT_INJECTION: forcing a failure. [ 3226.535427][T32399] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.549292][T32400] CPU: 1 PID: 32400 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3226.559516][T32400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 20:01:02 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000001300)=[{&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/129, 0x81}, {&(0x7f0000001200)=""/179, 0xb3}, {&(0x7f00000012c0)=""/9, 0x9}], 0x4, &(0x7f0000001340)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}, 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000001440)='./file0\x00', 0x10000, 0x81) syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, &(0x7f0000001580)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001540)={&(0x7f00000014c0)={0x4c, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xfffff36f}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xffffff1c}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x401}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x20000000) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r5, 0x0, 0x0) sendmsg$FOU_CMD_ADD(r5, &(0x7f0000001680)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x30, 0x0, 0x10, 0x70bd2d, 0x25dfdbfe, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V4={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x50}, 0x24008080) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000000)=""/38) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000002d00)={'batadv_slave_0\x00', 0x0}) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f0000002dc0)={&(0x7f00000016c0), 0xc, &(0x7f0000002d80)={&(0x7f0000002d40)={0x34, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4002004) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:02 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f00000004c0)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x6}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r1, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x34, 0x0, 0x3fc5bc85ba54df9e, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) syz_mount_image$erofs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1, 0x0, &(0x7f00000003c0), 0x200029, &(0x7f0000000440)={[{}, {}], [{@defcontext={'defcontext', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@smackfsdef}]}) setsockopt$inet6_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, &(0x7f0000000000)={0x6}, 0x4) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000100), r3) [ 3226.569558][T32400] Call Trace: [ 3226.572834][T32400] dump_stack+0x18e/0x1de [ 3226.577149][T32400] should_fail+0x5d8/0x740 [ 3226.581553][T32400] ? alloc_fs_context+0x60/0x610 [ 3226.586474][T32400] should_failslab+0x5/0x20 [ 3226.590974][T32400] kmem_cache_alloc_trace+0x39/0x2b0 [ 3226.596254][T32400] alloc_fs_context+0x60/0x610 [ 3226.601005][T32400] ? _raw_read_unlock+0x21/0x40 [ 3226.605837][T32400] do_mount+0x126a/0x2390 [ 3226.610155][T32400] ? copy_mount_options+0xc9/0x300 [ 3226.615266][T32400] ksys_mount+0xc2/0xf0 [ 3226.619404][T32400] __x64_sys_mount+0xb1/0xc0 [ 3226.623972][T32400] do_syscall_64+0xcb/0x1e0 [ 3226.628460][T32400] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3226.634333][T32400] RIP: 0033:0x7f2023c52a39 [ 3226.638751][T32400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3226.658353][T32400] RSP: 002b:00007f20219c9188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 20:01:02 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000340)={&(0x7f0000000000), 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r1, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@GTPA_TID={0xc, 0x3, 0x3}, @GTPA_VERSION={0x8}, @GTPA_TID={0xc, 0x3, 0x1}, @GTPA_O_TEI={0x8, 0x9, 0x4}, @GTPA_LINK={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x6}, 0x11) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000900)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000008c0)={&(0x7f0000000d40)={0x414, 0x0, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@WGDEVICE_A_PEERS={0x3a0, 0x8, 0x0, 0x1, [{0xe8, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x80, @dev={0xfe, 0x80, '\x00', 0x31}, 0x5}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @empty}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @empty}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "f98df998c053fe60ffb95f523baeea7b3996c87aa3dff5998ffe43340d35e731"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x0, @remote, 0x5}}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}, {0x9c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0xffffb423, @local, 0x200}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0x5, @dev={0xfe, 0x80, '\x00', 0x16}, 0x8}}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x777}]}, {0x38, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "afe8a78cdc0402d0b7a7b9d68013c11e36ce28445a2d947ddd2cf5e8fc5f75a6"}, @WGPEER_A_FLAGS={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x1c8, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @loopback}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "a1a70f320bee75f1af2ef5e91d774aaae5e921cce3440e1c342467be93ccb2ef"}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_ALLOWEDIPS={0x110, 0x9, 0x0, 0x1, [{0x10c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x34}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}]}]}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_ALLOWEDIPS={0x38, 0x9, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_FLAGS={0x8}]}]}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x6}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x3}]}, 0x414}, 0x1, 0x0, 0x0, 0x4000044}, 0x10004000) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000680)={&(0x7f0000000540)={0x12c, r2, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVKEY={0xb4, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x8c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xdaf}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x50, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x13fd617bbd9ccf43}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xfffff797}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x40}]}]}, @NL802154_ATTR_SEC_DEVKEY={0x24, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xfffffffb}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x6d}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x12c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000440)={&(0x7f0000000380), 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, 0x1, 0x7, 0x201, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x40}, @NFACCT_FLAGS={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x810}, 0x8000) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff, 0x2bd, 0xda, &(0x7f0000000080)="d7803b62007c7c91e012544e11c04f5a5aa36bf0165752a1fe2500f0982d45b47cf4b9bb6d6710689676b36bc7a99923e572b127e0e3b6c8262fbd0ee54b6a9d55eb0d75c21cc1a6e928c5bf9fa31db98371bf50b62607a0c79b5df29f44bd0c9f1a08ddf0510afc574c0ff749b0b9d5f0d26eea7a1196dc9bc50dd41458d7cfa479c5a380e8994ea9bc8c9210f081825eadf80616af8cb845f699b82958b4a580de15df3f15647746d2e5d95b1d963adeff7d8c5e9353a98650954e28a005bd6b5a9befe8d1b4e6c9508a4e1448657041e1e14e78bd9c62de77", 0x9, 0x7, 0x100, 0x4, 0x7fff, 0x0, 0x7, 'syz1\x00'}) [ 3226.666752][T32400] RAX: ffffffffffffffda RBX: 00007f2023d55f60 RCX: 00007f2023c52a39 [ 3226.674713][T32400] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3226.682698][T32400] RBP: 00007f20219c91d0 R08: 0000000000000000 R09: 0000000000000000 [ 3226.690651][T32400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3226.698603][T32400] R13: 00007ffdedaeea5f R14: 00007f20219c9300 R15: 0000000000022000 [ 3226.706565][T32399] CPU: 0 PID: 32399 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3226.716878][T32399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3226.726926][T32399] Call Trace: [ 3226.730212][T32399] dump_stack+0x18e/0x1de [ 3226.734539][T32399] should_fail+0x5d8/0x740 [ 3226.738948][T32399] ? kernfs_get_tree+0x71/0x680 [ 3226.743789][T32399] should_failslab+0x5/0x20 [ 3226.748282][T32399] kmem_cache_alloc_trace+0x39/0x2b0 [ 3226.753558][T32399] kernfs_get_tree+0x71/0x680 [ 3226.758398][T32399] ? cred_has_capability+0x14f/0x340 [ 3226.763673][T32399] ? cred_has_capability+0x250/0x340 [ 3226.768945][T32399] cgroup_do_get_tree+0xef/0x590 [ 3226.773975][T32399] cgroup_get_tree+0x102/0x240 [ 3226.778726][T32399] vfs_get_tree+0x83/0x260 [ 3226.783133][T32399] do_mount+0x17be/0x2390 [ 3226.787449][T32399] ? copy_mount_options+0xc9/0x300 [ 3226.792544][T32399] ksys_mount+0xc2/0xf0 [ 3226.796694][T32399] __x64_sys_mount+0xb1/0xc0 [ 3226.801288][T32399] do_syscall_64+0xcb/0x1e0 [ 3226.805781][T32399] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3226.811655][T32399] RIP: 0033:0x7fecccaeda39 [ 3226.816063][T32399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3226.835659][T32399] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3226.844155][T32399] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3226.852130][T32399] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3226.860089][T32399] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 20:01:03 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 4) 20:01:03 executing program 0: ioctl$UI_SET_PROPBIT(0xffffffffffffffff, 0x4004556e, 0x9) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f0000000080)={0xf, 0x1, {0x55, 0x9, 0x3, {0xf000, 0x2}, {0x7, 0x21}, @rumble={0x2b, 0x80}}, {0x57, 0x5, 0x7, {0xfffd}, {0xe570, 0x7f}, @period={0x5d, 0x80, 0x7, 0x1, 0x7999, {0x1000, 0x7fff, 0x20, 0x1f}, 0x5, &(0x7f0000000000)=[0x5, 0x9, 0x0, 0x3, 0x4]}}}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x309c40, 0x0) [ 3226.868576][T32399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3226.876532][T32399] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 [ 3226.897459][T32406] FAULT_INJECTION: forcing a failure. [ 3226.897459][T32406] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.912693][T32416] FAULT_INJECTION: forcing a failure. [ 3226.912693][T32416] name failslab, interval 1, probability 0, space 0, times 0 [ 3226.932284][T32416] CPU: 0 PID: 32416 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3226.942518][T32416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3226.952562][T32416] Call Trace: [ 3226.955840][T32416] dump_stack+0x18e/0x1de [ 3226.960161][T32416] should_fail+0x5d8/0x740 [ 3226.964566][T32416] ? cgroup_init_fs_context+0x53/0x2b0 [ 3226.970014][T32416] should_failslab+0x5/0x20 [ 3226.974792][T32416] kmem_cache_alloc_trace+0x39/0x2b0 [ 3226.980071][T32416] ? alloc_fs_context+0x60/0x610 [ 3226.984989][T32416] cgroup_init_fs_context+0x53/0x2b0 [ 3226.990266][T32416] alloc_fs_context+0x51e/0x610 [ 3226.995106][T32416] do_mount+0x126a/0x2390 [ 3226.999438][T32416] ? copy_mount_options+0xc9/0x300 [ 3227.004529][T32416] ksys_mount+0xc2/0xf0 [ 3227.008665][T32416] __x64_sys_mount+0xb1/0xc0 [ 3227.013239][T32416] do_syscall_64+0xcb/0x1e0 [ 3227.017730][T32416] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3227.023606][T32416] RIP: 0033:0x7f2023c52a39 [ 3227.027997][T32416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3227.047583][T32416] RSP: 002b:00007f20219c9188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3227.056003][T32416] RAX: ffffffffffffffda RBX: 00007f2023d55f60 RCX: 00007f2023c52a39 [ 3227.063967][T32416] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 20:01:03 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x1) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:03 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/devlink', 0x0, 0x7d) recvmsg$unix(r0, 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000000)=0x7ff) 20:01:03 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 5) [ 3227.072272][T32416] RBP: 00007f20219c91d0 R08: 0000000000000000 R09: 0000000000000000 [ 3227.080324][T32416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3227.088276][T32416] R13: 00007ffdedaeea5f R14: 00007f20219c9300 R15: 0000000000022000 [ 3227.096607][T32406] CPU: 1 PID: 32406 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3227.106835][T32406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3227.116873][T32406] Call Trace: [ 3227.120158][T32406] dump_stack+0x18e/0x1de [ 3227.124479][T32406] should_fail+0x5d8/0x740 [ 3227.128887][T32406] ? sbitmap_init_node+0x145/0x3d0 [ 3227.133990][T32406] should_failslab+0x5/0x20 [ 3227.138483][T32406] __kmalloc+0x5f/0x2f0 [ 3227.139010][T32426] FAULT_INJECTION: forcing a failure. [ 3227.139010][T32426] name failslab, interval 1, probability 0, space 0, times 0 [ 3227.142662][T32406] sbitmap_init_node+0x145/0x3d0 [ 3227.142673][T32406] blk_mq_realloc_hw_ctxs+0x6a1/0x1440 [ 3227.142685][T32406] blk_mq_init_allocated_queue+0x4d8/0x16e0 [ 3227.142696][T32406] ? blk_alloc_queue_node+0x4e0/0x570 [ 3227.142709][T32406] blk_mq_init_queue+0x48/0xa0 [ 3227.181591][T32406] loop_add+0x256/0x710 [ 3227.185731][T32406] ? radix_tree_lookup+0x1c0/0x1d0 [ 3227.190826][T32406] loop_control_ioctl+0x468/0x680 [ 3227.195836][T32406] ? xor_init+0x60/0x60 [ 3227.199977][T32406] do_vfs_ioctl+0x6fb/0x15b0 [ 3227.204576][T32406] __x64_sys_ioctl+0xd4/0x110 [ 3227.209239][T32406] do_syscall_64+0xcb/0x1e0 [ 3227.213724][T32406] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3227.219596][T32406] RIP: 0033:0x7f145855da39 [ 3227.223998][T32406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3227.243584][T32406] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3227.251972][T32406] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3227.259924][T32406] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:03 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 6) [ 3227.267973][T32406] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3227.275928][T32406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3227.283898][T32406] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3227.296967][T32426] CPU: 1 PID: 32426 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3227.307197][T32426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3227.317243][T32426] Call Trace: [ 3227.320532][T32426] dump_stack+0x18e/0x1de [ 3227.324851][T32426] should_fail+0x5d8/0x740 [ 3227.329257][T32426] ? kernfs_get_tree+0x71/0x680 [ 3227.334097][T32426] should_failslab+0x5/0x20 [ 3227.338590][T32426] kmem_cache_alloc_trace+0x39/0x2b0 [ 3227.343863][T32426] kernfs_get_tree+0x71/0x680 [ 3227.348536][T32426] ? cred_has_capability+0x14f/0x340 [ 3227.353806][T32426] ? cred_has_capability+0x250/0x340 [ 3227.359077][T32426] cgroup_do_get_tree+0xef/0x590 [ 3227.364007][T32426] cgroup_get_tree+0x102/0x240 [ 3227.368760][T32426] vfs_get_tree+0x83/0x260 [ 3227.373166][T32426] do_mount+0x17be/0x2390 [ 3227.377488][T32426] ? copy_mount_options+0xc9/0x300 [ 3227.382584][T32426] ksys_mount+0xc2/0xf0 [ 3227.386721][T32426] __x64_sys_mount+0xb1/0xc0 [ 3227.391300][T32426] do_syscall_64+0xcb/0x1e0 [ 3227.395791][T32426] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3227.401668][T32426] RIP: 0033:0x7f2023c52a39 [ 3227.406069][T32426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3227.411114][T32430] FAULT_INJECTION: forcing a failure. [ 3227.411114][T32430] name failslab, interval 1, probability 0, space 0, times 0 [ 3227.425655][T32426] RSP: 002b:00007f20219c9188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3227.425664][T32426] RAX: ffffffffffffffda RBX: 00007f2023d55f60 RCX: 00007f2023c52a39 [ 3227.425670][T32426] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3227.425675][T32426] RBP: 00007f20219c91d0 R08: 0000000000000000 R09: 0000000000000000 20:01:03 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 29) 20:01:03 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:03 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 6) 20:01:03 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="7efebc00bde104e0fea73a951592c0ca1a36c2c739546597bb59b98e68ea349b4960256583c695c59a1ca4432726b9fa647d30ab26af319ffb4a29d2a2cbd911914add06ea885c9c7827a418fe60506eb317d05b6dd6157b1d742740775fa4d3791eba053552e2983ef11adcb7fcebb3b053d00c5ce4dedec074869a59ae79fe0134c4f8bc6db8f7b5a6218de43a643a002bcdd7aa490dbe774e5adfa62420482c1b6fc5f6ca104cad9ac583a1822681ecd184f215d542306909377f93a84a567aaba1b988b3bce8412498530915095c3305d752b19aa637a6fffbeea8e7eb6a47a64577f2f09905ee32d136568c", 0xee, 0x9}], 0x300000, &(0x7f0000000200)={[{@fault_injection={'fault_injection', 0x3d, 0x8af7}}, {@nouser_xattr}, {@fault_injection={'fault_injection', 0x3d, 0x6}}], [{@hash}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@subj_role={'subj_role', 0x3d, '$&:'}}, {@uid_gt={'uid>', 0xffffffffffffffff}}, {@appraise_type}, {@smackfsfloor}, {@fowner_gt={'fowner>', 0xee00}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]}) [ 3227.425679][T32426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3227.425683][T32426] R13: 00007ffdedaeea5f R14: 00007f20219c9300 R15: 0000000000022000 [ 3227.509666][T32435] FAULT_INJECTION: forcing a failure. [ 3227.509666][T32435] name failslab, interval 1, probability 0, space 0, times 0 20:01:03 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x127c40, 0x100) 20:01:03 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x159000) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) [ 3227.529346][T32440] FAULT_INJECTION: forcing a failure. [ 3227.529346][T32440] name failslab, interval 1, probability 0, space 0, times 0 [ 3227.560663][T32435] CPU: 0 PID: 32435 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3227.570906][T32435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3227.580951][T32435] Call Trace: [ 3227.584244][T32435] dump_stack+0x18e/0x1de [ 3227.588567][T32435] should_fail+0x5d8/0x740 [ 3227.592976][T32435] ? blk_alloc_flush_queue+0x7e/0x230 [ 3227.598332][T32435] should_failslab+0x5/0x20 [ 3227.602822][T32435] kmem_cache_alloc_trace+0x39/0x2b0 [ 3227.608194][T32435] blk_alloc_flush_queue+0x7e/0x230 [ 3227.613381][T32435] blk_mq_realloc_hw_ctxs+0x873/0x1440 [ 3227.618844][T32435] blk_mq_init_allocated_queue+0x4d8/0x16e0 [ 3227.624895][T32435] ? blk_alloc_queue_node+0x4e0/0x570 [ 3227.630249][T32435] blk_mq_init_queue+0x48/0xa0 [ 3227.635097][T32435] loop_add+0x256/0x710 [ 3227.639240][T32435] ? radix_tree_lookup+0x1c0/0x1d0 [ 3227.644336][T32435] loop_control_ioctl+0x468/0x680 [ 3227.649381][T32435] ? xor_init+0x60/0x60 [ 3227.653533][T32435] do_vfs_ioctl+0x6fb/0x15b0 [ 3227.658104][T32435] __x64_sys_ioctl+0xd4/0x110 [ 3227.662765][T32435] do_syscall_64+0xcb/0x1e0 [ 3227.667253][T32435] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3227.673127][T32435] RIP: 0033:0x7f145855da39 [ 3227.677519][T32435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3227.697104][T32435] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3227.705499][T32435] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3227.713485][T32435] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3227.721449][T32435] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:03 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f0000000080)={0x250, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_KEY={0x158, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x118, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x38, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}]}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x4}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x40}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "e6e09dc3af41c75fcf5ce6710d0e8c3edc1e1fb4279c4258eb0817e299ebfd2f"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_KEY={0xc4, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x88, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8001}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x80000000}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x58, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "2a583324bf4f898e4ce0b0cad7515f334ed831c560605c066423f03f7d64c044"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "575f4feccf2f880fdefbe5ebb3d8997a"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x250}, 0x1, 0x0, 0x0, 0x40000}, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:03 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000000406038700000000000000000300000405a95c9b2c14efff6a422e61da7129130001000700000009000201030000000000000005000100070000000500010007000000"], 0x38}, 0x1, 0x0, 0x0, 0x4004051}, 0x20000014) [ 3227.729404][T32435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3227.737797][T32435] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3227.746171][T32440] CPU: 1 PID: 32440 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3227.756398][T32440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3227.766436][T32440] Call Trace: [ 3227.769715][T32440] dump_stack+0x18e/0x1de [ 3227.774035][T32440] should_fail+0x5d8/0x740 [ 3227.778438][T32440] ? alloc_vfsmnt+0x24/0x440 [ 3227.783011][T32440] should_failslab+0x5/0x20 [ 3227.787500][T32440] kmem_cache_alloc+0x36/0x290 [ 3227.792250][T32440] alloc_vfsmnt+0x24/0x440 [ 3227.796646][T32440] vfs_create_mount+0x6f/0x390 [ 3227.801393][T32440] do_mount+0x1fae/0x2390 [ 3227.805789][T32440] ? copy_mount_options+0xc9/0x300 [ 3227.810883][T32440] ksys_mount+0xc2/0xf0 [ 3227.815023][T32440] __x64_sys_mount+0xb1/0xc0 [ 3227.819601][T32440] do_syscall_64+0xcb/0x1e0 20:01:04 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 30) [ 3227.826344][T32440] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3227.832216][T32440] RIP: 0033:0x7f2023c52a39 [ 3227.836612][T32440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3227.856197][T32440] RSP: 002b:00007f20219c9188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3227.864595][T32440] RAX: ffffffffffffffda RBX: 00007f2023d55f60 RCX: 00007f2023c52a39 [ 3227.872574][T32440] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3227.880531][T32440] RBP: 00007f20219c91d0 R08: 0000000000000000 R09: 0000000000000000 [ 3227.888490][T32440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3227.896442][T32440] R13: 00007ffdedaeea5f R14: 00007f20219c9300 R15: 0000000000022000 [ 3227.904406][T32430] CPU: 0 PID: 32430 Comm: syz-executor.5 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3227.909650][T32452] FAULT_INJECTION: forcing a failure. [ 3227.909650][T32452] name failslab, interval 1, probability 0, space 0, times 0 [ 3227.914629][T32430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3227.914632][T32430] Call Trace: [ 3227.914648][T32430] dump_stack+0x18e/0x1de [ 3227.914665][T32430] should_fail+0x5d8/0x740 [ 3227.949207][T32430] ? alloc_vfsmnt+0x24/0x440 [ 3227.953774][T32430] should_failslab+0x5/0x20 [ 3227.958252][T32430] kmem_cache_alloc+0x36/0x290 [ 3227.962989][T32430] alloc_vfsmnt+0x24/0x440 [ 3227.967386][T32430] vfs_create_mount+0x6f/0x390 [ 3227.972124][T32430] do_mount+0x1fae/0x2390 [ 3227.976436][T32430] ? copy_mount_options+0xc9/0x300 [ 3227.981525][T32430] ksys_mount+0xc2/0xf0 [ 3227.985665][T32430] __x64_sys_mount+0xb1/0xc0 [ 3227.990231][T32430] do_syscall_64+0xcb/0x1e0 [ 3227.994709][T32430] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3228.000671][T32430] RIP: 0033:0x7fecccaeda39 [ 3228.005071][T32430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3228.024644][T32430] RSP: 002b:00007fecca864188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3228.033026][T32430] RAX: ffffffffffffffda RBX: 00007fecccbf0f60 RCX: 00007fecccaeda39 [ 3228.040989][T32430] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000 [ 3228.048946][T32430] RBP: 00007fecca8641d0 R08: 0000000000000000 R09: 0000000000000000 [ 3228.056893][T32430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3228.064842][T32430] R13: 00007ffcc4dbc67f R14: 00007fecca864300 R15: 0000000000022000 [ 3228.072794][T32452] CPU: 1 PID: 32452 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3228.083010][T32452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3228.093049][T32452] Call Trace: [ 3228.096326][T32452] dump_stack+0x18e/0x1de [ 3228.100653][T32452] should_fail+0x5d8/0x740 [ 3228.105060][T32452] ? blk_alloc_flush_queue+0xdf/0x230 [ 3228.110422][T32452] should_failslab+0x5/0x20 [ 3228.114921][T32452] __kmalloc+0x5f/0x2f0 [ 3228.120193][T32452] ? blk_alloc_flush_queue+0x7e/0x230 [ 3228.125903][T32452] blk_alloc_flush_queue+0xdf/0x230 [ 3228.131139][T32452] blk_mq_realloc_hw_ctxs+0x873/0x1440 [ 3228.136589][T32452] blk_mq_init_allocated_queue+0x4d8/0x16e0 [ 3228.142470][T32452] ? blk_alloc_queue_node+0x4e0/0x570 [ 3228.147826][T32452] blk_mq_init_queue+0x48/0xa0 [ 3228.152574][T32452] loop_add+0x256/0x710 [ 3228.156713][T32452] ? radix_tree_lookup+0x1c0/0x1d0 [ 3228.161806][T32452] loop_control_ioctl+0x468/0x680 [ 3228.166821][T32452] ? xor_init+0x60/0x60 [ 3228.170964][T32452] do_vfs_ioctl+0x6fb/0x15b0 [ 3228.175552][T32452] __x64_sys_ioctl+0xd4/0x110 20:01:04 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x309440, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/class/bluetooth', 0x88040, 0x44) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000000, 0x12, r1, 0x8000000) syz_io_uring_setup(0x4b93, &(0x7f0000000100)={0x0, 0x47f, 0x1, 0x2, 0x289}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITE={0x17, 0x4, 0x1000, @fd_index=0x9, 0x7b5a8d79, &(0x7f0000000200), 0x0, 0x2}, 0x1) fspick(r1, &(0x7f0000000280)='./file0\x00', 0x1) r4 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xc00, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3228.214604][T32452] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3228.223000][T32452] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:04 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 7) [ 3228.230959][T32452] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3228.238938][T32452] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3228.246894][T32452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3228.254855][T32452] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3228.294372][T32460] FAULT_INJECTION: forcing a failure. [ 3228.294372][T32460] name failslab, interval 1, probability 0, space 0, times 0 [ 3228.313445][T32460] CPU: 1 PID: 32460 Comm: syz-executor.4 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3228.323692][T32460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3228.333737][T32460] Call Trace: [ 3228.337021][T32460] dump_stack+0x18e/0x1de [ 3228.341345][T32460] should_fail+0x5d8/0x740 [ 3228.345751][T32460] ? get_mountpoint+0x20a/0x3f0 [ 3228.350587][T32460] should_failslab+0x5/0x20 [ 3228.355078][T32460] kmem_cache_alloc_trace+0x39/0x2b0 [ 3228.360351][T32460] get_mountpoint+0x20a/0x3f0 [ 3228.365011][T32460] lock_mount+0xc0/0x2f0 [ 3228.369240][T32460] do_add_mount+0x25/0x480 [ 3228.373640][T32460] ? _raw_spin_unlock+0x49/0x60 [ 3228.378523][T32460] ? vfs_create_mount+0x33f/0x390 [ 3228.383539][T32460] do_mount+0x1ffe/0x2390 [ 3228.387855][T32460] ? copy_mount_options+0xc9/0x300 [ 3228.392956][T32460] ksys_mount+0xc2/0xf0 [ 3228.397092][T32460] __x64_sys_mount+0xb1/0xc0 [ 3228.401663][T32460] do_syscall_64+0xcb/0x1e0 [ 3228.406153][T32460] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3228.412025][T32460] RIP: 0033:0x7f2023c52a39 [ 3228.416426][T32460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3228.436014][T32460] RSP: 002b:00007f20219c9188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 20:01:04 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:04 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(0xffffffffffffffff, 0x80084503, &(0x7f0000000140)=""/175) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$UI_DEV_CREATE(r1, 0x5501) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80000) 20:01:04 executing program 2: getresuid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x8001, 0xa, &(0x7f0000000680)=[{&(0x7f0000000800)="9f28a77e12d2e1ff6824eb70dfd83ea6d78bb26d9ac48cf26c2fe48992d61f15846365e770387605ce0aba3a206b3c2fe0a4dc6e", 0x34, 0x7}, {&(0x7f0000000840)="3818cd63c111b8c0f166d53742b9e58e3a4e5939182e3f5abd2eb547e610ef496ee9e11267268b27342c180085bbc1481426617089f5e741dd46ebe8e70f2cb52081b413c5d12c82901f2f5fb1d688086f66ed1ff4822b80f4586cc1", 0x5c, 0x6}, {&(0x7f00000008c0)="c7fdb4e6c376897624b92e33b83cfbe7ae7b184b523945648e4d61d9bca7cf2db3a167657c88744553fd996f227ba4b2ed657783fd65f0e42bee264a4f864b292b13795d6dcf2033b49fa0441d40d5fd3b81bcbccbf3d00c2fe8112428a7a3ebcae6158e08491fd25d3dc3c0b64fd6779be0d2e296511d83ba617110d1f03a14a0369d89c95b71189054c5d6a4649e5ac3ae55d2ed7e1f177b8f298d56d4b3715492040600d548084da2dc26844cf72b03ee2cd0d74e6b4d057a53c2888b8030aef199ab1613ec6c9a52597bcd7d1a2ff7e6d87f0841dc553cfdb2ef8c82a33647e509badb2c", 0xe6, 0x7ff}, {&(0x7f0000000300)="7966429cb413320d6b56f4786d9f293542ec5c0056d261397ab218f321f9b07111583e003b92abbab0d736c05b8e3d5910caa71326d63d2ee296eb7d342189faeb7ede35182c968cdec784b8bde5644fa12cc97fd6eecfc4d53c18c375df7dafa8749f23c9ff66563a7ea889fb58c8ace55fccac5e2eaeab2a2ce7804be69a", 0x7f, 0x4}, {&(0x7f0000000380)="0cc03ad1a602365c0e5a6cde10c723fbaa127e27e9fee1a98c8331ffd24b08e829f54e9965edd32054bc3a435d3eb9c20e6a99408e355f0e8dd1518a893f981cca990bf309e455add41eb3c0b25c82fd9c787d5ac3de9a40145a0069210cb28f5ebdfb65548d797a77b9ae434b4f6648945f3877855c380057f4b2ddbf4b3b2099d863e645b89d30f687c6008a3dd0543cda8b7d29d578d5c415a521c49ba62d5e14a71476a5e68d2994fba32f5d15bff511a12110", 0xb5, 0x1}, {&(0x7f0000000440)="36e342067aae55dadec5d745208ab640149dacc7d67d160a2c8af15770110cc57bbf31ab", 0x24, 0x1}, {&(0x7f0000000480)="3b0364ffff00000e56e9c194a00bf4971314f7ac01071cb851c42eef4b462bef99827d8d3ecc75477cd392f2a3ef0a7e401b745c269cc928f8fd8731cc5eb26c725293208c5d50a3e9bf768a0bfb53ce288df00e1bb55cfe0445f1a515a43fde5ef1a254782879d0a0252ae07f638d", 0x6f, 0x2}, {&(0x7f0000000500)="5eb5339e3bcba1b5a80c82b07db98cf4d4267e647e0306e9d87c794d8398b9bc13bfa6aecc7a2331bd000b8a3082834684900f205d9a0e181252275efbb70f27e1985f8335ab781d9929474b142eafe99aad8cf8f433b924936c65cf6680b3a8b80f0ec05f70988d02b3a48c864f5e04de4a75a000552a3851ac728f77ddc781629e05db9aca216b25b09310442362305fbfcfba17585aabe46aa6fb5ef2889d7dbab5690f98d1cfee8b8291481936fcf39a9687dd5b85", 0xb7, 0x8}, {&(0x7f00000005c0)="f18d6da111fba980c168c53f97039054e4d6443dc81cc6869722983115fc4eece93943af70951ea438b72680b6a8d9d6a91ff35b5bc7f4a7b1d5df10856127ff62d39557e16849258a92e2b546a70f784e2de85d887ea623f5970341726f849e0d49", 0x62, 0x4}, {&(0x7f0000000640)="7083190baeac91258b0d9d49e646e845bc3d", 0x12, 0x9}], 0x2800000, &(0x7f0000000180)={[{}, {@nouser_xattr}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@uid_lt={'uid<', r0}}, {@audit}]}) recvmsg$unix(r2, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:04 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) utime(&(0x7f0000000080)='./file0\x00', &(0x7f0000000000)={0x0, 0x4}) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block', 0x501200, 0x48) sendmsg$nl_netfilter(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000140)={0x324, 0x12, 0x2, 0x104, 0x70bd25, 0x25dfdbfb, {0x3, 0x0, 0x5}, [@typed={0x8, 0x8d, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x8, 0x6b, 0x0, 0x0, @u32=0x1}, @nested={0xa3, 0x34, 0x0, 0x1, [@generic="8c59fdb703c98fcf3773a6d060593a2fa3a88bef2c8f6cb38021abd9ae94d5cf2cab2b9c406f423d6e1e0d0c3377c4ba24e1a7c37d1cafdd4510341bbe250225d109495e", @typed={0x14, 0x76, 0x0, 0x0, @ipv6=@private1}, @typed={0x8, 0x3a, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x4, 0x2}, @generic="969f2712b61e706e91f76b20d2a3cde6fb7217ed4b3af8e9fb5421ede7cac1d24d84aa516c5fed2395ff4a84afb2cb6994ad642f0b5f76637fc08f"]}, @generic="4e35186a3d7221b5b24f1b6f44176241ad747dfba402916a5d5e4cc2738d2e73a44a37ba0d82327be263ef421371f1e969d5470b6345532c2846eb3fe68f2cd411baf8b10212396d35d988e5b4640f9c672417d4cf4d669332924fa8761ae4be7505a436edd67b5f918a8ebc15660ff467852e4689850621eadbcf8ce59f0896ba583bb65b", @generic="3aec559ef8c1", @generic="fe08355ebc5ed27be705d34c54ce2efe0eaccb75ed27395f66d25983f85d19950281709c17b2ce9c78f8d46e19e40fc6a344cf0dd95e523aa016c2436f5611b963cb01ce9e9b9ec4c507850db0bde5f590f0318a87372a3bc0e7662b216dfc8a0c40977370e51552efce943815c8a673fac2b88c5972eecdd91c7f7593ff0ccb3e78d044b0ddc19209548b0888b6747e0991e549b0e6ae463dae62673b8d04d2b9a8b4b98abe51d5b8ba4972768df44e281409d29a2c104fb12b7ab4b7597274c54a267b732f28d785ea5a3935a7f26913414b646ebe81bfd8b5040f13f0", @nested={0x10, 0x45, 0x0, 0x1, [@typed={0x9, 0x48, 0x0, 0x0, @str='{(+*\x00'}]}, @generic="189f90b1abceaeed2b43948f5b74629b0ab73c47f2252e87393e507401dd54c9cb19527b2fd10cad6ad1ad1cc7b3f23ddfb567f27c2517868a5e68b0b49ddc6fe97d5cd2788b1436bc889c0a18fdba4b04263245eb2056cbe0e0d5cfe17e6fca6798667e189056db2f77ca5ca88295d1e6d69cd95cc4ecc09c2c8e405981704c705f8e5db1299f34def49741b242d52cb3dbf859ef83288c6b54cbdd32ac3bd0332479233a8811af242608a1dc20bd9c5a676d15db0b3b587e33747f361aeda0287c9514493da7a78c3088999d28e278f3f42f719c775566e60fe54ef6d81be00b"]}, 0x324}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 20:01:04 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 31) 20:01:04 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) (fail_nth: 8) 20:01:04 executing program 2: write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="2321202e2f667d6c65302027212b242540202f6465762f696e7075742f6576656e742300200a95d5587559c123ea6702439ad41fb2c872fb732adfaefdca76d9ff324e806ca556ea2dd100177483748607994cf9e6c25f59853b66a7bbe7a4b7951ad81872e2f2fbe3608afbe1d7b3d4e0d3753143813f6e500a44a3169f11268ed42579da992098e62ea9409289c880d4db46526f75f3a6e4197f010b36b930e625649e9438cf936ccf2fd794fd02a8cafb8d9eb7d1cbdec78bd6d1606dccfee53c1813d00000"], 0xc7) utime(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x9, 0x9}) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:04 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x2, 0x70bd25, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc050}, 0x800) [ 3228.444411][T32460] RAX: ffffffffffffffda RBX: 00007f2023d55f60 RCX: 00007f2023c52a39 [ 3228.452368][T32460] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 3228.460328][T32460] RBP: 00007f20219c91d0 R08: 0000000000000000 R09: 0000000000000000 [ 3228.468283][T32460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3228.476239][T32460] R13: 00007ffdedaeea5f R14: 00007f20219c9300 R15: 0000000000022000 20:01:04 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x101840, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', 0x1}, 0x10) 20:01:04 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:04 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:04 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x68200, 0x0) [ 3228.532229][T32473] FAULT_INJECTION: forcing a failure. [ 3228.532229][T32473] name failslab, interval 1, probability 0, space 0, times 0 [ 3228.594659][T32473] CPU: 0 PID: 32473 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3228.604900][T32473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3228.614944][T32473] Call Trace: [ 3228.618243][T32473] dump_stack+0x18e/0x1de [ 3228.622566][T32473] should_fail+0x5d8/0x740 [ 3228.626968][T32473] ? __alloc_disk_node+0x76/0x5a0 [ 3228.631979][T32473] should_failslab+0x5/0x20 [ 3228.636469][T32473] kmem_cache_alloc_trace+0x39/0x2b0 [ 3228.641756][T32473] __alloc_disk_node+0x76/0x5a0 [ 3228.646593][T32473] loop_add+0x323/0x710 [ 3228.650735][T32473] loop_control_ioctl+0x468/0x680 [ 3228.655740][T32473] ? xor_init+0x60/0x60 [ 3228.659886][T32473] do_vfs_ioctl+0x6fb/0x15b0 [ 3228.664467][T32473] __x64_sys_ioctl+0xd4/0x110 [ 3228.669123][T32473] do_syscall_64+0xcb/0x1e0 [ 3228.673611][T32473] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3228.679490][T32473] RIP: 0033:0x7f145855da39 [ 3228.683893][T32473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3228.703660][T32473] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3228.712060][T32473] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3228.720027][T32473] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3228.727982][T32473] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3228.735934][T32473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x7fffffff, 0x20) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000008c0), 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000040)={0x10, 0x0, {0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0}}, {0x0, 0x0, 0x0, {}, {}, @rumble}}) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/dm_snapshot', 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000001140)={0xf, 0x1f, {0x56, 0x5, 0x4, {0x6, 0x3}, {0x5, 0x2}, @ramp={0x0, 0x400, {0x0, 0x7, 0x3ff, 0x8}}}, {0x53, 0xfffe, 0x3, {0x400, 0x2}, {0x2, 0x9}, @rumble={0x9, 0x1}}}) ioctl$EVIOCRMFF(r2, 0x40044581, &(0x7f00000000c0)) syz_io_uring_setup(0x44b9, &(0x7f00000011c0)={0x0, 0x4518, 0x2, 0x0, 0x23b, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000001240), &(0x7f0000001280)=0x0) syz_io_uring_submit(0x0, r4, &(0x7f00000012c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2}, 0x1f) recvmsg$unix(r2, 0x0, 0x2180) ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000000140)=""/4096) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_SET_MSCBIT(r3, 0x40045568, 0x2e) ioctl$UI_GET_SYSNAME(r5, 0x8040552c, &(0x7f0000000080)) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x2, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 0: sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="a2179107eb130000000000000000000000005c9f14e10e771f0dcaba45b6bd6c0b90046b3a689fabbb116332a2feb3c2e302ffdfc335dc51069b3438e9a816d478b87d9cdf52145ce7fbb799509a9136131defbb997886f172ad6aee9f82dd827e351b36c0cdf224e8c7bca8f229145508e5205d7538765ebbeccc", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x190}, 0x810) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3228.743898][T32473] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:05 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 32) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x4, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_GET(r0, &(0x7f0000000440)={&(0x7f0000000080), 0xc, &(0x7f0000000580)={&(0x7f00000007c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000126bd706746dbdf25030400000000b72c2ba61d353dbfe380a08c668ffc7f0900fe8000000000581fb56adcfc8df90000000000006037000b"], 0x28}, 0x1, 0x0, 0x0, 0x2}, 0x44884) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x8000, 0x21) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x90a01, 0x0) ioctl$EVIOCRMFF(r3, 0x40044581, &(0x7f00000003c0)=0x8001) syz_open_dev$evdev(&(0x7f0000000680), 0x2, 0x80) r4 = openat(r2, &(0x7f0000000240)='./file0\x00', 0x4040, 0x1c4) r5 = syz_open_dev$loop(&(0x7f0000000480), 0x1000000000004, 0x2) ioctl$LOOP_SET_STATUS(r5, 0x4c02, &(0x7f00000004c0)={0x0, {}, 0x0, {}, 0x6, 0x0, 0x1, 0x8, "6ec2e6631c4e1a825afce4d6fa6bb7c2041037d2d521b7c049fbe1b7491a068cd5533b6efda42e23bc6d594bfdd0db8e9113c2c1b6818bfb5feda69019c53958", "256c07c94b72753596b5f1497238d127b8b460ce31a218a82aae18b266c74444", [0x80, 0xce]}) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r6, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, 0x0, 0x2c, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x20}}, 0x810) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r8, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x2c, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0xc9}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x20}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040}, 0x4) syz_genetlink_get_family_id$fou(&(0x7f0000000200), r4) sendmsg$GTP_CMD_GETPDP(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c000000b499f5469f0fb507efe62d590578564689f73e78ce482bcb75f80ef313887a9f1bbeafa2b25e11a73e27319d8ab2a4dba10d2c0c482477f5e4c7cae255d74eda0cc6818e43690caf6b0b992425329a07a6a99167c10b46855bec2b30377bcf19abb04a987226e93171308479cb09368a94b3664c1db5b34448b36773f0138095aff07399f858fa0ff9468f419980e88ab0380f5db57b025a98098795ff5cfaefb1d80f663d614a1b1eb363fa153fc77d5fd3f69b075548b51b02a48a2329c0053348f1f67a471d664b23354fe7832b30c1724bc45de7777e45c5b4f610f0", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fedbdf25020000000c00030001000000000000000c0003000000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4008051}, 0xc0) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) move_mount(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x1) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:05 executing program 0: r0 = gettid() sched_getaffinity(r0, 0x8, &(0x7f0000000000)) r1 = gettid() sched_getaffinity(r1, 0x8, &(0x7f0000000000)) r2 = gettid() sched_getaffinity(r2, 0x8, &(0x7f0000000000)) wait4(r0, 0x0, 0x8, 0x0) ioctl$UI_SET_PROPBIT(0xffffffffffffffff, 0x4004556e, 0x19) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_io_uring_setup(0x4a38, &(0x7f0000000000)={0x0, 0x11f9, 0x8, 0x3, 0x2f6}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x9, &(0x7f0000000140)}, 0x1) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x8, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3228.847947][T32511] FAULT_INJECTION: forcing a failure. [ 3228.847947][T32511] name failslab, interval 1, probability 0, space 0, times 0 [ 3228.869597][T32511] CPU: 1 PID: 32511 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3228.879838][T32511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3228.889882][T32511] Call Trace: [ 3228.893168][T32511] dump_stack+0x18e/0x1de [ 3228.897493][T32511] should_fail+0x5d8/0x740 [ 3228.901913][T32511] ? __alloc_disk_node+0x319/0x5a0 [ 3228.907012][T32511] should_failslab+0x5/0x20 [ 3228.911509][T32511] kmem_cache_alloc_trace+0x39/0x2b0 [ 3228.916780][T32511] __alloc_disk_node+0x319/0x5a0 [ 3228.921704][T32511] loop_add+0x323/0x710 [ 3228.925888][T32511] loop_control_ioctl+0x468/0x680 [ 3228.930906][T32511] ? xor_init+0x60/0x60 [ 3228.935047][T32511] do_vfs_ioctl+0x6fb/0x15b0 [ 3228.939626][T32511] __x64_sys_ioctl+0xd4/0x110 [ 3228.944288][T32511] do_syscall_64+0xcb/0x1e0 [ 3228.948777][T32511] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3228.954654][T32511] RIP: 0033:0x7f145855da39 [ 3228.959052][T32511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3228.978647][T32511] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3228.987132][T32511] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x390, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack_sane', 0x28040, 0x6) mknodat(r0, &(0x7f0000000080)='./file0\x00', 0x2, 0x6) 20:01:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x309000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:05 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 33) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x392, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3228.995100][T32511] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3229.003059][T32511] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3229.011020][T32511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3229.018980][T32511] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x1020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3229.094994][T32529] FAULT_INJECTION: forcing a failure. [ 3229.094994][T32529] name failslab, interval 1, probability 0, space 0, times 0 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x1020, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 0: ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000040)={0xb, 0x7, {0x0, 0x1ff, 0x0, {0x0, 0x9f}, {0x4, 0x3}, @rumble={0x6, 0x9}}, {0x51, 0x2, 0x8001, {0x2, 0x3ff}, {0x1, 0x7f}, @period={0x0, 0x80, 0x0, 0x7, 0x1, {0x5, 0xfb02, 0x3e, 0xfff9}}}}) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x5f) r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="901758088d61425a31f5b8a22d7555937b5cb78e4b1a25fd6e53c85d26c3ab073c041d908935", 0x26, 0x9}, {&(0x7f0000000140)="07b8f45472b5019de59c629fc437631aa7bc7c76bb8a504dc7e7ee1db05519d8c2a1b87519775d97ceb7108de1bf8182b2cbe92f741bb2c03ea0d1d148e4b3f27bbbf6745e5ab7f5f199eacdd2d952c41444bba6e4c8d8b929c13f3960720b53b5e7c822ef66f83d151d9611df7e34788647a1", 0x73, 0x3eb}, {&(0x7f00000001c0)="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", 0xff, 0xf4b6}], 0x0, &(0x7f0000000340)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xf6c7}}, {@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xffffffffffff3d05}}], [{@uid_lt={'uid<', 0xee01}}, {@smackfsdef}, {@euid_lt={'euid<', 0xffffffffffffffff}}]}) write$binfmt_script(r1, &(0x7f0000000400)={'#! ', './file0', [{0x20, 'g*'}], 0xa, "a83e34a55ff86ebdfbb585497fd349da49feea6a309e73442d807f42"}, 0x2a) 20:01:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x2004}) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000000)=""/206) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x10, r1, 0x8000000) r3 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) connect$nfc_raw(r3, &(0x7f00000001c0)={0x27, 0x1, 0x0, 0x1}, 0x10) syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x2007, @fd=r0, 0x327c, 0x4, 0xffffffff, 0x8, 0x0, {0x1}}, 0x7) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000340)=0x2) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000640), 0x40, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r4, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x34, 0x2, 0x7, 0x201, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x20}, @NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x40001) sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f00000003c0)={0x1ec, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_KEY={0x198, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0xac, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x1c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x400}]}, @NL802154_KEY_ATTR_ID={0x70, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x5c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x800}]}, @NL802154_KEY_ATTR_ID={0x40, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "8fce9544529848e524998495257089a1ddc1fa7d5a8ae04435b923317aacebca"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "73eb0d402097640f33142b50d7c03bef"}]}, @NL802154_ATTR_SEC_KEY={0x34, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x81}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "e7d31e8a05e638f2a24a018f7502402f7fb412c5fb9a778aaecf650c83307b32"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x40844}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x1cc, 0x0, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVKEY={0x3c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x38, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVKEY={0x150, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x8c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2681}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xffffffff}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x50, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_ID={0x24, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x6}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xaf3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1ff}]}, @NL802154_DEVKEY_ATTR_ID={0x24, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x4}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}, @NL802154_DEVKEY_ATTR_ID={0x44, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x400}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x4004}, 0x4000000) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x2010, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3229.140981][T32529] CPU: 1 PID: 32529 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3229.151233][T32529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3229.161621][T32529] Call Trace: [ 3229.164901][T32529] dump_stack+0x18e/0x1de [ 3229.169221][T32529] should_fail+0x5d8/0x740 [ 3229.173622][T32529] ? rand_initialize_disk+0x4b/0xb0 [ 3229.178806][T32529] should_failslab+0x5/0x20 [ 3229.183302][T32529] kmem_cache_alloc_trace+0x39/0x2b0 [ 3229.188573][T32529] ? part_release+0xc0/0xc0 [ 3229.193063][T32529] ? percpu_ref_init+0x189/0x230 [ 3229.197988][T32529] rand_initialize_disk+0x4b/0xb0 [ 3229.203089][T32529] __alloc_disk_node+0x3f6/0x5a0 [ 3229.208019][T32529] loop_add+0x323/0x710 [ 3229.212171][T32529] loop_control_ioctl+0x468/0x680 [ 3229.217183][T32529] ? xor_init+0x60/0x60 [ 3229.221333][T32529] do_vfs_ioctl+0x6fb/0x15b0 [ 3229.225912][T32529] __x64_sys_ioctl+0xd4/0x110 [ 3229.230577][T32529] do_syscall_64+0xcb/0x1e0 [ 3229.235068][T32529] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3229.240946][T32529] RIP: 0033:0x7f145855da39 [ 3229.245346][T32529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3229.264933][T32529] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3229.273330][T32529] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3229.281289][T32529] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x4000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x2010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x495aed58, 0x4, &(0x7f00000003c0)=[{&(0x7f00000000c0)="8fd28041e1c9a92fec21fa2c2cd9c6b7de3aeff94f382b47b2539b0934b9e28452890b320793f823868414520f5334d60e484f7fec9b1a82ead140f8ff2dde2e75b025378b4eb2b9674a312b58b916518e62eac2382fd047348f3799909c6cd5733c793d10e2074c1127aaac9ba2de312046bed133c3230fa375a8cb126c72fffdf63076c6849d20b19f675072d238f993434841e04cb39884c81675d12b6406518f6136607cd7da88a10fbd54399bbce18a98fdc1d32f1bc8152b1d9fc897e33f43d05773d040c5142dabe8f0e4763e637c789d7cf0d27dd31530952e85d5e0c27a3ec81d8caf627f8f1d30d39397fefdce", 0xf2, 0x1}, {&(0x7f00000001c0), 0x0, 0x80}, {&(0x7f0000000200)="e67cfbc0b475c1e35e4410e0a7869392228ba57d6a01aeaac849ad4d0d6c507ce6e8fefa58f449cbf1ebc67e018eda31d176e8bf8092726e1195d159a79ffaa81327806f575e1bc41555860e57c585fb848066a2233a52089f059ecbbd1e90903af709df8948ae168a270b8af0ea5ff45a0c131d969091a5764602f045ec08ce70e298385f8920404ee982b1cacb1ca7203cce4ef52fafaf82cbd34804e35509605115b92c7a73f79407da6a9a83ef066b6dfaaece50f8c135fa", 0xba, 0x3}, {&(0x7f00000002c0)="bfbd31b26d607981da13270a03c369416c0675d189138cdddc68755f41290d8e0d408894db12c6338f0f05624a8e399c1acd26cc6cbe4a689bd41c16c6de059ec888a3069615023cd2520ebbf3ba3904f67c87746f15561e5cf22d54bd07f4f9f5c6117101fdcb52067d53ad06da0d779b6e477a2b3e2414f0d530ae9f021e5f51f52abadca6e9f80be1a4935763bd4b0e552b294a645fe7e172f500e697063d654910d20f5c4d34cbde64839c597f898a3035263b9c4920bfe1ed0f42746a27619f0c401d15a6f7859936c65435574e5c7eb3bb4a5b60", 0xd7, 0x2}], 0x8000, &(0x7f0000000440)={[{@usrquota={'usrquota', 0x3d, ','}}, {@nobarrier}, {@grpjquota={'grpjquota', 0x3d, '(%,\\'}}], [{@context={'context', 0x3d, 'staff_u'}}, {@dont_measure}]}) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3229.289330][T32529] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3229.297290][T32529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3229.305253][T32529] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:05 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 34) 20:01:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x1, 0x7, 0x1dca2298dd79d14b, 0x0, 0x0, {0x5}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x9e7}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000800) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2001, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x9003, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x9203, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x129a40) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:05 executing program 0: recvmsg$unix(0xffffffffffffffff, &(0x7f0000003740)={&(0x7f0000002500), 0x6e, &(0x7f0000003680)=[{&(0x7f0000002580)=""/4096, 0x1000}, {&(0x7f0000003580)=""/196, 0xc4}], 0x2, &(0x7f00000036c0)=ANY=[@ANYBLOB="38000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="2000040000000000002cba0000000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x78}, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '-%%{&.:\'\\'}, {}], 0xa, "7c804e8170bc626b76130fce333f4afff36348709584ef4b95a0aea7e8c930c694d8f2ef624abd8b2df8e25faadede98cb6ae6f9ccdb3665333904a4f8f5b4ceba1f321b62a517f5d2c11cb475f82f267030e2343c6099d5ba0a4cc672eab2e84ddd99b4f1f3941fbba6e6baef933dd0312844d5537f8d8abe59604e46036bbbfff1ebdb24d31f379d04359d9e7dc9"}, 0xa5) setregid(r2, 0xee01) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x1}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x100000001, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xedc0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xedc0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x40000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x1, 0x90000) ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1, 0x1) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_DEV_DESTROY(r1, 0x5502) syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff) [ 3229.442351][T32561] FAULT_INJECTION: forcing a failure. [ 3229.442351][T32561] name failslab, interval 1, probability 0, space 0, times 0 [ 3229.481318][T32561] CPU: 0 PID: 32561 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3229.491555][T32561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3229.501595][T32561] Call Trace: [ 3229.504876][T32561] dump_stack+0x18e/0x1de [ 3229.509287][T32561] should_fail+0x5d8/0x740 [ 3229.513699][T32561] ? blk_mq_init_tags+0x74/0x290 [ 3229.518625][T32561] should_failslab+0x5/0x20 [ 3229.523113][T32561] kmem_cache_alloc_trace+0x39/0x2b0 [ 3229.529018][T32561] ? mutex_unlock+0x19/0x40 [ 3229.533509][T32561] blk_mq_init_tags+0x74/0x290 [ 3229.538268][T32561] ? blk_mq_hw_queue_to_node+0xeb/0x100 [ 3229.543891][T32561] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3229.548902][T32561] blk_mq_init_sched+0x1d6/0xb10 [ 3229.553859][T32561] elevator_init_mq+0x2cd/0x3f0 [ 3229.558698][T32561] __device_add_disk+0x87/0x1220 [ 3229.563633][T32561] ? loop_add+0x380/0x710 [ 3229.568039][T32561] loop_add+0x554/0x710 [ 3229.572185][T32561] loop_control_ioctl+0x468/0x680 [ 3229.577459][T32561] ? xor_init+0x60/0x60 [ 3229.581606][T32561] do_vfs_ioctl+0x6fb/0x15b0 [ 3229.586188][T32561] __x64_sys_ioctl+0xd4/0x110 [ 3229.590850][T32561] do_syscall_64+0xcb/0x1e0 [ 3229.595345][T32561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3229.601224][T32561] RIP: 0033:0x7f145855da39 [ 3229.605629][T32561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3229.625221][T32561] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3229.633628][T32561] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:05 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 35) 20:01:05 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x40000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:05 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x180000000000001, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:05 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x8201, 0x0) ioctl$UI_BEGIN_FF_ERASE(r2, 0xc00c55ca, &(0x7f0000000240)={0x3, 0xffff, 0x7ff}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200014, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@aname={'aname', 0x3d, '%],&%}!'}}, {@access_user}], [{@appraise_type}, {@smackfshat}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@euid_lt}, {@smackfsfloor={'smackfsfloor', 0x3d, '}[@&.}'}}]}}) 20:01:05 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x1fffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:05 executing program 3: recvmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000000), 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000080)=""/116, 0x74}, {&(0x7f0000000140)=""/164, 0xa4}, {&(0x7f0000000840)=""/176, 0xb0}, {&(0x7f00000002c0)=""/18, 0x12}, {&(0x7f0000000300)=""/120, 0x78}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/186, 0xba}, {&(0x7f00000004c0)=""/168, 0xa8}, {&(0x7f0000000580)=""/34, 0x22}], 0x9, &(0x7f0000000680)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x138}, 0x1) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000000800)) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$BLKROGET(r1, 0x125e, &(0x7f0000000240)) r2 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r2, 0x80004508, 0x0) [ 3229.641590][T32561] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3229.649560][T32561] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3229.657529][T32561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3229.665488][T32561] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3229.679897][T32561] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x1000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x1fffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x28140, 0x2) ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0xf) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x5729, 0x684401) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x9) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001440), 0x8) ioctl$UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f00000013c0)={0x1, 0x0, 0x7a}) socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$ION_IOC_HEAP_QUERY(r2, 0xc0184908, &(0x7f0000000180)={0x34, 0x0, &(0x7f0000000140)}) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) ioctl$ION_IOC_HEAP_QUERY(r3, 0xc0184908, &(0x7f0000000200)={0x34, 0x0, &(0x7f00000001c0)}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) bind$nfc_llcp(r4, &(0x7f0000000040)={0x27, 0x0, 0x2, 0x6, 0x7f, 0x8, "932c327ebcbd3b6d3fcb872d733f7fb99c78b68e7d7ec6644383c9a883be3a648d5fa874006212db2d8632bb34b3f68981450d79a7052fc70cf0c9dc471a60", 0x2}, 0x60) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001400), 0x232a40, 0x0) ioctl$UI_DEV_DESTROY(r5, 0x5502) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x2000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301b41, 0x0) 20:01:06 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000180)={'#! ', './file0', [{0x20, '/dev/input/event#\x00'}], 0xa, "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"}, 0x101e) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="00000001dcdf250b00000005003300000000007ba25e1c0ca036b6dc3e78b95f91be8763128db53db6cf6c000000"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40) bpf$LINK_DETACH(0x22, &(0x7f0000000000), 0x4) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) [ 3229.801365][T32611] FAULT_INJECTION: forcing a failure. [ 3229.801365][T32611] name failslab, interval 1, probability 0, space 0, times 0 [ 3229.827010][T32611] CPU: 0 PID: 32611 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3229.837253][T32611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3229.847295][T32611] Call Trace: [ 3229.850671][T32611] dump_stack+0x18e/0x1de [ 3229.854998][T32611] should_fail+0x5d8/0x740 [ 3229.859412][T32611] ? sbitmap_init_node+0x145/0x3d0 [ 3229.864514][T32611] should_failslab+0x5/0x20 [ 3229.869007][T32611] __kmalloc+0x5f/0x2f0 [ 3229.873156][T32611] sbitmap_init_node+0x145/0x3d0 [ 3229.878087][T32611] sbitmap_queue_init_node+0x2f/0xbe0 [ 3229.883445][T32611] ? kmem_cache_alloc_trace+0x139/0x2b0 [ 3229.888977][T32611] ? blk_mq_init_tags+0x74/0x290 [ 3229.893901][T32611] blk_mq_init_tags+0xef/0x290 [ 3229.898655][T32611] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3229.903674][T32611] blk_mq_init_sched+0x1d6/0xb10 [ 3229.908598][T32611] elevator_init_mq+0x2cd/0x3f0 [ 3229.913442][T32611] __device_add_disk+0x87/0x1220 [ 3229.918387][T32611] ? loop_add+0x380/0x710 [ 3229.922702][T32611] loop_add+0x554/0x710 [ 3229.926840][T32611] loop_control_ioctl+0x468/0x680 [ 3229.931849][T32611] ? xor_init+0x60/0x60 [ 3229.935991][T32611] do_vfs_ioctl+0x6fb/0x15b0 [ 3229.940573][T32611] __x64_sys_ioctl+0xd4/0x110 [ 3229.945234][T32611] do_syscall_64+0xcb/0x1e0 [ 3229.949723][T32611] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3229.955598][T32611] RIP: 0033:0x7f145855da39 [ 3229.959996][T32611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3229.979585][T32611] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3229.988160][T32611] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 20:01:06 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 36) 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x1000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x8000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x20000000000, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x1f) r1 = getpgrp(0xffffffffffffffff) r2 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000680), 0x2, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x7fffffff, 0x4, &(0x7f0000001800)=[{&(0x7f0000000740)="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", 0x1000, 0xfffffffffffffff8}, {&(0x7f0000001740), 0x0, 0x58f}, {&(0x7f0000001780), 0x0, 0x7}, {&(0x7f00000017c0)="76053e945ff33f3e64", 0x9, 0x80000001}], 0x20, &(0x7f0000001880)={[{@noacl}, {@acl}, {@nouser_xattr}], [{@measure}]}) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000001ec0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001e80)={&(0x7f00000018c0)={0x5b4, 0x2, 0x4, 0x101, 0x70bd27, 0x25dfdbfd, {0x2}, [@generic="c24e135dd77f32cb172192f755158aa0b82887c86c808385b3cefb5f8736dc28f00a85826f4171b9e6d89a1583bc7ab2bc04378d606f25b7d57637d2b2ffdc7c458cdc04ff372a0dc65e6be5a61ce101296790017bcdfba509a596f92b01c5cf9a6d63ff284adac3da99fc630c33587d7bf61726f08059b8ee486dab21100ae8711e276fda662af77df594ff7c72da86f74b7adac124769c5526aaa817eccdc055ef123de7dd8fe7f43e01", @typed={0x8, 0x6, 0x0, 0x0, @pid=r1}, @typed={0x16, 0x14, 0x0, 0x0, @str='/dev/input/event#\x00'}, @nested={0x161, 0x2e, 0x0, 0x1, [@generic="aa78da33b7e42569561fc7405f237bfb3176f0311be62e3a5a45391256cc3c04b8923ccf1cb4c7120a0fda28838066c14ef92043b242adaff9e1d7b3313791941ee106fe526f107c67327dc7cbaca12760ce44e49c2e01edd246fbe0474a41d7fac08fe66ec71940b06553fb8b6ab155eff74f0b437cfc072c80301f8a688bcba53f09332638924877", @typed={0x4, 0x8f}, @generic="8da2c74d21992299d18ed4e1156a99bb5beeca3d31e29bcf3f87e6507247200a2313951aa84589f153aba4815c340e82bc81b635cea1e0520bf1c4d0f3386c03c6cff303f8e644184eaa98ab412cbeaeee472267a70dac8669376788f655947b2dbadf8b097ab4a89b4c914f9a2add119a8a1f13adae87e84da84de84a6c88b489bc1097a8cf00953bc1594a8c237d2a6298ffdd9f239d356dac05f21239bcfa3e71cb5ee3b0a750", @generic="6c8842329a59dac856d7042af7c15d879de2529d738efab585384e76afb44f94e4285c86810072c9"]}, @nested={0xc3, 0x4d, 0x0, 0x1, [@typed={0x8, 0x20, 0x0, 0x0, @u32=0xd04}, @generic="2eeafbaec91b2a0e5cbaee91d7ea634be9064102c5b206d09d6ed1f432c9c8ef95c7a37725cd0c16306856c952c9667cbc5faad884495da5a09d85192bbc0a299f42e09b1850a36d3ef6f3dba9261035ccd8cf0185c34c6613f3fa1149cdc51c5ce16e755440c32ef97f03de59604e859c947ba73943301bf35942eca9192e5248502a2fe1b98969f620cf485862a0d2419d86ddc0ae112aeab658f56cb71ba0c70c9cc7aae0b69186fc10c3537680", @typed={0x8, 0x40, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x41}, @nested={0x2a7, 0x4c, 0x0, 0x1, [@generic="3ab253bd042a5bdb365dc73234a0247a6120b08a3ec330f9a2eb0372d9", @generic="636ee263db8ba35f04019efb7716fc99f2da085c16f1a62e47e817072ed50caee717e7afa9eef258af5e5ce1e4288b2008a29b1aacb94a1972bf385bb10504797d30092850bf6ac53e4fd7d4291327cfe11544f1d93ebee508b070329c61397fb90fa096c15f6b66e7b62e6f425669ab5cea556dce1c8b42ea55dc1c61f8ab8b5125166dd807525fb7449cfccfb03eed97ebb3a2867e260381244c8e4aadb4e77e2eb1854bf8649d60b916b73573ec0c753f7543332afb832cd0eeb659cbbd41475178595c3073515d36d9a5848d7ec8492b10ee27f632efb8f308b66b13fd12edd73a7dff21d5fc7500a51f373936fd9a6515ebbd", @generic="796bca733826b35e365b5e21559ca6e1a0f240199b46d6bb28fdc7bc2c3263a889fcc3fb8215f84e37666803119c29f4a5f79c679c13fd683468185a784955336b1a80f2f6836027502c1e1050841983da38e98df2cfb540244f7876eba9c51af4294b869e443e362b9b04d5c8c3a109ce0ef172f84f67091c27e094c88a28", @generic="5aa694106380dcc5401fc0978307ff49ffb5a0ab56512beeaa2f9895127cfef92538141f54ab2c8ede8e4bac8e5ccf59f44e140df91afa7228c3ce19bd80fa41278b0b76361b06f443539d93798020c14b96f09cfbd935a1936503765ec59aad6009863d17e8bf69fa594689970530567ae677192528fda42f2fe9b63d76c3829c6cc918f0c7839675d83f33621404f85d0d3a24d988a8d5d8038c2c45351ff9e67dfd39b2f1328b05aa416d636f63", @typed={0x8, 0x42, 0x0, 0x0, @fd=r3}, @generic="33be553f37cb1bcd471f9b69240814af82b8fc69864bc41ca421d288ed4de06d7001933b1fc53f0b8b4c4c8314abff26932b63b269a98109284e1f60bde2a0be10c7445172e89b2e20f636781fef1736d62035a2e513e60ea7a22a"]}]}, 0x5b4}, 0x1, 0x0, 0x0, 0x10000040}, 0x20000010) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:06 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x61002010}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x50}}, 0x804) recvmsg$unix(r0, 0x0, 0x0) io_uring_setup(0x216d6, &(0x7f0000000080)={0x0, 0x1d89, 0x1, 0x1, 0x16d, 0x0, r0}) 20:01:06 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/cdc_ncm', 0xd0280, 0x110) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x3da7) [ 3229.996118][T32611] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3230.004078][T32611] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3230.012121][T32611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3230.020084][T32611] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3230.030723][T32611] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x2000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0x1d0) 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x8000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000003c0)=""/231, 0xe7}, {&(0x7f00000004c0)=""/140, 0x8c}, {&(0x7f0000000580)=""/67, 0x43}], 0x3, &(0x7f00000006c0)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}, 0x40012060) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x2) sendmsg$nl_netfilter(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x254, 0x10, 0x3, 0x5, 0x70bd2c, 0x25dfdbfb, {0x6, 0x0, 0x3}, [@generic="399c9d7384a443886ddd6876bb0f074618422891150515154d4a8d034e87f2cbe480100a1bf94195fee42f23408fb1bbe499f8cab9235b905e4a719222a275a92f268abb1581d56d9cf52fd2fcbb548fbc8781d30f906baf2b5a8bff9f6fa27bf15f4ad13e2411cd89887812541f85b1eb48e62763c009c00ebbaf9b8f4093c33569c1d4a982e2c187d543140eee92d855be08bc1ef2c54bab50b376236976d2", @nested={0x195, 0x14, 0x0, 0x1, [@generic="12dc64198878147d76474fcbd652bf253fd964b71ef89c4e3e3aee841f93352ecdb670b82c8d3ba0ac9d64d36b4c58df336fa2c7d00ba4e8341f907c30757aca6ccdd5c99b2d8ea27c48fba420d3b572f5b3498ad6d958ff6148833eb5c892d7468dc37b1be543b480f9751bca69ec21860129db3cc98f149978f4b7c56413fa6b219018ed5d9c17aeaea820a35fdc5a27dc77c0a3c2de6b38909799ded3bc15e5743578eb6840bd16da3a906fea8215", @generic="896415885003f8f1912439f2aa06045775850299f766250ee0568bcade67df9bc377f1cdd3", @generic="3cc32bb1e10e5510be134126537d827cf1b8e3e8392286f6c861212753a724f1ae3219f5", @typed={0x8, 0x24, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="463cee5cd7492046cc337c823f98e9a155bf", @generic="fb88403d5af66308da4a636871b4cd759b302bb0d1d50dac76185f9b91297e82c55f87b6a9db5af72193ed107ec65faa5f6cc0102648df9e5c6cf3a1a0854f36272f039bf573eb6b3a4f17f2446102e92b99593101cd85791c0f210ceba46a61ab50cb00da64ea989e9bba94d5", @generic="d48d77e781854da31c", @typed={0x8, 0x80, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x2d}}]}, @typed={0x8, 0x9, 0x0, 0x0, @ipv4=@loopback}]}, 0x254}, 0x1, 0x0, 0x0, 0x8000}, 0x40) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x20100000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x40000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3230.133651][T32624] FAULT_INJECTION: forcing a failure. [ 3230.133651][T32624] name failslab, interval 1, probability 0, space 0, times 0 [ 3230.160081][T32624] CPU: 0 PID: 32624 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3230.170319][T32624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3230.180356][T32624] Call Trace: [ 3230.183638][T32624] dump_stack+0x18e/0x1de [ 3230.187957][T32624] should_fail+0x5d8/0x740 [ 3230.192363][T32624] ? sbitmap_queue_init_node+0x3db/0xbe0 [ 3230.198069][T32624] should_failslab+0x5/0x20 [ 3230.202663][T32624] kmem_cache_alloc_trace+0x39/0x2b0 [ 3230.207933][T32624] sbitmap_queue_init_node+0x3db/0xbe0 [ 3230.213378][T32624] blk_mq_init_tags+0xef/0x290 [ 3230.218132][T32624] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3230.223143][T32624] blk_mq_init_sched+0x1d6/0xb10 [ 3230.228066][T32624] elevator_init_mq+0x2cd/0x3f0 [ 3230.232902][T32624] __device_add_disk+0x87/0x1220 [ 3230.237825][T32624] ? loop_add+0x380/0x710 [ 3230.242138][T32624] loop_add+0x554/0x710 [ 3230.246282][T32624] loop_control_ioctl+0x468/0x680 [ 3230.251289][T32624] ? xor_init+0x60/0x60 [ 3230.255432][T32624] do_vfs_ioctl+0x6fb/0x15b0 [ 3230.260010][T32624] __x64_sys_ioctl+0xd4/0x110 [ 3230.264670][T32624] do_syscall_64+0xcb/0x1e0 [ 3230.269162][T32624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3230.275038][T32624] RIP: 0033:0x7f145855da39 [ 3230.279433][T32624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3230.299027][T32624] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3230.307430][T32624] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3230.315396][T32624] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3230.323390][T32624] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:06 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 37) 20:01:06 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000000)) 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x20100000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x8cffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x70100, 0x72) r1 = syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x3, 0x0, &(0x7f00000000c0), 0x140c00, &(0x7f0000000100)={[{@noinline_dentry}, {@six_active_logs}, {@inline_dentry}, {@nouser_xattr}, {@disable_ext_identify}, {@noacl}], [{@fsuuid={'fsuuid', 0x3d, {[0x35, 0x33, 0x37, 0x62, 0x65, 0x30, 0x35, 0x35], 0x2d, [0x64, 0x35, 0x65, 0x37], 0x2d, [0x63, 0x32, 0x33, 0x36], 0x2d, [0x65, 0x64, 0x30, 0x38], 0x2d, [0x65, 0x0, 0x37, 0x38, 0x2cb862eecd02f01, 0xb26791b376da9c23, 0x35, 0x39]}}}, {@fowner_gt={'fowner>', 0xee00}}, {@dont_measure}, {@uid_gt={'uid>', 0xee01}}, {@smackfsfloor={'smackfsfloor', 0x3d, '}[!'}}, {@dont_appraise}, {@smackfshat={'smackfshat', 0x3d, ',*&[#@-('}}, {@fowner_gt={'fowner>', 0xee01}}, {@dont_measure}]}) move_mount(r1, &(0x7f0000000240)='./file0\x00', r0, &(0x7f0000000280)='./file0\x00', 0x6) 20:01:06 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000000)={0x0, 0xffffffff, {0x51, 0x2, 0x400, {0x3789, 0x9}, {0xfffe, 0x5}, @rumble={0x6, 0x7}}, {0x55, 0x3ff, 0x9, {0xdae, 0xfffa}, {0x3f, 0x1}, @rumble}}) [ 3230.331345][T32624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3230.339395][T32624] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3230.349203][T32624] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x40000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x90030000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 2: sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fcdbdf250f00000008003c00ffffff7f050037000000000005002f00010000000a000900ffffffffffff0000050037000100000008000b00050000000500290000000000"], 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x4004440) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000240)=""/193) syz_open_dev$evdev(&(0x7f00000003c0), 0x8ebd, 0x800) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)={0x14, 0x12, 0x2, 0x5, 0x70bd27, 0x25dfdbfe, {0xc, 0x0, 0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x24058090) 20:01:06 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x18102, 0x11c) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='system.posix_acl_access\x00', &(0x7f00000000c0)=""/95, 0x5f) [ 3230.431472][T32653] FAULT_INJECTION: forcing a failure. [ 3230.431472][T32653] name failslab, interval 1, probability 0, space 0, times 0 [ 3230.467706][T32653] CPU: 0 PID: 32653 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3230.477943][T32653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3230.487988][T32653] Call Trace: [ 3230.491267][T32653] dump_stack+0x18e/0x1de [ 3230.495593][T32653] should_fail+0x5d8/0x740 [ 3230.500000][T32653] ? sbitmap_queue_init_node+0x3db/0xbe0 [ 3230.505623][T32653] should_failslab+0x5/0x20 [ 3230.510112][T32653] kmem_cache_alloc_trace+0x39/0x2b0 [ 3230.515388][T32653] sbitmap_queue_init_node+0x3db/0xbe0 [ 3230.520838][T32653] blk_mq_init_tags+0x153/0x290 [ 3230.525681][T32653] blk_mq_alloc_rq_map+0x93/0x1a0 [ 3230.530707][T32653] blk_mq_init_sched+0x1d6/0xb10 [ 3230.535637][T32653] elevator_init_mq+0x2cd/0x3f0 [ 3230.540476][T32653] __device_add_disk+0x87/0x1220 [ 3230.545403][T32653] ? loop_add+0x380/0x710 [ 3230.549719][T32653] loop_add+0x554/0x710 [ 3230.553874][T32653] loop_control_ioctl+0x468/0x680 [ 3230.558887][T32653] ? xor_init+0x60/0x60 [ 3230.563030][T32653] do_vfs_ioctl+0x6fb/0x15b0 [ 3230.567610][T32653] __x64_sys_ioctl+0xd4/0x110 [ 3230.572279][T32653] do_syscall_64+0xcb/0x1e0 [ 3230.576778][T32653] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3230.582649][T32653] RIP: 0033:0x7f145855da39 [ 3230.587056][T32653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3230.606732][T32653] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3230.615203][T32653] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3230.623173][T32653] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:06 executing program 3: prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x248022) fsopen(&(0x7f0000000740)='proc\x00', 0xfe1ee86db7647eeb) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat(r1, &(0x7f00000000c0)='./file0\x00', 0x400, 0xaa) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r2}, 0x8) recvmsg(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000001c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000240)=""/200, 0xc8}, {&(0x7f0000000340)=""/213, 0xd5}, {&(0x7f0000000440)=""/207, 0xcf}, {&(0x7f0000000540)=""/226, 0xe2}], 0x4, &(0x7f0000000640)=""/138, 0x8a}, 0x2000) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f0000000180)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) r4 = syz_genetlink_get_family_id$gtp(&(0x7f00000007c0), r2) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000800)) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000ac0)={'batadv0\x00', 0x0}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000bc0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x54, r4, 0x208, 0x70bd27, 0x25dfdbff, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}, @GTPA_LINK={0x8, 0x1, r5}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_VERSION={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_FLOW={0x6, 0x6, 0x2}, @GTPA_I_TEI={0x8, 0x8, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x48001}, 0x40000) 20:01:06 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_io_uring_setup(0x51a7, &(0x7f0000000080)={0x0, 0xcb1e, 0x1, 0x0, 0x2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000100)=0x0) utime(0x0, &(0x7f0000000340)) syz_io_uring_submit(0x0, r0, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x9, 0xffffffff, 0x0, 0x1, 0x3, 0x1}, 0x1) 20:01:06 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 38) 20:01:06 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x8cffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:06 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xffffffffffffff81, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080)="ffa1ace9640d5e711ecb00cc60e9aa75858ab4b332210075b688ef81ab778d0793cb2b11bed821e82ada4f75e625445af29f", 0x32, 0x8}], 0x4090, &(0x7f0000000140)={[{@mpol={'mpol', 0x3d, {'local', '=relative', @val={0x3a, [0x39]}}}}], [{@appraise}, {@fsname={'fsname', 0x3d, '!+-'}}, {@obj_type={'obj_type', 0x3d, '-%'}}]}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0x15) 20:01:06 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x80000, 0xc8) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{}, {0x20, '\x00'}, {}, {0x20, '%%\'@]'}, {0x20, '&\x92'}, {0x20, '$,'}, {}, {0x20, '{:).\''}], 0xa, "8c32c129412f93e6135b7ad6a0673562696d9569e839f7b720c5fb3bfccf9fb789821745d26f07992752909164c3bb6e935fb8494d3101427d7dceabb5a7b201d067daa0300cf8e37fa74b42d6ec798c211e77aa531751a597b7ed503ba0b999add14fffa0e550e766bf79f06cb781dac426b03dc985fecaafe144d3eb88933e99f501308f25ebe423bd362a80b6d44f9658d5a0416521"}, 0xb9) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140), 0x10000, &(0x7f0000000180)={[{@memory_recursiveprot}, {@memory_localevents}, {@subsystem='net_prio'}, {}, {@subsystem='hugetlb'}, {@memory_recursiveprot}, {@memory_recursiveprot}], [{@obj_role={'obj_role', 0x3d, '@'}}]}) 20:01:06 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xc0ed0000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:06 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000000)={0x6, &(0x7f0000000140)=[{@none}, {}, {}, {@none}, {@fixed}, {@none}]}) [ 3230.631129][T32653] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3230.639085][T32653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3230.647044][T32653] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3230.664087][T32653] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xf0ffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 2: sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x3, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x105000, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000040)=0x1ff) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001400), 0x8) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r2, &(0x7f00000015c0)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001580)={&(0x7f0000000340)=ANY=[@ANYBLOB="e00000000308010200000000000000000c0000002c0004800800014000000009080001400000003f0800014000000007080001400000800108000140000000030972d05ac9797a31000000003c000480080001400000000008000240000000060800024000000020f95830f053ca62e080ff08000240000000080800014000000008080002400000ffff0800024b00007a342400048008000140000000050800024000000003080002400000080008000140000000080c0004800800024000000cba0600024022eb00000900e6ff72797a3100000000050003003a0000000900010073797a3100000000f394f7bdbd91321bb6fec748ba82d974681ea0d63a96f45b38d79da45218cf7ad4a45393e1590bbf8f6155e0cda5f0a5f5077533ad3d492c009a4b4a931ecc39b41ce45015a876a26c67f0e72b9df67189082448014ccbc893c5081c4f29bc9900d0aba7ff18156affaf7aa72f2a297fb77a698ba3d2f378e9e6e36f2a2f09b1ef7bfc72efbaf99c7a055a7cb06c115b44d97782f5207af5d2b8fb7569bd85f7e262482db61f15e72b5c0826c2c48296a1d2a5d10bac2a497583daa35dc903b9f7fa1a963e704a002c00dc435da5ac38262d3bdf1f11ba048a57cd40d3ed8252e3e4bb3dc4ff59a3e70d06c1877eb4d0218643f7bb0a9542d40c1d10bb0e7bc94ff87e092c2326398e2a46"], 0xe0}, 0x1, 0x0, 0x0, 0x20400c4}, 0x20000080) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000080)={0x8, 0x495}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x92030000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3230.745338][T32685] FAULT_INJECTION: forcing a failure. [ 3230.745338][T32685] name failslab, interval 1, probability 0, space 0, times 0 [ 3230.768677][T32685] CPU: 0 PID: 32685 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3230.778907][T32685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3230.788950][T32685] Call Trace: [ 3230.792229][T32685] dump_stack+0x18e/0x1de [ 3230.796547][T32685] should_fail+0x5d8/0x740 [ 3230.800949][T32685] ? blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3230.806138][T32685] should_failslab+0x5/0x20 [ 3230.810627][T32685] __kmalloc+0x5f/0x2f0 [ 3230.814769][T32685] ? blk_mq_init_tags+0x209/0x290 [ 3230.819786][T32685] blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3230.824888][T32685] blk_mq_init_sched+0x1d6/0xb10 [ 3230.829814][T32685] elevator_init_mq+0x2cd/0x3f0 [ 3230.834652][T32685] __device_add_disk+0x87/0x1220 [ 3230.839579][T32685] ? loop_add+0x380/0x710 [ 3230.843899][T32685] loop_add+0x554/0x710 [ 3230.848045][T32685] loop_control_ioctl+0x468/0x680 [ 3230.853052][T32685] ? xor_init+0x60/0x60 [ 3230.857197][T32685] do_vfs_ioctl+0x6fb/0x15b0 [ 3230.861780][T32685] __x64_sys_ioctl+0xd4/0x110 [ 3230.866444][T32685] do_syscall_64+0xcb/0x1e0 [ 3230.870931][T32685] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3230.876802][T32685] RIP: 0033:0x7f145855da39 [ 3230.881201][T32685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3230.900787][T32685] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3230.909186][T32685] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3230.917146][T32685] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3230.925100][T32685] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3230.933143][T32685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xf6ffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r0, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x20000800) syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x200, 0xa, &(0x7f0000001840)=[{&(0x7f0000000200)="9d6eda577d668efb69929adc82a0ad7bdd1b6bdae6a12cf72373a0e0f6db5256b6f238f32ba65d0b0b9e66717a9e54407b4b3e1a81955ef61770bd065632043be9c97bbec6e02e33998f4ec9ef0bf12d661ad52634594ee6b1ad5230ac2c157baf36d4e83c3645e16bc71ca227597a18e20bf7f616e1c24b13244debc590bb5f5f20bd62ba511331812487a123e96e5c4bce2b18ff87461fc878f5c4afbc6c744f9a8a932660ae7ad668", 0xaa, 0xffffffffffff0001}, {&(0x7f00000002c0)="c7d1af5cb618e1df51a2909754010474e3d35fa930f621121d536b2e6a933fc19729a0bf006a05f76736540e8d25506f1c802346313f5774281eb54bdc458dc09547803ac247bb5b6041c82cd30019eddab112d320d6666f23c932a8724e6571e3b028b83c992680f0dd1a841c4550ce43533695e05c6b5801bbd68e538692ef7daebda3de7aa50099cd2fe5a43f07adade14ea7434871ff83d401aff0917c7c8e2ebbce64a5873248975633035394624752d1f9", 0xb4}, {&(0x7f0000000380)="65b64ff06d950d86458251180409e6d26a849a8dd2bb3d910015", 0x1a}, {&(0x7f00000003c0)="fbfbaf5343c1a60f6bc5e01f98dd02a27bae585de7612e994c3ab690a09aeb78ed9cb07e766cd2b0672bd7a82cd5b590e1b9ea546c374100ed2dc8110baaa28a0adfc89087980fd61855f85b3c6adc25c0bd3f8eee563368c1fbd20471d2cfcff67b36ce960102d8cde076637bc8b9b110273a13211159a77702cb9e1efeb05de4a29dc01dc973eaee426cfa8e17171476ce90f0dcd6a601ab27623dc67485fb6d800c0af3016b89be799ce6715aaf8995f12a", 0xb3, 0x7}, {&(0x7f0000000480)="ee74b2f472590d76693e4a15519eeade007f9e1ecae8f9e31c292461fe820ad3f512344f6e2d7a037449f46ddaa9f5d31bbbd058ee431b13f31992e3e9c293a25d274eb6c3b40f681933a970d29f794aa0e1be58c6a67adc2ae2ecd30f6ffe76b60e86b2b228d6d5fd3e0e95b35e46784f323fd76ed3b424e292ea3e8975d8c1a5ef8a38cdaca7c27b356791842dc57ee828712c6805445bf3f911ac20b0fa02c3", 0xa1, 0x9}, {&(0x7f0000000540)="035f57664bf8187d6747530b5c63f55729b1a5ff6b500decb1c1ae8fdd6d78e2d797ca3af238f91a9363f320032440b70147f014eb860742ad9a642156d9ac9f6f4ff046dc9e68", 0x47, 0x40}, {&(0x7f00000005c0)="a3533b3358e0b2dd2fe8c3b6e8701fdc71646bae7ba3b8406a1a48b20d5f33be893c5e217cc0c2b311a9f1ec833ccbaa0bd466bd877e73e8ed7a2e7aa03c71cd3a092a51d832abb1aaa90e57eadec1c9d196f80c88e95b60d142cb8dbd7061f0b6c176f1e2d2224d4b4fd24fd44334a897f846925b42b795cdea11d946157029a6f679d694aa26ab93b5e88fc7dc69c2ab27143b568d7fbf93107424c59f67e4547c4b00b39cc96b53777459e06401f4ae36bab7bc8b76da225c31a9ad11a37ca4ebc085ff9832cf0d07e23e844affa6d6a01d78b0d27ce594dd976320be27623644ce0c3ae066c22b9f0e96ab0d", 0xee, 0x3ff}, {&(0x7f00000006c0)="009dea0540461696eb2e5ea524ae9d993be6ec439bbbbb6f4ebd3a543e0c26c02841abb17d67f89859f09375c556f3a684df8919f810f101d17fa606d20b6a032fad9fc10901f90b5c9ae8ab0cbe33a6d526b4eeb3760ebd7dd82e0b96da96ac48981b04bee17fcfeb7338574064878b49d584363ee6cae6cb2e01d7c890ccb023cde96e9d37ce2651d2bb5a45156515ada8013a8006c118e4739a6353808a7e4166630dd7d3e2f05ddc3d0afdfee930dce6e1c737d9d4078117fded1d9f2de6694d12cf3a005b402bd69b09ca27ba022de9a80ee4d283e7a0bbb280", 0xdc, 0xa9}, {&(0x7f00000007c0)="12396ee238c0dea7ed889322d51f166410c781a3989ed5533aff5e4eeb9ccc769bef68f602593500b1e506a05444f49b356b5e9a4b85c4f11cc71b018239f8a0feb01298ff6239bf8e1a1271e9ef3b8e", 0x50, 0x3}, {&(0x7f0000000840)="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", 0x1000, 0xdf}], 0x2000, &(0x7f0000001940)={[{@nr_inodes={'nr_inodes', 0x3d, [0x36, 0x31, 0x6d, 0x16, 0x38]}}, {@huge_advise}, {@huge_always}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x34]}}, {@huge_within_size}, {@huge_within_size}], [{@permit_directio}, {@obj_type={'obj_type', 0x3d, '\xe9'}}, {@dont_appraise}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@obj_role={'obj_role', 0x3d, 'nl802154\x00'}}]}) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f0000001a00)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd_index=0x3}, 0x80000001) 20:01:07 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 39) 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xc0ed0000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 0: sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f0000001740)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001700)={&(0x7f00000016c0)={0x2c, 0x0, 0xe02, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x3995198c}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000041) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080), 0x6e, &(0x7f00000014c0)=[{&(0x7f0000000100)=""/193, 0xc1}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/165, 0xa5}, {&(0x7f00000013c0)=""/217, 0xd9}], 0x5, &(0x7f0000001540)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xd8}, 0x2000) mknodat(r0, &(0x7f0000001640)='./file0\x00', 0x400, 0x80000001) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x80, 0x100) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') 20:01:07 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x6, 0x7, 0x0, "3e73ce54332bcbda6f849be94ebddd6681c96ec85faf1b70e0cd55771f52959e96485a6762992293952785241a7d01eaaeea46fc99563748d3644d96cf3c8b3b", "f0a2c7c72e2353f127480c8d263c24aabe3a7733e83bcc739a9d0910c0bf6f2bbef10c3465d26c14b9a6c9216f183ca835fd467044c786301a6d9e523cbf3b23", "d604a5b6a75640360c8fa524e27bfa30202eefe11e94b61c3165915a8867f0fc", [0x6f, 0xff]}) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x400) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xffff1f00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3230.941096][T32685] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3230.951704][T32685] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xf0ffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xffffff7f, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 2: write$input_event(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0xea60}, 0x15, 0x4, 0x20}, 0x18) sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0xffffffffffffffd6, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@GTPA_TID={0xc, 0x3, 0x1}, @GTPA_VERSION, @GTPA_FLOW={0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x40) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/pcie_aspm', 0x301, 0x183) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_DEV_CREATE(r1, 0x5501) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="be35782a2f2e2f1a000000000000"]) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0xfffffe00) [ 3231.030559][T32716] FAULT_INJECTION: forcing a failure. [ 3231.030559][T32716] name failslab, interval 1, probability 0, space 0, times 0 [ 3231.066799][T32716] CPU: 0 PID: 32716 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xf6ffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xffffff8c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3231.077039][T32716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3231.087087][T32716] Call Trace: [ 3231.090369][T32716] dump_stack+0x18e/0x1de [ 3231.094696][T32716] should_fail+0x5d8/0x740 [ 3231.099102][T32716] ? blk_mq_alloc_rq_map+0xe9/0x1a0 [ 3231.104286][T32716] should_failslab+0x5/0x20 [ 3231.108871][T32716] __kmalloc+0x5f/0x2f0 [ 3231.113012][T32716] ? blk_mq_alloc_rq_map+0xb3/0x1a0 [ 3231.118195][T32716] ? blk_mq_init_tags+0x209/0x290 [ 3231.123211][T32716] blk_mq_alloc_rq_map+0xe9/0x1a0 [ 3231.128223][T32716] blk_mq_init_sched+0x1d6/0xb10 [ 3231.133148][T32716] elevator_init_mq+0x2cd/0x3f0 [ 3231.137990][T32716] __device_add_disk+0x87/0x1220 [ 3231.142913][T32716] ? loop_add+0x380/0x710 [ 3231.147230][T32716] loop_add+0x554/0x710 [ 3231.151371][T32716] loop_control_ioctl+0x468/0x680 [ 3231.156383][T32716] ? xor_init+0x60/0x60 [ 3231.160533][T32716] do_vfs_ioctl+0x6fb/0x15b0 [ 3231.165109][T32716] __x64_sys_ioctl+0xd4/0x110 [ 3231.169771][T32716] do_syscall_64+0xcb/0x1e0 [ 3231.174260][T32716] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3231.180136][T32716] RIP: 0033:0x7f145855da39 [ 3231.184539][T32716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3231.204303][T32716] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3231.212709][T32716] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3231.220674][T32716] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3231.228893][T32716] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3231.236849][T32716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3231.244807][T32716] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:07 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 40) 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xffff1f00, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xfffffff0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:07 executing program 2: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800) sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x10c, 0x0, 0x210, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "00d6886ea386133db1cccdc8961d4bc4"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "7620bafb1104951cfe587ce0bb4d30fc"}]}, @NL802154_ATTR_SEC_KEY={0xc0, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "93b1b6915f565f2e8ba42cb2ce5c63e8e72f7a5fa7971bc4c05bac8af9a9faa2"}, @NL802154_KEY_ATTR_ID={0x58, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1000}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1000}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}]}, @NL802154_KEY_ATTR_ID={0x40, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7f}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8}]}]}, @NL802154_ATTR_SEC_KEY={0x4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}]}, 0x10c}, 0x1, 0x0, 0x0, 0x1}, 0x200c80c6) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:07 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0x94) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) getresuid(&(0x7f0000000100), &(0x7f0000000140)=0x0, &(0x7f0000000180)) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x1000, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7768646e6d3d4384e06721345ebdffc2fb4f547ca650169381a1c6fc248be1d5a39d3b3db58ae75d20", @ANYRESHEX=r1, @ANYBLOB=',version=9p2000.L,msize=0x0000000000000002,version=9p2000,debug=0x0000000000004627,euid>', @ANYRESDEC=r2, @ANYBLOB=',fowner=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) 20:01:07 executing program 0: syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x9, 0x5, &(0x7f0000000400)=[{&(0x7f00000000c0)="358ee7365af3cee5d4b75c93f8688fd4994dfa01e85a6c7bc2502e2e519bed9fd701f7b386d0a58a73d22eabed2eac03363ed0a7856c60ab8f7da2d4f34f7d151a2340259915c59aca31fc1cd01b00763dc1923486ca00100b80c1f45085091c2ffefb87ed5c383eb80a3b5d87431109fca1fce654eff6ced384d55abfc4062f416554b102aebf63a43aff4be0f4692ef1c2f0e93dd830a312c4d76d513575ebfa2035a016c495e1b4e4e46e8d", 0xad, 0x1}, {&(0x7f0000000180)="967de5a7f728fc7f8739919f1bb6b3b5c8f759a9542765490fbe719c11e10b12a1cf64fea5e407e26d5127d3f929f37df275d516c72e4a74861153719fcbeb06c56bc4db0d859309c994a0d02551e48e80acb231b99003a866a0310ea92a928c623b3cb763ade5a71a5f5a43020eb48e466b9db53af8189d738ec8316fcd30f7761bb4387f1731e4d5883da4aed6f54e8277d733723bc3d7c4da0d5d809bdefa362a0b5be46336d5947d833b7b2b1d5c78112160e1aa2aca6bac09782254396ee3f04809bc6cec9633b430f1358732d8776bd7e8a35ffadd974c048915c24379ff6620da1d2ee1", 0xe7, 0x9}, {&(0x7f0000000280)="ac079751f7084fd2248239c89aef1a18d9a21c5d33", 0x15, 0x6}, {&(0x7f00000002c0)="0faf692592addfd7a7b0b58680424753d71442e9163f1dd1903b839a1313d38cb5895f9dbd725e782724a5001b615a9d378077a76e03ca56c9e70972421c7fe7de84084041cc0ff5ae72acd34f86870b806f5aecfcc3f5325012c8fc15e30f87d58fcba8ed8edbb6b8e2087a406748e15b7ecfe4e4582b829e2dc616d13891f4a076f8923c08793500c7", 0x8a}, {&(0x7f0000000380)="887fda396e4722635b8b1284fa69f594da8eade00be268eedccbc6a92eca7e3d63858ad73b614f8e3246186a42ae012ba925def856c376b4aa9a989969f30199bbf493", 0x43, 0x80}], 0x200000, &(0x7f0000000480)={[{@acl}, {@acl}], [{@obj_type={'obj_type', 0x3d, '^@'}}, {@dont_hash}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3231.295511][T32716] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xffffff7f, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000080)={0x90002015}) sched_getattr(0x0, &(0x7f0000000580)={0x38}, 0x38, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/36, 0x24}, {&(0x7f0000000140)=""/11, 0xb}, {&(0x7f0000000180)=""/35, 0x23}, {&(0x7f00000001c0)=""/202, 0xca}, {&(0x7f00000002c0)=""/8, 0x8}, {&(0x7f0000000300)=""/165, 0xa5}, {&(0x7f00000003c0)=""/215, 0xd7}], 0x7}, 0x2161) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x7fff) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xacc01, 0x1) socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000040)) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xfffffff6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3231.370738][T32744] FAULT_INJECTION: forcing a failure. [ 3231.370738][T32744] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3231.393799][T32744] CPU: 0 PID: 32744 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3231.404030][T32744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3231.414073][T32744] Call Trace: [ 3231.417352][T32744] dump_stack+0x18e/0x1de [ 3231.421674][T32744] should_fail+0x5d8/0x740 [ 3231.426080][T32744] __alloc_pages_nodemask+0x12e/0x740 [ 3231.431437][T32744] blk_mq_alloc_rqs+0x252/0x660 [ 3231.436275][T32744] ? blk_mq_alloc_rq_map+0x11a/0x1a0 [ 3231.441550][T32744] blk_mq_init_sched+0x235/0xb10 [ 3231.446477][T32744] elevator_init_mq+0x2cd/0x3f0 [ 3231.451317][T32744] __device_add_disk+0x87/0x1220 [ 3231.456240][T32744] ? loop_add+0x380/0x710 [ 3231.460553][T32744] loop_add+0x554/0x710 [ 3231.464692][T32744] loop_control_ioctl+0x468/0x680 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xffffff8c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3231.469702][T32744] ? xor_init+0x60/0x60 [ 3231.473845][T32744] do_vfs_ioctl+0x6fb/0x15b0 [ 3231.478429][T32744] __x64_sys_ioctl+0xd4/0x110 [ 3231.483091][T32744] do_syscall_64+0xcb/0x1e0 [ 3231.487581][T32744] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3231.493459][T32744] RIP: 0033:0x7f145855da39 [ 3231.497860][T32744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:07 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 41) 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xfffffff0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x8000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = geteuid() syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, 0x4, &(0x7f0000000280)=[{&(0x7f0000000100)="c54fa5729c75ee16703cff92f735904c54be6d218d6b03e47f3bae569609fb8b3b844bdf3d28d749f49ca59ba852d6c018aa9b260ea2c4bb4edca4392e4624a28124", 0x42, 0x80b6}, {&(0x7f0000000180)="5daeb870b555a7c362d7cd0098655c", 0xf, 0x9}, {&(0x7f00000001c0)="42e39801733d100d4cf3b0332c422a50ef2716ff86eb9f00b36703f1b3b608121f2667f0e91cc24616d484e5250472cd8df2f1ccf575f09c48a7d0b9a63374", 0x3f, 0x1}, {&(0x7f0000000200)="8ee68e6f21d70ea1d78f0a760b5b3b5cb5806e7352000fefdf8daa0e331f257c7f2ec4de5e85e93e1b6a4c58be3903b362286ac3daa8e0e9eab176580229df24dcd863", 0x43, 0x8001}], 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="61570a83842f49190685645b756c742c7573f112af529b8729427b2c7265736769643d71eb08aff1a5512c1beb9a2a98", @ANYRESHEX, @ANYBLOB=',jqfmt=vfsv0,noquota,fsync_mode=strict,jqfmt=vfsv0,hash,uid=', @ANYRESDEC=r0, @ANYBLOB=',fscontext=user_u,\x00']) connect$nfc_raw(0xffffffffffffffff, &(0x7f0000000000)={0x27, 0x1, 0x0, 0x7}, 0x10) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x20, 0x10000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x10) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x2ee87e04) [ 3231.517449][T32744] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3231.525871][T32744] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3231.533936][T32744] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3231.541894][T32744] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3231.549850][T32744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3231.557808][T32744] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:07 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/slab_common', 0x100, 0x82) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:07 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xfffffff6, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:07 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x601b40, 0x0) 20:01:07 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x2, 0x129000) r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xa0, 0x1, 0x2, 0x801, 0x0, 0x0, {0xc, 0x0, 0x6}, [@CTA_EXPECT_TUPLE={0x68, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010101}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}, @CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4008804}, 0x80) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) [ 3231.613035][ T311] FAULT_INJECTION: forcing a failure. [ 3231.613035][ T311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3231.629676][ T311] CPU: 0 PID: 311 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3231.639732][ T311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3231.649786][ T311] Call Trace: [ 3231.653072][ T311] dump_stack+0x18e/0x1de [ 3231.657395][ T311] should_fail+0x5d8/0x740 20:01:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xedc000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:07 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/power_supply', 0x4000, 0x40) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0) recvmsg$unix(r1, 0x0, 0x0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20001000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042dbd7000fcdbdf2501000000080005000100000008000100", @ANYRES32=r1, @ANYBLOB="1400020077673000000400000000000000000000060006004e24000008000700680b0000060006004e230000"], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0xb) ioctl$UI_SET_SWBIT(0xffffffffffffffff, 0x4004556d, 0x9) [ 3231.661803][ T311] __alloc_pages_nodemask+0x12e/0x740 [ 3231.667170][ T311] blk_mq_alloc_rqs+0x252/0x660 [ 3231.672019][ T311] blk_mq_init_sched+0x235/0xb10 [ 3231.676943][ T311] elevator_init_mq+0x2cd/0x3f0 [ 3231.681781][ T311] __device_add_disk+0x87/0x1220 [ 3231.686716][ T311] ? loop_add+0x380/0x710 [ 3231.691032][ T311] loop_add+0x554/0x710 [ 3231.695268][ T311] loop_control_ioctl+0x468/0x680 [ 3231.700274][ T311] ? xor_init+0x60/0x60 [ 3231.704419][ T311] do_vfs_ioctl+0x6fb/0x15b0 [ 3231.708999][ T311] __x64_sys_ioctl+0xd4/0x110 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x4000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3231.713665][ T311] do_syscall_64+0xcb/0x1e0 [ 3231.718169][ T311] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3231.724045][ T311] RIP: 0033:0x7f145855da39 [ 3231.728448][ T311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3231.748038][ T311] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:01:08 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 42) [ 3231.756440][ T311] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3231.764400][ T311] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3231.772361][ T311] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3231.780325][ T311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3231.788283][ T311] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x100000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x8000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x321040, 0x0) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xedc000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x2a4880, 0x0) sendmsg$nl_netfilter(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x1494, 0x4, 0x4, 0x101, 0x70bd2a, 0x25dfdbfc, {0x5, 0x0, 0x3}, [@typed={0xc9, 0x89, 0x0, 0x0, @binary="32170119986db5962a4af7c6424932573e56c3b3f12a074f852f3fc75505002f184f161ce3617a14f185adc2159e88f8997f44f8796a5f2da3513ecd38a7b7a0ff4259a802f41b97e3bba79c6405d15622629e4cf12017df42810a3eb93721194c7d33c353713b85bfea9053725ef0ea1b79a9b6dc7e5b1cc21e787df65c74cfaf2658610e0c9bcc4564bbe4c7544e6b0a27cff050f16c45b9bb3c00434ecfe0a018ec16a3a946034a6e58d9f7ea4cb7c04dc24ea667280eedd12d9be0f9ff7b5e0b9fa8aa"}, @nested={0x28, 0x86, 0x0, 0x1, [@typed={0x4, 0x6b}, @typed={0x16, 0x12, 0x0, 0x0, @str='/dev/input/event#\x00'}, @typed={0x8, 0x32, 0x0, 0x0, @ipv4=@loopback}]}, @nested={0x37b, 0x80, 0x0, 0x1, [@generic="a4a1c02453b30a66b6485c051f3b9e665abae43ee2a89907d3f1b1e4764a534b2dfc8589e17095055f0543a747e89e09dffb94ad5fe486ace5ce17777bd0971d7f71a7a80411f0e1296036e3b81656006930f2fa40b404bb1f480b4c915caaf841daca1eb80e2597815f9bb08853953529f4676163a1a4c1796b6077d621f898c5276b8396aa83062aee7b4112f75f1ebae90324d3af1e0cf83fde47f8962586f6c986cff9aa1a2bd74169c4db786efdd84ce582bb5ad320c181822e35cb53cccf5b79f52a719298bfbcbfe964cc0c3a94fb92d8d44e121758a3708204b7e2c18a57745892f6ca317c281ae2ab7d3a0e918b", @generic="a2637ab5b4164bc676b72f76e2f1f959e9fb18f93d515e93bf9d6e55956a18de7ed8ecf92621dcef6ba8baaf9b6526e496b43515cba0ac7ca26e512eea69d507c88359d48ab19edfa478dd6801205c0da38def24e922d1296374875bc636d9c0062b894fdff6612eafdd98499c8730510367f5e52698917bd124fffe410ae36dce2a09f9fb738d353615abd4b2ed00e0a79a1e2cd89803c814ee30407cc7", @generic="5386fa45855efdb994c4238c3f268771fb0f2c0f1e21c802d4debe17e2d34d2d6d6e9d12c729ae6ccbe15bc83701fb6510b09e1c9d444dad494928432b291c82d2a1a55b89054d20b1d38fe2669dffa43e6208c4e9293e40b8260f593814717f0c6edac32b6551045732f8de43914560f009e2ddc3041df4129828755e4f04f991a572ab5381ac9289ce57b15084da69a0da95570e750740f54843261d256a2d32f08b427cccc1c078e9315e334932c4125035cfe67c92f064555db17a999f1e6700219ceaa2356a5518281ceb8a8dca6ce1d2abe5159ccc1637522eda69d9ea0b3be6970a0edbce1c52fc83cbeb54", @typed={0xc, 0x5c, 0x0, 0x0, @u64=0xc0}, @generic="445014d35f326ea2e724cc7cb5d17de631293d7553b9fef4158680db8c2c1a58385bb07e72fb16b989359be172c5eecd38c2507c44a1f5d5c2299aa2a0278a1cff94746545460e7094c7c1d4a089fd8f209c9bfcac3e6bbd92073a4c1db037a2e70ce1bf64c7aeef962832be8babe3af448707ddbf022f7fde60ffeb1981b28b640cf9d070c1e1f3a26b88c1979251623294b74eb8cd1dc9ea8924d2ec80f97e05da132de9017f9fb77eaf1b345eaf18a625284afbce0a740255d2eb963ec7054c1badf2491fda374fabd3829b36603d72fb7e62d3d8aaae9234c90866b66508f388d4814586c5d3b755bf00"]}, @nested={0x1010, 0x62, 0x0, 0x1, [@typed={0x8, 0xd, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x1004, 0x56, 0x0, 0x0, @binary="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"}]}]}, 0x1494}, 0x1, 0x0, 0x0, 0x40000}, 0x44405) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x4000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x200000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 0: sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x5, 0x6, 0x200, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x4090) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x1a8) 20:01:08 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x100002, &(0x7f0000000140)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_any}, {@version_9p2000}, {@version_u}, {@access_client}], [{@subj_user={'subj_user', 0x3d, '/dev/input/event#\x00'}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@appraise}, {@context={'context', 0x3d, 'staff_u'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@fowner_gt={'fowner>', 0xee00}}]}}) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) [ 3231.914582][ T353] FAULT_INJECTION: forcing a failure. [ 3231.914582][ T353] name failslab, interval 1, probability 0, space 0, times 0 [ 3231.936933][ T353] CPU: 0 PID: 353 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3231.946998][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3231.957039][ T353] Call Trace: [ 3231.960326][ T353] dump_stack+0x18e/0x1de 20:01:08 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x81, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="1ea2e23197541aadc2ec160c5db15d32245f89481c8938265fc97cdd74a5c671d1743bfa4949e27a268d0db9737e16673dbb4e7c2bde06ca84136216ba01ee0c857d4f5c59a431a6585074e8cefbd3179e8bd1b321027e234a82f97a678d67dd92803ba2a09a283d1faa2e42c13853ae9972294b39b1398b6f906842fe134b86c2de2926018f061d950c5c7693b588874e418685d905fb0c7c1daf5f1d39b5b7053d340c167ab950488f6dc7250f0161c31ddaeca553e69690467f331e542d4b9b6ec27d0c", 0xc5, 0x6}], 0x3040000, &(0x7f00000002c0)={[{@huge_always}, {@nr_inodes={'nr_inodes', 0x3d, [0x78, 0x30, 0x38, 0x0, 0x6d, 0x33, 0x74, 0x25, 0x31]}}], [{@fsmagic={'fsmagic', 0x3d, 0x7}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@fowner_gt={'fowner>', 0xee01}}, {@audit}]}) fspick(r0, &(0x7f0000000280)='./file0\x00', 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3231.964648][ T353] should_fail+0x5d8/0x740 [ 3231.969060][ T353] ? elevator_alloc+0x4b/0xc0 [ 3231.973727][ T353] should_failslab+0x5/0x20 [ 3231.978213][ T353] kmem_cache_alloc_trace+0x39/0x2b0 [ 3231.983484][ T353] elevator_alloc+0x4b/0xc0 [ 3231.987972][ T353] dd_init_queue+0x1f/0x330 [ 3231.992461][ T353] blk_mq_init_sched+0x444/0xb10 [ 3231.997389][ T353] elevator_init_mq+0x2cd/0x3f0 [ 3232.002229][ T353] __device_add_disk+0x87/0x1220 [ 3232.007152][ T353] ? loop_add+0x380/0x710 20:01:08 executing program 0: ioctl$BLKBSZGET(0xffffffffffffffff, 0x80081270, &(0x7f0000000000)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r1, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_MAX_BE={0x5, 0x10, 0x20}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000018) [ 3232.011466][ T353] loop_add+0x554/0x710 [ 3232.015610][ T353] loop_control_ioctl+0x468/0x680 [ 3232.020635][ T353] ? xor_init+0x60/0x60 [ 3232.024788][ T353] do_vfs_ioctl+0x6fb/0x15b0 [ 3232.029381][ T353] __x64_sys_ioctl+0xd4/0x110 [ 3232.034046][ T353] do_syscall_64+0xcb/0x1e0 [ 3232.038535][ T353] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3232.044409][ T353] RIP: 0033:0x7f145855da39 [ 3232.048816][ T353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3232.068401][ T353] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3232.076798][ T353] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3232.084879][ T353] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3232.092836][ T353] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3232.100795][ T353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:08 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 43) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x100000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x303841, 0x0) 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x800000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3232.108748][ T353] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3232.120159][ T353] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x200000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 0: ioctl$UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f0000000000)={0x0, 0x800, 0x1e}) ioctl$UI_SET_PROPBIT(0xffffffffffffffff, 0x4004556e, 0xc) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000080)={'syz1\x00', {0x19, 0xa4e3, 0x4}, 0xd, [0x7, 0x6, 0x0, 0x4, 0x20, 0x8001, 0x9, 0x1ff, 0x5, 0xfffffffd, 0x9, 0x4, 0x5a2, 0xff, 0x200, 0x9, 0x6, 0x1, 0x8, 0x5, 0x4, 0x800, 0x59, 0x4, 0x7, 0x7, 0x6e50, 0x6, 0x101, 0x0, 0x3, 0x1, 0x8, 0x7, 0x9, 0x6, 0xffff, 0x0, 0x9, 0x1, 0x3, 0x1, 0x9, 0x10001, 0x1, 0x101, 0x0, 0x5, 0x8, 0x5, 0x2b9, 0x7, 0x7f, 0x3, 0x1800, 0x800, 0x80, 0x7a0, 0x0, 0x7cb, 0x4, 0x8, 0x5, 0xfff], [0x81, 0x276, 0x7ff, 0x10001, 0x1, 0xd8, 0x6, 0x1, 0xf86, 0x9, 0x7, 0x7, 0xffffffd3, 0xea, 0x3, 0x7295, 0x101, 0x0, 0x8, 0x3, 0x8e, 0x0, 0x8, 0x1, 0x401, 0x6, 0x2bb, 0x25, 0x14347039, 0xeed, 0x3, 0x2, 0x1f, 0x5, 0x80000001, 0x0, 0x800, 0x1, 0x8, 0x40, 0xffffff9a, 0xffff, 0x400, 0x6, 0x3, 0x6, 0x0, 0x3da5a8c1, 0x3, 0x81, 0x7ff, 0x1ff, 0x78, 0x12, 0x2, 0x800, 0x976, 0x29, 0xd01a54d5, 0x80, 0x7, 0x80000000, 0x200, 0x91d5], [0x7ff, 0xffff, 0x0, 0x5, 0x1, 0x10001, 0x7fff, 0xd1, 0x3df4, 0x9, 0x2, 0xfffff800, 0xa6b, 0x0, 0xeb, 0x7fff, 0x6, 0x43d, 0xf93b, 0x3ff, 0x2, 0x40, 0x6, 0x9, 0x15351ad8, 0x0, 0x4, 0x6, 0xd2, 0x5, 0xfff, 0x6, 0x3ff, 0x5, 0x8, 0x8, 0x3, 0x8a, 0x8001, 0x800, 0x7, 0x80000000, 0x5, 0xecf, 0x60, 0x1, 0x0, 0x8, 0x9, 0x9, 0xd56a, 0x5, 0x7b30503e, 0x2, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x22, 0x100, 0x2, 0x9], [0x6, 0x8, 0x8001, 0xa29f, 0x3e, 0x401, 0x8, 0x6c, 0x1, 0x6, 0x20c, 0x20, 0x7, 0x0, 0x3f, 0xffffffff, 0x3, 0x6, 0x7, 0x6, 0x80000000, 0xffffffff, 0x8b3, 0x1ac, 0x4, 0x8c5, 0x3f, 0x401, 0x9, 0x0, 0x87, 0x7, 0x5, 0xc56d7e59, 0x0, 0x401, 0x1, 0xc214, 0x4, 0x0, 0x7fa, 0x1, 0x9, 0x5, 0x9, 0x9, 0x81, 0x1ff, 0x4c, 0xe1, 0x9, 0x5, 0xf93, 0xd6, 0x162, 0x838, 0x8, 0x200, 0x80000000, 0x5, 0x8001, 0x3, 0x8000, 0x7fff]}, 0x45c) 20:01:08 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c916c737da18a9cdbcf7d7fe8146d0000", @ANYRES16=0x0, @ANYBLOB="000228bd7000fcdbdf25010000002c003c000500000005003700010000000a000900bbbbbbbbbbbb000005003700010000000800320003000000"], 0x40}}, 0x4000) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xffffffffde2d59dd, 0x4, 0x1}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:08 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000000)) 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x2010000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 3: sendmsg$NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x2c}}, 0x5) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) mknodat(r0, &(0x7f0000000000)='./file0\x00', 0x8000, 0x8000) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) 20:01:08 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) recvmsg(r0, &(0x7f0000003800)={0x0, 0x0, &(0x7f0000003680)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, &(0x7f0000003740)=""/139, 0x8b}, 0x0) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x4, 0x6, 0x503}, 0x14}}, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x3b10c2, 0xb4) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x800000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3232.263398][ T408] FAULT_INJECTION: forcing a failure. [ 3232.263398][ T408] name failslab, interval 1, probability 0, space 0, times 0 [ 3232.281380][ T408] CPU: 1 PID: 408 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3232.291438][ T408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3232.301476][ T408] Call Trace: [ 3232.304753][ T408] dump_stack+0x18e/0x1de [ 3232.309071][ T408] should_fail+0x5d8/0x740 [ 3232.313477][ T408] ? elevator_alloc+0x4b/0xc0 [ 3232.318149][ T408] ? dd_init_queue+0x69/0x330 [ 3232.322811][ T408] should_failslab+0x5/0x20 [ 3232.327302][ T408] kmem_cache_alloc_trace+0x39/0x2b0 [ 3232.332568][ T408] ? memset+0x1f/0x40 [ 3232.336537][ T408] dd_init_queue+0x69/0x330 [ 3232.341026][ T408] blk_mq_init_sched+0x444/0xb10 [ 3232.345962][ T408] elevator_init_mq+0x2cd/0x3f0 [ 3232.350795][ T408] __device_add_disk+0x87/0x1220 [ 3232.355712][ T408] ? loop_add+0x380/0x710 [ 3232.360020][ T408] loop_add+0x554/0x710 [ 3232.364164][ T408] loop_control_ioctl+0x468/0x680 [ 3232.369171][ T408] ? xor_init+0x60/0x60 [ 3232.373311][ T408] do_vfs_ioctl+0x6fb/0x15b0 [ 3232.377888][ T408] __x64_sys_ioctl+0xd4/0x110 [ 3232.382553][ T408] do_syscall_64+0xcb/0x1e0 [ 3232.387042][ T408] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3232.392915][ T408] RIP: 0033:0x7f145855da39 [ 3232.397310][ T408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3232.416985][ T408] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3232.425379][ T408] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3232.433336][ T408] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3232.441379][ T408] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3232.449332][ T408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:08 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 44) 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x4000000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0xc8, 0x1, 0x1, 0x401, 0x0, 0x0, {0x3, 0x0, 0xa}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2004}, @CTA_TUPLE_MASTER={0x10, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_SEQ_ADJ_ORIG={0x3c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3487}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3f4}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}]}, @CTA_NAT_SRC={0x48, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}]}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x2}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x6}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x4}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8014}, 0x40000) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_DELETE(r2, &(0x7f0000000300)={&(0x7f00000000c0), 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x58, 0x2, 0x2, 0x401, 0x0, 0x0, {0x5}, [@CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0xaf09}, @CTA_EXPECT_HELP_NAME={0xe, 0x6, 'snmp_trap\x00'}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x80}, @CTA_EXPECT_MASTER={0x1c, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x40}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x11) openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) 20:01:08 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x100000000, 0x20000) syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x12100) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/regulator', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000080)={r0}, 0x8) ioctl$EVIOCGREP(r4, 0x80004509, 0x0) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x2010000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c15ab00f4069fc59520d892209fc3cb0eb4514b81fc2f633019e27b15f18521eabfeb99389b52822f1fdf2bfc39390f5f436e307097893951bb880aba53acf75b5e7b2348e45993830ba2ddfc5c084d78d6be7e0e5a48aa4dc629e9c1c96a4c6f0caaf5dec89fcc35137a212b10aeb1b605a9de789560c06f482f0068426af5715d509d1f59c702adb0941f897e3d3f238a65e3788dbc9f8fd272ecc66049226f900fe8fd983403f774367af5fe4532cf9bb4ae379dbe165c30a141a0b37dd43af6dd7179b5ce947ca528f0d5b6963c017ebf68fa51011ce5ee718caf03f15a9c5fdd2454f88c632e00"/243, @ANYRES16=0x0, @ANYBLOB="000327bd7000ffdbdf250e00000005002900000000000800390011bf000005002d000000000005002f0001000000080032000400000008002c00ff0100000800320000020000"], 0x4c}, 0x1, 0x0, 0x0, 0x90}, 0x24000004) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xcc, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x60, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x2c}}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_SEQ_ADJ_ORIG={0x3c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1ff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x19e5}, @CTA_SEQADJ_OFFSET_AFTER={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x4}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2404}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x8000}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3232.457284][ T408] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3232.467217][ T408] "mq-deadline" elevator initialization failed, falling back to "none" 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x8cffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x4000000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:08 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x37d480) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000040)=0x3) 20:01:08 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x9003000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:08 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nfc', 0x82840, 0x42) ioctl$BLKALIGNOFF(r1, 0x127a, &(0x7f0000000040)) 20:01:08 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x8cffffff00000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3232.565985][ T418] FAULT_INJECTION: forcing a failure. [ 3232.565985][ T418] name failslab, interval 1, probability 0, space 0, times 0 [ 3232.591404][ T418] CPU: 0 PID: 418 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3232.601471][ T418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3232.611515][ T418] Call Trace: [ 3232.614797][ T418] dump_stack+0x18e/0x1de [ 3232.619990][ T418] should_fail+0x5d8/0x740 [ 3232.624396][ T418] ? device_create_vargs+0x7d/0x210 [ 3232.629584][ T418] should_failslab+0x5/0x20 [ 3232.634104][ T418] kmem_cache_alloc_trace+0x39/0x2b0 [ 3232.639371][ T418] ? number+0xf64/0x11e0 [ 3232.643608][ T418] device_create_vargs+0x7d/0x210 [ 3232.648635][ T418] device_create+0x86/0xb0 [ 3232.653040][ T418] ? vsnprintf+0x1a07/0x1aa0 [ 3232.657626][ T418] bdi_register_va+0x89/0x5e0 [ 3232.662289][ T418] bdi_register+0x80/0xa0 [ 3232.666603][ T418] ? __device_add_disk+0x50a/0x1220 [ 3232.671791][ T418] bdi_register_owner+0x56/0xf0 [ 3232.676640][ T418] __device_add_disk+0x583/0x1220 [ 3232.681654][ T418] loop_add+0x554/0x710 [ 3232.685806][ T418] loop_control_ioctl+0x468/0x680 [ 3232.690902][ T418] ? xor_init+0x60/0x60 [ 3232.695045][ T418] do_vfs_ioctl+0x6fb/0x15b0 [ 3232.699632][ T418] __x64_sys_ioctl+0xd4/0x110 [ 3232.704295][ T418] do_syscall_64+0xcb/0x1e0 [ 3232.708789][ T418] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3232.714756][ T418] RIP: 0033:0x7f145855da39 [ 3232.719168][ T418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3232.739040][ T418] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3232.747633][ T418] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3232.755705][ T418] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3232.763671][ T418] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3232.771635][ T418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3232.779603][ T418] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3232.791454][ T418] ------------[ cut here ]------------ [ 3232.796954][ T418] WARNING: CPU: 0 PID: 418 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3232.805858][ T418] Modules linked in: [ 3232.809742][ T418] CPU: 0 PID: 418 Comm: syz-executor.1 Not tainted 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3232.819781][ T418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3232.829837][ T418] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3232.835627][ T418] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3232.855220][ T418] RSP: 0018:ffff8881e8b67ce8 EFLAGS: 00010246 [ 3232.861276][ T418] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3232.869234][ T418] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3232.877195][ T418] RBP: ffff8881ef75bc48 R08: ffffffff82147afe R09: ffffffff818df3d0 [ 3232.885499][ T418] R10: ffffed103d16ced2 R11: 0000000000000000 R12: dffffc0000000000 [ 3232.893456][ T418] R13: 1ffff110392c5e01 R14: 1ffff110392c5e9d R15: ffff8881c962f000 [ 3232.901506][ T418] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3232.910427][ T418] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3232.916994][ T418] CR2: 00007ffcc4dbaff8 CR3: 00000001e1ede000 CR4: 00000000003406f0 [ 3232.924956][ T418] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3232.932914][ T418] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3232.941128][ T418] Call Trace: [ 3232.944412][ T418] loop_add+0x554/0x710 [ 3232.948562][ T418] loop_control_ioctl+0x468/0x680 [ 3232.953580][ T418] ? xor_init+0x60/0x60 [ 3232.957730][ T418] do_vfs_ioctl+0x6fb/0x15b0 [ 3232.962310][ T418] __x64_sys_ioctl+0xd4/0x110 [ 3232.966973][ T418] do_syscall_64+0xcb/0x1e0 [ 3232.971467][ T418] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3232.977435][ T418] RIP: 0033:0x7f145855da39 [ 3232.981931][ T418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3233.001525][ T418] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3233.009925][ T418] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:09 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 45) 20:01:09 executing program 0: recvmsg(0xffffffffffffffff, &(0x7f00000013c0)={&(0x7f0000000140)=@in={0x2, 0x0, @local}, 0x80, &(0x7f0000001280)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/135, 0x87}], 0x2, &(0x7f00000012c0)=""/217, 0xd9}, 0x40010060) ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{@none}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x7018c0, 0x0) 20:01:09 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x2000) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = geteuid() fspick(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e733d66649261d3566e6f3d", @ANYRESHEX=r1, @ANYBLOB="2c776619996f3d54961c7b3b9801abaea9ba1eacd59b04e183ad8898a9e28a6312737abf661ce849d95c4908f13e79e0ba3918dbc7e6f12d6db2617b839f5f721667017a5dc7bfb2bac293d86b0e93548fd64ca85fcc4dd44bec4681e5bc64991c4c2b09d34f3584d0f21616f3ad51c57dd651a495cf17773eab35b6b8b7aea4790b9b86f72fb27f7a4c872591c83d20ac0ac539fee3bc795f97ab6b9122fe9e850ab53086ec1e8aa3ab22cdb335c7599657b25b5034a94ffa9c4ee0409c76b1f226c8a537298e", @ANYRESHEX=r0, @ANYBLOB=',cache=fscache,aname=/dev/input/event#\x00,cache=mmap,uname={[.^)@*\\]},access=client,fscache,nodevmap,access=', @ANYRESDEC=r2, @ANYBLOB="2c686173682c00d5994d2ba42f5919a6bc274d89f01c720abcdbf1d4d3237bbac7bc8e5d7201ad3385cfddfc8999f3b4620ff4"]) ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000140)={0x0, {}, 0x0, {}, 0x7, 0x2, 0x13, 0x14, "a32440ff135be43781170aa44ec25f992f16be1237641da4c5bdcf93ef18672015fee279ebe0ff3568e8351048f6949c797d20ef793d60ae807041b0b6b4713c", "eb0c2a94c15af1a3e44d82350608cca9f35f96a944bd975c390d0fbd423d80c2", [0x40, 0x6]}) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x2010, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f0000000000), 0x7) 20:01:09 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x9203000000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:09 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xf0ffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:09 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x28a380) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) [ 3233.017885][ T418] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3233.025846][ T418] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3233.033818][ T418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3233.041776][ T418] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3233.049740][ T418] ---[ end trace 7aed1b66616f08bd ]--- 20:01:09 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xf6ffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:09 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xf0ffffff00000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:09 executing program 2: utime(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x0, 0x400}) syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x4a0040) r0 = gettid() sched_getaffinity(r0, 0x8, &(0x7f0000000000)) syz_open_procfs$namespace(r0, &(0x7f00000000c0)='ns/pid\x00') syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x800) 20:01:09 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xffff1f0000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:09 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/ion', 0x110d40, 0x1a0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000000)=""/138) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:09 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xf6ffffff00000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3233.195743][ T456] FAULT_INJECTION: forcing a failure. [ 3233.195743][ T456] name failslab, interval 1, probability 0, space 0, times 0 [ 3233.223530][ T456] CPU: 0 PID: 456 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3233.235090][ T456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3233.245130][ T456] Call Trace: [ 3233.248503][ T456] dump_stack+0x18e/0x1de [ 3233.252828][ T456] should_fail+0x5d8/0x740 [ 3233.257234][ T456] ? kobject_set_name_vargs+0x5d/0x110 [ 3233.262679][ T456] should_failslab+0x5/0x20 [ 3233.267168][ T456] __kmalloc_track_caller+0x5d/0x2e0 [ 3233.272457][ T456] kstrdup_const+0x51/0x90 [ 3233.276866][ T456] kobject_set_name_vargs+0x5d/0x110 [ 3233.282140][ T456] device_create_vargs+0x182/0x210 [ 3233.287241][ T456] device_create+0x86/0xb0 [ 3233.291642][ T456] ? vsnprintf+0x1a07/0x1aa0 [ 3233.296220][ T456] bdi_register_va+0x89/0x5e0 [ 3233.300888][ T456] bdi_register+0x80/0xa0 [ 3233.305206][ T456] ? __device_add_disk+0x50a/0x1220 [ 3233.310399][ T456] bdi_register_owner+0x56/0xf0 [ 3233.315237][ T456] __device_add_disk+0x583/0x1220 [ 3233.320294][ T456] loop_add+0x554/0x710 [ 3233.324432][ T456] loop_control_ioctl+0x468/0x680 [ 3233.329439][ T456] ? xor_init+0x60/0x60 [ 3233.333585][ T456] do_vfs_ioctl+0x6fb/0x15b0 [ 3233.338170][ T456] __x64_sys_ioctl+0xd4/0x110 [ 3233.342834][ T456] do_syscall_64+0xcb/0x1e0 [ 3233.347323][ T456] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3233.353207][ T456] RIP: 0033:0x7f145855da39 [ 3233.357606][ T456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3233.377192][ T456] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3233.385588][ T456] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3233.393547][ T456] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3233.401538][ T456] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3233.409497][ T456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3233.417458][ T456] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3233.433406][ T456] ------------[ cut here ]------------ [ 3233.438883][ T456] WARNING: CPU: 0 PID: 456 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3233.447793][ T456] Modules linked in: [ 3233.451681][ T456] CPU: 0 PID: 456 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3233.463110][ T456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3233.473168][ T456] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3233.478964][ T456] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3233.498637][ T456] RSP: 0018:ffff8881e45afce8 EFLAGS: 00010246 [ 3233.504695][ T456] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3233.512743][ T456] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3233.520703][ T456] RBP: ffff8881ef0e1178 R08: ffffffff82147afe R09: ffffed103c8b5ed4 [ 3233.528659][ T456] R10: ffffed103c8b5ed4 R11: 0000000000000000 R12: dffffc0000000000 [ 3233.536615][ T456] R13: 1ffff11039212601 R14: 1ffff1103921269d R15: ffff8881c9093000 [ 3233.544574][ T456] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3233.553489][ T456] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3233.560058][ T456] CR2: 0000555556ce9b38 CR3: 00000001c8fbc000 CR4: 00000000003406f0 [ 3233.568020][ T456] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3233.575988][ T456] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3233.584036][ T456] Call Trace: [ 3233.587319][ T456] loop_add+0x554/0x710 [ 3233.591461][ T456] loop_control_ioctl+0x468/0x680 [ 3233.596471][ T456] ? xor_init+0x60/0x60 [ 3233.600615][ T456] do_vfs_ioctl+0x6fb/0x15b0 [ 3233.605199][ T456] __x64_sys_ioctl+0xd4/0x110 [ 3233.609955][ T456] do_syscall_64+0xcb/0x1e0 [ 3233.614444][ T456] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3233.620407][ T456] RIP: 0033:0x7f145855da39 [ 3233.624810][ T456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3233.644400][ T456] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3233.652801][ T456] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3233.660763][ T456] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3233.668726][ T456] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3233.676684][ T456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3233.684641][ T456] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3233.692605][ T456] ---[ end trace 7aed1b66616f08be ]--- 20:01:09 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 46) 20:01:09 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xffff1f0000000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:09 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) utime(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x80, 0x4}) r0 = getuid() syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0xfffffffffffffffa, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000180)="09f6649bfc439bca4a2037029cc3cdca1b6de76184c03299c861c5ce13626dabd6c4568debae09a928c446fe3a5c5bfd9f7dcf10bb3bdae36cd50e7e118a26c5102a4e27f8fac4e812510d97e5498ff074b99cc142d8c0f92f97c0326aa6ca9341aae914146d192b25f575c55d60e4d7736b2c7d3e518075330e9247a40113681deaa6cb3607be3d39aa6caf7f", 0x8d, 0x2}, {&(0x7f0000000240)="befdada0653a1b3cd80efbb2413b18185df0a3f279cb959ef107f50b46ee50647c8d6cdbb969c82f5e40fad998d1e828aa6bbaf9c5a808e24c6b977824f8fedcb3dd2ea50d8aecb3975766baf20dc7257d0e7913a2d7eb44c6eb8e1961accae055baebd0", 0x64, 0x9}], 0xa0, &(0x7f0000000300)={[{@journal_checksum}, {@noinit_itable}, {@nolazytime}, {@data_ordered}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5}}], [{@permit_directio}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@measure}, {@fowner_gt={'fowner>', r0}}, {@permit_directio}, {@pcr={'pcr', 0x3d, 0x17}}, {@appraise}, {@euid_eq}]}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/ion', 0x0, 0x104) recvmsg$unix(r1, 0x0, 0x0) truncate(&(0x7f0000000440)='./file1\x00', 0x3) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x2c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfff}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) ioctl$BLKROTATIONAL(r1, 0x127e, &(0x7f0000000000)) 20:01:09 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_io_uring_setup(0x28ac, &(0x7f0000000000)={0x0, 0x3626, 0x8, 0x2, 0x369}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r5, 0x0, 0x0) recvmsg$unix(r5, &(0x7f0000000440)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f00000001c0)=""/48, 0x30}, {&(0x7f0000000200)=""/62, 0x3e}, {&(0x7f0000000280)=""/244, 0xf4}], 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c00d147000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x68}, 0x2063) syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x2, 0xffffffffffffff85, 0x0, 0x0, 0x2}, 0x1) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000000480)=""/56, 0x38}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/12, 0xc}, {&(0x7f0000001500)=""/186, 0xba}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/221, 0xdd}, {&(0x7f00000026c0)=""/28, 0x1c}, {&(0x7f0000002700)=""/89, 0x59}, {&(0x7f0000002780)=""/183, 0xb7}], 0x9, &(0x7f0000002900)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}, 0x2) 20:01:09 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0xffffff7f00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:09 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x3e63d3ca}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x10) ioctl$UI_BEGIN_FF_ERASE(r3, 0xc00c55ca, &(0x7f0000000140)={0xf, 0x7f, 0x9}) 20:01:10 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/dvb_core', 0x402000, 0x90) recvmsg$unix(r0, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000000)={@none, 0xfff}) 20:01:10 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2, 0x0) 20:01:10 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xffffff7f00000000, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:10 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x9, 0x880) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000040)=""/52) [ 3233.735677][ T22] audit: type=1400 audit(1635105670.010:232): avc: denied { read } for pid=476 comm="syz-executor.3" name="/" dev="configfs" ino=276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 20:01:10 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2, 0x0) 20:01:10 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x200002) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="580003ddff0900000000000007ff00fffffffb000000810c000340fffffff90c000200ffffffff6e09b1d33f15507b0f62fffd000000090c000200fffffffc00008000"], 0x58}, 0x1, 0x0, 0x0, 0x400c041}, 0x4800) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3233.806913][ T22] audit: type=1400 audit(1635105670.040:233): avc: denied { open } for pid=476 comm="syz-executor.3" path="/sys/kernel/config" dev="configfs" ino=276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 3233.830991][ T488] FAULT_INJECTION: forcing a failure. [ 3233.830991][ T488] name failslab, interval 1, probability 0, space 0, times 0 [ 3233.853777][ T488] CPU: 1 PID: 488 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3233.865228][ T488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3233.875277][ T488] Call Trace: [ 3233.878559][ T488] dump_stack+0x18e/0x1de [ 3233.882907][ T488] should_fail+0x5d8/0x740 [ 3233.887312][ T488] ? device_add+0xcb/0x1820 [ 3233.891978][ T488] should_failslab+0x5/0x20 [ 3233.896470][ T488] kmem_cache_alloc_trace+0x39/0x2b0 [ 3233.901739][ T488] device_add+0xcb/0x1820 [ 3233.906053][ T488] ? kobject_set_name_vargs+0x5d/0x110 [ 3233.911498][ T488] ? kstrdup_const+0x6c/0x90 [ 3233.916087][ T488] ? memcpy+0x38/0x50 [ 3233.920078][ T488] device_create_vargs+0x1b8/0x210 [ 3233.925180][ T488] device_create+0x86/0xb0 [ 3233.929580][ T488] ? vsnprintf+0x1a07/0x1aa0 [ 3233.934156][ T488] bdi_register_va+0x89/0x5e0 [ 3233.938821][ T488] bdi_register+0x80/0xa0 [ 3233.943132][ T488] ? __device_add_disk+0x50a/0x1220 [ 3233.948314][ T488] bdi_register_owner+0x56/0xf0 [ 3233.953149][ T488] __device_add_disk+0x583/0x1220 [ 3233.958244][ T488] loop_add+0x554/0x710 [ 3233.962383][ T488] loop_control_ioctl+0x468/0x680 [ 3233.967389][ T488] ? xor_init+0x60/0x60 [ 3233.971546][ T488] do_vfs_ioctl+0x6fb/0x15b0 [ 3233.976150][ T488] __x64_sys_ioctl+0xd4/0x110 [ 3233.980813][ T488] do_syscall_64+0xcb/0x1e0 [ 3233.985300][ T488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3233.991173][ T488] RIP: 0033:0x7f145855da39 [ 3233.995571][ T488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3234.015159][ T488] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3234.023560][ T488] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3234.031521][ T488] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3234.039476][ T488] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3234.047432][ T488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3234.055385][ T488] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3234.079415][ T488] ------------[ cut here ]------------ [ 3234.084894][ T488] WARNING: CPU: 1 PID: 488 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3234.093804][ T488] Modules linked in: [ 3234.097691][ T488] CPU: 1 PID: 488 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3234.109120][ T488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3234.119169][ T488] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3234.124960][ T488] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3234.144548][ T488] RSP: 0018:ffff8881f2fffce8 EFLAGS: 00010246 [ 3234.151730][ T488] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3234.159686][ T488] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3234.167664][ T488] RBP: ffff8881ef75de88 R08: ffffffff82147afe R09: ffffed103e5ffeda [ 3234.175622][ T488] R10: ffffed103e5ffeda R11: 0000000000000000 R12: dffffc0000000000 [ 3234.183581][ T488] R13: 1ffff1103e45dc01 R14: 1ffff1103e45dc9d R15: ffff8881f22ee000 [ 3234.191539][ T488] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3234.200448][ T488] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3234.207013][ T488] CR2: 00007f6ff9aa8058 CR3: 00000001e8513000 CR4: 00000000003406e0 [ 3234.214971][ T488] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3234.222928][ T488] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3234.230892][ T488] Call Trace: [ 3234.234171][ T488] loop_add+0x554/0x710 [ 3234.238312][ T488] loop_control_ioctl+0x468/0x680 [ 3234.243326][ T488] ? xor_init+0x60/0x60 [ 3234.247468][ T488] do_vfs_ioctl+0x6fb/0x15b0 [ 3234.252050][ T488] __x64_sys_ioctl+0xd4/0x110 [ 3234.256711][ T488] do_syscall_64+0xcb/0x1e0 [ 3234.261202][ T488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3234.267075][ T488] RIP: 0033:0x7f145855da39 [ 3234.271475][ T488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3234.291154][ T488] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3234.299548][ T488] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 20:01:10 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 47) 20:01:10 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4, 0x0) 20:01:10 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) move_mount(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00', 0x40) 20:01:10 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x8000, 0x24042) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000040)=0x1ff) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:10 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4, 0x0) 20:01:10 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0xfffffffffffffffc, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x3, 0x20004) socketpair(0x6, 0x2, 0x0, &(0x7f0000000000)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r1) 20:01:10 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x8, 0x0) [ 3234.307508][ T488] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3234.315467][ T488] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3234.323430][ T488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3234.331385][ T488] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3234.339346][ T488] ---[ end trace 7aed1b66616f08bf ]--- 20:01:10 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r2) bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) mknodat(r3, &(0x7f0000000080)='./file0\x00', 0x10, 0x5) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) 20:01:10 executing program 0: syz_mount_image$f2fs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="2b001d4253dda26bee9380dab3c56cdbc3ad35b79ba13cd0923f03da84e8a3189a4be3dcfa3e77791bb644bd85f492eacf6c"]) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:10 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x392, 0x0) 20:01:10 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8, 0x0) 20:01:10 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x8202, 0x141000) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/workqueue', 0x0, 0x100) syz_genetlink_get_family_id$fou(&(0x7f0000000000), r1) [ 3234.454070][ T513] FAULT_INJECTION: forcing a failure. [ 3234.454070][ T513] name failslab, interval 1, probability 0, space 0, times 0 [ 3234.491284][ T513] CPU: 0 PID: 513 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3234.502739][ T513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3234.512951][ T513] Call Trace: [ 3234.516232][ T513] dump_stack+0x18e/0x1de [ 3234.520549][ T513] should_fail+0x5d8/0x740 [ 3234.524957][ T513] ? __kernfs_new_node+0x47/0x630 [ 3234.529977][ T513] should_failslab+0x5/0x20 [ 3234.534497][ T513] __kmalloc_track_caller+0x5d/0x2e0 [ 3234.539771][ T513] kstrdup_const+0x51/0x90 [ 3234.544176][ T513] __kernfs_new_node+0x47/0x630 [ 3234.549100][ T513] ? bdi_register+0x80/0xa0 [ 3234.553585][ T513] ? bdi_register_owner+0x56/0xf0 [ 3234.558597][ T513] ? loop_add+0x554/0x710 [ 3234.562911][ T513] ? loop_control_ioctl+0x468/0x680 [ 3234.568091][ T513] ? do_vfs_ioctl+0x6fb/0x15b0 [ 3234.572836][ T513] ? __x64_sys_ioctl+0xd4/0x110 [ 3234.577672][ T513] ? do_syscall_64+0xcb/0x1e0 [ 3234.582331][ T513] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3234.588384][ T513] kernfs_create_dir_ns+0x90/0x220 [ 3234.593604][ T513] sysfs_create_dir_ns+0x14e/0x2f0 [ 3234.598706][ T513] kobject_add_internal+0x595/0xbd0 [ 3234.603894][ T513] kobject_add+0x100/0x1a0 [ 3234.608306][ T513] ? get_device_parent+0x2cd/0x430 [ 3234.613405][ T513] device_add+0x417/0x1820 [ 3234.617811][ T513] device_create_vargs+0x1b8/0x210 [ 3234.622908][ T513] device_create+0x86/0xb0 [ 3234.627308][ T513] ? vsnprintf+0x1a07/0x1aa0 [ 3234.631887][ T513] bdi_register_va+0x89/0x5e0 [ 3234.636634][ T513] bdi_register+0x80/0xa0 [ 3234.640952][ T513] ? __device_add_disk+0x50a/0x1220 [ 3234.646134][ T513] bdi_register_owner+0x56/0xf0 [ 3234.650984][ T513] __device_add_disk+0x583/0x1220 [ 3234.655999][ T513] loop_add+0x554/0x710 [ 3234.660144][ T513] loop_control_ioctl+0x468/0x680 [ 3234.665334][ T513] ? xor_init+0x60/0x60 [ 3234.669484][ T513] do_vfs_ioctl+0x6fb/0x15b0 [ 3234.674068][ T513] __x64_sys_ioctl+0xd4/0x110 [ 3234.678901][ T513] do_syscall_64+0xcb/0x1e0 [ 3234.683399][ T513] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3234.689275][ T513] RIP: 0033:0x7f145855da39 [ 3234.693673][ T513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3234.713274][ T513] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3234.721774][ T513] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3234.729818][ T513] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3234.737774][ T513] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3234.745728][ T513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3234.753699][ T513] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3234.767375][ T513] kobject_add_internal failed for 7:0 (error: -12 parent: bdi) [ 3234.775280][ T513] ------------[ cut here ]------------ [ 3234.780794][ T513] WARNING: CPU: 0 PID: 513 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3234.789699][ T513] Modules linked in: [ 3234.793583][ T513] CPU: 0 PID: 513 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3234.805008][ T513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3234.815066][ T513] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3234.820856][ T513] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3234.840719][ T513] RSP: 0018:ffff8881c781fce8 EFLAGS: 00010246 [ 3234.846773][ T513] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3234.854731][ T513] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3234.862684][ T513] RBP: ffff8881ef75efa8 R08: ffffffff82147afe R09: 0000000000000010 [ 3234.870639][ T513] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3234.878683][ T513] R13: 1ffff110391a9001 R14: 1ffff110391a909d R15: ffff8881c8d48000 [ 3234.886639][ T513] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3234.895552][ T513] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3234.902122][ T513] CR2: 00007f6ff771c718 CR3: 00000001ee710000 CR4: 00000000003406f0 [ 3234.910169][ T513] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3234.918126][ T513] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3234.926098][ T513] Call Trace: [ 3234.929379][ T513] loop_add+0x554/0x710 [ 3234.933523][ T513] loop_control_ioctl+0x468/0x680 [ 3234.938543][ T513] ? xor_init+0x60/0x60 [ 3234.942689][ T513] do_vfs_ioctl+0x6fb/0x15b0 [ 3234.947268][ T513] __x64_sys_ioctl+0xd4/0x110 [ 3234.951933][ T513] do_syscall_64+0xcb/0x1e0 [ 3234.956427][ T513] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3234.962302][ T513] RIP: 0033:0x7f145855da39 [ 3234.966702][ T513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3234.986291][ T513] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3234.994687][ T513] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:11 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 48) 20:01:11 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200040, 0x20) 20:01:11 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x390, 0x0) 20:01:11 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:11 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x1020, 0x0) 20:01:11 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x2) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1c, 0x9, &(0x7f0000000000)=@raw=[@generic={0x3, 0x3, 0xa, 0xffff, 0xa3}, @call={0x85, 0x0, 0x0, 0x2f}, @alu={0x7, 0x0, 0x7, 0x2, 0x3, 0x18}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xfffffffe}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x4}, @alu={0x4, 0x0, 0x0, 0x4, 0x9, 0x6, 0x8}, @call={0x85, 0x0, 0x0, 0x65}], &(0x7f0000000080)='syzkaller\x00', 0xffffffff, 0x3b, &(0x7f00000000c0)=""/59, 0x41000, 0xf, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x7, 0x6}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x2000001, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_mmap}, {@mmap}, {@cachetag}, {@debug={'debug', 0x3d, 0xd3ee}}, {@cache_none}, {@access_user}], [{@obj_type={'obj_type', 0x3d, '^*]'}}, {@obj_role={'obj_role', 0x3d, '\x00'}}]}}) [ 3235.002642][ T513] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3235.010596][ T513] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3235.018548][ T513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3235.026511][ T513] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3235.034467][ T513] ---[ end trace 7aed1b66616f08c0 ]--- 20:01:11 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2010, 0x0) 20:01:11 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x402881, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000140)={'syz1\x00', {0xa019, 0x5, 0x97, 0x7fff}, 0x33, [0x3, 0x835, 0x1000, 0x3f, 0x1, 0x1000, 0x10001, 0x4, 0x6, 0x7f, 0x0, 0x4, 0x401, 0x4, 0x7fffffff, 0x9, 0x6, 0x4, 0x2, 0x2, 0x5, 0xd9, 0x80000001, 0x9, 0x800, 0x3, 0x0, 0xf2, 0x7b47, 0x3, 0x4, 0x1, 0xa4e, 0xe6, 0x0, 0x5, 0xe25, 0x3, 0x8c0000, 0x8, 0x2, 0x100, 0x6, 0x7, 0x9, 0x2, 0xfffffff7, 0x6, 0x8001, 0x8, 0x1000, 0x401, 0x4, 0x6, 0x400, 0x401, 0x3f, 0x220, 0x2, 0x7fee, 0x8d02, 0x7, 0xff4, 0x80000001], [0x20, 0x400, 0x0, 0x8, 0x0, 0x98, 0x4, 0x0, 0x4, 0x270c23c4, 0xf0000000, 0x1, 0x4, 0xff, 0x0, 0xfffffff9, 0x81, 0x401, 0x0, 0x3, 0x5, 0xfffffffa, 0x2, 0x69, 0x171, 0x9, 0x3f, 0x8, 0x0, 0xc87, 0x5, 0x7, 0x20, 0x8c, 0x878, 0x0, 0x9, 0x3ff, 0x200, 0x83a4, 0x80, 0x3f, 0x3, 0x5, 0xd5, 0x7, 0x12a75f1c, 0xffffffff, 0x2, 0x5, 0x0, 0xffff, 0x4, 0x1, 0x8, 0xfff, 0xa09, 0x3, 0x3, 0x3, 0x10000, 0x13a, 0xaff, 0x9], [0x1, 0x9, 0x1b, 0x0, 0x10001, 0x6, 0xffffffff, 0x9, 0x1, 0x1f, 0x8, 0x1, 0x1d5, 0xbb3, 0x7fff, 0xffc0000, 0x3, 0x7, 0x6, 0x8001, 0x6, 0x7, 0xfff, 0x1, 0x52, 0x8, 0x8001, 0x4, 0x100, 0x6, 0x7, 0x1, 0x1, 0x3, 0x20, 0x4, 0x7fff, 0x0, 0xfffffffd, 0xfffffffe, 0x1, 0x0, 0x401, 0x9, 0x8001, 0xa00000, 0x8, 0x43, 0x2, 0x4c02, 0x8, 0x1, 0x400, 0x5, 0x5bb5, 0x0, 0x8001, 0x1, 0x5, 0x8, 0x9, 0x1, 0x3, 0x3], [0xae99, 0x2, 0x0, 0x5, 0x200, 0x400, 0x800, 0x2, 0x400, 0x3db, 0xfffffff8, 0x9, 0x101, 0x3, 0x800, 0x4, 0x55e, 0x1, 0x10001, 0xff, 0x10000, 0x40004000, 0x4, 0x9, 0x200, 0x5, 0x7, 0x8, 0x5, 0x4, 0xe69b, 0x8, 0x1, 0x3, 0xab, 0x100, 0x0, 0x8001, 0x7fffffff, 0x51ac, 0x7, 0x1f, 0x7, 0x2, 0x8, 0xacfd, 0x6, 0x8, 0x2, 0x8, 0x9, 0x8001, 0x2, 0xb0, 0x2018, 0x81, 0x200, 0x7, 0x9, 0x401, 0xc8, 0x9, 0x4, 0x8]}, 0x45c) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/nf_conntrack_h323', 0x2000, 0x0) ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080)) 20:01:11 executing program 0: mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x10021, &(0x7f0000000080)=ANY=[@ANYRES64=0x0]) r0 = geteuid() r1 = getgid() sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000002c80)={&(0x7f0000002bc0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002c40)={&(0x7f0000002c00)={0x28, 0x0, 0x10, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}}]}, 0x28}, 0x1, 0x0, 0x0, 0x805}, 0x4000000) r2 = getuid() syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x9, &(0x7f0000002a80)=[{&(0x7f0000000580)="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", 0x1000, 0x8}, {&(0x7f0000001580)="b7b289f3c201264996c107fb990862179f5d3986a1a6b8ff600d1acf61c996b5c6ac3ba1c431845a2000bc528d9f0e83121d8401572468e912ff687565f154b43bc0f4ad67817170cf2d17d6421c97ae0c5fc5ab397ab737c7ceba53db7378543b519431cb565433beaf2d0fc04be885b50010784bdb3a0a3e7cea8599342ab393e2287cd63f66fdec29ec6dea035b262e1e97b5", 0x94, 0x3}, {&(0x7f0000001640)="bd5b820f0f256001b40c926f319f4bc515d51f63df72cc63f7037dd19eb8054ade1bf3a7317c69b7816e2f8164e95375baaccab9e8ea7081d5debb258fa43a31cc7d6ef07d1c88b5afa07cca5cbdb4ff1fb7e3c8813d0bf2919f0aded031e9403e8ba51a09ee2c58ad727f1daa19e6726cdaf8867f4c9e9723a03ced103ad5a6b9139af68efc11511402c3b4bf66f035c6ba75cc9263f3642fef0c7b159d1700fdc94ea8650059740ae31cd3f60a643e90", 0xb1, 0x4}, {&(0x7f0000001700)="891ae39e8db7d486261a82d47cc50192c6e9d178f05c23a146565087611feecff4c6b85c2b39b96f0b8067079d8c2001258ca89fe80618dddb95816be280be674a3fadb04aaa4c68438dd8e1c3c0ebd6053de376fba16e07e369b35de29e595f2a2a5cf89ac7a4974feadc1aea052b5e42209296d603f5ad39d89a4d76417191b516d4c9fd567a3c872566ac37f5ad2f9b8ff45185660b2e7dd82438a3a5266490d4f0909e10d70544abb4e6efae6e3c356fbc679414738991c09fcd3d5802a320ff61081d54c782455e5ad4711f54dafc068a6c5aa2817be27e", 0xda, 0x9}, {&(0x7f0000001800)="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", 0x1000, 0x2}, {&(0x7f0000002800)="d5a785cdeb5bd76c81ffa182c8c036cbe2c580c116fa2ed4e26ca639091d94e557846d1d589b91ef017a94783f4d9c7a3c283efc053f105c7f4287aa870b2a1f224cebd3ac32245a19fafc5304befe24e4523d937909371092ec03bb362751615945d3c949554c66be8fd3eb646f5074fe6641855ea8192a78cb44791f454971dd8443f635b9f0d49f90e14d85192a3d436d702252235022de2dee523c671cd6d799edafb676cad61a2487d0097cd21c908397bf61743547c27943d263c61df0b965f7b22851af19f8b34ebea2", 0xcd, 0xaf41}, {&(0x7f0000000180)="13709b0829731bd7ee5874354a7fcc11dff1a3770d8d790bde006c3a83dad5", 0x1f, 0xffffffffffffffe0}, {&(0x7f0000002900)="d433a51a2798525744eb0510d13355fdc3985d7c50a411aa553399998f5338a22cdbbd4a741d2118cad012df74b2136603b2c6c4899795cd6acf8162c4eae8429f15911e927fec0abc1bbed3c62f0f3440ed1adb91e3793e373857e926ed288c38531a3a7e74dcc6bab21d0293d913", 0x6f, 0x4}, {&(0x7f0000002980)="40a3496935b38fc30e89b0a337a146b1a5c7e32b8c157ec9d2afcf1e2c3a85152850210620291c681f8fdef5dadc338aaacad51d1c538cbc2aa324596a12e68f8b300aea9b8f2e61570178fdda1bd0d919a6561268b50d1bc28a4c9ed2502e0ed6117be870c0e3c4cdfec43d8eb09ae16bfaecf422a63ea13e63d530897d9a336f7430a2e217995dcbe8e370caf7220d0fc801666df045e578de8818decbeea89b1d8e2364999fdb567fab9abffbc327ae9619bdf4411c9db9b4462c9ec6095ddc44cf4affb36c41b09c6cee7a", 0xcd, 0x200}], 0x400, &(0x7f0000002f40)={[{@huge_never}, {@size={'size', 0x3d, [0x32, 0x39, 0x39, 0x39, 0x67]}}, {@gid={'gid', 0x3d, r1}}, {@mpol={'mpol', 0x3d, {'interleave', '', @void}}}, {@huge_never}], [{@smackfsfloor}, {@euid_eq={'euid', 0x3d, r2}}, {@subj_role={'subj_role', 0x3d, '^^}{'}}]}) syz_mount_image$f2fs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x5, 0x6, &(0x7f00000004c0)=[{&(0x7f0000000240)="1a1ba82fee6f871d2fec1d", 0xb, 0x16}, {&(0x7f0000000280)="c9f9300fc83b8a0994dc147fdbaba63866d3178c", 0x14, 0x401}, {&(0x7f00000002c0)="79dc45968f3297c61c3b396d97a916ac77bc208d081676cb0ebf4e6ee3eef4c0cc72fda256afd6f90756bcd64da12509ac2e8a0df35b52f6b9376f08271767791bacbc2b2d", 0x45, 0x5}, {&(0x7f0000000340)="acdae9e3a2bc51a5ee79056c31beda2e83", 0x11, 0xeb6}, {&(0x7f0000000380)="984d25077373b7406abb08c1137d0b9228b36aa79eda61f40ad717f3b8b88c06c25694b1c376d9e353ccb027a43fdac3b73695bd56009d06d2e1e49c6e402291ed6d96965d9bc4f9b8d3768e062a79ee7a5ccf18b1913a7e13da8e216e7f1e21be7333c1060ba3e23189653406319ee6fbd4a3eb07381d05d5dd60409cb200a45f82c9c06588a48f3a74", 0x8a, 0x3ff}, {&(0x7f0000002fc0)="130177398ab9246d6d394c9f4c5acb3bf69eadee020e6279c750d22b0cb57d5c42d81e665ba45e31cc51cd85c5e7acee58f00bd749eb92e61eb931166b57c85c8da0f0978539a9decfee2c11617a9ea234dac2361077e5b077d12ec865fa7d58a06853cf6d13f289f10ab1e63149c3c33caa8795b60592bd46edb89e31bb97cd8fd3a2587d9790d9c042b8654d5abea1184510269c7589d650d0c0eb7ca88a6f3d511a1c37dc0caa54ad96dac29cb970a21cdc261354c825099c576242b2f91252028f6d70ca5ef2eaf8600220d29e9362e610e43c79172b6b2516b8df1d", 0xde, 0xffff}], 0x80, &(0x7f0000002e40)={[{@resuid={'resuid', 0x3d, r0}}], [{@fsname={'fsname', 0x3d, '\x00\x00\x94\xfc\xc9\xcaD\xde2\x8bl!\x19\x7f\x00'}}, {@fowner_lt}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@dont_measure}, {@euid_gt={'euid>', r0}}, {@subj_type={'subj_type', 0x3d, 'fsuuid'}}]}) r3 = getgid() syz_mount_image$f2fs(&(0x7f0000000440), &(0x7f0000000480)='./file1\x00', 0xabe, 0x9, &(0x7f0000004540)=[{&(0x7f0000002f00)="c479faf39ac08f2e66aaf72d604491546e03aa4086cafd3accb53c0ecc078c39e52b", 0x22, 0x80000001}, {&(0x7f00000030c0)="239c3fda7e2ffc1541af3978cb0526295f4f50e235c0d334055c5b28592ebcf9e8cf25f5bd0af1514566c212c4c30f254e63f0c86a3059dc38cf8ba04578f11acb3e7d7e57a12dd80759415525094937ab5b5c2f8cd37bf61bdcefa64ecca3717c2100fb62a9ddf39c6b2afbf6cf23885648178e2e4f33cb72ebb90de5a4", 0x7e, 0x8a}, {&(0x7f0000003140)="b92d62b5c56444de8b398375a9e629b24083a0958b6e1b2949a8d748e0a5f211cafd32701db806ae25610a04ebf2204c30c5942cbb36bf0bcf928db7bd4638d0c4308ae88be35e071764ba353557", 0x4e, 0x7}, {&(0x7f00000031c0)="82c4a55fb7914e4ff194185142d671cbb614ec572e5d27837b24b844dc9c5ce0539667906ba09457a3c40f46f50262fb7574eb27d5b89908a5c30d2ea1add152f89e3614d33e849a5a189ee6367c95e6e27e9b2a32356e714f8946e8f0f255c420273cd675218ffd7ee88c9bb45636e745a4a9be6b98c34265048f86c812318b41b7ef68f0dc72c887543009970b7374e0f7ab725fa9326176014b11ce5ea13a73db7f9a5984107c89aca8d433c5bb2720d82e57027c431a", 0xb8, 0x4}, {&(0x7f0000003280)="6bcbf7012478f222a6647ef7421425f91322fff5ea8b613d953a63942a0f0e590c9241ddfef622f580947d8f8a82e0b164984369607d2868795a00a873e00db1fbdfab8311b4bc1c77e850b2d826f9e64d82e1b68f5818946f2290277b3852baae45cd3f577d451607a031e1aa212c86555b4392dec11addf766b612600f4fc3d99b30e5194ce293c3713611493e70e93d6b2bdea8b11a88a75ed4129281f70cc44d8c75c98a77c7c3df5233866fbaf08f91d5634ba37dadc9e3a919e643045457420122cd5baa734272621ad136028bfd9067e14fb741bfa8885a893565f334cda29cf19441849ff06b68539078907066fd8201cefe4a", 0xf7, 0x3}, {&(0x7f0000003380)="bf66019f12f2f99580fa9bbb7c5d1de4a60b1d74152eac80d522ae7ae075121e03cc47e0c570720b8b5d9f3e175730963a0a50dbb5ca33460db024d0c84801763ced9708fe3b35be662e2acca8b9d6d595d31640be36bd95296503a09b913679bb845469ac2a5f67a0f83a61335a25aea86f72b4f3f3a06181310827ed62a73f4ee7bd156712246c78d72430367b42eaf8dba638a3474ad48118eb64f75a7bc21b296b02", 0xa4, 0x100}, {&(0x7f0000003440)="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", 0x1000}, {&(0x7f0000004440)="e480efbca60c008ef5b8a4be74238ec9df6fc2beb3558a06ea3ad5ad7663e971c00dffdfd1db576ad30935e9a5134e636f6bd8a1d5df19095d11faae1148921aa77400d215de42baa1be3696fcc58d909a88d5fbe0b7fbe0861a84708d02bd97c9feaa81289943a22ad5279cbe8ff2", 0x6f, 0x80000001}, {&(0x7f00000044c0)="1cafec1396e39d67be1d30cecb030509c076287a5fcb7e0dd900f3db4b79515027f5ca105edbd81cb1ef97c7bc80231d43a11f44ec045e7b7dbd22221726a29ecc8b134c674970f894c24e93526b9655e789dc126590668795feb1ac1b", 0x5d, 0x4}], 0x20, &(0x7f0000006cc0)={[{@adaptive_mode}, {@resgid={'resgid', 0x3d, r3}}, {@noinline_dentry}, {@discard}, {@acl}, {@fsync_mode_strict}, {@fsync_mode_strict}, {@data_flush}, {@noheap}, {@grpjquota={'grpjquota', 0x3d, 'fowner<'}}], [{@euid_lt={'euid<', r2}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, 'cgroup2\x00'}}, {@uid_lt={'uid<', r0}}, {@dont_appraise}, {@fowner_eq={'fowner', 0x3d, r2}}]}) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80402, 0x2) syz_mount_image$vfat(&(0x7f0000002cc0), &(0x7f0000002d00)='./file0\x00', 0x3, 0x1, &(0x7f0000002d80)=[{&(0x7f0000002d40)="850e09d5c0b0e23a1e3121e7675df48c11297c771e92", 0x16, 0x8}], 0x5000, &(0x7f0000002dc0)={[{@shortname_mixed}, {@utf8no}, {@nonumtail}, {@utf8}], [{@context={'context', 0x3d, 'root'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@permit_directio}]}) socketpair(0xb, 0x2, 0x5, &(0x7f0000002b80)) 20:01:11 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x2, 0x7, 0x0, 0x0, 0x0, {0xc, 0x0, 0x4}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x8}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40800}, 0x1) 20:01:11 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1020, 0x0) 20:01:11 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010, 0x0) [ 3235.259933][ T552] FAULT_INJECTION: forcing a failure. [ 3235.259933][ T552] name failslab, interval 1, probability 0, space 0, times 0 [ 3235.297941][ T552] CPU: 1 PID: 552 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3235.309397][ T552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3235.319441][ T552] Call Trace: [ 3235.322720][ T552] dump_stack+0x18e/0x1de [ 3235.327043][ T552] should_fail+0x5d8/0x740 [ 3235.331446][ T552] ? __kernfs_new_node+0x8b/0x630 [ 3235.336662][ T552] should_failslab+0x5/0x20 [ 3235.341147][ T552] kmem_cache_alloc+0x36/0x290 [ 3235.345897][ T552] ? memcpy+0x38/0x50 [ 3235.349872][ T552] __kernfs_new_node+0x8b/0x630 [ 3235.354708][ T552] ? bdi_register+0x80/0xa0 [ 3235.359191][ T552] ? bdi_register_owner+0x56/0xf0 [ 3235.364198][ T552] ? loop_add+0x554/0x710 [ 3235.368509][ T552] ? loop_control_ioctl+0x468/0x680 [ 3235.373690][ T552] ? do_vfs_ioctl+0x6fb/0x15b0 [ 3235.378437][ T552] ? __x64_sys_ioctl+0xd4/0x110 [ 3235.383271][ T552] ? do_syscall_64+0xcb/0x1e0 [ 3235.387944][ T552] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3235.394016][ T552] kernfs_create_dir_ns+0x90/0x220 [ 3235.399117][ T552] sysfs_create_dir_ns+0x14e/0x2f0 [ 3235.404214][ T552] kobject_add_internal+0x595/0xbd0 [ 3235.409396][ T552] kobject_add+0x100/0x1a0 [ 3235.413799][ T552] ? get_device_parent+0x2cd/0x430 [ 3235.418898][ T552] device_add+0x417/0x1820 [ 3235.423301][ T552] device_create_vargs+0x1b8/0x210 [ 3235.428394][ T552] device_create+0x86/0xb0 [ 3235.432790][ T552] ? vsnprintf+0x1a07/0x1aa0 [ 3235.437367][ T552] bdi_register_va+0x89/0x5e0 [ 3235.442030][ T552] bdi_register+0x80/0xa0 [ 3235.446343][ T552] ? __device_add_disk+0x50a/0x1220 [ 3235.451526][ T552] bdi_register_owner+0x56/0xf0 [ 3235.456361][ T552] __device_add_disk+0x583/0x1220 [ 3235.461367][ T552] loop_add+0x554/0x710 [ 3235.465507][ T552] loop_control_ioctl+0x468/0x680 [ 3235.470513][ T552] ? xor_init+0x60/0x60 [ 3235.474653][ T552] do_vfs_ioctl+0x6fb/0x15b0 [ 3235.479319][ T552] __x64_sys_ioctl+0xd4/0x110 [ 3235.483983][ T552] do_syscall_64+0xcb/0x1e0 [ 3235.488475][ T552] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3235.494349][ T552] RIP: 0033:0x7f145855da39 [ 3235.498924][ T552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3235.518598][ T552] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3235.527084][ T552] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3235.535039][ T552] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3235.543007][ T552] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3235.550978][ T552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3235.558945][ T552] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3235.567087][ T552] kobject_add_internal failed for 7:0 (error: -12 parent: bdi) [ 3235.576084][ T552] ------------[ cut here ]------------ [ 3235.581547][ T552] WARNING: CPU: 1 PID: 552 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3235.590466][ T552] Modules linked in: [ 3235.594362][ T552] CPU: 1 PID: 552 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3235.605797][ T552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3235.615957][ T552] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3235.621748][ T552] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3235.641340][ T552] RSP: 0018:ffff8881e51b7ce8 EFLAGS: 00010246 [ 3235.647431][ T552] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3235.655395][ T552] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3235.663353][ T552] RBP: ffff8881ef0e1178 R08: ffffffff82147afe R09: 0000000000000010 [ 3235.671308][ T552] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3235.679260][ T552] R13: 1ffff110390c6801 R14: 1ffff110390c689d R15: ffff8881c8634000 [ 3235.687219][ T552] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3235.696132][ T552] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3235.702703][ T552] CR2: 0000001b2db21000 CR3: 00000001ee710000 CR4: 00000000003406e0 [ 3235.710661][ T552] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3235.718621][ T552] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3235.726574][ T552] Call Trace: [ 3235.729851][ T552] loop_add+0x554/0x710 [ 3235.733994][ T552] loop_control_ioctl+0x468/0x680 [ 3235.739005][ T552] ? xor_init+0x60/0x60 [ 3235.743160][ T552] do_vfs_ioctl+0x6fb/0x15b0 [ 3235.747750][ T552] __x64_sys_ioctl+0xd4/0x110 [ 3235.752422][ T552] do_syscall_64+0xcb/0x1e0 [ 3235.756918][ T552] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3235.762802][ T552] RIP: 0033:0x7f145855da39 [ 3235.767215][ T552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3235.786940][ T552] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3235.795342][ T552] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3235.803300][ T552] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:12 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 49) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4000, 0x0) 20:01:12 executing program 3: r0 = getpgrp(0xffffffffffffffff) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="100200000d0a01047b18c026bd7000fcdbdf25070000013fde6d83c9808401358008004e00ab727a020a2c637eabfee47c3e187c1525858eccc9b087a15feb40ba60dda0c54b62562b8e988fbc143a2ea7be1f53d698c3102e2f4907dc97e05943ab1f13267406937d3b6545c847ba1a9635772a08a3739956720a77397a0760ea5631aff36040cb92aaad", @ANYRES32, @ANYRES16=r0, @ANYRES32=r0, @ANYBLOB="68ee1c2b448578d48ac60757008f1dc7dff76c8ca79322137500095debf864b3f7ba3acff5196a372816eb63876b6d94b028df3a6348804fa7871866c0843d3c5e39cc73eda009ccb58cf61e3d7d13744be226669075fe3eb9e39a07dbbad8da22633a3d53702da5ac87156cabc48712cafff200"], 0x210}, 0x1, 0x0, 0x0, 0x40}, 0x20004010) getpriority(0x1, r0) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x4, 0x441) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) ioctl$UI_SET_ABSBIT(r2, 0x40045567, 0x6) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4000, 0x0) 20:01:12 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) r2 = getpgrp(0xffffffffffffffff) r3 = getuid() sendmsg$nl_netfilter(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x1358, 0x13, 0x4, 0x3, 0x70bd2a, 0x25dfdbfc, {0x1, 0x0, 0x2}, [@nested={0x11c7, 0x2, 0x0, 0x1, [@generic="8e5f4ea6b2091ae8e0a1dc9040306c0784f52ac4da40c15f437a2b006c7efc88df9ff2f050e879a64fdb900b0ed5efb02fcd3ef6892144970f1e379b44d88906057b45a0ff6cc2b04e9ad223b6278543df8edd9954400ac39c0c3b2a13e268ece5fb4e2623900bf64202aea1f1e371a66db1a7ad80d72c9d59c5ff45ab06e2be3a2bff7b426bddaa18bee3167d7f4ea41185a72b961b6ac363abe8504b79a7c6c31741adf6e67a7ae65eada6845032c7f01fcb829326f23ef1985273d997860b7796030fdb837f98a35b3101b9604d7c257e3cccb93caf042b141c00a75e14314919e6f0d748c9f0d42d7ef58a06a3", @generic="2341baa18086fd98c58b59f5cd4f445968895acabee6d7281507f07c1535adf33d2c7f3c664141ce0155407447f8c4e6fce96912e79065d4c036cb7bf67285d00e9482b25a20f4653a8071ef0a84db9b39a60fa82808f46f0e14588e99b2234fb91930dfc4b4684ff30e5fdee47dc4bc382d71fe1bfbb8773fb384671d3a1ea1524820bf69b9e6b6622bf104fc25cc3a9f8e7a300c507d7dd6a403acae4ccf2a70fc8047aff1", @generic="df22a35b7b3d2868734fdd50300632b9b46a", @typed={0x8, 0x12, 0x0, 0x0, @pid=r2}, @generic="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", @typed={0x13, 0x87, 0x0, 0x0, @binary="793fb3dc7c9865d2e5634b8fe87270"}]}, @typed={0x8, 0x2, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x29, 0x0, 0x0, @uid}, @nested={0x163, 0x7a, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @pid}, @typed={0x8, 0x47, 0x0, 0x0, @uid=r3}, @generic="8ca2d2af1f96f0ede99840a6391b06aa79c72f4e4694e74f7bd5500750cc0b983e2f100ec64bd4ec436943a4809c06957b44042063e600b2252c8d0f52e0574ee9abfa2cb5373f0b77a0275b83c65eccdc09912a7af9dde4c1a5f0a2431bee3829bf93a7804cf4cfd403356e5573101068c5908ffb8b12123fed920889b5cfe7a2c05cec590b0d7dc7b047bb7970d520d5d43983c1c29dcd9169b18379d314ddcd396e26be0d7e0a93c57314be0d39929b59f116d5b85f3e4b36048810728d9fc541", @typed={0x4, 0x1b}, @generic="800e8b822d24da6fe756913dd153972b98bf3af6beb1293eb9fcddc88e4945cf86911f3b0df279c066b85cc76704365f2c52afa5d4c154321533c71dd1223ee140f4b22bae28f7f1dfdba09dc3c69c93273edd01f7", @typed={0x8, 0xf, 0x0, 0x0, @fd=r0}, @typed={0x4, 0x5b}, @typed={0x27, 0x75, 0x0, 0x0, @binary="72d5964c23651af3c7f11e6c27959cd49cc7948f0c89813d8b8d6c7b0df54dec285005"}]}, @typed={0x8, 0x52, 0x0, 0x0, @ipv4=@remote}]}, 0x1358}, 0x1, 0x0, 0x0, 0x6319a9b10bb495ca}, 0x20000000) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:12 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x311a40, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)={&(0x7f00000002c0)='.\x00', 0x0, 0x10}, 0x10) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4, 0x30, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0xbfc, &(0x7f0000000040)={0x0, 0xd1ba, 0x20, 0x0, 0x333}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) ioctl$UI_BEGIN_FF_ERASE(r3, 0xc00c55ca, &(0x7f0000000340)={0xd, 0xfffffffc, 0x80000001}) pivot_root(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='./file0\x00') syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x5, 0x0, r0, &(0x7f0000000140), &(0x7f0000000240)='./file0\x00', 0x1, 0x400}, 0xfff) [ 3235.811260][ T552] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3235.819234][ T552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3235.827188][ T552] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3235.835150][ T552] ---[ end trace 7aed1b66616f08c1 ]--- 20:01:12 executing program 0: prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001600), 0x84040, 0x0) sendmsg$FOU_CMD_GET(r0, &(0x7f0000001740)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001700)={&(0x7f0000001680)={0x70, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_PEER_V4={0x8, 0x8, @remote}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0x1a}}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_IFINDEX={0x8}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000040}, 0x80) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000100), 0x6e, &(0x7f0000001380)=[{&(0x7f0000000180)=""/32, 0x20}, {&(0x7f00000001c0)=""/183, 0xb7}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/247, 0xf7}], 0x4, &(0x7f00000013c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x78}, 0x1) getresuid(&(0x7f0000001480)=0x0, &(0x7f00000014c0), &(0x7f0000001500)) mount$cgroup2(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10, &(0x7f0000001540)=ANY=[@ANYBLOB="6d656d6f72795f6c6f63616c6576656e74732c6f626a5f747970653d5c2f2d275d1f402c736d61636b66736861743d292c6f626a5f747970653d2c7375626a5f726f6c653d2c736d61636b66736861743d2a5d2c6f626a5f726f6c653d5d2b2e287b3a2c7d282c2c6f626a5f757365723d905d232c7569643d", @ANYRESDEC=r1, @ANYBLOB=',euid<', @ANYRESDEC=r2, @ANYBLOB='\x00\x00']) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9003, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x9203, 0x0) [ 3235.912477][ T569] FAULT_INJECTION: forcing a failure. [ 3235.912477][ T569] name failslab, interval 1, probability 0, space 0, times 0 [ 3235.925191][ T569] CPU: 1 PID: 569 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3235.936624][ T569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3235.946662][ T569] Call Trace: [ 3235.949941][ T569] dump_stack+0x18e/0x1de [ 3235.954260][ T569] should_fail+0x5d8/0x740 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc0, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xedc0, 0x0) [ 3235.958756][ T569] ? device_add+0x417/0x1820 [ 3235.963333][ T569] ? radix_tree_node_alloc+0x18c/0x370 [ 3235.968778][ T569] should_failslab+0x5/0x20 [ 3235.973266][ T569] kmem_cache_alloc+0x36/0x290 [ 3235.978014][ T569] ? __x64_sys_ioctl+0xd4/0x110 [ 3235.982849][ T569] ? do_syscall_64+0xcb/0x1e0 [ 3235.987515][ T569] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3235.993568][ T569] radix_tree_node_alloc+0x18c/0x370 [ 3235.998859][ T569] idr_get_free+0x2aa/0x900 [ 3236.003362][ T569] idr_alloc_cyclic+0x170/0x510 [ 3236.008201][ T569] __kernfs_new_node+0xdd/0x630 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x40000, 0x0) [ 3236.013034][ T569] ? bdi_register+0x80/0xa0 [ 3236.017527][ T569] ? loop_control_ioctl+0x468/0x680 [ 3236.022711][ T569] ? __x64_sys_ioctl+0xd4/0x110 [ 3236.027547][ T569] ? do_syscall_64+0xcb/0x1e0 [ 3236.032219][ T569] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.038272][ T569] kernfs_create_dir_ns+0x90/0x220 [ 3236.043370][ T569] sysfs_create_dir_ns+0x14e/0x2f0 [ 3236.048470][ T569] kobject_add_internal+0x595/0xbd0 [ 3236.053657][ T569] kobject_add+0x100/0x1a0 [ 3236.058062][ T569] ? get_device_parent+0x2cd/0x430 [ 3236.063153][ T569] device_add+0x417/0x1820 [ 3236.067561][ T569] device_create_vargs+0x1b8/0x210 [ 3236.072657][ T569] device_create+0x86/0xb0 [ 3236.077059][ T569] ? vsnprintf+0x1a07/0x1aa0 [ 3236.081639][ T569] bdi_register_va+0x89/0x5e0 [ 3236.086305][ T569] bdi_register+0x80/0xa0 [ 3236.090708][ T569] ? __device_add_disk+0x50a/0x1220 [ 3236.095911][ T569] bdi_register_owner+0x56/0xf0 [ 3236.100747][ T569] __device_add_disk+0x583/0x1220 [ 3236.105760][ T569] loop_add+0x554/0x710 [ 3236.109903][ T569] loop_control_ioctl+0x468/0x680 [ 3236.114910][ T569] ? xor_init+0x60/0x60 [ 3236.119050][ T569] do_vfs_ioctl+0x6fb/0x15b0 [ 3236.123629][ T569] __x64_sys_ioctl+0xd4/0x110 [ 3236.128292][ T569] do_syscall_64+0xcb/0x1e0 [ 3236.132782][ T569] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.138832][ T569] RIP: 0033:0x7f145855da39 [ 3236.143237][ T569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:12 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 50) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x40000, 0x0) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1fffff, 0x0) 20:01:12 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x80000000, 0x402) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:12 executing program 0: sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x80, 0x3, 0x6, 0x3, 0x0, 0x0, {0xc, 0x0, 0x9}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x80}, 0x1, 0x0, 0x0, 0x40004}, 0x14008000) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wpan3\x00'}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) 20:01:12 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x50, 0x2, 0x7, 0x101, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x400}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x6}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x80) ioctl$EVIOCGREP(0xffffffffffffffff, 0x80004508, 0x0) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="02002cbd700000dba6170cce2a7ba61f08650000000400fa00000004000000"], 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) [ 3236.162823][ T569] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3236.171229][ T569] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3236.179184][ T569] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3236.187137][ T569] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3236.195092][ T569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3236.203046][ T569] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x1fffff, 0x0) 20:01:12 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000000)=""/7) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040), 0x4) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x1000000, 0x0) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, 0x0) [ 3236.287886][ T593] FAULT_INJECTION: forcing a failure. [ 3236.287886][ T593] name failslab, interval 1, probability 0, space 0, times 0 [ 3236.300871][ T593] CPU: 1 PID: 593 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3236.312307][ T593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3236.322350][ T593] Call Trace: [ 3236.325632][ T593] dump_stack+0x18e/0x1de [ 3236.329952][ T593] should_fail+0x5d8/0x740 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2000000, 0x0) [ 3236.334359][ T593] ? radix_tree_node_alloc+0x18c/0x370 [ 3236.339803][ T593] should_failslab+0x5/0x20 [ 3236.344298][ T593] kmem_cache_alloc+0x36/0x290 [ 3236.349063][ T593] ? __x64_sys_ioctl+0xd4/0x110 [ 3236.353900][ T593] ? do_syscall_64+0xcb/0x1e0 [ 3236.358566][ T593] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.364707][ T593] radix_tree_node_alloc+0x18c/0x370 [ 3236.369984][ T593] idr_get_free+0x2aa/0x900 [ 3236.374478][ T593] idr_alloc_cyclic+0x170/0x510 [ 3236.379322][ T593] __kernfs_new_node+0xdd/0x630 [ 3236.384243][ T593] ? bdi_register+0x80/0xa0 [ 3236.388743][ T593] ? loop_control_ioctl+0x468/0x680 [ 3236.393932][ T593] ? __x64_sys_ioctl+0xd4/0x110 [ 3236.398770][ T593] ? do_syscall_64+0xcb/0x1e0 [ 3236.403442][ T593] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.409491][ T593] kernfs_create_dir_ns+0x90/0x220 [ 3236.414578][ T593] sysfs_create_dir_ns+0x14e/0x2f0 [ 3236.419662][ T593] kobject_add_internal+0x595/0xbd0 [ 3236.424838][ T593] kobject_add+0x100/0x1a0 [ 3236.429243][ T593] ? get_device_parent+0x2cd/0x430 [ 3236.434325][ T593] device_add+0x417/0x1820 [ 3236.438717][ T593] device_create_vargs+0x1b8/0x210 [ 3236.443811][ T593] device_create+0x86/0xb0 [ 3236.448199][ T593] ? vsnprintf+0x1a07/0x1aa0 [ 3236.452759][ T593] bdi_register_va+0x89/0x5e0 [ 3236.457408][ T593] bdi_register+0x80/0xa0 [ 3236.461708][ T593] ? __device_add_disk+0x50a/0x1220 [ 3236.466878][ T593] bdi_register_owner+0x56/0xf0 [ 3236.471698][ T593] __device_add_disk+0x583/0x1220 [ 3236.476696][ T593] loop_add+0x554/0x710 [ 3236.480823][ T593] loop_control_ioctl+0x468/0x680 [ 3236.485822][ T593] ? xor_init+0x60/0x60 [ 3236.489964][ T593] do_vfs_ioctl+0x6fb/0x15b0 [ 3236.494527][ T593] __x64_sys_ioctl+0xd4/0x110 [ 3236.499271][ T593] do_syscall_64+0xcb/0x1e0 [ 3236.503746][ T593] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.509606][ T593] RIP: 0033:0x7f145855da39 [ 3236.513993][ T593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:12 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 51) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x8000000, 0x0) 20:01:12 executing program 0: openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x50400, 0x290) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x80}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xd78}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x40) 20:01:12 executing program 3: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x1, &(0x7f0000000000)={0x0, 0x3938700}, 0x1, 0x1, 0x1}, 0xfff) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x6, 0x0) pselect6(0x40, &(0x7f0000000080)={0x3, 0x821, 0x1000, 0x4, 0x7, 0x80000000, 0xfffffffffffffffb, 0x3}, &(0x7f00000000c0)={0xfb, 0x5, 0xd5f7, 0x623f, 0xc6, 0x6, 0x10001, 0x7ff}, &(0x7f0000000140)={0xfffffffffffffffe, 0x6, 0x0, 0x7, 0x100000000, 0x178, 0x80000001}, &(0x7f0000000180), &(0x7f0000000200)={&(0x7f00000001c0)={[0xffffffffffffffc1]}, 0x8}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x1c}}, 0xc051) [ 3236.533572][ T593] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3236.541955][ T593] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3236.549899][ T593] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3236.557859][ T593] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3236.565829][ T593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3236.573976][ T593] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:12 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f00000001c0)=""/173) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf25210000000c00060002000000000000000c000600dd509d98614e92d3"], 0x2c}, 0x1, 0x0, 0x0, 0x20008010}, 0x4000014) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x5) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0xe6ebba85a1a78653, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_loose}], [{@uid_lt={'uid<', 0xee00}}, {@subj_user}, {@fsmagic={'fsmagic', 0x3d, 0x4}}]}}) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x20100000, 0x0) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20100000, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x40000000, 0x0) 20:01:12 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000100)=@nat={'nat\x00', 0x1b, 0x5, 0xba8, 0x0, 0x250, 0xffffffff, 0x250, 0x250, 0xb10, 0xb10, 0xffffffff, 0xb10, 0xb10, 0x5, &(0x7f0000000080), {[{{@uncond, 0x0, 0xa0, 0xd8, 0x0, {}, [@common=@addrtype={{0x30}, {0x88, 0x10, 0x1}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x2, @broadcast, @multicast2, @gre_key=0x9, @gre_key=0x20}}}}, {{@ip={@multicast1, @dev={0xac, 0x14, 0x14, 0x37}, 0xffffffff, 0xffffff00, 'lo\x00', 'dummy0\x00', {0xff}, {0xff}, 0x1, 0x1}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x2, [0x5, 0x6, 0x1, 0x4, 0x2, 0x4]}, {0x0, [0x0, 0x3, 0x1, 0x1, 0x1, 0x4], 0x2, 0x5}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @local, @empty, @icmp_id=0x65, @icmp_id=0x64}}}}, {{@uncond, 0x0, 0x878, 0x8c0, 0x0, {}, [@common=@unspec=@u32={{0x7e0}, {[{[{0x7ff, 0x3}, {0x9, 0x2}, {0x3}, {0x2, 0x2}, {0x401}, {0x7cd8, 0x2}, {0x1ff}, {0x80000000}, {0xda34}, {0x4, 0x1}, {0x1, 0x1}], [{0x5, 0x9}, {0xde58, 0x1ff}, {0x6, 0x800}, {0x401, 0x10001}, {0x9, 0x4}, {0x0, 0xffffffff}, {0x1, 0x5}, {0x9, 0x5af}, {0xffffffff, 0x7a}, {0x20, 0x1}, {0x8, 0x1}], 0x4, 0x8}, {[{0x4, 0x1}, {0x2, 0x1}, {0x5}, {0x80000001, 0x3}, {0xfefe, 0x2}, {0x1}, {0x8, 0x3}, {0x81, 0x1}, {0xfffffe00, 0x3}, {0x1, 0x3}, {0x401, 0x2}], [{0x42, 0x3}, {0x4, 0x3}, {0x3, 0x6}, {0x2, 0x2}, {0xb71, 0x80}, {0x4, 0x68e}, {0x4, 0x1000}, {0x6, 0x21}, {0x0, 0x3a91d007}, {0xf84b, 0xfffffff7}, {0x5b26, 0x9}], 0xb, 0x4}, {[{0x9ef3, 0x3}, {0x8000, 0x2}, {0x101, 0x3}, {0x101, 0x2}, {0x9, 0x2}, {0x0, 0x2}, {0x6, 0x1}, {0x1ed574e9}, {0xc022}, {0x2, 0x2}, {0x4}], [{0x3, 0xd657}, {0x400, 0x7}, {0x5, 0x82dd}, {0x9e5, 0xfffffff7}, {0x2be7, 0x1}, {0x401}, {0x9, 0x400}, {0xa9, 0x6}, {0xf17}, {0x7, 0x8ee4}, {0x6, 0xff7}], 0x1, 0x3}, {[{0x8d2, 0x2}, {0x7, 0x2}, {0x9}, {0x2, 0x1}, {0x0, 0x1}, {0x5, 0x3}, {0xffffffe0}, {0x3, 0x1}, {0x8, 0x3}, {0x7, 0x2}, {0x1f, 0x3}], [{0x7, 0x200}, {0x0, 0x3}, {0x2, 0x2}, {0x9, 0x3ff}, {0x80, 0x7ff}, {0x80000000, 0x6}, {0x69, 0x85}, {0x9, 0x10000}, {0x5, 0x67}, {0x1, 0x8}, {0x1, 0x60}], 0x1, 0x9}, {[{0xffffffff, 0x47366f2c884c2268}, {0x80000000, 0x3}, {0x9, 0x2}, {0x81, 0x1}, {0x10000}, {0xffffffff, 0x1}, {0x8}, {0x1, 0x2}, {0x1, 0x1}, {}, {0xfffff000, 0x2}], [{0x9, 0x3}, {0x0, 0x5}, {0x200, 0x2}, {0x2, 0xecb}, {0x7, 0x3ff}, {0x4, 0xfb}, {0x6, 0x5}, {0x100, 0x38}, {0x1, 0x1}, {0x0, 0xfffffff9}, {0xff, 0x4}], 0x4, 0x4}, {[{0x9}, {0x20, 0x2}, {}, {0x3}, {0xb}, {0x3}, {0x80, 0x2}, {0xd8, 0x3}, {0x8243, 0x1}, {0x2, 0x1}, {0x0, 0x2}], [{0x1ff, 0x8001}, {0xfffffffd, 0x9}, {0x9, 0x8001}, {0x7, 0xfffff001}, {0x1, 0x8}, {0x0, 0x1}, {0x2, 0x2}, {0x4, 0x5a5d}, {0x4}, {0x6295, 0x6}, {0x20, 0x101}], 0x9, 0xf7}, {[{0xfffffff8}, {0xfffffff7, 0x3}, {0xff, 0x3}, {0x101, 0x2}, {0x3, 0x2}, {0x980, 0x3}, {0x5, 0x2}, {0x100, 0x1}, {0x1, 0x3}, {0x7, 0x2}, {0x2, 0x1}], [{0x8, 0x7}, {0x1, 0x8}, {0x0, 0x1}, {0x1000, 0xc8}, {0x2}, {0x3, 0x9}, {0xfffffffc, 0x4fe}, {0x0, 0x6}, {0x3f, 0x8}, {0x0, 0x2}, {0x57}], 0x3}, {[{0x8}, {0x1}, {0x969, 0x8e82974f3bba463a}, {0x1, 0x3}, {0x2, 0x1}, {0x4, 0x1}, {0xffffff1c}, {0x7fffffff, 0x1}, {0x6687}, {0x82, 0x3}, {0x115, 0x2}], [{0x4, 0xefe7}, {0xffffffff, 0x92}, {0x81, 0x5}, {0x8001, 0x3ff}, {0x10000, 0x8000}, {0x1, 0x6}, {0x2, 0xffffffe1}, {0xb551}, {0x0, 0x7f}, {0x10000, 0x10000}, {0x4, 0x400}], 0x1, 0x4}, {[{}, {0x401, 0x3}, {0x7}, {0xfff, 0x1}, {0x400, 0x1}, {0x8, 0x1}, {0x3}, {0x6, 0x2}, {0xfffffff9, 0x2}, {0x5}, {0x80, 0x2}], [{0x2}, {0x8, 0x7}, {0x8, 0x2}, {0x7, 0x5}, {0x9507, 0x6}, {0x800, 0xca}, {0x4d, 0x3f}, {0x8000, 0x81}, {0xc98, 0x5}, {0x0, 0x5}, {0x4, 0x9}], 0xb, 0x1}, {[{0x9, 0x1}, {}, {0x100, 0x2}, {0xbca1, 0x3}, {0x7a0}, {0x7ff, 0x2}, {0x1, 0x2}, {0x7fff, 0x1}, {0x3, 0x1}, {0x7, 0x2}, {0x1, 0x2}], [{0x4, 0x9}, {0x1000, 0x5}, {0x5, 0x4}, {0x401, 0x2}, {0xfffffff7, 0x6}, {0x200, 0xaae1}, {0x8000, 0x4}, {0x1a, 0x4}, {0x0, 0x7fff}, {0x6, 0x10000}, {0x7, 0x3ff}], 0x2, 0xb}, {[{0x6, 0x1}, {0x7fff, 0x3}, {0x4, 0x3}, {0x3, 0x1}, {0x5c2d, 0x3}, {0x8}, {0x0, 0x2}, {0x5, 0x3}, {0x7}, {0x800, 0x1}, {0x2}], [{0x8, 0x3}, {0x7, 0xc4}, {0x1, 0x6}, {0x2, 0xffffffff}, {0xc79, 0x5}, {0x9, 0x9744}, {0x5, 0x9}, {0x1, 0x2}, {0x6, 0xc0}, {0x101, 0x7}, {0x238b5902}], 0x3, 0x9}], 0x2, 0x1}}, @common=@icmp={{0x28}, {0xe, "c13c"}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x2, @ipv4=@private=0xa010102, @ipv6=@dev={0xfe, 0x80, '\x00', 0x19}, @icmp_id=0x68, @gre_key=0x1f}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xc08) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000d40)='./file0\x00', 0x2, 0x6, &(0x7f0000001fc0)=[{&(0x7f0000000d80)="42f4de2e90a47e588a310d061458ea231c595b01c857f46e1fdcb200a37f2832331e13a2782fd2ca7558d091767badc80522065883c4b76092f0c6eb7e0eaaecc550030f967d0f16efed5dde4c676913624748497ce54fdc44102cec21f3a717b671edf2bfdeed2a8791f9014e0a45c63e91e46f3d4b8872e708cd75868f66af160299ebc1c8921c7ca50d0731321a6beba6e9865886e7b26075f816553e622d328c9f95c804c7a3466cec1aff8884648909df0bf437b73c", 0xb8, 0x200000000000000}, {&(0x7f0000000e40)="dc0e322bdb23fa00461bba1e2aa0f107a73a9ae20f3d01b89df11abed551", 0x1e, 0x6}, {&(0x7f0000000e80)="6e090db3e35522eaaa115c90fd63f832b82489b5b92c4cea65671359845bad", 0x1f, 0x8}, {&(0x7f0000000ec0)="5b1ebc8edabd774f962d18b10d109d8e3a008651015184d8deaff6a1615c1bb44fc0da7f251ec7e7f508c5118a7bee89cd4d9e9a4b0681b706324b9a64268e6e34798cd3ef05ccd24d77ec0706e13166a3dd6d5e9eeb8bdb29e659e2d44a6e0648cc993c36b1f9c751a6619fe76b2476736b2d9adb2456264f483a3e2686919ae6826b3a4fcae33acb7276756afe675803f21c856dd4fe9348ed1ebe2f4b7ea61a", 0xa1, 0x8000}, {&(0x7f0000000f80)="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", 0x1000, 0x771}, {&(0x7f0000001f80), 0x0, 0x20}], 0x880, &(0x7f0000002080)={[{@shortname_mixed}, {@uni_xlateno}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@numtail}], [{@appraise_type}, {@fsmagic={'fsmagic', 0x3d, 0x2000000000}}, {@fsname}, {@audit}]}) 20:01:12 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x40000000, 0x0) 20:01:12 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x8cffffff, 0x0) [ 3236.735410][ T645] FAULT_INJECTION: forcing a failure. [ 3236.735410][ T645] name failslab, interval 1, probability 0, space 0, times 0 [ 3236.751431][ T645] CPU: 1 PID: 645 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3236.762903][ T645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3236.772938][ T645] Call Trace: [ 3236.776221][ T645] dump_stack+0x18e/0x1de [ 3236.780563][ T645] should_fail+0x5d8/0x740 [ 3236.784970][ T645] ? __kernfs_new_node+0x8b/0x630 [ 3236.790103][ T645] should_failslab+0x5/0x20 [ 3236.794595][ T645] kmem_cache_alloc+0x36/0x290 [ 3236.799347][ T645] ? kernfs_activate+0x3fc/0x420 [ 3236.804274][ T645] __kernfs_new_node+0x8b/0x630 [ 3236.809111][ T645] ? kernfs_create_dir_ns+0x1df/0x220 [ 3236.814467][ T645] kernfs_new_node+0x95/0x160 [ 3236.819131][ T645] __kernfs_create_file+0x45/0x260 [ 3236.824232][ T645] sysfs_add_file_mode_ns+0x293/0x340 [ 3236.829607][ T645] sysfs_create_file_ns+0x146/0x230 [ 3236.834793][ T645] device_add+0x5d7/0x1820 [ 3236.839196][ T645] device_create_vargs+0x1b8/0x210 [ 3236.844293][ T645] device_create+0x86/0xb0 [ 3236.848695][ T645] ? vsnprintf+0x1a07/0x1aa0 [ 3236.853269][ T645] bdi_register_va+0x89/0x5e0 [ 3236.857932][ T645] bdi_register+0x80/0xa0 [ 3236.862250][ T645] ? __device_add_disk+0x50a/0x1220 [ 3236.867431][ T645] bdi_register_owner+0x56/0xf0 [ 3236.872266][ T645] __device_add_disk+0x583/0x1220 [ 3236.877279][ T645] loop_add+0x554/0x710 [ 3236.881419][ T645] loop_control_ioctl+0x468/0x680 [ 3236.886425][ T645] ? xor_init+0x60/0x60 [ 3236.890563][ T645] do_vfs_ioctl+0x6fb/0x15b0 [ 3236.895142][ T645] __x64_sys_ioctl+0xd4/0x110 [ 3236.899803][ T645] do_syscall_64+0xcb/0x1e0 [ 3236.904290][ T645] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3236.910175][ T645] RIP: 0033:0x7f145855da39 [ 3236.914572][ T645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3236.934176][ T645] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3236.942571][ T645] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3236.950528][ T645] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3236.958485][ T645] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3236.966528][ T645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3236.974504][ T645] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3236.986518][ T645] ------------[ cut here ]------------ [ 3236.991985][ T645] WARNING: CPU: 1 PID: 645 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3237.000891][ T645] Modules linked in: [ 3237.004779][ T645] CPU: 1 PID: 645 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3237.016291][ T645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3237.026342][ T645] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3237.032132][ T645] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3237.051804][ T645] RSP: 0018:ffff8881cb7bfce8 EFLAGS: 00010246 [ 3237.057859][ T645] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3237.065828][ T645] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3237.073782][ T645] RBP: ffff8881ef75c4d8 R08: ffffffff82147afe R09: 0000000000000010 [ 3237.081745][ T645] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3237.089703][ T645] R13: 1ffff1103902f401 R14: 1ffff1103902f49d R15: ffff8881c817a000 [ 3237.097758][ T645] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3237.106767][ T645] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3237.113421][ T645] CR2: 0000001b2db21000 CR3: 00000001e6be0000 CR4: 00000000003406e0 [ 3237.121385][ T645] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3237.129340][ T645] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3237.137389][ T645] Call Trace: [ 3237.140669][ T645] loop_add+0x554/0x710 [ 3237.144817][ T645] loop_control_ioctl+0x468/0x680 [ 3237.149827][ T645] ? xor_init+0x60/0x60 [ 3237.153970][ T645] do_vfs_ioctl+0x6fb/0x15b0 [ 3237.158551][ T645] __x64_sys_ioctl+0xd4/0x110 [ 3237.163215][ T645] do_syscall_64+0xcb/0x1e0 [ 3237.167703][ T645] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3237.173577][ T645] RIP: 0033:0x7f145855da39 [ 3237.177975][ T645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3237.197563][ T645] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3237.205958][ T645] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3237.213915][ T645] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3237.221870][ T645] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3237.229828][ T645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:13 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 52) 20:01:13 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff, 0x0) 20:01:13 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000000)={0x3, &(0x7f0000000080)=[{@none}, {@fixed}, {}]}) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000240), 0x802, 0x0) ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f0000000300)={0xd, 0x10, {0x52, 0x401, 0x7ff, {0x8000, 0x6400}, {0x1, 0x3ff}, @period={0x59, 0x1, 0x3732, 0x9, 0x7fff, {0x7f, 0x5, 0x6, 0x1}, 0xa, &(0x7f0000000280)=[0x2, 0x0, 0x6, 0x7, 0x0, 0x4, 0x6, 0x1000, 0x80, 0x8]}}, {0x53, 0x0, 0x38, {0x4, 0x1}, {0x4, 0xd677}, @period={0x58, 0x7fff, 0xd84a, 0x4, 0x6, {0x1, 0x1, 0x7fff, 0x1f}, 0x5, &(0x7f00000002c0)=[0x0, 0x6, 0x3, 0x9, 0x5]}}}) 20:01:13 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0xffffffffffff8001, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:13 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x92030000, 0x0) 20:01:13 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0xffffffff, 0x80640) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x0, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x4}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x804) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x1ff, 0x1) 20:01:13 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) ioctl$ION_IOC_HEAP_QUERY(0xffffffffffffffff, 0xc0184908, &(0x7f0000000040)={0x34, 0x0, &(0x7f0000000180)}) r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x4, 0x101000) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000140)=""/20) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3237.237781][ T645] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3237.245741][ T645] ---[ end trace 7aed1b66616f08c2 ]--- 20:01:13 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x90030000, 0x0) 20:01:13 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000002900)={'#! ', './file0', [{0x20, ')@{'}], 0xa, "5633e9e7069e1eb8158a434f8a22cfb9609af1b9024d9f2b8ddb485db6"}, 0x2c) recvmsg$unix(r1, 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000002780)={&(0x7f0000001400), 0x6e, &(0x7f0000002680)=[{&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f0000002480)=""/38, 0x26}, {&(0x7f00000024c0)=""/10, 0xa}, {&(0x7f0000002500)=""/73, 0x49}, {&(0x7f0000002580)=""/45, 0x2d}, {&(0x7f00000025c0)=""/39, 0x27}, {&(0x7f0000002600)=""/18, 0x12}, {&(0x7f0000002640)=""/47, 0x2f}], 0x8, &(0x7f0000002700)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}, 0x41) sendmsg$nl_netfilter(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="901200000805010126bd7000fedbdf2502000009e710888008004500", @ANYRES32=r2, @ANYBLOB="04003c0008001d000600000087492f5b5bd7812335771a7a91be2801a62e1ef4fd5fe1f1abee5cfc420a84bcdcc0468d90615f3e89ab4e0c3d0a673b1432597dad6eada2b88ab026eb8589acf86ddccdd8069f102b54f66884e43d0e8bf8a7a5f4b4bf0b1df923cd58937819f7397db01f10f9898b3773399e0875ad8bd8f8e6886c67c5520d35e11250a5276640388835d3f5165932232c3440a5c0e37ea3dc78a5bf0e66dd5d519396e5d9e0a62d33beda09f7b2c35457786674dbdcaabcc1f88a411939969c4dd433261d6a3fe1d38d71cd25851761cfc8faca7e9c41eff0a3c48b3ca0d9e892a13e7bb0b0da306a568a7329eaba2b4703fd21c8c49f5b80c3cbaa906d305a53ab197d709344a626ccf8dffd0eaee978421755c1e7e32ad4d3960dd3c8f094304c37ea79052c27fdbc29e57e26cd6ab5c7be0a75504f2ab242d238b7d664b002eb00d7c8efd04676ce36e8841c2ad43c910a33e925314cdf37da3e09fb1d06aa2312f77cdd6060b3fd1c4df078651f8d3a52665d38bfb4d580751dc5f67923726f793e3ba3940d32f0c3aa733af6b83b7861e91fafd81d1b9cd9b19e15b54be412e5d0e9b7e6447cf87ac90aafe9079628ff363221a42d69ebc20d6980ee8289da984db0a88f6765819332bafcfe3c1e057120b9f4db04e19693a40f9fc82613372c8941e28b891e722d0fd1cbc240209afda06b3c10c7d6231460ebbc362f601567e534a60f82c729cca9ba78097083510500448c0d8baede8a54341f4836286245bbabce5c61da393c51ab6aeb6660f38586d8d82eb83aca259f84d58d4fc293fd830e445d3789000a0435d5301cca24a2777def10554f7125be5bf6a3740398ede1b40c5aa8665ac998670ba14b259f2171d86e894fbcb03f27d1ac5425661acbb3c59bc26b03e1bd7f85000aac7cf01ce8ecdd5c1fbe59db49341f3263940851688930da2d138421beefada1aef289069a8ff5d4df684a510e4224a7238546481030bbacdba0a28aca82160bc6422f3890343815f72cb88fc814cd4da3648545aaa8eec7d01a3ac9b6d143e06de6f6b6cf65b9884a9784508b616562a81a00412bd32a1719bf88e669b76423ab0a3cc024a72d31519b00c069f78fac308dee91e7d4d2fddbb134f5ec23fc19128dfa37c358ecbe4c049fc578f185537d079f6f3636b308980fc53d4f893f01d453bfb4c548ae9fdefb55aa9b71663083c7e4a1120ac2953621475022cc0adf1bb61bedaec997372f7bfc679c61579fd2985c899a770595860be695be4d9e170aed2425400414c674aed5197456eab10c987dc7e4d7bd23d3edf44260665ff46ef59f3b3b8dba7cb964eec22ab90cb34bd104808378f05588dd85974186a744345dd7ada548ef6f825b16c04fc0fc3a7e36bc6e7334c94647e8f06202030a85881bc56e6459810be36df4ec68cc868ec47fcbc79f874cfe0543124e5b3a4b6df8d11a37734c78588004819650e9a6e6ad85a28a70cc379496d32f337a66f5cbc935ff0e4adbafd6de7244d9058beb222c4aba8478a6e375ddbf31ae9744b3c67318043fdb73477bdfbc2425290cc06e61eabaa5e96b58306708c7fe65137bd6b4d4cde5e69f184d4415ac9b84411441087efcd7987d25f91169b84d13064cbd00c51ee36172a5bed05131851a93dbedda9deaa83384614c4f75b8da4e4a86067c313af445d4e713724413b39d570ad3f707e281f048e863e3132e8629355b58d8eaf27659f1014012391dac68eedbcdaa4f298b73400b5b736319954550cba9b76e52a45b5091e905a1c33a9722356e1a916d2ef89533ae1f678eb3db156d35814d866657955c2c664f94209180e16ef33f192a672ef954f9238f4c1966f56d29dcbd33bfa9e22ec14e63f84748b3982f4e7aa9b739a380f1193bfbaa486c5909230089ea312f2d0d610fbc10fda65ce073593013058b613a68a38ddd8d306b789eabdf4c169ca9cc68c831f5f5beab64a266b4b9b89df4fe780b99bf815b27ce02b6c02f853c72fdb02e313f995acac49f355519147b3ecd958f800e5995b0419a52b0f1e2243f47a520544bb47a0ace61d24dff076a1e35ba953680a837268a13f4914a887f17dfe07bcae781d52df135738ded5e87884cf8cfdbfa0706e5bbcf74698f87078009497d8dec2f01d8413435377c187464d7f9e323a0f617a463b9cda8bbb211ed130d2ab96de8c9b90686cd09de48eae40aece6d6a738c415cccaecbe73569e7baf0fe3de0c16a074a3e54b316788f02a16b1b166fb52cd3bb4f5bddf03384587ede605a4c731d730d9d5eba011373035711fb06bf75b6a9e2dfbaacc7c8b5d0b66bbfff3778474ddf11b291bac83ab337dfb9b4397ebc188e164b0b090698f7c6643511025aaa4887188872e6713fa19312f5fc675f25fcde2c9df10c8618f5afaf1bbb98dcec7f79afb3f3c1b49128b470fa38667c68b2edf9b46b9ec1754ae34e1561a7894e93fa587ea8d0e6f819180982e8fd1343ed5f30f18d5ff921c57d97d7ee96ed5f5e083a677a8eef1d456f5c223cbd773357e097c287a0b632be7a8ebad817aaaca0fab453abdf0a416f501419454efc841a2a3f9fc26fbdf89fc1e27984fc582066f65f5565fff7eb211dfc9a4292ed8bf58e3f68aa681f871f5cbdaeb488831c0e8cd2123b57436e664ef7c99e1ba3566587e5f3b43356d649785054041ebd8c95ddd462512fa76df562ff50819596df19dbaaf4ee8c58eb26c82e0f4e38b4a83f0d75c0e68ea33e98195a23efc589104adac711271609741077b41ec6fc31b4f40413bf9f21654c2cac39d7f9847bd3a409545da8b52b8f3dff31041997b2572f0d1454f00718a0c53273f7a159bd4bcb8425b481a124be17f42afc96d282bfe0375296432ea7bd1eaed68fe8d420486367ad656688a13311cfb15166e80527e03dfdbc92882758260a23d212d29b1d15422a0d7854570bcf5d57c0b7cd5c4f632d71787e9858268d5f4ed029256cc68c13ed95ee6e706febb5a5c56915830b0008c192e06bff65d48eeaffe8c3ea0d524a19acadf688623fa72193606c983ee6ddf4c69198c1f526e836bdce77ab0ee9528ca05996998f18f6513d3152ffae1958305e1b671b5b8c81e3446ef35598638e6943b11a02fbbd7679a46062d30c2dd83971123a890ccb2272bace3cb2eba7c3bec08767e745f2886c291f71cbb9a2c5bbf61860ffeec70db8f53d8843cae535581f6df690106729679509fc0405c2d40c98aaf2d0d6413afa2753f6088f8e0cc54392d937ad6ccdba8228b5c0afb2131ba1272b19c9e792c9f9b7d350c815d9f2695b640d624b742f8589ac212f176dc0c2ee5f5c7023c8d030bddb0149aea41f0ec867ca2da415272d671684bacec67b5814dd7bc5df37d7d282e058eafb97cb4943a6aebdd05339c30783708af816adc57bb837f7b253b076d26cf0a259267dc7365f9151b70951bbba269801f538a7f2a04171ba9d1580a3c01edee52c58c0eac62afe3aa83a30a7ccf20f641535a0a4ab0488794aa54007c003b9489403dbfdb46900c2751b8676d98bc948c98c361fe02ec5eca8f1d8edbea640e5854dca9a82715c16a6e51cf72df23082d85af63eae01352829b14d475a931c5ee089e533aea476e15df549b12395bafc83a1cc6474f815544996a5b416948964a91660c45652ba57c92896d3917a3a7fc52a3ee2607404c294bf7bd0ef36e7eca33d124274030d74645ec57703408ae170f13a622d7024e8cc7aa50001975ee8127c2bd1e0c6008d9590993eca98083928e9546dd16b0ed4b7f4355c9592a085dd12141619d2c407451a1478342ebc63cfda9eec6f8e861ea105e97ae116ed2425e2de965120b16d6042eaf9c95329defdfdeba146b590c2b9932a196bb6ff61ae2ee24e9b3366c8107c38b0745842a01688ca7d86766e37aabbd944ee749ab2ab562c9fa679bddee30a2f0a30be546a4dc5abd6019dccd8a89a297bfa738aa411319ea748a0fce2ae9365bdba2d9f3a371a0b076e27b13213d0b017fdd67152c0427243cc5c3e17dca5cfb525e24e3c3a650c893546317155722dc46be5351fa51d499ce8f0846bec0c4475dcf33caab0bfc5cd4544e95eaf5e86296d0bc018fe4634dd3b651d81a6770ccdc5c247010b3e2d430d0a9ff8105f9a51122b501e031b52afc1decd4a48e789bf08b6c1b7f3ade502757642f7c0254ad24335685b17eee9675439ac2a33d833408175c1bbeaa14af363dcf680a538256dda123e1566c9472f57f5636115f35631acec41e7884bf45e06d32b291bd0e30b1d650a9bd6845ff0cd27d825310c77837b86868feb4348dce128245af473bdff290fa380b30ea06200ffc87512d931f67e09d79fe9b1d649abd12a4787eeab25b17366233e1307bf707efa365d9a478993c71f4adf065252728248e709b5938e6b76c7d379f50f8efa816ce86672694bb6ac780d6a9b5be7ae1e28be2d3953af08e9522d34a5e37461bc364743e91fa9bf180843bacaaab9c540b967185c2b13624f26f0176bf28395b7525920b7332bcb4c9b1548320dc313d6916209b4c878f5e09374f515f0591582eaa746959c5e12ce26e95c424106e7791278a4e8e834e7d06dd42806832bb9746a8c113e76fff5e24b670ebb37188a56ca2b655b5ffbd44d622f09ac521e30cada703330491739c9d8ca767570bf8f4346792b2a77689a58aabc72c9e9aa0d9285849ddf6d874242eea17eaebff72791b282184ce2adad6d6b85cecc00717d12993ab3b0af1f8df4238cbc08909e35dea694e236ef360e2e79ca910b9608dc20612bf138bfc43ccfe1159925cb012cc76a05728fee63cf4150894f09429498ab00d75192e70dcca82389373fad51ac22fe4a17f4011d70307ac8962d0e77060368961cd80150f5a07b615523f537d9d728b7cb4e8baf10f05c303281dee6c398328d7e5e3aa57c329b5434bad345adfed18a05ccbef959d2e7252f912f7c7bf4fac8ffa1b6adf72ee1690255598036496c8aebab8f891b56005e82515b08e757a11312ff0a58a2960565cceeaec78473b2aa957e028c5ca224e0a95fdcc4e93b7d8a516e6b08de6c04955dbdbd5d86f4133accc33d47a98058457ab5ce07ec9b02d8857e7e8f89ff54f3c1b32a0754a83ba51b96cbbc84889ffa110c095dc60e03e79159ca5acc94be650de9e88721007b55afbf27e8d3d04094144997dc00e54c7cdeb4866c6da6d13a4b2542fe75b2e288b5fcb8a88132cb619c4eff2dc096595bd46f8d94d49f7b59cee88f71095efa625ba0666cc7cd73f55664a2ffc936bf8f2a348a425b990dc6db8e797d04ec466fc6c1fd339ece5fcffa182f4501d436257315766e11522691efda4af4cd356c13152ab518fd2e1ef8d504d8ff3788929d321ed75ac5a67b489080146edf88c9bad7eb780049461b0a7bcd47b45a6f2b093021cc255a839b7132fa66b44dfba41273399352e94c303cabd0e966c1e170347943b33329f4f76700a1de486eb6c67823d56a42dcfc1e5e9023d15ad22f186ed554be05865d53166f81bb98a10c872f0218b264a37741312ef783e619b69519350d366a2bb281cf32d430bf6db36754b9c15233d9d92c90064b96c0110efd9649651c46aca4bf876a2cdd250c773b4b82b3958bc35e6a1c6564f16ba16a8aebab1b74933ca8d31d1b2175cfc7233c221f18985983ac125cc02e23021805b3a7f2bddfc9ebb257870fa769cb68001e5e297432f6ae8c2abcceee5150f825db78fb167bbac9788f741cca3ca2c660406ddbbdcde85b21e6adda6f76d807121638090280f432d4aa4fb55f02e5a32bf930c5ff2b260831a8cb025266d2b938b493b439d79a71caa54281f5611fa03e7c5bd008ccde892a4379b86baab5a00fd9d9773e3e1cd8e261eb4d3efb65de94d9adece7e10ab7bb3e0c764c56a4c42e96d88d7d2190c0a80c9eeedc550ada3cf151dc7244effa8407fc8500ec2d5a709becc32850ec232eccfe432052fb784ca4093d151190cf4c9ec083738a9333006edca54d1e621081b377f64dec226c1cc02aaac2f458738d4cf766a2fd76b5039008b013b804fa8e79a4ab6650fca713f3c5fed53a61b15bf2bda719079629e5f9a55e6f5aafe2982729518333784d6de5d8cfc9f5d985ef7a926600197158e8c23c43ec7bc45d71dd09f6461fb282a49467e49404b9e9416c564c6d3c883ed388a55d473408254bc9be7952c4b890c38a475af498a832cbae7aa75392750472e409dcca8a4e69baa1b4ef4e7752f3ecd345c5099e09dfa91d4b8e432c70f6dd00949078310a0220c00adcf0d4b87fc83326fc4a616a959fa57ed4e1eb089e53594ae410e8cfc23d6b2de8418d5d22248b351a80bb896deb2aa7fe12530e50c004d0002000000000000008f1360527e13d200af54c8fcb97626b2a2c6859dc38d95edf2ce4eca918e33d97a290d7deb0f202f5bc2e8e20a323d1b19d0ceeb65332ec65f0364b5ea6ba00c52ade3332adf4bfec4b5a89174e9f812915b80e933abf83b593b5a8f05f416008e002f6465762f696e7075742f6576656e7423000000ffc14d8376ad089330bc8a2fba276f6ae4f59d39e46e03a241c3d4483fdcb08e0c0013000900000000000000000800740002000000"], 0x1290}, 0x1, 0x0, 0x0, 0x60c0800}, 0x8800) r4 = geteuid() syz_mount_image$vfat(&(0x7f00000027c0), &(0x7f0000002800)='./file0\x00', 0x101, 0x1, &(0x7f00000028c0)=[{&(0x7f0000002840)="5536e19683c894ac9162d954588f626f6684d2942b13c14b54484c9209ea40830bfd89bf137cc1cf80aff10019a1ff13accd8e60defa3210c21bd60cae511e990c925be9ca0f0e6514e31f", 0x4b, 0xf38f}], 0x800, &(0x7f0000002940)={[{@shortname_mixed}], [{@smackfsfloor={'smackfsfloor', 0x3d, '-\\'}}, {@fowner_gt={'fowner>', r3}}, {@obj_user={'obj_user', 0x3d, ')@{'}}, {@fowner_lt={'fowner<', r4}}]}) 20:01:13 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', 0x1}, 0x10) 20:01:13 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xc0ed0000, 0x0) 20:01:13 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xc0ed0000, 0x0) [ 3237.351008][ T658] FAULT_INJECTION: forcing a failure. [ 3237.351008][ T658] name failslab, interval 1, probability 0, space 0, times 0 [ 3237.375080][ T658] CPU: 1 PID: 658 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3237.386528][ T658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3237.396570][ T658] Call Trace: [ 3237.399853][ T658] dump_stack+0x18e/0x1de [ 3237.404177][ T658] should_fail+0x5d8/0x740 [ 3237.408581][ T658] ? __kernfs_new_node+0x8b/0x630 [ 3237.413596][ T658] should_failslab+0x5/0x20 [ 3237.418083][ T658] kmem_cache_alloc+0x36/0x290 [ 3237.422834][ T658] __kernfs_new_node+0x8b/0x630 [ 3237.427671][ T658] ? mutex_unlock+0x19/0x40 [ 3237.432156][ T658] ? kernfs_add_one+0x49e/0x5c0 [ 3237.436993][ T658] ? __kernfs_create_file+0x1f1/0x260 [ 3237.442355][ T658] kernfs_new_node+0x95/0x160 [ 3237.447014][ T658] kernfs_create_link+0x9c/0x1f0 [ 3237.451936][ T658] sysfs_do_create_link_sd+0x85/0x100 [ 3237.457294][ T658] device_add+0x6dc/0x1820 [ 3237.461720][ T658] device_create_vargs+0x1b8/0x210 [ 3237.466821][ T658] device_create+0x86/0xb0 [ 3237.471225][ T658] ? vsnprintf+0x1a07/0x1aa0 [ 3237.475799][ T658] bdi_register_va+0x89/0x5e0 [ 3237.480461][ T658] bdi_register+0x80/0xa0 [ 3237.484779][ T658] ? __device_add_disk+0x50a/0x1220 [ 3237.489970][ T658] bdi_register_owner+0x56/0xf0 [ 3237.494831][ T658] __device_add_disk+0x583/0x1220 [ 3237.499851][ T658] loop_add+0x554/0x710 [ 3237.503995][ T658] loop_control_ioctl+0x468/0x680 [ 3237.509000][ T658] ? xor_init+0x60/0x60 [ 3237.513141][ T658] do_vfs_ioctl+0x6fb/0x15b0 [ 3237.517717][ T658] __x64_sys_ioctl+0xd4/0x110 [ 3237.522376][ T658] do_syscall_64+0xcb/0x1e0 [ 3237.526861][ T658] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3237.532736][ T658] RIP: 0033:0x7f145855da39 [ 3237.537134][ T658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3237.556727][ T658] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3237.565122][ T658] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3237.573082][ T658] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3237.581038][ T658] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3237.588992][ T658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3237.596952][ T658] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3237.615041][ T658] ------------[ cut here ]------------ [ 3237.620511][ T658] WARNING: CPU: 1 PID: 658 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3237.629418][ T658] Modules linked in: [ 3237.633306][ T658] CPU: 1 PID: 658 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3237.644736][ T658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3237.654790][ T658] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3237.660578][ T658] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3237.680164][ T658] RSP: 0018:ffff8881ecbf7ce8 EFLAGS: 00010246 [ 3237.686220][ T658] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3237.694177][ T658] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3237.702134][ T658] RBP: ffff8881ef759178 R08: ffffffff82147afe R09: 0000000000000010 [ 3237.710091][ T658] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3237.718048][ T658] R13: 1ffff11039118801 R14: 1ffff1103911889d R15: ffff8881c88c4000 [ 3237.726006][ T658] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3237.734923][ T658] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3237.741495][ T658] CR2: 00007f6c9bba5b58 CR3: 00000001ee17e000 CR4: 00000000003406e0 [ 3237.749464][ T658] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3237.757424][ T658] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3237.765381][ T658] Call Trace: [ 3237.768665][ T658] loop_add+0x554/0x710 [ 3237.772811][ T658] loop_control_ioctl+0x468/0x680 [ 3237.777823][ T658] ? xor_init+0x60/0x60 [ 3237.781965][ T658] do_vfs_ioctl+0x6fb/0x15b0 [ 3237.786546][ T658] __x64_sys_ioctl+0xd4/0x110 [ 3237.791210][ T658] do_syscall_64+0xcb/0x1e0 [ 3237.795701][ T658] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3237.801578][ T658] RIP: 0033:0x7f145855da39 [ 3237.805980][ T658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3237.825571][ T658] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3237.833969][ T658] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3237.841923][ T658] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:14 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 53) 20:01:14 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x44080) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/smsc95xx', 0x24240, 0xa6) recvmsg$unix(r1, 0x0, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2cc00, 0x0) ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0xb) ioctl$UI_BEGIN_FF_ERASE(r1, 0xc00c55ca, &(0x7f0000000040)={0x5, 0xd4}) 20:01:14 executing program 2: mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8008, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x8000000, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240), 0x6e, &(0x7f0000000680)=[{&(0x7f00000002c0)=""/36, 0x24}, {&(0x7f0000000300)=""/75, 0x4b}, {&(0x7f0000000380)=""/168, 0xa8}, {&(0x7f0000000440)=""/184, 0xb8}, {&(0x7f0000000500)=""/166, 0xa6}, {&(0x7f00000005c0)=""/162, 0xa2}], 0x6, &(0x7f0000000700)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf0}, 0x20) mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000840)={[{@subsystem='io'}, {@subsystem='cpuacct'}, {}, {}], [{@fowner_lt={'fowner<', r1}}, {@dont_measure}, {@subj_type={'subj_type', 0x3d, '/dev/input/event#\x00'}}]}) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:14 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xf0ffffff, 0x0) 20:01:14 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x408840, 0x0) 20:01:14 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0ffffff, 0x0) 20:01:14 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xf6ffffff, 0x0) 20:01:14 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff, 0x0) [ 3237.849877][ T658] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3237.857935][ T658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3237.865893][ T658] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3237.873858][ T658] ---[ end trace 7aed1b66616f08c3 ]--- 20:01:14 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0x0) [ 3237.943323][ T692] cgroup2: Unknown parameter 'io' 20:01:14 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffff1f00, 0x0) 20:01:14 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000000500)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000140)}, {&(0x7f0000000180)=""/246, 0xf6}, {&(0x7f0000000280)=""/230, 0xe6}], 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00000004"], 0x108}, 0x40010003) ioctl$EVIOCGREP(r3, 0x80084503, &(0x7f0000000540)=""/146) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'syzkaller0\x00', @ifru_names}}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/firmware_class', 0x1, 0x0) r5 = syz_genetlink_get_family_id$gtp(&(0x7f0000000640), r2) sendmsg$GTP_CMD_NEWPDP(r4, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000700)={&(0x7f0000000880)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="080008000100000008000400e00000020c000300020000000000000008000500ac141439"], 0x48}, 0x1, 0x0, 0x0, 0x4008000}, 0x10040) 20:01:14 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff1f00, 0x0) [ 3237.969541][ T692] cgroup2: Unknown parameter 'io' [ 3237.988295][ T697] FAULT_INJECTION: forcing a failure. [ 3237.988295][ T697] name failslab, interval 1, probability 0, space 0, times 0 [ 3238.020670][ T697] CPU: 1 PID: 697 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3238.032127][ T697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3238.042170][ T697] Call Trace: [ 3238.045455][ T697] dump_stack+0x18e/0x1de [ 3238.049779][ T697] should_fail+0x5d8/0x740 [ 3238.054194][ T697] ? __kernfs_new_node+0x47/0x630 [ 3238.059208][ T697] should_failslab+0x5/0x20 [ 3238.063704][ T697] __kmalloc_track_caller+0x5d/0x2e0 [ 3238.068985][ T697] kstrdup_const+0x51/0x90 [ 3238.073391][ T697] __kernfs_new_node+0x47/0x630 [ 3238.078239][ T697] ? mutex_lock+0x6c/0xc0 [ 3238.082565][ T697] ? kernfs_activate+0x3fc/0x420 [ 3238.087493][ T697] kernfs_new_node+0x95/0x160 [ 3238.092158][ T697] kernfs_create_link+0x9c/0x1f0 [ 3238.097082][ T697] sysfs_do_create_link_sd+0x85/0x100 [ 3238.102445][ T697] device_add+0x93a/0x1820 [ 3238.106878][ T697] device_create_vargs+0x1b8/0x210 [ 3238.111976][ T697] device_create+0x86/0xb0 [ 3238.116374][ T697] ? vsnprintf+0x1a07/0x1aa0 [ 3238.120959][ T697] bdi_register_va+0x89/0x5e0 [ 3238.125624][ T697] bdi_register+0x80/0xa0 [ 3238.129942][ T697] ? __device_add_disk+0x50a/0x1220 [ 3238.135126][ T697] bdi_register_owner+0x56/0xf0 [ 3238.139969][ T697] __device_add_disk+0x583/0x1220 [ 3238.144982][ T697] loop_add+0x554/0x710 [ 3238.149644][ T697] loop_control_ioctl+0x468/0x680 [ 3238.154653][ T697] ? xor_init+0x60/0x60 [ 3238.158797][ T697] do_vfs_ioctl+0x6fb/0x15b0 [ 3238.163379][ T697] __x64_sys_ioctl+0xd4/0x110 [ 3238.168045][ T697] do_syscall_64+0xcb/0x1e0 [ 3238.172536][ T697] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3238.178503][ T697] RIP: 0033:0x7f145855da39 [ 3238.182900][ T697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3238.202493][ T697] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3238.210891][ T697] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3238.218851][ T697] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3238.226810][ T697] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3238.234779][ T697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3238.242735][ T697] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3238.277999][ T697] ------------[ cut here ]------------ [ 3238.283475][ T697] WARNING: CPU: 1 PID: 697 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3238.292377][ T697] Modules linked in: [ 3238.296265][ T697] CPU: 1 PID: 697 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3238.307696][ T697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3238.317753][ T697] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3238.323543][ T697] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3238.343138][ T697] RSP: 0018:ffff8881cfa87ce8 EFLAGS: 00010246 [ 3238.349190][ T697] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3238.357156][ T697] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3238.365114][ T697] RBP: ffff8881ef0e1178 R08: ffffffff82147afe R09: 0000000000000010 [ 3238.373068][ T697] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3238.381027][ T697] R13: 1ffff110394be801 R14: 1ffff110394be89d R15: ffff8881ca5f4000 [ 3238.388991][ T697] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3238.397903][ T697] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3238.404476][ T697] CR2: 00007fecccbcf058 CR3: 00000001e6f84000 CR4: 00000000003406e0 [ 3238.412435][ T697] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3238.420392][ T697] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3238.428342][ T697] Call Trace: [ 3238.431622][ T697] loop_add+0x554/0x710 [ 3238.435769][ T697] loop_control_ioctl+0x468/0x680 [ 3238.440778][ T697] ? xor_init+0x60/0x60 [ 3238.444921][ T697] do_vfs_ioctl+0x6fb/0x15b0 [ 3238.449501][ T697] __x64_sys_ioctl+0xd4/0x110 [ 3238.454163][ T697] do_syscall_64+0xcb/0x1e0 [ 3238.458659][ T697] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3238.464619][ T697] RIP: 0033:0x7f145855da39 [ 3238.469017][ T697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3238.488590][ T697] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3238.496975][ T697] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3238.504922][ T697] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3238.512875][ T697] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3238.520819][ T697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:14 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 54) 20:01:14 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffffff7f, 0x0) 20:01:14 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff7f, 0x0) 20:01:14 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$BLKRAGET(r1, 0x1263, &(0x7f00000001c0)) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x50, r2, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V6={0x14, 0x9, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V4={0x8, 0x8, @empty}, @FOU_ATTR_PEER_V4={0x8, 0x8, @local}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000090}, 0x400c0) 20:01:14 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000005, 0x10, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x2d26, &(0x7f0000000080)={0x0, 0x9f7d, 0x20, 0x2, 0x149}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)=0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r2, &(0x7f0000000140)={0x44000, 0x64}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x12345}, 0x2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000009, 0x810, r2, 0x8000000) 20:01:14 executing program 2: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) r2 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r2, 0x80004509, 0x0) sched_getattr(0x0, &(0x7f0000000000)={0x38}, 0x38, 0x0) [ 3238.528765][ T697] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3238.536716][ T697] ---[ end trace 7aed1b66616f08c4 ]--- 20:01:14 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff8c, 0x0) 20:01:14 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffffff8c, 0x0) [ 3238.609281][ T711] FAULT_INJECTION: forcing a failure. [ 3238.609281][ T711] name failslab, interval 1, probability 0, space 0, times 0 [ 3238.633527][ T711] CPU: 0 PID: 711 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3238.645521][ T711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3238.655563][ T711] Call Trace: [ 3238.658869][ T711] dump_stack+0x18e/0x1de [ 3238.663201][ T711] should_fail+0x5d8/0x740 [ 3238.667609][ T711] ? __kernfs_new_node+0x8b/0x630 [ 3238.672625][ T711] should_failslab+0x5/0x20 [ 3238.677242][ T711] kmem_cache_alloc+0x36/0x290 [ 3238.681997][ T711] ? memcpy+0x38/0x50 [ 3238.686107][ T711] __kernfs_new_node+0x8b/0x630 [ 3238.690952][ T711] ? mutex_lock+0x6c/0xc0 [ 3238.695277][ T711] ? kernfs_activate+0x3fc/0x420 [ 3238.700202][ T711] kernfs_new_node+0x95/0x160 [ 3238.704887][ T711] kernfs_create_link+0x9c/0x1f0 [ 3238.709811][ T711] sysfs_do_create_link_sd+0x85/0x100 [ 3238.715168][ T711] device_add+0x93a/0x1820 [ 3238.719574][ T711] device_create_vargs+0x1b8/0x210 [ 3238.724672][ T711] device_create+0x86/0xb0 [ 3238.729071][ T711] ? vsnprintf+0x1a07/0x1aa0 [ 3238.733653][ T711] bdi_register_va+0x89/0x5e0 [ 3238.738317][ T711] bdi_register+0x80/0xa0 [ 3238.742632][ T711] ? __device_add_disk+0x50a/0x1220 [ 3238.747826][ T711] bdi_register_owner+0x56/0xf0 [ 3238.752663][ T711] __device_add_disk+0x583/0x1220 [ 3238.757675][ T711] loop_add+0x554/0x710 [ 3238.761819][ T711] loop_control_ioctl+0x468/0x680 [ 3238.766829][ T711] ? xor_init+0x60/0x60 [ 3238.770969][ T711] do_vfs_ioctl+0x6fb/0x15b0 [ 3238.775596][ T711] __x64_sys_ioctl+0xd4/0x110 [ 3238.780267][ T711] do_syscall_64+0xcb/0x1e0 [ 3238.784761][ T711] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3238.790645][ T711] RIP: 0033:0x7f145855da39 [ 3238.795046][ T711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3238.814721][ T711] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3238.823125][ T711] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3238.831088][ T711] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3238.839046][ T711] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3238.847007][ T711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:15 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f0000000000)={0x7, 0x0, 0x1}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:15 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0xf, 0xa, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0xff}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8}, @generic={0x6, 0xf, 0x8, 0x4, 0xaccc}, @call={0x85, 0x0, 0x0, 0xa6}, @call={0x85, 0x0, 0x0, 0x3d}, @jmp={0x5, 0x1, 0x3, 0x2, 0x3, 0xc}]}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0x20, &(0x7f0000000100)=""/32, 0x41100, 0x14, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000140)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xf, 0x40, 0x7fff}, 0x10}, 0x78) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3238.854968][ T711] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3238.865038][ T711] ------------[ cut here ]------------ [ 3238.870507][ T711] WARNING: CPU: 0 PID: 711 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3238.879414][ T711] Modules linked in: [ 3238.883303][ T711] CPU: 0 PID: 711 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3238.894737][ T711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3238.904796][ T711] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3238.910590][ T711] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3238.930183][ T711] RSP: 0018:ffff8881ecbf7ce8 EFLAGS: 00010246 [ 3238.936238][ T711] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3238.944204][ T711] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3238.952166][ T711] RBP: ffff8881ef0e6718 R08: ffffffff82147afe R09: 0000000000000010 [ 3238.960122][ T711] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3238.968081][ T711] R13: 1ffff110394f6601 R14: 1ffff110394f669d R15: ffff8881ca7b3000 [ 3238.976042][ T711] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3238.984957][ T711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3238.991524][ T711] CR2: 00007fecccbed000 CR3: 00000001f0f93000 CR4: 00000000003406f0 [ 3238.999485][ T711] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3239.007444][ T711] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3239.015399][ T711] Call Trace: [ 3239.018680][ T711] loop_add+0x554/0x710 [ 3239.022825][ T711] loop_control_ioctl+0x468/0x680 [ 3239.027860][ T711] ? xor_init+0x60/0x60 [ 3239.032003][ T711] do_vfs_ioctl+0x6fb/0x15b0 [ 3239.036582][ T711] __x64_sys_ioctl+0xd4/0x110 [ 3239.041250][ T711] do_syscall_64+0xcb/0x1e0 [ 3239.045918][ T711] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3239.051795][ T711] RIP: 0033:0x7f145855da39 [ 3239.056197][ T711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3239.075783][ T711] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3239.084185][ T711] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3239.092151][ T711] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3239.100111][ T711] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:15 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffff0, 0x0) 20:01:15 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$EVIOCGREP(0xffffffffffffffff, 0x80004509, 0x0) [ 3239.108074][ T711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3239.116035][ T711] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3239.124000][ T711] ---[ end trace 7aed1b66616f08c5 ]--- 20:01:15 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 55) 20:01:15 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xfffffff0, 0x0) 20:01:15 executing program 3: epoll_pwait(0xffffffffffffffff, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}], 0x6, 0x8, &(0x7f0000000080)={[0x4]}, 0x8) syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) 20:01:15 executing program 0: syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000001480), 0x8000, &(0x7f0000001500)) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0x0) 20:01:15 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:15 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffff6, 0x0) 20:01:15 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xfffffff6, 0x0) 20:01:15 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_io_uring_setup(0x3a05, &(0x7f0000000000)={0x0, 0x9f3, 0x4, 0x3, 0x19e}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)=0x0) ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40044581, &(0x7f0000000180)=0xe61a) r4 = socket$inet(0x2, 0x2, 0x7) syz_io_uring_setup(0x68b7, &(0x7f0000000200)={0x0, 0x3339, 0x4, 0x2, 0x19d, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f00000002c0)) bpf$ITER_CREATE(0x21, &(0x7f00000001c0), 0x8) syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r4, 0x0, 0x0, 0x3, 0x8, 0x1, {0x0, 0x0, r0}}, 0x4) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:15 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x40, 0x1, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0xff}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x100}, @CTA_SYNPROXY_TSOFF={0x8}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4804}, 0x4) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/blk_crypto', 0x0, 0x10) r4 = openat(r1, &(0x7f0000000300)='./file0/file0\x00', 0x28100, 0x111) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000340)={r2, r3, 0x0, r4}, 0x10) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000140)=""/74) pivot_root(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00') syz_open_dev$loop(&(0x7f0000000000), 0x8000008, 0x400) 20:01:15 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000000, 0x0) 20:01:15 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x8000000000, 0x0) [ 3239.293390][ T743] FAULT_INJECTION: forcing a failure. [ 3239.293390][ T743] name failslab, interval 1, probability 0, space 0, times 0 [ 3239.341404][ T743] CPU: 0 PID: 743 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3239.352871][ T743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3239.362917][ T743] Call Trace: [ 3239.366213][ T743] dump_stack+0x18e/0x1de [ 3239.370545][ T743] should_fail+0x5d8/0x740 [ 3239.374961][ T743] ? __kernfs_new_node+0x8b/0x630 [ 3239.379979][ T743] should_failslab+0x5/0x20 [ 3239.384468][ T743] kmem_cache_alloc+0x36/0x290 [ 3239.389229][ T743] __kernfs_new_node+0x8b/0x630 [ 3239.394066][ T743] ? mutex_unlock+0x19/0x40 [ 3239.398555][ T743] ? kernfs_xattr_get+0x81/0x90 [ 3239.403392][ T743] ? selinux_kernfs_init_security+0x12d/0x720 [ 3239.409445][ T743] kernfs_new_node+0x95/0x160 [ 3239.414112][ T743] __kernfs_create_file+0x45/0x260 [ 3239.419209][ T743] sysfs_add_file_mode_ns+0x293/0x340 [ 3239.424578][ T743] internal_create_group+0x486/0xd70 [ 3239.429852][ T743] sysfs_create_groups+0x5d/0x130 [ 3239.434864][ T743] device_add+0x9fa/0x1820 [ 3239.439267][ T743] device_create_vargs+0x1b8/0x210 [ 3239.444456][ T743] device_create+0x86/0xb0 [ 3239.448861][ T743] ? vsnprintf+0x1a07/0x1aa0 [ 3239.453454][ T743] bdi_register_va+0x89/0x5e0 [ 3239.458121][ T743] bdi_register+0x80/0xa0 [ 3239.462437][ T743] ? __device_add_disk+0x50a/0x1220 [ 3239.467706][ T743] bdi_register_owner+0x56/0xf0 [ 3239.472546][ T743] __device_add_disk+0x583/0x1220 [ 3239.477572][ T743] loop_add+0x554/0x710 [ 3239.481720][ T743] loop_control_ioctl+0x468/0x680 [ 3239.486726][ T743] ? xor_init+0x60/0x60 [ 3239.490877][ T743] do_vfs_ioctl+0x6fb/0x15b0 [ 3239.495464][ T743] __x64_sys_ioctl+0xd4/0x110 [ 3239.500127][ T743] do_syscall_64+0xcb/0x1e0 [ 3239.504615][ T743] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3239.510493][ T743] RIP: 0033:0x7f145855da39 [ 3239.514915][ T743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:15 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xedc000000000, 0x0) [ 3239.534634][ T743] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3239.543039][ T743] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3239.551002][ T743] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3239.558963][ T743] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3239.566923][ T743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3239.574879][ T743] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3239.622084][ T743] ------------[ cut here ]------------ [ 3239.627566][ T743] WARNING: CPU: 0 PID: 743 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3239.636476][ T743] Modules linked in: [ 3239.640365][ T743] CPU: 0 PID: 743 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3239.651789][ T743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3239.661841][ T743] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3239.667630][ T743] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3239.687215][ T743] RSP: 0018:ffff8881c5637ce8 EFLAGS: 00010246 [ 3239.693267][ T743] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3239.701227][ T743] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3239.709182][ T743] RBP: ffff8881ef0e3c48 R08: ffffffff82147afe R09: 0000000000000010 [ 3239.717139][ T743] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3239.725102][ T743] R13: 1ffff1103e0c3001 R14: 1ffff1103e0c309d R15: ffff8881f0618000 [ 3239.733060][ T743] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3239.741970][ T743] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3239.748536][ T743] CR2: 00007ffdedaeec88 CR3: 00000001f0f93000 CR4: 00000000003406f0 [ 3239.756493][ T743] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3239.764449][ T743] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3239.772401][ T743] Call Trace: [ 3239.775683][ T743] loop_add+0x554/0x710 [ 3239.779829][ T743] loop_control_ioctl+0x468/0x680 [ 3239.784842][ T743] ? xor_init+0x60/0x60 [ 3239.788981][ T743] do_vfs_ioctl+0x6fb/0x15b0 [ 3239.793561][ T743] __x64_sys_ioctl+0xd4/0x110 [ 3239.798226][ T743] do_syscall_64+0xcb/0x1e0 [ 3239.802714][ T743] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3239.808590][ T743] RIP: 0033:0x7f145855da39 [ 3239.812992][ T743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3239.832586][ T743] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3239.840991][ T743] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3239.848954][ T743] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3239.856920][ T743] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3239.864877][ T743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:16 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 56) 20:01:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0xa01) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:16 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc000000000, 0x0) 20:01:16 executing program 3: io_uring_setup(0x3bb8, &(0x7f0000000040)={0x0, 0x625b, 0x8, 0x2, 0x286}) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xffffffffffffffff, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0) 20:01:16 executing program 0: syz_genetlink_get_family_id$fou(&(0x7f0000000000), 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x804040, 0x0) recvmsg$unix(r0, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/class/usbmon', 0x400800, 0x90) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="20002c76f800fbdbdf25000000000800050001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) 20:01:16 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4000000000000, 0x0) [ 3239.872835][ T743] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3239.880797][ T743] ---[ end trace 7aed1b66616f08c6 ]--- 20:01:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x7, 0x2) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 20:01:16 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x100000000000000, 0x0) 20:01:16 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4000000000000, 0x0) [ 3239.942071][ T770] FAULT_INJECTION: forcing a failure. [ 3239.942071][ T770] name failslab, interval 1, probability 0, space 0, times 0 [ 3239.979220][ T770] CPU: 1 PID: 770 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3239.990684][ T770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3240.000728][ T770] Call Trace: [ 3240.004012][ T770] dump_stack+0x18e/0x1de [ 3240.008353][ T770] should_fail+0x5d8/0x740 [ 3240.012763][ T770] ? __kernfs_new_node+0x8b/0x630 [ 3240.017788][ T770] should_failslab+0x5/0x20 [ 3240.022280][ T770] kmem_cache_alloc+0x36/0x290 [ 3240.027033][ T770] __kernfs_new_node+0x8b/0x630 [ 3240.031901][ T770] ? mutex_lock+0x6c/0xc0 [ 3240.036225][ T770] ? kernfs_activate+0x3fc/0x420 [ 3240.041151][ T770] kernfs_new_node+0x95/0x160 [ 3240.045823][ T770] __kernfs_create_file+0x45/0x260 [ 3240.050922][ T770] sysfs_add_file_mode_ns+0x293/0x340 [ 3240.056281][ T770] internal_create_group+0x486/0xd70 [ 3240.061562][ T770] sysfs_create_groups+0x5d/0x130 [ 3240.066595][ T770] device_add+0x9fa/0x1820 [ 3240.071002][ T770] device_create_vargs+0x1b8/0x210 [ 3240.076098][ T770] device_create+0x86/0xb0 [ 3240.080498][ T770] ? vsnprintf+0x1a07/0x1aa0 [ 3240.085076][ T770] bdi_register_va+0x89/0x5e0 [ 3240.089737][ T770] bdi_register+0x80/0xa0 [ 3240.094058][ T770] ? __device_add_disk+0x50a/0x1220 [ 3240.099239][ T770] bdi_register_owner+0x56/0xf0 [ 3240.104072][ T770] __device_add_disk+0x583/0x1220 [ 3240.109086][ T770] loop_add+0x554/0x710 [ 3240.113225][ T770] loop_control_ioctl+0x468/0x680 [ 3240.118237][ T770] ? xor_init+0x60/0x60 [ 3240.122383][ T770] do_vfs_ioctl+0x6fb/0x15b0 [ 3240.126962][ T770] __x64_sys_ioctl+0xd4/0x110 [ 3240.131627][ T770] do_syscall_64+0xcb/0x1e0 [ 3240.136119][ T770] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3240.141992][ T770] RIP: 0033:0x7f145855da39 [ 3240.146395][ T770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3240.166070][ T770] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3240.174472][ T770] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3240.182432][ T770] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:16 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x100) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:16 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x9, 0x420000) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x2000}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) [ 3240.190386][ T770] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3240.198344][ T770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3240.206305][ T770] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3240.239915][ T770] ------------[ cut here ]------------ [ 3240.245396][ T770] WARNING: CPU: 1 PID: 770 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3240.254309][ T770] Modules linked in: [ 3240.258195][ T770] CPU: 1 PID: 770 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3240.269628][ T770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3240.279686][ T770] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3240.285477][ T770] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3240.305154][ T770] RSP: 0018:ffff8881e9277ce8 EFLAGS: 00010246 [ 3240.311208][ T770] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3240.319175][ T770] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3240.327136][ T770] RBP: ffff8881ef0e2b28 R08: ffffffff82147afe R09: 0000000000000010 [ 3240.335093][ T770] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3240.343048][ T770] R13: 1ffff1103d58de01 R14: 1ffff1103d58de9d R15: ffff8881eac6f000 [ 3240.351004][ T770] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3240.359914][ T770] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3240.366480][ T770] CR2: 00007fff392fc648 CR3: 00000001f0f93000 CR4: 00000000003406e0 [ 3240.374437][ T770] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3240.382394][ T770] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3240.390346][ T770] Call Trace: [ 3240.393628][ T770] loop_add+0x554/0x710 [ 3240.397773][ T770] loop_control_ioctl+0x468/0x680 [ 3240.402785][ T770] ? xor_init+0x60/0x60 [ 3240.406933][ T770] do_vfs_ioctl+0x6fb/0x15b0 [ 3240.411511][ T770] __x64_sys_ioctl+0xd4/0x110 [ 3240.416178][ T770] do_syscall_64+0xcb/0x1e0 [ 3240.420673][ T770] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3240.426557][ T770] RIP: 0033:0x7f145855da39 [ 3240.431131][ T770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3240.450808][ T770] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3240.459295][ T770] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3240.467254][ T770] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3240.475232][ T770] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3240.483196][ T770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:16 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 57) 20:01:16 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x100000000000000, 0x0) 20:01:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x441a0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:16 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x200000000000000, 0x0) 20:01:16 executing program 0: ioctl$BLKALIGNOFF(0xffffffffffffffff, 0x127a, &(0x7f0000000000)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x42) 20:01:16 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x6c7, 0x105002) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) r3 = accept$nfc_llcp(r2, &(0x7f0000000300), &(0x7f00000000c0)=0x60) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, &(0x7f0000000140)=0x80, &(0x7f0000000180)=@ax25={{0x3, @null}, [@default, @bcast, @rose, @netrom, @rose, @remote, @null, @bcast]}, 0x0, 0x0, 0x1}, 0x8) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000240)={0x7, {0x0, 0x5, 0x8000, 0x3, 0x4, 0x8000}}) syz_io_uring_setup(0x427c, &(0x7f0000000280)={0x0, 0x1cbb, 0x4, 0x1, 0x79, 0x0, r4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r5, 0x0, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x5, 0x0, r4, &(0x7f00000003c0), &(0x7f00000004c0)='./file0\x00', 0x6bc83fabce78b31, 0x100, 0x1}, 0x2) [ 3240.491182][ T770] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3240.499150][ T770] ---[ end trace 7aed1b66616f08c7 ]--- 20:01:16 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200000000000000, 0x0) 20:01:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_SET_SNDBIT(r1, 0x4004556a, 0x1) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000080)=0x2000420) 20:01:16 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) accept4$nfc_llcp(r0, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x800) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) 20:01:16 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x800000000000000, 0x0) 20:01:16 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x808008, &(0x7f0000000180)=ANY=[@ANYBLOB="726c696d69742c6d656d6f72795f6c6f63616c6576656e74732c6d656d6f72795f72656375727369766570726f742c6e7364656c65676174652c6e7364656c6567616f29e403b68e8274652c6e7364656c65676174652c6d656d6f72795f72650000000000000000726f742c6d656d6f72795f6c6f63616c2576656e74732c6e65745f7072696f2c6d656d6f72795f6c6f63616c6576656e74732c6f626a5f726f6c653d2e2d5cdb2c00"]) recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000540)=[{&(0x7f0000000440)=""/109, 0x6d}, {&(0x7f00000004c0)=""/67, 0x43}], 0x2, &(0x7f0000000580)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x20}, 0x12000) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x80, 0x2, &(0x7f0000000140)=[{&(0x7f0000000240)="93e60ac7769603d4a0086073bb7d12768d058de4ac3207dd83336fc0f80bcdcd4fa76c2d29fa5e06de930bbfe30758f53f16db23b2dfd0eda7f3824062604b616aaf09772d41e52a3eca36de122c3985f016393498c02d98c01d5aa1f7f715c6303e9b92424b5a58c02632ebd31db9f39eba2917ebe702b5226c", 0x7a, 0xc2}, {&(0x7f00000002c0)="746f094cedc4ba37b49a437bad99c962df0bbd4763d1bccae446494325568e0c1d39f2ac761b7ac5c24d955fa3e978fa8817658be96a44982d52ba1ba4c1f7bac4dd520a089f4a093b3746a53fb7b7bed532f4114e9d663a580124b8ad9d1ec41367d92b16ce273bb18739bc38221c702ac87d9b18ea15ca1b7d000bfecd9974d395fa8d345fa62995d89b39b6a0985bc2333a5a9367afa3cebb1138312ad105849dd1c0824cae530067a47614174046dffd0a71179e47a1c27470e99248df9a112090617292db7bec176b1ba98f7fa50a93667041ff617968aa43e4fe0e43254909a9c38ed172e12e4a01b0982fbf4843", 0xf1, 0x7}], 0x40000, &(0x7f0000000600)={[{@mpol={'mpol', 0x3d, {'prefer', '', @val={0x3a, [0x33, 0x2d, 0x34, 0x2c, 0x34, 0x3]}}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x35, 0x70, 0x2d]}}, {@huge_never}], [{@uid_eq={'uid', 0x3d, r0}}]}) [ 3240.593771][ T803] FAULT_INJECTION: forcing a failure. [ 3240.593771][ T803] name failslab, interval 1, probability 0, space 0, times 0 [ 3240.624153][ T803] CPU: 0 PID: 803 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3240.635614][ T803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3240.645663][ T803] Call Trace: [ 3240.648947][ T803] dump_stack+0x18e/0x1de [ 3240.653288][ T803] should_fail+0x5d8/0x740 [ 3240.657702][ T803] ? __kernfs_new_node+0x8b/0x630 [ 3240.662800][ T803] should_failslab+0x5/0x20 [ 3240.667291][ T803] kmem_cache_alloc+0x36/0x290 [ 3240.672053][ T803] __kernfs_new_node+0x8b/0x630 [ 3240.676918][ T803] ? mutex_lock+0x6c/0xc0 [ 3240.681412][ T803] ? kernfs_activate+0x3fc/0x420 [ 3240.686338][ T803] kernfs_new_node+0x95/0x160 [ 3240.691007][ T803] __kernfs_create_file+0x45/0x260 [ 3240.696107][ T803] sysfs_add_file_mode_ns+0x293/0x340 [ 3240.701469][ T803] internal_create_group+0x486/0xd70 [ 3240.706740][ T803] sysfs_create_groups+0x5d/0x130 [ 3240.711751][ T803] device_add+0x9fa/0x1820 [ 3240.716156][ T803] device_create_vargs+0x1b8/0x210 [ 3240.721271][ T803] device_create+0x86/0xb0 [ 3240.725674][ T803] ? vsnprintf+0x1a07/0x1aa0 [ 3240.730260][ T803] bdi_register_va+0x89/0x5e0 [ 3240.734932][ T803] bdi_register+0x80/0xa0 [ 3240.739252][ T803] ? __device_add_disk+0x50a/0x1220 [ 3240.744442][ T803] bdi_register_owner+0x56/0xf0 [ 3240.749307][ T803] __device_add_disk+0x583/0x1220 [ 3240.754322][ T803] loop_add+0x554/0x710 [ 3240.758471][ T803] loop_control_ioctl+0x468/0x680 [ 3240.763496][ T803] ? xor_init+0x60/0x60 [ 3240.767819][ T803] do_vfs_ioctl+0x6fb/0x15b0 [ 3240.772400][ T803] __x64_sys_ioctl+0xd4/0x110 [ 3240.777067][ T803] do_syscall_64+0xcb/0x1e0 [ 3240.781561][ T803] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3240.787437][ T803] RIP: 0033:0x7f145855da39 [ 3240.791836][ T803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3240.811426][ T803] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3240.819826][ T803] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3240.827785][ T803] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3240.835831][ T803] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:17 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2010000000000000, 0x0) [ 3240.843786][ T803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3240.851747][ T803] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3240.878387][ T803] ------------[ cut here ]------------ [ 3240.883987][ T803] WARNING: CPU: 0 PID: 803 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3240.892896][ T803] Modules linked in: [ 3240.896784][ T803] CPU: 0 PID: 803 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3240.908222][ T803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3240.918286][ T803] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3240.924099][ T803] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3240.944143][ T803] RSP: 0018:ffff8881e27c7ce8 EFLAGS: 00010246 [ 3240.950194][ T803] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3240.958325][ T803] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3240.966286][ T803] RBP: ffff8881ef0e1178 R08: ffffffff82147afe R09: 0000000000000010 [ 3240.974245][ T803] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3240.982204][ T803] R13: 1ffff11038fc5801 R14: 1ffff11038fc589d R15: ffff8881c7e2c000 [ 3240.990164][ T803] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3240.999081][ T803] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3241.005654][ T803] CR2: 00007f6c99818718 CR3: 00000001f0f93000 CR4: 00000000003406f0 [ 3241.013702][ T803] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3241.021658][ T803] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3241.029611][ T803] Call Trace: [ 3241.032893][ T803] loop_add+0x554/0x710 [ 3241.037044][ T803] loop_control_ioctl+0x468/0x680 [ 3241.042056][ T803] ? xor_init+0x60/0x60 [ 3241.046199][ T803] do_vfs_ioctl+0x6fb/0x15b0 [ 3241.050782][ T803] __x64_sys_ioctl+0xd4/0x110 [ 3241.055447][ T803] do_syscall_64+0xcb/0x1e0 [ 3241.059938][ T803] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3241.065841][ T803] RIP: 0033:0x7f145855da39 [ 3241.070243][ T803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3241.089925][ T803] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3241.098325][ T803] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3241.106283][ T803] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3241.114243][ T803] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3241.122285][ T803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3241.130245][ T803] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3241.138412][ T803] ---[ end trace 7aed1b66616f08c8 ]--- 20:01:17 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 58) 20:01:17 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000000000000, 0x0) 20:01:17 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4000000000000000, 0x0) 20:01:17 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x6, 0x6, 0x10, "d7f3c26efcbbcdd53468b2749b539fd352bdee4ac921ac6102bf60f49ba7093bc3c65aa86140d084500ef2f4ec9a740605257bd72f083ed0cdc9bf72b2f471a7", "1572496eaf5154548608d9a60e4e7b41137d37a87e989eaa44c1c9d727c7e687257fb3663827a6985488b9aeb2bead2117a3772aac1c674561255e3e851dc024", "5a9dff4e36be1cd2a1202792c1cb79405b477781eb8249693fc258b2eea9a87f", [0x3, 0x3]}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000001440), 0x7ff, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000001480)=""/4096) sendmsg$NL802154_CMD_SET_SHORT_ADDR(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc}, 0xfed2, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xeefb8c99580b5319}, 0x4000001) 20:01:17 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)={0x1}) bind$nfc_llcp(0xffffffffffffffff, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x6, 0x1f, 0x9, "9cbc6939b68004a9a028897ca7e1371131034aedd6f7cbaec2c8cf18ff64f61e9d667e0fc05b2ff84e76405f64b6ea5090db6eb2d148f0d9090c6deb9125ef", 0x1d}, 0x60) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000002, 0x10, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x2401, &(0x7f0000000100)={0x0, 0x44f3, 0x10, 0x505, 0x3ad}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000340)={&(0x7f0000000200), 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x54, 0x3, 0x3, 0x101, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x3}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x80}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x9}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x10000}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x8000000000000004, 0x3}}]}, 0x54}, 0x1, 0x0, 0x0, 0x1}, 0x4c885) recvmsg$unix(r3, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, &(0x7f0000000200), 0x0, 0x800, 0x1}, 0x2) 20:01:17 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x3ff, 0xa080) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_SEC_DEV(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000427bd7000fedbdf251900000008000300", @ANYRES32=0x0, @ANYBLOB="2300260002000016c2fcb475"], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0xc840) 20:01:17 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010000000000000, 0x0) 20:01:17 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x8cffffff00000000, 0x0) 20:01:17 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) rt_sigpending(&(0x7f0000000000), 0x8) 20:01:17 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000, &(0x7f00000000c0)={[{@memory_recursiveprot}, {@subsystem='net_prio'}, {@subsystem='cpuacct'}, {@memory_recursiveprot}], [{@obj_role}]}) 20:01:17 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x3ffffd, 0x159300) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:17 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x9203000000000000, 0x0) [ 3241.253284][ T834] FAULT_INJECTION: forcing a failure. [ 3241.253284][ T834] name failslab, interval 1, probability 0, space 0, times 0 [ 3241.291097][ T834] CPU: 0 PID: 834 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3241.302559][ T834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3241.312609][ T834] Call Trace: [ 3241.315895][ T834] dump_stack+0x18e/0x1de [ 3241.320213][ T834] should_fail+0x5d8/0x740 [ 3241.324618][ T834] ? __kernfs_new_node+0x8b/0x630 [ 3241.329632][ T834] should_failslab+0x5/0x20 [ 3241.334133][ T834] kmem_cache_alloc+0x36/0x290 [ 3241.338890][ T834] __kernfs_new_node+0x8b/0x630 [ 3241.343727][ T834] ? mutex_lock+0x6c/0xc0 [ 3241.348047][ T834] ? kernfs_activate+0x3fc/0x420 [ 3241.352972][ T834] kernfs_new_node+0x95/0x160 [ 3241.357638][ T834] __kernfs_create_file+0x45/0x260 [ 3241.362736][ T834] sysfs_add_file_mode_ns+0x293/0x340 [ 3241.368099][ T834] internal_create_group+0x486/0xd70 [ 3241.373377][ T834] sysfs_create_groups+0x5d/0x130 [ 3241.378393][ T834] device_add+0x9fa/0x1820 [ 3241.382799][ T834] device_create_vargs+0x1b8/0x210 [ 3241.387897][ T834] device_create+0x86/0xb0 [ 3241.392302][ T834] ? vsnprintf+0x1a07/0x1aa0 [ 3241.396883][ T834] bdi_register_va+0x89/0x5e0 [ 3241.401548][ T834] bdi_register+0x80/0xa0 [ 3241.405866][ T834] ? __device_add_disk+0x50a/0x1220 [ 3241.411054][ T834] bdi_register_owner+0x56/0xf0 [ 3241.415892][ T834] __device_add_disk+0x583/0x1220 [ 3241.420943][ T834] loop_add+0x554/0x710 [ 3241.425089][ T834] loop_control_ioctl+0x468/0x680 [ 3241.430101][ T834] ? xor_init+0x60/0x60 [ 3241.434247][ T834] do_vfs_ioctl+0x6fb/0x15b0 [ 3241.438914][ T834] __x64_sys_ioctl+0xd4/0x110 [ 3241.443671][ T834] do_syscall_64+0xcb/0x1e0 [ 3241.448165][ T834] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3241.454044][ T834] RIP: 0033:0x7f145855da39 [ 3241.458444][ T834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3241.478056][ T834] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3241.486473][ T834] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3241.494437][ T834] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3241.502397][ T834] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3241.510400][ T834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3241.518358][ T834] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3241.532146][ T834] ------------[ cut here ]------------ [ 3241.537623][ T834] WARNING: CPU: 0 PID: 834 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3241.546529][ T834] Modules linked in: [ 3241.550413][ T834] CPU: 0 PID: 834 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3241.561840][ T834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3241.571895][ T834] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3241.577690][ T834] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3241.597287][ T834] RSP: 0018:ffff8881e091fce8 EFLAGS: 00010246 [ 3241.603340][ T834] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3241.611301][ T834] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3241.619266][ T834] RBP: ffff8881ef0e2298 R08: ffffffff82147afe R09: 0000000000000010 [ 3241.627222][ T834] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3241.635182][ T834] R13: 1ffff11039071a01 R14: 1ffff11039071a9d R15: ffff8881c838d000 [ 3241.643144][ T834] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3241.652056][ T834] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3241.658622][ T834] CR2: 0000555556ab2b38 CR3: 00000001ec8a7000 CR4: 00000000003406f0 [ 3241.666583][ T834] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3241.674631][ T834] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3241.682587][ T834] Call Trace: [ 3241.685870][ T834] loop_add+0x554/0x710 [ 3241.690013][ T834] loop_control_ioctl+0x468/0x680 [ 3241.695025][ T834] ? xor_init+0x60/0x60 [ 3241.699170][ T834] do_vfs_ioctl+0x6fb/0x15b0 [ 3241.703751][ T834] __x64_sys_ioctl+0xd4/0x110 [ 3241.708438][ T834] do_syscall_64+0xcb/0x1e0 [ 3241.712926][ T834] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3241.718806][ T834] RIP: 0033:0x7f145855da39 [ 3241.723224][ T834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3241.742814][ T834] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:01:18 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 59) 20:01:18 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4000000000000000, 0x0) 20:01:18 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x301840, 0x96) 20:01:18 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) 20:01:18 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:18 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xf0ffffff00000000, 0x0) [ 3241.751314][ T834] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3241.759393][ T834] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3241.767354][ T834] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3241.775317][ T834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3241.783277][ T834] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3241.791239][ T834] ---[ end trace 7aed1b66616f08c9 ]--- 20:01:18 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xf6ffffff00000000, 0x0) 20:01:18 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x9, 0x4240) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:18 executing program 2: syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x480) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/snd', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x20a840, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:18 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffff1f0000000000, 0x0) 20:01:18 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff00000000, 0x0) 20:01:18 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x632000, 0x42) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000000, 0x50, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x4000, @fd=r0, 0x4, &(0x7f00000014c0)=[{&(0x7f0000000080)=""/29, 0x1d}, {&(0x7f00000000c0)=""/136, 0x88}, {&(0x7f0000000180)=""/225, 0xe1}, {&(0x7f0000000280)=""/102, 0x66}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/171, 0xab}, {&(0x7f00000013c0)=""/82, 0x52}, {&(0x7f0000001440)=""/78, 0x4e}], 0x8}, 0x1) [ 3241.965483][ T869] FAULT_INJECTION: forcing a failure. [ 3241.965483][ T869] name failslab, interval 1, probability 0, space 0, times 0 [ 3241.989291][ T869] CPU: 0 PID: 869 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3242.000749][ T869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3242.010797][ T869] Call Trace: [ 3242.014085][ T869] dump_stack+0x18e/0x1de [ 3242.018420][ T869] should_fail+0x5d8/0x740 [ 3242.022829][ T869] ? __kernfs_new_node+0x8b/0x630 [ 3242.027852][ T869] should_failslab+0x5/0x20 [ 3242.032352][ T869] kmem_cache_alloc+0x36/0x290 [ 3242.037107][ T869] __kernfs_new_node+0x8b/0x630 [ 3242.041951][ T869] ? kernfs_add_one+0x49e/0x5c0 [ 3242.046798][ T869] kernfs_new_node+0x95/0x160 [ 3242.051466][ T869] __kernfs_create_file+0x45/0x260 [ 3242.056564][ T869] sysfs_add_file_mode_ns+0x293/0x340 [ 3242.061932][ T869] sysfs_create_file_ns+0x146/0x230 [ 3242.067117][ T869] device_add+0xbc7/0x1820 [ 3242.071523][ T869] device_create_vargs+0x1b8/0x210 [ 3242.076621][ T869] device_create+0x86/0xb0 [ 3242.081024][ T869] ? vsnprintf+0x1a07/0x1aa0 [ 3242.085600][ T869] bdi_register_va+0x89/0x5e0 [ 3242.090271][ T869] bdi_register+0x80/0xa0 [ 3242.094589][ T869] ? __device_add_disk+0x50a/0x1220 [ 3242.099776][ T869] bdi_register_owner+0x56/0xf0 [ 3242.104613][ T869] __device_add_disk+0x583/0x1220 [ 3242.109628][ T869] loop_add+0x554/0x710 [ 3242.113769][ T869] loop_control_ioctl+0x468/0x680 [ 3242.118777][ T869] ? xor_init+0x60/0x60 [ 3242.122929][ T869] do_vfs_ioctl+0x6fb/0x15b0 [ 3242.127510][ T869] __x64_sys_ioctl+0xd4/0x110 [ 3242.132177][ T869] do_syscall_64+0xcb/0x1e0 [ 3242.136669][ T869] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3242.142548][ T869] RIP: 0033:0x7f145855da39 [ 3242.146947][ T869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3242.166542][ T869] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3242.174965][ T869] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3242.182941][ T869] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3242.190896][ T869] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3242.198859][ T869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3242.206818][ T869] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3242.215440][ T869] ------------[ cut here ]------------ [ 3242.220909][ T869] WARNING: CPU: 0 PID: 869 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3242.229822][ T869] Modules linked in: [ 3242.233710][ T869] CPU: 0 PID: 869 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3242.245140][ T869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3242.255204][ T869] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3242.261219][ T869] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3242.280816][ T869] RSP: 0000:ffff8881e6cd7ce8 EFLAGS: 00010246 [ 3242.286874][ T869] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3242.294837][ T869] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3242.302798][ T869] RBP: ffff8881ef0e1a08 R08: ffffffff82147afe R09: 0000000000000010 [ 3242.310850][ T869] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3242.318809][ T869] R13: 1ffff1103dcfba01 R14: 1ffff1103dcfba9d R15: ffff8881ee7dd000 [ 3242.326772][ T869] FS: 00007f14562b3700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3242.335696][ T869] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3242.342300][ T869] CR2: 00007f6c99817d80 CR3: 00000001ec8a7000 CR4: 00000000003406f0 [ 3242.350261][ T869] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3242.358230][ T869] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3242.366186][ T869] Call Trace: [ 3242.369473][ T869] loop_add+0x554/0x710 [ 3242.373707][ T869] loop_control_ioctl+0x468/0x680 [ 3242.379172][ T869] ? xor_init+0x60/0x60 [ 3242.383314][ T869] do_vfs_ioctl+0x6fb/0x15b0 [ 3242.387898][ T869] __x64_sys_ioctl+0xd4/0x110 [ 3242.392563][ T869] do_syscall_64+0xcb/0x1e0 [ 3242.397060][ T869] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3242.402940][ T869] RIP: 0033:0x7f145855da39 [ 3242.407515][ T869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3242.427197][ T869] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3242.435595][ T869] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3242.443556][ T869] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3242.451512][ T869] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3242.459472][ T869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:18 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 60) 20:01:18 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffffff7f00000000, 0x0) 20:01:18 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x40c900, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) recvmsg(r1, &(0x7f0000000440)={&(0x7f0000000140)=@qipcrtr, 0x80, &(0x7f00000003c0)=[{&(0x7f00000001c0)=""/197, 0xc5}, {&(0x7f00000002c0)=""/234, 0xea}], 0x2, &(0x7f0000000400)=""/12, 0xc}, 0x100) syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x400) 20:01:18 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9003000000000000, 0x0) 20:01:18 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) 20:01:18 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040081}, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00') syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x8e) [ 3242.467428][ T869] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3242.475399][ T869] ---[ end trace 7aed1b66616f08ca ]--- 20:01:18 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$UI_DEV_DESTROY(0xffffffffffffffff, 0x5502) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000000)=""/212) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:18 executing program 0: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f0000000080)) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x301840, 0x0) 20:01:18 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0ffffff00000000, 0x0) 20:01:18 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) openat(r0, &(0x7f0000000000)='./file0\x00', 0x1, 0x20) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) pselect6(0x40, &(0x7f0000000080)={0x100000000, 0x40, 0x7, 0x10000, 0xe49a, 0x2, 0x80, 0x7c}, &(0x7f0000000280)={0x40, 0xfff, 0x100000001, 0xffffffff, 0x0, 0x9, 0x8, 0x2}, &(0x7f0000000100)={0x10000, 0x4, 0x8000, 0x7543, 0x80, 0x8000000000000000, 0x3, 0x8}, &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f0000000240)={&(0x7f0000000200)={[0x80]}, 0x8}) 20:01:18 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000000)=0x60, 0x180000) recvmsg(r0, &(0x7f00000015c0)={&(0x7f0000000100)=@in, 0x80, &(0x7f0000001440)=[{&(0x7f0000000180)=""/202, 0xca}, {&(0x7f0000000280)=""/62, 0x3e}, {&(0x7f00000002c0)=""/80, 0x50}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/149, 0x95}, {&(0x7f0000001400)=""/8, 0x8}], 0x6, &(0x7f00000014c0)=""/219, 0xdb}, 0x63) accept4$nfc_llcp(r0, &(0x7f0000001600), &(0x7f0000001680)=0x60, 0x800) r1 = getuid() getresuid(&(0x7f0000002000)=0x0, &(0x7f0000002040), &(0x7f0000002080)) r3 = getuid() syz_mount_image$tmpfs(&(0x7f00000016c0), &(0x7f0000001700)='./file0\x00', 0x7, 0x9, &(0x7f0000001d40)=[{&(0x7f0000001740)="fa8b028cb999d6b61b230eb35fa0c074c7cbb313188b6bad0e82dc8fd5af22d4b94851440101", 0x26, 0x10001}, {&(0x7f0000001780)="67408249045a97e256d7dd28a556f8c54c5e3cd6c6bd20b1ec2a9408667257acd5d73b60e87307d8dd", 0x29, 0x1}, {&(0x7f00000017c0)="f02697167cac5de2b506f1b978c3109ea2a432cb0c0d2641ec7c4e52424ee83746b9ee80cf08ce24bfcfe5ca9464e53b184f02e71e83bec705957587fc9ffb318ffa882d7ada3573dbe76da80bf3ec275dc29e0534f30e5133f48815a0f7e52efbb01f67deac197eb7ebfbc3b36109b0b8f2fd1d7576e0795e291069984291ebb5c804e3c9e246307debf23e60da4d46f68ae8c80f3531dd87eefc6fcc7c60626cdb9521e1b0a5d7c2d078243d419d52fcfefbaa9c659fc67c6cf5a7bc42a8d3046e2a156d0ce27b8cdf2951acb73ad497fa3714661827e03142d82727", 0xdd, 0x7}, {&(0x7f00000018c0)="b4c32eda5a4057a23eb5bd40915fb9d7bb9c317c40f1acae01065f2fecc81f0159dddaa447268e6ab2b9ab52b41492aab646921b3f6f127e69c2235d63fb02c08ac845a1a9e304458beef29a023e308d16d6f7dcdbb4afc5e6125ca27b39824975dddd26fa115de034ab8ee51074075372270736765560c8e4358b943626d1e2902d7c2441ea28b41eab4c186c2fa1e546474b4ee4a94215b948574406cabd11be6c489ae1ffcca524159e683b2a1489161f85e2fb7c8f30a0c02a7fd9b5cf565d76243925d7add8fa271863887894cb0dbc6ad13f78048f745f978889763c3e9405600a50578f498fc7b03442d4", 0xee, 0x1}, {&(0x7f00000019c0)="0848230b87937631b30118c540805af622a4ab47ba1318c901a33d6ae3d43b8dacf11f4ce4cce33a1d6245905472e8986300600da1c6d3f6b87c3319e54888b2c9021e3f62dc7f0cfc65d7acb82a06f7b13b34bfceec8a9de545061b21ab9c78860caa9c84b43ef83e14f74b3787e40670bc15373ebe3279b79a6bbc7cb5ba8f0a5e90cf05887f0ca88a84ffd00abd3d670fd88cf5d32d3969f1ddefb76f68a08f3c6a0306e393d25aaf70ed146c0b1eca74d77a9f83709309b2db947c344d2f5787c84420472d63", 0xc8, 0x20}, {&(0x7f0000001ac0)="259a248de7884177bb044a6cc7582eadec4dcfe0551414a7df7378273b21bc3a3bb7f07e0f4f7b8793b2b5757ebe3360c1278b20b266fc46b76f536e6a06e3bb47a9fe59cd8a01197b114df71e0849f3927028a81c7ff45e2384ed10ba960c06d02f61e936c9e135", 0x68, 0x9586}, {&(0x7f0000001b40)="b575cb4120cde93ffb61d568db1bafd67a37737a4411ccefd3995b48cfd862b67888b4d07cd4f9ca49fc06dcd0294a6059c4459eb216cf937cb3c8d6b31ebe1c966daafb99b8f4489720fde11e7410497a583d939f5241ca92eb4a2c4fe5799baf5237293b297ba63458184ba5d5c858f5a1e5d103e8c646e5f047bfcd8f5be9d741fea9165327b872a22e5f8d38bc74d30657a16a17cab76b8309b72b310ad0af22", 0xa2, 0x80000000}, {&(0x7f0000001c00)="4356620bf91cf8c143", 0x9, 0xa2}, {&(0x7f0000001c40)="50f5ff48c2161a3898521efd0f60bd0006e53d2989ee9011d0ce8ed951658372ebe76929d8a63fd170d988723043dff6cc8c97400ca4f8892a314157e1f90e1095458ef972bf3f1e745c040b3a6a47e3d79a8453eab8a0e791f523c8f329deb1ff273669f168277b5cd70d702e907eec7b1f1dca9151b573b93edc9e8489b2cef0752e2d3cff6200f7a72406644b2cd6142c60e369646378ccd2d99120d3c6e43cb47325fa6439f976fefaf498e2fb6784a547873af01d6e42449d52d0d19f5850714d0c349923e5fa33fdcec9f7b77ce3c799a809bbb5448210a46d2d3238bd1d07c2fc5212002cee179ac228c071c604bdffa3dd5b87a0f14803a12f3198", 0xff, 0xf62}], 0x400a, &(0x7f00000020c0)={[{@huge_within_size}, {@uid={'uid', 0x3d, r1}}, {@uid={'uid', 0x3d, r2}}, {@uid={'uid', 0x3d, 0xee00}}, {@nr_inodes={'nr_inodes', 0x3d, [0x6d, 0x38, 0x78]}}, {@huge_always}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@dont_hash}, {@fsname}, {@pcr={'pcr', 0x3d, 0x24}}, {@uid_eq={'uid', 0x3d, r3}}, {@measure}, {@subj_user={'subj_user', 0x3d, '&'}}]}) socket$inet6_icmp(0xa, 0x2, 0x3a) socket$inet(0x2, 0x3, 0xa4) 20:01:18 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff00000000, 0x0) [ 3242.676229][ T901] FAULT_INJECTION: forcing a failure. [ 3242.676229][ T901] name failslab, interval 1, probability 0, space 0, times 0 [ 3242.688890][ T901] CPU: 1 PID: 901 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3242.700338][ T901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3242.710428][ T901] Call Trace: [ 3242.713798][ T901] dump_stack+0x18e/0x1de [ 3242.718228][ T901] should_fail+0x5d8/0x740 [ 3242.722664][ T901] ? __kernfs_new_node+0x8b/0x630 [ 3242.727681][ T901] should_failslab+0x5/0x20 [ 3242.732170][ T901] kmem_cache_alloc+0x36/0x290 [ 3242.737012][ T901] ? security_kernfs_init_security+0x9a/0xb0 [ 3242.742985][ T901] __kernfs_new_node+0x8b/0x630 [ 3242.747819][ T901] ? mutex_lock+0x6c/0xc0 [ 3242.752136][ T901] ? kernfs_activate+0x3fc/0x420 [ 3242.757054][ T901] ? mutex_unlock+0x19/0x40 [ 3242.761548][ T901] kernfs_create_dir_ns+0x90/0x220 [ 3242.766641][ T901] internal_create_group+0x20e/0xd70 [ 3242.771913][ T901] dpm_sysfs_add+0x59/0x260 [ 3242.776508][ T901] device_add+0xcec/0x1820 [ 3242.780921][ T901] device_create_vargs+0x1b8/0x210 [ 3242.786033][ T901] device_create+0x86/0xb0 [ 3242.790433][ T901] ? vsnprintf+0x1a07/0x1aa0 [ 3242.795013][ T901] bdi_register_va+0x89/0x5e0 [ 3242.799677][ T901] bdi_register+0x80/0xa0 [ 3242.803994][ T901] ? __device_add_disk+0x50a/0x1220 [ 3242.809183][ T901] bdi_register_owner+0x56/0xf0 [ 3242.814019][ T901] __device_add_disk+0x583/0x1220 [ 3242.819034][ T901] loop_add+0x554/0x710 [ 3242.823176][ T901] loop_control_ioctl+0x468/0x680 [ 3242.828189][ T901] ? xor_init+0x60/0x60 [ 3242.832331][ T901] do_vfs_ioctl+0x6fb/0x15b0 [ 3242.836909][ T901] __x64_sys_ioctl+0xd4/0x110 [ 3242.841580][ T901] do_syscall_64+0xcb/0x1e0 [ 3242.846070][ T901] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3242.851946][ T901] RIP: 0033:0x7f145855da39 [ 3242.856354][ T901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3242.876029][ T901] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3242.884421][ T901] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3242.892391][ T901] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3242.900433][ T901] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3242.908481][ T901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3242.916439][ T901] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3242.926614][ T901] ------------[ cut here ]------------ [ 3242.932081][ T901] WARNING: CPU: 1 PID: 901 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3242.940991][ T901] Modules linked in: [ 3242.944880][ T901] CPU: 1 PID: 901 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3242.956310][ T901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3242.966367][ T901] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3242.972157][ T901] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3242.991746][ T901] RSP: 0018:ffff8881ed597ce8 EFLAGS: 00010246 [ 3242.997799][ T901] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3243.005757][ T901] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3243.013735][ T901] RBP: ffff8881ef759178 R08: ffffffff82147afe R09: 0000000000000010 [ 3243.021720][ T901] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3243.029676][ T901] R13: 1ffff11039022e01 R14: 1ffff11039022e9d R15: ffff8881c8117000 [ 3243.037634][ T901] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3243.046549][ T901] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3243.053119][ T901] CR2: 00007ffcc4dbaff8 CR3: 00000001ec8a7000 CR4: 00000000003406e0 [ 3243.061078][ T901] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3243.069032][ T901] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3243.076989][ T901] Call Trace: [ 3243.080270][ T901] loop_add+0x554/0x710 [ 3243.084505][ T901] loop_control_ioctl+0x468/0x680 [ 3243.089514][ T901] ? xor_init+0x60/0x60 [ 3243.093659][ T901] do_vfs_ioctl+0x6fb/0x15b0 [ 3243.098237][ T901] __x64_sys_ioctl+0xd4/0x110 [ 3243.102992][ T901] do_syscall_64+0xcb/0x1e0 [ 3243.107485][ T901] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3243.113365][ T901] RIP: 0033:0x7f145855da39 [ 3243.117771][ T901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3243.137365][ T901] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3243.145764][ T901] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3243.153719][ T901] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3243.161678][ T901] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3243.169632][ T901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:19 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 61) 20:01:19 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3, &(0x7f0000000240)=[{&(0x7f00000000c0)="32e05549cb131f2070e508fa239c22e1f0c0502a3784ca8c6e9d6e3ac3c97869a99ea2f9ce603ab02edf531f2fda7a5918773c51953049570acdd60a0348fac4bd20455f7a317e53a79be421f4567f348851247e12911fadd92484b0e1d18dbe55e04c2d871c2f3a16335625a383f332703ffe", 0x73, 0x80000000}, {&(0x7f0000000140)="ef18e3192b8ee2c1680cbaed6f683e9e43e124a2412d04d8ad7243d85593d98f045f91", 0x23, 0x4}, {&(0x7f0000000200)='7', 0x1, 0xffffffffffffff01}], 0x1030, &(0x7f00000002c0)={[{@nouid32}, {@nouser_xattr}], [{@subj_user}, {@dont_hash}, {@audit}, {@fsmagic={'fsmagic', 0x3d, 0x4}}]}) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:19 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_io_uring_setup(0x2444, &(0x7f0000000000)={0x0, 0xe2cd, 0x10, 0x2, 0x12e}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_setup(0x2f0a, &(0x7f0000000140)={0x0, 0x984, 0x1, 0x0, 0x27}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, r3, &(0x7f0000000280)={0x10000010}, r0}, 0xfe000000) ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x10000) 20:01:19 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x53) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x6, 0x16, 0x1d, "b4eafe2baa7ee68b1a1694a68218b56f79c91e8e93c1e7148981031644b63a06fea568ef2a1abdd6af5d6d1e5004098bc291a25f439901cdbb788f348a68b3fe", "22cc05580fa23f503b4731dcaefda64003d304565efe62270d4be356992e91acced4b1f53409b27897689bd463288ceeb7f17bcb76dea44fed2a44cd90b12c2a", "42073c10bc10f8b17ac2a9a920ae5efce46d04de2343fe1a33021c78780e9fb0", [0x0, 0xffffffffffffff81]}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x65, 0x1}, 0x4) 20:01:19 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x381800, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2004, @fd=r0, 0x100000000, 0x8, 0x8, 0xa, 0x0, {0x2}}, 0xff) lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='trusted.overlay.nlink\x00') 20:01:19 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff1f0000000000, 0x0) [ 3243.177593][ T901] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3243.185554][ T901] ---[ end trace 7aed1b66616f08cb ]--- 20:01:19 executing program 0: ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0xc) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/rmi4', 0x109180, 0x173) recvmsg$unix(r0, 0x0, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f00000000c0)='./file0\x00', r0}, 0x10) 20:01:19 executing program 3: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3a, 0x8, &(0x7f0000001500)=[{&(0x7f0000000140)="c8d5fb45ffeca47e8e9b52a7cb2dc8debf1dadef12f412f043f65894297424dd45b3150df3d5974cf834fba0a04103048a1a62872f5eb6fde4fa615f7ab2390e52ac17adeb6761fc5d0f6f0121c488e7c09cd33e82cf101eee8ca5a95bf92e8516b375017da4f28ff2af22098c0d9f1cbd775c7259e4726e54fcc03faf362f53574b0482b4e83f5f826a55ce59fdb5061d25e0e806ddf8539f46fcb29f40c066d4b154f61565eacd0ae3228fac21682d11fa361517bdd1fd243cfa119a5052e7260af307fab0e62eabe88bb917452fe7ed489520bf2d30174a1c1254caea27df2357a7d84aad93eb5d08aecfc7f25c8985552b938775985f1acbae92b3a4c1e2a60f335343df13e70bc00a652018be82fa0ffc2b01a7b7761499446f6ec4772a7afb001c8335e68b823d5711063d49b3e3ee029b7a182ff068b28b1e77ad8b24d4c4758027a9aa42a81c063c5ff92fb05e99d891a6090008da278bb74045da17b0ce6a056dec3a486021bde2a3c12096c0f49083dbdb2d2ce1da9c677302fc7ca1cbcfac765e8916bfd1a15d62e7952c78283666cfb663827edc55ce4b397c5c8e4f72deff58f92582233a4110051d1ae2831b245bca8302451154417a596093e4b3e51a1619c969916e61dda4761a6f88a7c6ecbc43262c907cf25b3fa26a59dc91805b8cc0837a016eea42b9e7fcfd47ea0811cd7e65f92b399520cb701e1c49fb9894f2be821169f33776ce8dea99f87ed74499e995d919db44d6fa8151e24dccc4b8f1e90ab9554cac90744edcfc09910d5dfb7169209b8d25b38d7d6f27e4cbe7b0d6112bd6616a17fe8178ea5644907663de413a9ceaf223b914e1f4f8855aded87d4a888fa42dcf56e4082399345ebd7df980dd7e3fb8b6e757c79e6649d502845973282660dc7b3da9770787960353fe0a2c5b6d1121301b109bf5e8d890d522cd31b3c091eddd7693d3213cf8618df4ae1077e8b228cc953a3e8a33ce588498c84e5a76b1671be04f19761e0a41263efe88881d6652ad1113d3c972ba8d2a7bd5fba2a996e54a4c58f5a8887ebd7a8739851423c1fd208a83794dd0ae9be11d77b74b6fdd4ec94242339e2f167f10af52c3bca64d6404d2c7207510a4eb86d1f5801840c1a5945c1c29683e2be3ec83e6210155d667a0767b9b2dff54b06a580b8f5dc628495deda5ea07f57d0f5f6e266e7046a110fdcba3435b916577e3ba43f228455cf45744d2d264ef088185e07f35c19d28e89c3d1b5c339d95357a41b2e00b60bb96cabd25a07a82544b717c9d896391d8ecfbf2eb359bdb4c0b837ba7b56e0489175d8f153f4b5482b1227b2cce3a8de71da41dbb6dead10b6367fae0e959d709700b6f575bd44a285edc6074f67a3b504ece8ee34c9517ead9ed9c9d879f47ee07af10f8a9ff429af1f3fa32387d2185ebb49585d55237d7f09b7ae033aa9746fb3f308fa0943053c9bf3ce7faba9081318f449ba2c683e2fc9927c91b2c4e15af41a849e290fdb86bd842141cada8bcb400d4ff878345d0ac3e78446a9c03c4c0aa5a5d779974ea5cc237d670888800be69295ec30750f015a4512da980d939d986cb588ddc530f3cbc7da3d9cb4220a1cb52c523b5b1bbcc3a77ca8aee16e9d578108cf7583c2fa39376b31b00a6eee149583a94c85f4e3cfc478dc85fc5fbf0ea7c6bd58be06bc26f62bde25158f6add172710938d1af618a9fc6b45ddebab7738926df071f30c9e0607abe679890c0586236f6c21d202ae336d49c1ddb18cc8c7705ead42c1b3ed8f8c8f9f4b0691f23c0abee92d8d36f14c12be5f80f0e62624769a7114a9964e44a8b571b5dbf12917a6e1ad36288d862888a41706cf89c12df5d11c1d1c4093a98b0513992a0c3c1557b13544b8ae3e6ae3eb7c5448d070059c9a80f01024b3378fe598d5d01e44b2dd4ab474710cb7a39ef22e065d6c900ab5cfcf31ecf01c5f614e950cd3e3dac4eeccd9e813f960eb1febb198de8b5fee87c2e62e094a7502099cce0c47e8a4bf4acb9f6aded99fb9e0510e129f04ccfee434189466eadaa22b6fd0e01d5f8bb8dbfc666f1584f7db354e527ae4d4ef1a344d5f8405235410ad5875186c757f48ee55a7c9c55aa0a9341861e222e5b7d7d03b179166991a780bf382df5c713be77ada1c520389eb980ae36fd7ec8c6af3900f743148af5eb408f6673e02cb3801db454781dae005fc533e42e25cdca82e9d64365fbc16439d67f057dc1bbc62bf52bf329ababb2a5d81f5099289a50d3b9ff7a56ee3c7edd19e6bbd84a2f429c862e1bdfe6f29ec513aba9f0d3594015dace68db9b10d0086134a9b36197660d9c4e237fd61a69288e114137657d80e5f6317ccb57ec18d823cdac63d642e989fd70ff73338cd320948a35cfa48528e4a96b452ee10ab0d1d20f8e98e2e75a752db24b927a5c13fed7cb36d747db5cc4131b9c1a762e14cd218c2028485019a1b6c7f987b40c8cac0c94c39d3a5b406780863e97ac40e821bdaf422d0c0478b3b712cb11c75365d834481ffd29e5b290294c388231e3a7007662008ff42c9a38214238c8f2751495b1f5ed442e97a03ca7fdbb73a8e68f61d9849a7dbfe5252db9df98608526a49a0d739ce0958d473e31df001f44e983ab6dd114010248be107fa89153295e514009ffdfcbe7ad9289052d4066784bd7e8506ac606b0e6eabb83f4a1ca6373735993a3a516abfda9466bae0ff544df5501d9df4bd4d8293ed5610985c7553ad3c617db93f0f1de424352a67f01767ebf4b1eed1893d089d056b855b28c3eac84e9c0f4eff46fabe805d229a569617b210913c11b04168588aab0e1b91d5a0c3dc5ccdda6ad10fd4e021de42ada1c5c5cad46d875881cc4a734133a7deb84463c8727cd916b1d58d366f7f99c128075fd888f325721d222a04050f0b32ada80605b555c8aaedd431d3e7df63b781a27b71e6a3946740c858c2f22017958c953f022a260a2bdab1a62a3306a58afc916cd245a45a192a8a84cbeebd2a52057e3a30459a4cf93c9c8f7f71076eba5dd1f4991cf7072c0f79b2eaf3d5aa65d1479aa9d1b3599ecd47b69d391c7599d8bc8ac4ad9982066d172289f725ed7baa0f6842d202978736f28fdf8d5db5f7404d418ecacd3b3de20347ac9716e8566f31543d3f7c7deecec119eab2421304d9d0eb5e61e6aa8508cd6b98454f5a97b84caa4b01b54f98182966b7edb2cac100972e5609378417df0fa864c721d585d66f07cf1387ba8190e45a9519f59685ef534170e96b666735377ce0119428c166e9374d553c50a9ffd2ee7b45bec0b2a59ee4e82e77584d2fef7e5d405777ef085a7d4c4b32ed781d04cec0cb560982698b175aed1e48dafc124ce1ab5fc7c20022fef026c7942ca775a39760a2454d603ffe419675934c4bf6401183a483fde1bf1b4fb86bdb5a15898d7d5adf9ce4f44a3da8421b6b258d2faa822b32927dfc32f63babd7679b5f418b1597e727d1ca424a1f2fe352a7bbb2d387da1662e88d3551422eb8c9e9b8bb2bd80f7b2d4feb1cbfe943dbece8ed3d6cc22a0c6eb94c11167488ac380534e351c253263ebed5adacc7e8f6628d1abc06ccc8861f4024bdd39fc3b2669335b333dd9f2f21ecfdb263c9bdf510e79a2df9b62a652e5a70b791ed80385aad61f3b7da02abfacee928f9c88976fca202485d997961509653696b31a5f8e2395d04df903b92f519b4ce2551a9c28b7f34677800047324b1d6cd4389c7c6350ab08958bc514510efc9600b77e34c49b15ed189a8967be4f2e57645a3976f1081207dda27e0f76c15906d30f1f34cd31c126e4c7fad7275297a334c67ce4c3735e72359dd98d0bd8f1f69154bdff5f08215e41d69d2c2492d5ff4729fb97cdc8f443b32548f38c0c0ba81ce7e4925e4c9636ba62fbda9d10e9775b681ac9d6aaa20a3caa5de9fa64775d6e5b41e1aa2a51c677d48e84091e8be3df07eca708da97f9a8b941a7e8d6f8d663c9e6d0ef058967d6fcaf47775811e41ff93363bd3dfb8a408ac083d79f83b6c0603d43abd636add9bfd296d33a30b8363fb7dc90f14cb68f04b5c4432513d81cf74792a00b139057996b20118db78bc8d38e964541c538f0c92059af91405284e3ce52e3d6a423d696a407a0687d8f0bd50b443f639843d4cdf57572e8a81da5e642aefac40709edb1a8f58e664601da97c34d0b4f020d13f17c5a704deb4818e3986172723582404f52d6092cda21e593c1374229807b98b7e1c181fb96d4e3619054cb91885945cb6091326b28fd5c176da147ffa42e0e900ff5a8ed548c51e089d07c2f7d9cb35e5d8711d928a7c02819b75a601f6a77d153010226c3b085d20622d28395c531255aa8d671a94eeb85b5726e8a913c2456f3611c7609dce2b437f2314c10d257632a876f6b61941e08ea00c4ff256ccafef23681c0950b85b4cf1d05619c0d235b8d16b94570f01119336efbd36646cd308b5d3ee169dec864b3dfa5bee4a4d4526f723f579cba705de654fdb9f5e0a177c163b48efa0c2b936c7b0f5f881e1d6c640b7fd81f3fd1bf46d0d190945402f06ad84729b32857f534eb04fe957a8e1438afa58db9c081b55ffbb21e7bcb0d0564a4e505c2dad864c885d257179916211e9f11b052fb2e1dd7815ddd9965fbc3dad7528c71fb0d7b4c3bd3082689f60867364740908953cec44d44daa1b23a8dec695f02cfb9fb7d2878bf7cbf604014fe7893d7250bd98069d4ebc7c748eb7919e7b4e219c635cf1713bf05c04b9e2031917205ee6544fd7e0e9dd4574c7cb54c24ebe6c9cfef5fe9942b16c59c415983fc550da47512715cd8f79c5a45c7640375edb21cd4baf8e92273853b3c437c7803b64fc589d7fcc8711da049252f94d54712c20d5d1aaea0912b3467cfa0730d959ee447314ce26ffd6c5b161723d230a73093b13b361852e6dbe520ebed6e107c65ffb57cfce58b792dca378543af6ee841e6df3ea3500843d157415161b10d040d6294cdb0e4a907e86b9bec660c979188bacdf8e170cbd24564e78616a3b9693e998e4b93d0c9578ad516397a7262d7833288a86ceb3037c0795de2028d63f5953923b54cbdb56ba23ff8571721d67f732aab096d69d5356673200c144b0a4c52dddf75dea3715f136433cfdbae15da7ec6923f45cecdfa3d1a710aabda3c5dfe148e89f8081644f54a803d6e955a852218bd294719942f5c8d628b6a210ddae6960007596f6a57ad04c15f9336de9479c02ca83d0eeefabd2d72a188591c44b374562b6505ae649151a031ce92a98e5634f0cce61c00755e08693973b0e9e9eda183c35569864eba422bee1c79cc4e5dcedd7de0afc53138116f0bd7b322ad3fdea1509b8aa505fcc737e3c92315c192076fc0611d5fb867718ab958cb17176aa7f99eb828419d63d9b8e977817b0092f1c2e641c7bbce561f4fa54db32207653df20a5ecce6e2563b446ae8663149fa5814fc1a154288c3b9d80e7936c1e730c625da2644ea321300d81cd0ef235dd9c3d8ecf12ade446739ed29d742e45c1a0e4fe50e0a1b12d5dfccab9797439b60cdcd8a072181d5c0b4aac0516c0ded5c472496aab1ee7ff723d64d058409c1bcff5d36d77183295c6e4f5f7fc4c85099682571a5bb1c8bce157aef56d57e082b7c43468a4f9ada7a56ede28a518eff9cfaa9023e43f5f812b84d309e7725d69c09753ebb3e8cfad3f57e6e6b947c829e2357b579a820e2d281379ea0adfa34704d3bbcff3c1cd0396497d757d6b8b3a6d939bc", 0x1000, 0x100}, {&(0x7f0000001140)="897248aa1be330b70a0e1c8284c5a65887fde100476dbecccd41e8988da59354bb9b64ee457c965a660fb839988da61cf66a3fac8f26c5e1c31c2bf35fa53f1a10c849a2febe074bf2172f96fa86efc08a5861f6680f6cbcbb82691a7e72689c391a688fa3b7bcd03e42db8c32c1cf38fb8cd9d584831a47bc8d2315b80cc2e228ec8018085191ff7fe754", 0x8b, 0x401}, {&(0x7f0000001200)="9c753bd948d0978d903d2b0e949f46172ca86b3f73b65aa53f1f25c993337c1cb9053c4fa1948f24fb945b77e4d6b0175924f11cd27351857444b851ab510c6d9c11cfae269639fe955512a54a28f642cacc95c368a2de104422bff7bcf1ada8c778a1c1ada1ad21da95656a01650fe796a61fd9a34579d47db7fc5e75735fe92ede389a3e59c95eae72e12024d55bb0ddc54e6e91fe79fa07997d467669db", 0x9f, 0x3f}, {&(0x7f0000000080)="717b56c931b8fd461c4f88e2407c839c7d18fd0a322832f19b9c772f8c907a094fe4fd703b8aea52b84e50337889d8896a23c01cbf4180a681ad1689b7219816d19caa356a448732ea819e30894451dcedc785f9a4101c473de377d6eab2fb54cb3400dabc6daa1f78886765b88d38d07bba146ef2f1b9556711b6765b868b39", 0x80, 0xfffffffffffffffc}, {&(0x7f00000012c0)="ea440c5ed0765544cfbce6c884d233f83cefcfa30a516a755cc2493c5b6d0e0ccad2e841324ff3a84ef5d5d66d9ac25e683c7251e0f371f38a34799576c51d2aec0d03f15b881b040fbc", 0x4a, 0xfffffffffffff000}, {&(0x7f0000001340), 0x0, 0x6}, {&(0x7f0000001380)="74844c0f695f6c9a7626382dbfdd1cdd759ca6747e07923ef68f74d0fa31a5392b41abd9287d4b95543cd0a6701749d22c82e55fd680d9f258fd0c9101252ba4877d7ad24dd4cb54823ea912fecef63c856e1d8b32c0", 0x56}, {&(0x7f0000001400)="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", 0xfd, 0x400}], 0x800, &(0x7f00000015c0)={[{@init_itable_val={'init_itable', 0x3d, 0x2}}, {@barrier_val}, {@commit={'commit', 0x3d, 0x4}}, {@nolazytime}, {@resuid={'resuid', 0x3d, 0xffffffffffffffff}}, {@noauto_da_alloc}, {@barrier_val}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@sysvgroups}]}) fspick(r0, &(0x7f00000016c0)='./file0\x00', 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004508, 0x0) syz_mount_image$vfat(&(0x7f0000001340), &(0x7f0000001700)='./file0\x00', 0x100, 0x3, &(0x7f0000001880)=[{&(0x7f0000001740)="23ad9a16514de35aa6768d", 0xb, 0x700000000000}, {&(0x7f0000001780)="3dd07ad4d78b431ed14c281fc1", 0xd, 0x3}, {&(0x7f00000017c0)="a62118c7b7d68433e86b65be4a99593efae8f65b2f091900bd4ad76b93740b9cc96d0a3b5c3dcc1b3c882e1bda2f7cd37e33b8d6c1a1544afd26c00740957d8ec0165b6fd49c847e63704c10000986b8eac62fc261f1517bbcee379a0b620f49968613bb3a1941aea51068cb11ed023d2533acd4949b5f8f61028131f6a802bd0e960d660946c36dc7828cca09c7e5dd4f25b307cf48d5fb36057520ece88ccf39d7859abfbce40bf18e75d98f1508167e27c4d0b87470", 0xb7, 0x3}], 0x800082, &(0x7f0000001900)={[{@shortname_winnt}, {@rodir}, {@fat=@nfs}, {@uni_xlate}, {@uni_xlate}, {@rodir}, {@shortname_lower}, {@uni_xlate}, {@shortname_winnt}], [{@pcr={'pcr', 0x3d, 0x7}}]}) 20:01:19 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101040, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000008c0), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000080)={{0x0, 0x0, 0xffff}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x7f, 0x4, &(0x7f0000000380)=[{&(0x7f00000000c0)="f8c4eacd5b4467947834dafedf6c13c620769c20d678f22032862c88492eb56357eb3154592019b37e8be44ebb664ad8c55b137518cf7c62e1d5332e005385045f758340c3dfc345008a170a4e67bee03deef5e1caecb3f991eeea2855131e406a902c85921ec89b713776e200c6fc97e3ec94b487b68d8d925e8b4ffd0533e61236cc656f4bb81e3dc04b67ab0b87f402af5e5ab28cf8f9980f42b68e233d7f7d7c29e1", 0xa4, 0x6}, {&(0x7f0000000200)="60ab6a81ce0c6bbfa1327e319fdeb17f8996f9a833273df91ea0d2e516bbf40f6d1a72fbee3bc36e10f65beca7969bc25b3b180e2534f9c520ac60142f1ea4cfea2e10df1f30a09be108ce879d6046d3980e7e4e88c555b66caad608449554f7a4e48a013c94da1d", 0x68, 0x8}, {&(0x7f0000000280)="b52588a55e3a046d76fb52dea4422106", 0x10, 0x401}, {&(0x7f00000002c0)="e5162de9a75851e1e88db133fc865556c5dc04862f9d112e9251f2502a0e3275dcde983d717af72e58fe574d6a54ec097bb36ed47ac0f35da9a9c845fe96b45b3fa5b38eaea46b5a1205e2b6bde70e24187e14252bfbcc2255c767aed1890b042da0207997725cef26e10524ff3054448fa30996c6d0a2128ab052e15ec4ddf65a5f", 0x82, 0x7}], 0x202000, &(0x7f0000000480)=ANY=[@ANYBLOB='acl,user_xattr,smackfsfloor=cgroup2\x00,appraise,dont_hash,seclabel,fowner<', @ANYRESDEC=0x0, @ANYBLOB="b73d92b98bda3f54439c08f561d12c00"]) 20:01:19 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:19 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff7f00000000, 0x0) 20:01:19 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x369140, 0x10) [ 3243.281530][ T932] input: syz0 as /devices/virtual/input/input6416 [ 3243.330542][ T932] input: syz0 as /devices/virtual/input/input6417 [ 3243.374402][ T940] FAULT_INJECTION: forcing a failure. [ 3243.374402][ T940] name failslab, interval 1, probability 0, space 0, times 0 [ 3243.404243][ T940] CPU: 1 PID: 940 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3243.415817][ T940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3243.425862][ T940] Call Trace: [ 3243.429145][ T940] dump_stack+0x18e/0x1de [ 3243.433464][ T940] should_fail+0x5d8/0x740 [ 3243.437869][ T940] ? __kernfs_new_node+0x8b/0x630 [ 3243.442881][ T940] should_failslab+0x5/0x20 [ 3243.447376][ T940] kmem_cache_alloc+0x36/0x290 [ 3243.452128][ T940] ? selinux_kernfs_init_security+0x12d/0x720 [ 3243.458177][ T940] __kernfs_new_node+0x8b/0x630 [ 3243.463015][ T940] ? mutex_lock+0x6c/0xc0 [ 3243.467347][ T940] kernfs_new_node+0x95/0x160 [ 3243.472014][ T940] __kernfs_create_file+0x45/0x260 [ 3243.477110][ T940] sysfs_add_file_mode_ns+0x293/0x340 [ 3243.482468][ T940] sysfs_merge_group+0x19b/0x320 [ 3243.487392][ T940] dpm_sysfs_add+0xbd/0x260 [ 3243.491880][ T940] device_add+0xcec/0x1820 [ 3243.496282][ T940] device_create_vargs+0x1b8/0x210 [ 3243.501437][ T940] device_create+0x86/0xb0 [ 3243.505836][ T940] ? vsnprintf+0x1a07/0x1aa0 [ 3243.510409][ T940] bdi_register_va+0x89/0x5e0 [ 3243.515070][ T940] bdi_register+0x80/0xa0 [ 3243.519392][ T940] ? __device_add_disk+0x50a/0x1220 [ 3243.524666][ T940] bdi_register_owner+0x56/0xf0 [ 3243.529508][ T940] __device_add_disk+0x583/0x1220 [ 3243.534523][ T940] loop_add+0x554/0x710 [ 3243.538663][ T940] loop_control_ioctl+0x468/0x680 [ 3243.543668][ T940] ? xor_init+0x60/0x60 [ 3243.547805][ T940] do_vfs_ioctl+0x6fb/0x15b0 [ 3243.552383][ T940] __x64_sys_ioctl+0xd4/0x110 [ 3243.557049][ T940] do_syscall_64+0xcb/0x1e0 [ 3243.561538][ T940] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3243.567410][ T940] RIP: 0033:0x7f145855da39 [ 3243.571806][ T940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3243.591392][ T940] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3243.599792][ T940] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3243.607749][ T940] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3243.615791][ T940] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3243.623744][ T940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3243.631704][ T940] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3243.661054][ T940] ------------[ cut here ]------------ [ 3243.666532][ T940] WARNING: CPU: 1 PID: 940 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3243.675440][ T940] Modules linked in: [ 3243.679342][ T940] CPU: 1 PID: 940 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3243.690769][ T940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3243.700823][ T940] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3243.706609][ T940] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3243.726714][ T940] RSP: 0018:ffff8881eba57ce8 EFLAGS: 00010246 [ 3243.732767][ T940] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3243.740727][ T940] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3243.748688][ T940] RBP: ffff8881ef75ab28 R08: ffffffff82147afe R09: 0000000000000010 [ 3243.756649][ T940] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3243.764606][ T940] R13: 1ffff1103913cc01 R14: 1ffff1103913cc9d R15: ffff8881c89e6000 [ 3243.772569][ T940] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3243.781480][ T940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3243.788047][ T940] CR2: 00007f6c9bba5b58 CR3: 00000001eb091000 CR4: 00000000003406e0 [ 3243.796002][ T940] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3243.803960][ T940] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3243.812019][ T940] Call Trace: [ 3243.815306][ T940] loop_add+0x554/0x710 [ 3243.819452][ T940] loop_control_ioctl+0x468/0x680 [ 3243.824462][ T940] ? xor_init+0x60/0x60 [ 3243.828607][ T940] do_vfs_ioctl+0x6fb/0x15b0 [ 3243.833190][ T940] __x64_sys_ioctl+0xd4/0x110 [ 3243.837864][ T940] do_syscall_64+0xcb/0x1e0 [ 3243.842369][ T940] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3243.848427][ T940] RIP: 0033:0x7f145855da39 [ 3243.852828][ T940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:20 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 62) 20:01:20 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x150, 0x1, 0x2, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, [@CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0xfffffff8}, @CTA_EXPECT_HELP_NAME={0xf, 0x6, 'tftp-20000\x00'}, @CTA_EXPECT_MASTER={0xdc, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @multicast1}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @mcast1}}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_NAT={0x28, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0xfff}]}, 0x150}, 0x1, 0x0, 0x0, 0x24000004}, 0x10) recvmsg$unix(r0, 0x0, 0x0) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000040)={0x34}) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:20 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_io_uring_setup(0x2444, &(0x7f0000000000)={0x0, 0xe2cd, 0x10, 0x2, 0x12e}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_setup(0x2f0a, &(0x7f0000000140)={0x0, 0x984, 0x1, 0x0, 0x27}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, r3, &(0x7f0000000280)={0x10000010}, r0}, 0xfe000000) ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x10000) 20:01:20 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x931042, 0x0) 20:01:20 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00') 20:01:20 executing program 0: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x202e02, 0x101) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000001940)={&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000001780)=[{&(0x7f0000000640)=""/92, 0x5c}, {&(0x7f00000006c0)=""/63, 0x3f}, {&(0x7f0000000700)=""/48, 0x30}, {&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000001740)=""/37, 0x25}], 0x5, &(0x7f0000001800)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x108}, 0x100) r3 = geteuid() r4 = getuid() syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x6c, 0x5, &(0x7f0000000540)=[{&(0x7f0000000280)="d55724aee75df676dbdb227d3544", 0xe, 0xb8}, {&(0x7f00000002c0)="1c681fc76d7dd6356c6bfb11f128d2b819d8aaaa5babe90759f4369ebe83c7e1b8a0768a62be33b82b795f7e700dba453b615aa4a8955ef7031cc3be8c193067449c0a3e65bdd5dcab26aa42bc7d387d6bf7804cf557e51a7dc67b8b7f507db237ce22e484d6b23ac3bfeafd5feac7da4a6e3dbeb574c1b252e1912b59ce34b0d48a27ffb2ea7f531834608e9408f62a71e8ab8b027023f48c7cfc9fcb86c15c6216a2a87af8f9b71e96f2f7", 0xac, 0x10001}, {&(0x7f0000000380)="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", 0xfa, 0x7}, {&(0x7f0000000480)="3d1795bce1", 0x5, 0x7}, {&(0x7f00000004c0)="18f617732fd2daadea87b6d56f550d26f6d25f32229a43a3d10a176be68bea5a508d4297c099edc5cce489ba325e97bdd4c105dbcba4601006ff1c76c7233cbec1113a370c62a1cd5476ef6c96e39a73db78ee0d", 0x54, 0x5}], 0x10050, &(0x7f0000001980)={[{@acl}, {@noacl}], [{@fowner_eq={'fowner', 0x3d, r2}}, {@audit}, {@uid_gt={'uid>', r3}}, {@hash}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_gt={'uid>', r4}}, {@fowner_gt}]}) recvmsg$unix(r1, 0x0, 0x0) r5 = gettid() sched_getaffinity(r5, 0x8, &(0x7f0000000000)) tkill(r5, 0x26) sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x48, 0xa, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x3}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4) move_mount(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000080)='./file0\x00', 0x80) [ 3243.872417][ T940] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3243.880822][ T940] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3243.888780][ T940] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3243.896742][ T940] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3243.904695][ T940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3243.912652][ T940] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3243.920614][ T940] ---[ end trace 7aed1b66616f08cc ]--- 20:01:20 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0ffffff00000000, 0x0) 20:01:20 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, 0x0) 20:01:20 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) getresuid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)=0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0xfffffffffffff7c1, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)="8e32cedcd99e6396231f8bf522bf95a425bfe79ade7d84374e1349f6130d7354cf5287627a7f4c08d06dfd14c79962946fb36fe50b1a0e8cfbcf74169084b239ddcca441ecdf11bed55d47e48e19ac0118056b5939f00bec8ade10a07ac6e1887439a2342c55ba5af212b4edb1e63ef3d27338f98acc5cedc287b6b4e02190166f6a2d3bb011b0ec1ef016eaa874e2ec758fcad1ca25772f95062f85aaae", 0x9e, 0x401}], 0x1400, &(0x7f0000000480)={[{@journal_checksum}, {@bh}, {@dax}, {@abort}], [{@seclabel}, {@appraise_type}, {@fowner_eq={'fowner', 0x3d, r0}}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x35, 0x65, 0x37, 0x98, 0x39, 0x33, 0x32], 0x2d, [0x36, 0x66, 0xa2, 0x66], 0x2d, [0x63, 0x50, 0x52, 0x35], 0x2d, [0x33, 0x34, 0x36, 0x35], 0x2d, [0x33, 0x38, 0x38, 0x35, 0x38, 0x31, 0x0, 0x63]}}}]}) 20:01:20 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x10002, 0x0) recvmsg$unix(r0, &(0x7f0000000500)={&(0x7f0000000080), 0x6e, &(0x7f0000000480)=[{&(0x7f0000000140)=""/194, 0xc2}, {&(0x7f0000000240)=""/213, 0xd5}, {&(0x7f0000000340)=""/159, 0x9f}, {&(0x7f0000000400)=""/69, 0x45}], 0x4, &(0x7f00000004c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x20}, 0x40002041) recvmsg$unix(r0, 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000000000)=""/48) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000ac0)={r2}, 0x8) ioctl$UI_SET_RELBIT(r3, 0x40045566, 0xe) r4 = syz_mount_image$vfat(&(0x7f0000000680), &(0x7f00000006c0)='./file0\x00', 0x10000, 0x4, &(0x7f0000000980)=[{&(0x7f0000000700)="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", 0xfe}, {&(0x7f0000000800)="75843f45b908c09acb4656fda17b121dbd4b15f2a9b449bbcd", 0x19, 0x80000001}, {&(0x7f0000000840)="b0510902b485c380ef76e7a2ad2c97f7e32bcbd441f10dea7c170eb53fea0499c2327ea319da69dab270e66717a07313369e77557055c39cc75cfbdf246c5f33fc9a499ecaf10f72232bd374c53a5f4276b8c204ef6de4327f77176c3abd7c2b5f08b291f70990739af8c53f787f4b1b0b34", 0x72}, {&(0x7f00000008c0)="ba3ce5e630c7e56873e1878e3ae66fab701814864ab6807c5e5a2b1fefe88ca04e250b8c1de8206e3650780edfd4f2780593808dfaf6201467ca39b0efb76546ee78a1eb62cc312d9cac7b961df768da682dea68759e859f8ccc320f3c8455c647376243e8bb17dcd147fd2df7e00fd364fce120f50a9c6416a25aa4f45d657feffe61c701f4024c1c164be8ef5d6c6e696818ef9c5e09bc917fb2c92291595ed864cdf40413ae5fb0", 0xa9, 0x280000000000000}], 0x280431, &(0x7f0000000a00)=ANY=[@ANYBLOB="726f6469722c73686f72746e6174726963742c726f646469722c7063723d303030303030303030303030303030303030038033332c6575", @ANYRESDEC=r1, @ANYBLOB=',\x00']) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r5, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000a80)=@IORING_OP_SPLICE={0x1e, 0x7ffd85cd3ec26992, 0x0, @fd=r4, 0x6, {}, 0x0, 0x8, 0x0, {0x0, 0x0, r5}}, 0x0) socketpair(0x4, 0x80000, 0xffffffe1, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPSET_CMD_RENAME(r6, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x34, 0x5, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x7}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x80) [ 3243.992423][ T955] FAULT_INJECTION: forcing a failure. [ 3243.992423][ T955] name failslab, interval 1, probability 0, space 0, times 0 20:01:20 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, 0x0) syz_io_uring_setup(0x213, &(0x7f00000000c0)={0x0, 0x70cc, 0x10, 0x1, 0x169}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000180)) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) ioctl$BLKBSZGET(r2, 0x80081270, &(0x7f0000000280)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, r0, &(0x7f00000001c0)={0x88380, 0xb3, 0x8}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345}, 0x1) 20:01:20 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4000000000000000, 0x0) [ 3244.070622][ T955] CPU: 0 PID: 955 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3244.082082][ T955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3244.092136][ T955] Call Trace: [ 3244.095419][ T955] dump_stack+0x18e/0x1de [ 3244.099750][ T955] should_fail+0x5d8/0x740 [ 3244.104158][ T955] ? __kernfs_new_node+0x8b/0x630 [ 3244.109344][ T955] should_failslab+0x5/0x20 [ 3244.113831][ T955] kmem_cache_alloc+0x36/0x290 [ 3244.118676][ T955] __kernfs_new_node+0x8b/0x630 [ 3244.123515][ T955] ? mutex_lock+0x6c/0xc0 [ 3244.127832][ T955] ? kernfs_activate+0x3fc/0x420 [ 3244.132760][ T955] kernfs_new_node+0x95/0x160 [ 3244.137426][ T955] __kernfs_create_file+0x45/0x260 [ 3244.142526][ T955] sysfs_add_file_mode_ns+0x293/0x340 [ 3244.147885][ T955] sysfs_merge_group+0x19b/0x320 [ 3244.152827][ T955] dpm_sysfs_add+0xbd/0x260 [ 3244.157318][ T955] device_add+0xcec/0x1820 [ 3244.161729][ T955] device_create_vargs+0x1b8/0x210 [ 3244.166829][ T955] device_create+0x86/0xb0 [ 3244.171228][ T955] ? vsnprintf+0x1a07/0x1aa0 [ 3244.175805][ T955] bdi_register_va+0x89/0x5e0 [ 3244.180464][ T955] bdi_register+0x80/0xa0 [ 3244.184778][ T955] ? __device_add_disk+0x50a/0x1220 [ 3244.189960][ T955] bdi_register_owner+0x56/0xf0 [ 3244.194796][ T955] __device_add_disk+0x583/0x1220 [ 3244.199810][ T955] loop_add+0x554/0x710 [ 3244.203957][ T955] loop_control_ioctl+0x468/0x680 [ 3244.208966][ T955] ? xor_init+0x60/0x60 [ 3244.213107][ T955] do_vfs_ioctl+0x6fb/0x15b0 [ 3244.217686][ T955] __x64_sys_ioctl+0xd4/0x110 [ 3244.222353][ T955] do_syscall_64+0xcb/0x1e0 [ 3244.226847][ T955] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3244.232726][ T955] RIP: 0033:0x7f145855da39 [ 3244.237128][ T955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3244.256716][ T955] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3244.265110][ T955] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3244.273064][ T955] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3244.281020][ T955] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3244.288977][ T955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3244.296933][ T955] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3244.307468][ T955] ------------[ cut here ]------------ [ 3244.312931][ T955] WARNING: CPU: 0 PID: 955 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3244.321934][ T955] Modules linked in: [ 3244.325820][ T955] CPU: 0 PID: 955 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3244.337429][ T955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3244.347479][ T955] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3244.353313][ T955] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3244.372898][ T955] RSP: 0018:ffff8881e4d0fce8 EFLAGS: 00010246 [ 3244.378953][ T955] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3244.386906][ T955] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3244.394884][ T955] RBP: ffff8881ef75c4d8 R08: ffffffff82147afe R09: 0000000000000010 [ 3244.402839][ T955] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3244.410800][ T955] R13: 1ffff11039045c01 R14: 1ffff11039045c9d R15: ffff8881c822e000 [ 3244.418755][ T955] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3244.427666][ T955] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3244.434237][ T955] CR2: 00007f6ff9ece004 CR3: 00000001e87a7000 CR4: 00000000003406f0 [ 3244.442199][ T955] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3244.450158][ T955] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3244.458108][ T955] Call Trace: [ 3244.461389][ T955] loop_add+0x554/0x710 [ 3244.465552][ T955] loop_control_ioctl+0x468/0x680 [ 3244.470552][ T955] ? xor_init+0x60/0x60 [ 3244.474687][ T955] do_vfs_ioctl+0x6fb/0x15b0 [ 3244.479264][ T955] __x64_sys_ioctl+0xd4/0x110 [ 3244.483926][ T955] do_syscall_64+0xcb/0x1e0 [ 3244.488424][ T955] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3244.494300][ T955] RIP: 0033:0x7f145855da39 [ 3244.498708][ T955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:20 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 63) 20:01:20 executing program 5: prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000080)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)={&(0x7f0000000180)='./file0\x00'}, 0xfffffffffffffd90) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x804, 0x0) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x155680, 0x86) 20:01:20 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200000000000000, 0x0) 20:01:20 executing program 0: syz_genetlink_get_family_id$gtp(&(0x7f0000000000), 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xad9c, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000100)="2102bdc0b548b167e7be98ead12311dee3c745c437a370b6817b00268c87301c346bcc6e642c7b0cf8201b3d5138831fa43c82ce08ef269b2c4cdf7b301c92e4a86cb175361686753b800f2f555278ff5cca5cd2826de56b88725d1110c0d7130fc696dd181f033e994fca7879a5d0b2766fe7e9bc41d7c07ccd9a26fbb26368ab22089ba69da249440da463dd8a870f87c8b40402f1ac5d7e0f422ae7d3e3781273978413e0255b1527a9f8fb9b051d5e6b3777cc484a03829fbd1bd3", 0xbd, 0x5}], 0x10ba000, &(0x7f0000000200)={[{@nr_blocks={'nr_blocks', 0x3d, [0x67, 0x38, 0x36, 0x34, 0x38, 0x65]}}, {@huge_advise}, {}, {@mpol={'mpol', 0x3d, {'bind', '=relative', @val={0x3a, [0x36, 0x2c]}}}}, {@huge_never}, {@huge_within_size}, {@gid}], [{@uid_lt={'uid<', 0xee01}}, {@audit}]}) mknodat(r0, &(0x7f00000002c0)='./file0\x00', 0x1000, 0x8a5) 20:01:20 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4000000000000, 0x40cc80) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) [ 3244.518300][ T955] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3244.526695][ T955] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3244.534657][ T955] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3244.542613][ T955] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3244.550569][ T955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3244.558526][ T955] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3244.566486][ T955] ---[ end trace 7aed1b66616f08cd ]--- 20:01:20 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20, 0x0) 20:01:20 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x6c7, 0x105002) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) r3 = accept$nfc_llcp(r2, &(0x7f0000000300), &(0x7f00000000c0)=0x60) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, &(0x7f0000000140)=0x80, &(0x7f0000000180)=@ax25={{0x3, @null}, [@default, @bcast, @rose, @netrom, @rose, @remote, @null, @bcast]}, 0x0, 0x0, 0x1}, 0x8) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000240)={0x7, {0x0, 0x5, 0x8000, 0x3, 0x4, 0x8000}}) syz_io_uring_setup(0x427c, &(0x7f0000000280)={0x0, 0x1cbb, 0x4, 0x1, 0x79, 0x0, r4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r5, 0x0, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x5, 0x0, r4, &(0x7f00000003c0), &(0x7f00000004c0)='./file0\x00', 0x6bc83fabce78b31, 0x100, 0x1}, 0x2) 20:01:20 executing program 4: r0 = getuid() syz_mount_image$f2fs(&(0x7f0000000480), &(0x7f0000000980)='./file0/file0/file0\x00', 0x4, 0x6, &(0x7f0000002cc0)=[{&(0x7f00000009c0)="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", 0x1000, 0x1}, {&(0x7f00000019c0)="ba689494564d6dde9025072f37e7d5d6f91cd4e05a3569bb48e131513b78a1c0a0219db463045202a8863e25a61a2d6ef883740ec703d71004cfbce49f905164338b6297f5da9ec8200ff4e201027a4426a6bfb0add809f5448521038359324ef447c0ca9a332b7210c04b922cc094e10488db37068869edf76eb72939beb21992a734f1a594aba1ebe26aae7d151fa3a5a8cf905b24fdd557fe8d4fadba628c23b362762b331f4764927c49d0f2cdf67b398bd88feb610ffdd6b33f1eaf", 0xbe, 0x1563}, {&(0x7f0000001a80)="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", 0x1000, 0x81}, {&(0x7f0000002a80)="213e143fa154ea26d0effbd372ba3d2983f72b5717859f687ffc6ca6d4f1c1e1939917f5b3ad3aae3f160fc1616486eb44deaad8d0305313ff280acd02a7d2c26839cd73e2c7207075d19e2cdd106c14206f43f09d675c5355ed70fc2115e51dbae875a7a9543c562f731b444fc1f3643f2b4d69e8370a04e2c1ff88f400a13ec83da46ab02654ecb91d7136e605a0a7bcbf442bc3b45867bb5fc71fc47da84d0104645e5e82989b0b8d7f23b389d2da7cd1e246d2b135a23dac2cb79daaafef50db75156fee4b700e47f45c1a58387b322c3de5994716878cd8b53b17a4289f580d888486b0fe7b7af367f1be8d859c56", 0xf1, 0xfffffffffffffff7}, {&(0x7f0000002b80)="ffc7079fd3e6fdf4193cf89ba8dc02539cb06e6a9d505a2f291ea6f92e58d657c5cdc70b9fd3aa5c7b91d9e6b06f89567a26cc7e061c5ef0caaec7e20281c7d13782fe77c38168ebb84a594679391e530286d74fd18a0bb89a", 0x59, 0x10000}, {&(0x7f0000002c00)="aa3b9745d0627b17301922cdae2925d13c32e2d2157361ce8596fcebaf1dfa48c78b1ca61971604bb04a133323011a42538f3ac54b561d1a88ba8a2e626c2cb4649fb34ee6c1ba3d10faa68bc92df9a6eeee2cddf5f2c39aada48e9768f13614cbaa73c14c4acb7f794626c2f2bd96f375e7417672103caccc85241d7e19432d8501d91380c90432", 0x88, 0x7}], 0x8000, &(0x7f0000002d80)={[{@quota}], [{@func={'func', 0x3d, 'POLICY_CHECK'}}]}) getresuid(&(0x7f0000000140)=0x0, &(0x7f0000000180), &(0x7f00000001c0)) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3036800, &(0x7f0000000200)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@debug={'debug', 0x3d, 0x5}}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}, {@version_9p2000}, {@version_9p2000}, {@dfltuid={'dfltuid', 0x3d, r0}}], [{@obj_role={'obj_role', 0x3d, 'cgroup2\x00'}}, {@fowner_lt={'fowner<', r1}}, {@appraise}, {@smackfsfloor={'smackfsfloor', 0x3d, ']^'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}]}}) mount$cgroup2(0x0, &(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000080), 0x3a0c001, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000340)=@nfc, 0x80, &(0x7f00000007c0)=[{&(0x7f00000003c0)=""/179, 0xb3}, {&(0x7f0000000940)=""/31, 0x1f}, {&(0x7f00000004c0)=""/212, 0xd4}, {&(0x7f00000005c0)=""/90, 0x5a}, {&(0x7f0000000640)=""/203, 0xcb}, {&(0x7f0000000740)=""/56, 0x38}, {&(0x7f0000000780)=""/21, 0x15}], 0x7, &(0x7f0000000840)=""/164, 0xa4}, 0x400120a1) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r2) 20:01:20 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x305840, 0x0) 20:01:20 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/module/smsc75xx', 0x48802, 0x29) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x6) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000240)="829a3fb297cfefa2eefdee5aad561199e5e7232076dc0e81ed0c40a789fa0459a635a5176ab02751b087f3c2ab49ccdaae8bad18f357dd2afa6479c0c8c78ed32eb5b98a4dab95cca52df3c365af8a568233d0aa2bc52dbbaa2c12", 0x5b, 0x2c10000000000000}], 0x3001000, &(0x7f0000000300)={[{@nouser_xattr}, {@errors_remount}, {@noquota}, {@user_xattr}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@fsmagic={'fsmagic', 0x3d, 0x23}}, {@dont_appraise}]}) fspick(r1, &(0x7f00000003c0)='./file0/file0\x00', 0x1) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'btrfs.', '&+\x00'}, &(0x7f00000000c0)=""/80, 0x50) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:21 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x6c7, 0x105002) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) r3 = accept$nfc_llcp(r2, &(0x7f0000000300), &(0x7f00000000c0)=0x60) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, &(0x7f0000000140)=0x80, &(0x7f0000000180)=@ax25={{0x3, @null}, [@default, @bcast, @rose, @netrom, @rose, @remote, @null, @bcast]}, 0x0, 0x0, 0x1}, 0x8) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000240)={0x7, {0x0, 0x5, 0x8000, 0x3, 0x4, 0x8000}}) syz_io_uring_setup(0x427c, &(0x7f0000000280)={0x0, 0x1cbb, 0x4, 0x1, 0x79, 0x0, r4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r5, 0x0, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x5, 0x0, r4, &(0x7f00000003c0), &(0x7f00000004c0)='./file0\x00', 0x6bc83fabce78b31, 0x100, 0x1}, 0x2) [ 3244.694942][ T991] FAULT_INJECTION: forcing a failure. [ 3244.694942][ T991] name failslab, interval 1, probability 0, space 0, times 0 [ 3244.748704][ T991] CPU: 0 PID: 991 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3244.760163][ T991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3244.770205][ T991] Call Trace: [ 3244.773489][ T991] dump_stack+0x18e/0x1de [ 3244.777806][ T991] should_fail+0x5d8/0x740 [ 3244.782219][ T991] ? __kernfs_new_node+0x8b/0x630 [ 3244.787242][ T991] should_failslab+0x5/0x20 [ 3244.791733][ T991] kmem_cache_alloc+0x36/0x290 [ 3244.796485][ T991] __kernfs_new_node+0x8b/0x630 [ 3244.801409][ T991] ? mutex_lock+0x6c/0xc0 [ 3244.805729][ T991] ? kernfs_activate+0x3fc/0x420 [ 3244.810746][ T991] kernfs_new_node+0x95/0x160 [ 3244.815416][ T991] __kernfs_create_file+0x45/0x260 [ 3244.820515][ T991] sysfs_add_file_mode_ns+0x293/0x340 [ 3244.826140][ T991] sysfs_merge_group+0x19b/0x320 [ 3244.831176][ T991] dpm_sysfs_add+0xbd/0x260 [ 3244.835669][ T991] device_add+0xcec/0x1820 [ 3244.840095][ T991] device_create_vargs+0x1b8/0x210 [ 3244.845188][ T991] device_create+0x86/0xb0 [ 3244.849595][ T991] ? vsnprintf+0x1a07/0x1aa0 [ 3244.854176][ T991] bdi_register_va+0x89/0x5e0 [ 3244.858866][ T991] bdi_register+0x80/0xa0 [ 3244.863181][ T991] ? __device_add_disk+0x50a/0x1220 [ 3244.868362][ T991] bdi_register_owner+0x56/0xf0 [ 3244.873206][ T991] __device_add_disk+0x583/0x1220 [ 3244.878220][ T991] loop_add+0x554/0x710 [ 3244.882363][ T991] loop_control_ioctl+0x468/0x680 [ 3244.887375][ T991] ? xor_init+0x60/0x60 [ 3244.891619][ T991] do_vfs_ioctl+0x6fb/0x15b0 [ 3244.896212][ T991] __x64_sys_ioctl+0xd4/0x110 [ 3244.900882][ T991] do_syscall_64+0xcb/0x1e0 [ 3244.905371][ T991] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3244.911249][ T991] RIP: 0033:0x7f145855da39 [ 3244.915653][ T991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3244.935252][ T991] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:01:21 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff}, 0x80000) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x300000, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@posixacl}, {@cache_none}, {@posixacl}, {@loose}, {@cache_mmap}, {@fscache}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}], [{@obj_user}, {@appraise}, {@subj_role}]}}) [ 3244.943652][ T991] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3244.951957][ T991] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3244.959915][ T991] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3244.967871][ T991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3244.975828][ T991] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3244.993126][ T991] ------------[ cut here ]------------ [ 3244.998597][ T991] WARNING: CPU: 0 PID: 991 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3245.007622][ T991] Modules linked in: [ 3245.011508][ T991] CPU: 0 PID: 991 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3245.022942][ T991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3245.033082][ T991] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3245.038873][ T991] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3245.058490][ T991] RSP: 0018:ffff8881df4efce8 EFLAGS: 00010246 [ 3245.064545][ T991] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3245.072502][ T991] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3245.080462][ T991] RBP: ffff8881ef0e2298 R08: ffffffff82147afe R09: 0000000000000010 [ 3245.088506][ T991] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3245.096464][ T991] R13: 1ffff11039022e01 R14: 1ffff11039022e9d R15: ffff8881c8117000 [ 3245.104424][ T991] FS: 00007f14562b3700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3245.113335][ T991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3245.119902][ T991] CR2: 0000555556ab2b38 CR3: 00000001c7b88000 CR4: 00000000003406f0 [ 3245.127859][ T991] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3245.136256][ T991] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3245.144211][ T991] Call Trace: [ 3245.147495][ T991] loop_add+0x554/0x710 [ 3245.151640][ T991] loop_control_ioctl+0x468/0x680 [ 3245.156652][ T991] ? xor_init+0x60/0x60 [ 3245.160793][ T991] do_vfs_ioctl+0x6fb/0x15b0 [ 3245.165371][ T991] __x64_sys_ioctl+0xd4/0x110 [ 3245.170030][ T991] do_syscall_64+0xcb/0x1e0 [ 3245.174518][ T991] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3245.180390][ T991] RIP: 0033:0x7f145855da39 [ 3245.184791][ T991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3245.204378][ T991] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3245.212879][ T991] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3245.220838][ T991] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3245.228789][ T991] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3245.236829][ T991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:21 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 64) 20:01:21 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@mangle={'mangle\x00', 0x1f, 0x6, 0x418, 0x248, 0x2e8, 0x2e8, 0x248, 0x248, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@icmp={{0x28}, {0xf, 'M>', 0x1}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x20, 0x5, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x3, 0x1f}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x2, 0x8000, @multicast2, 0x4e23}}}, {{@ip={@broadcast, @rand_addr=0x64010101, 0xffffff, 0x0, 'veth1_to_team\x00', 'veth1_to_bond\x00', {0xff}, {0xff}, 0x1, 0x1, 0x22}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x5, 0x0, @loopback, 0x4e20}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xff, 'bond_slave_1\x00', 'wlan1\x00', {0xff}, {0xff}, 0xc, 0x6, 0x32}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478) 20:01:21 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) 20:01:21 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) getuid() r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) 20:01:21 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/module/smsc75xx', 0x48802, 0x29) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x6) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000240)="829a3fb297cfefa2eefdee5aad561199e5e7232076dc0e81ed0c40a789fa0459a635a5176ab02751b087f3c2ab49ccdaae8bad18f357dd2afa6479c0c8c78ed32eb5b98a4dab95cca52df3c365af8a568233d0aa2bc52dbbaa2c12", 0x5b, 0x2c10000000000000}], 0x3001000, &(0x7f0000000300)={[{@nouser_xattr}, {@errors_remount}, {@noquota}, {@user_xattr}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@fsmagic={'fsmagic', 0x3d, 0x23}}, {@dont_appraise}]}) fspick(r1, &(0x7f00000003c0)='./file0/file0\x00', 0x1) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'btrfs.', '&+\x00'}, &(0x7f00000000c0)=""/80, 0x50) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:21 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x301840, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x7ff, 0x3, &(0x7f0000000280)=[{&(0x7f00000000c0)="9487ea9d7cc9496e17a3eb7f99ed3d6800d7d5c82492d00fa749c41dc300cb427d3f615993b1e388f98c2b6bc04bc7a4f9af80543370bcd2ec42e175a313e2c9a9f17b9ef6aa96caf5c682b120afd0cacdf7143239fffda657b1b864b4b0de66aa3918c41db2f0f6aa400d2bbb29b7732fbd90f3d45fb1793b5c0bcd5e21387b10ffecad1a01a476657508c9d25259c20b17237a2b3f92186285481446a3190cbad269ae01f30401f13d7e743d5c70bfef58a06c9125f61058cf4faa5932bda9c11fde02c1ecaace54047b738e02e795d1a18a56e9de1dcb666433aa8a370df7ae7aa18c9e2ac434c4157efb0c01028a77e4ca", 0xf3, 0x7}, {&(0x7f00000001c0)="8cab57c3bf4e5bd9c408df771c5188be7ebb27cbc3017d235167fa0688f641ba11149ef4c22d44fae2c0d395f52cd8b4fafe77133db2c8921863475972768f586d711b66c9d90b", 0x47, 0x6}, {&(0x7f0000000240)="221cce2ad49504ad3f57f423f320f8050645224e8627680a959eea678df84e3d1b2397773baf16b655d1a3042a7348032c2eca605da36890ad1d6b4e", 0x3c, 0x80000001}], 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="6e725f696e6f6465733d2c73697a653d673074372c687567653d77697468696e5f73697a652c6f626a5f757365723d2c2e3a2c66736e616d653d5c402c2c66736d616769633d3078ec1cdffe4ca33312d2dc6fd70d303030303030303030edccbd8e8f0eeb303031303030302c7365636c6162652e49", @ANYRESDEC=0xee00, @ANYBLOB=',\x00']) [ 3245.244784][ T991] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3245.252741][ T991] ---[ end trace 7aed1b66616f08ce ]--- 20:01:21 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xfffffff6, 0x0) 20:01:21 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$FOU_CMD_GET(r0, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0x38, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}]}, 0x38}, 0x1, 0x0, 0x0, 0x400c001}, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000140)}, {&(0x7f0000000180)}, {&(0x7f00000001c0)=""/111, 0x6f}, {&(0x7f0000000240)=""/110, 0x6e}], 0x4, &(0x7f0000000300)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x50}, 0x40000001) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:21 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@mangle={'mangle\x00', 0x1f, 0x6, 0x418, 0x248, 0x2e8, 0x2e8, 0x248, 0x248, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@icmp={{0x28}, {0xf, 'M>', 0x1}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x20, 0x5, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x3, 0x1f}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x2, 0x8000, @multicast2, 0x4e23}}}, {{@ip={@broadcast, @rand_addr=0x64010101, 0xffffff, 0x0, 'veth1_to_team\x00', 'veth1_to_bond\x00', {0xff}, {0xff}, 0x1, 0x1, 0x22}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x5, 0x0, @loopback, 0x4e20}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xff, 'bond_slave_1\x00', 'wlan1\x00', {0xff}, {0xff}, 0xc, 0x6, 0x32}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478) 20:01:21 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xfffffff0, 0x0) 20:01:21 executing program 2: recvmsg(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)=@generic, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)=""/252, 0xfc}], 0x1, &(0x7f00000000c0)=""/45, 0x2d}, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = io_uring_setup(0x517c, &(0x7f0000000300)={0x0, 0xa10c, 0x8, 0x3, 0x36c}) r2 = geteuid() mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x80000, &(0x7f0000000380)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '/dev/input/event#\x00'}}, {@version_L}, {@cache_fscache}, {@access_client}, {@access_uid={'access', 0x3d, r2}}, {@aname={'aname', 0x3d, '*[$+@-\\\xbb'}}], [{@smackfsroot={'smackfsroot', 0x3d, '...\'^\\-'}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@dont_hash}, {@seclabel}, {@appraise}, {@fscontext={'fscontext', 0x3d, 'user_u'}}]}}) 20:01:21 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, 0x0) truncate(&(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffc) [ 3245.370845][ T1018] FAULT_INJECTION: forcing a failure. [ 3245.370845][ T1018] name failslab, interval 1, probability 0, space 0, times 0 [ 3245.399819][ T1018] CPU: 1 PID: 1018 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3245.411369][ T1018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3245.421415][ T1018] Call Trace: [ 3245.424707][ T1018] dump_stack+0x18e/0x1de [ 3245.429029][ T1018] should_fail+0x5d8/0x740 [ 3245.433434][ T1018] ? __kernfs_new_node+0x8b/0x630 [ 3245.438443][ T1018] should_failslab+0x5/0x20 [ 3245.442937][ T1018] kmem_cache_alloc+0x36/0x290 [ 3245.447685][ T1018] __kernfs_new_node+0x8b/0x630 [ 3245.452523][ T1018] ? mutex_lock+0x6c/0xc0 [ 3245.456924][ T1018] ? kernfs_activate+0x3fc/0x420 [ 3245.461851][ T1018] kernfs_new_node+0x95/0x160 [ 3245.466517][ T1018] __kernfs_create_file+0x45/0x260 [ 3245.471612][ T1018] sysfs_add_file_mode_ns+0x293/0x340 [ 3245.476976][ T1018] sysfs_merge_group+0x19b/0x320 [ 3245.481899][ T1018] dpm_sysfs_add+0xbd/0x260 [ 3245.486392][ T1018] device_add+0xcec/0x1820 [ 3245.490802][ T1018] device_create_vargs+0x1b8/0x210 [ 3245.495898][ T1018] device_create+0x86/0xb0 [ 3245.500296][ T1018] ? vsnprintf+0x1a07/0x1aa0 [ 3245.504871][ T1018] bdi_register_va+0x89/0x5e0 [ 3245.509534][ T1018] bdi_register+0x80/0xa0 [ 3245.513847][ T1018] ? __device_add_disk+0x50a/0x1220 [ 3245.519029][ T1018] bdi_register_owner+0x56/0xf0 [ 3245.523867][ T1018] __device_add_disk+0x583/0x1220 [ 3245.528883][ T1018] loop_add+0x554/0x710 [ 3245.533034][ T1018] loop_control_ioctl+0x468/0x680 [ 3245.538064][ T1018] ? xor_init+0x60/0x60 [ 3245.542205][ T1018] do_vfs_ioctl+0x6fb/0x15b0 [ 3245.546779][ T1018] __x64_sys_ioctl+0xd4/0x110 [ 3245.551439][ T1018] do_syscall_64+0xcb/0x1e0 [ 3245.555926][ T1018] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3245.561805][ T1018] RIP: 0033:0x7f145855da39 [ 3245.566204][ T1018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3245.585886][ T1018] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3245.594370][ T1018] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3245.602342][ T1018] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3245.610305][ T1018] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3245.618270][ T1018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3245.626235][ T1018] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3245.653653][ T1018] ------------[ cut here ]------------ [ 3245.659144][ T1018] WARNING: CPU: 1 PID: 1018 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3245.668252][ T1018] Modules linked in: [ 3245.672146][ T1018] CPU: 1 PID: 1018 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3245.683671][ T1018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3245.693725][ T1018] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3245.699518][ T1018] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3245.719285][ T1018] RSP: 0018:ffff8881e6977ce8 EFLAGS: 00010246 [ 3245.725346][ T1018] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3245.733308][ T1018] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3245.741267][ T1018] RBP: ffff8881ef759178 R08: ffffffff82147afe R09: 0000000000000010 [ 3245.749224][ T1018] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3245.757533][ T1018] R13: 1ffff11039548401 R14: 1ffff1103954849d R15: ffff8881caa42000 [ 3245.765497][ T1018] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3245.774411][ T1018] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3245.780981][ T1018] CR2: 00007f6ff771c718 CR3: 00000001f5ff1000 CR4: 00000000003406e0 [ 3245.788946][ T1018] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3245.796903][ T1018] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3245.804859][ T1018] Call Trace: [ 3245.808141][ T1018] loop_add+0x554/0x710 [ 3245.812288][ T1018] loop_control_ioctl+0x468/0x680 [ 3245.817316][ T1018] ? xor_init+0x60/0x60 [ 3245.821459][ T1018] do_vfs_ioctl+0x6fb/0x15b0 [ 3245.826057][ T1018] __x64_sys_ioctl+0xd4/0x110 [ 3245.830727][ T1018] do_syscall_64+0xcb/0x1e0 [ 3245.835225][ T1018] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3245.841106][ T1018] RIP: 0033:0x7f145855da39 [ 3245.845506][ T1018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:22 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 65) 20:01:22 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0xf82, 0x2, &(0x7f0000000100)=[{&(0x7f0000000200)="d1624bab4a52b42f5d523984b4977c62482c336eae7af4a341757f951abc7a35d2e33716846eb5c8925a53ee7243ddfbbdb59328badb2aeb6e34c4fc4505230688d927aad5e9bdf9abee0140ed9002c125d4078032b64a61c3487f7be5742bc0f610af223bd4d65cca3c61e6213c7d0350f019c7da8841897d1d2a9ba97927c094b8a280cf6ede9b3b582a0e5f078e3c3f3e9addb9dedb06520b90508d934696acf9de611eb243e5e85889b955ebcec3500b11b5ccd55250a606e5d7b4a798bea45067713f2273", 0xc7, 0xff}, {&(0x7f0000000300)="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", 0xfa}], 0x2000, &(0x7f0000000400)={[{@acl}], [{@smackfshat}, {@fsmagic}, {@uid_gt={'uid>', 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@smackfsfloor={'smackfsfloor', 0x3d, '{,'}}, {@fsname={'fsname', 0x3d, 'cgroup2\x00'}}, {@appraise}, {@obj_user={'obj_user', 0x3d, 'cgroup2\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x288601, 0x1bf) 20:01:22 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) getuid() r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) 20:01:22 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@mangle={'mangle\x00', 0x1f, 0x6, 0x418, 0x248, 0x2e8, 0x2e8, 0x248, 0x248, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@icmp={{0x28}, {0xf, 'M>', 0x1}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x20, 0x5, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x3, 0x1f}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x2, 0x8000, @multicast2, 0x4e23}}}, {{@ip={@broadcast, @rand_addr=0x64010101, 0xffffff, 0x0, 'veth1_to_team\x00', 'veth1_to_bond\x00', {0xff}, {0xff}, 0x1, 0x1, 0x22}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x5, 0x0, @loopback, 0x4e20}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xff, 'bond_slave_1\x00', 'wlan1\x00', {0xff}, {0xff}, 0xc, 0x6, 0x32}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478) 20:01:22 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x8140) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:22 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181040, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) clock_gettime(0x6, &(0x7f0000000100)) [ 3245.865191][ T1018] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3245.873588][ T1018] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3245.881552][ T1018] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3245.889514][ T1018] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3245.897472][ T1018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3245.905432][ T1018] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3245.913394][ T1018] ---[ end trace 7aed1b66616f08cf ]--- 20:01:22 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@mangle={'mangle\x00', 0x1f, 0x6, 0x418, 0x248, 0x2e8, 0x2e8, 0x248, 0x248, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@icmp={{0x28}, {0xf, 'M>', 0x1}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x20, 0x5, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x3, 0x1f}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x2, 0x8000, @multicast2, 0x4e23}}}, {{@ip={@broadcast, @rand_addr=0x64010101, 0xffffff, 0x0, 'veth1_to_team\x00', 'veth1_to_bond\x00', {0xff}, {0xff}, 0x1, 0x1, 0x22}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x5, 0x0, @loopback, 0x4e20}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xff, 'bond_slave_1\x00', 'wlan1\x00', {0xff}, {0xff}, 0xc, 0x6, 0x32}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478) 20:01:22 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x1f, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0x6e, &(0x7f0000001640)=[{&(0x7f0000000140)=""/171, 0xab}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/255, 0xff}, {&(0x7f0000001300)=""/170, 0xaa}, {&(0x7f00000013c0)=""/221, 0xdd}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000000080)=""/50, 0x32}, {&(0x7f0000001580)=""/175, 0xaf}], 0x8, &(0x7f00000016c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100010002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xb0}, 0x10121) openat$pfkey(0xffffffffffffff9c, &(0x7f0000001780), 0x8100, 0x0) syz_open_dev$evdev(&(0x7f00000017c0), 0x898e, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000001800), 0x8) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = epoll_create(0x533) r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000018c0), 0x4) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000001900)) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) move_mount(0xffffffffffffffff, &(0x7f0000001840)='./file0\x00', 0xffffffffffffffff, &(0x7f0000001880)='./file0\x00', 0x80) 20:01:22 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) move_mount(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x1) 20:01:22 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x1, &(0x7f0000000100)=[{&(0x7f0000000200)="30a1f12db34d2de97868144be887ae3d2513b30c8baecb2ce9b097a9336e1be0b7dd02a166acdec1ab48720571b412bfe00a83775b19555547c359c5e4ea6021ac7924824eb59fc2679980d2e7fb4c204135b63bf9a8f8a8bbb387b4393ce957fcbe1958f849e017dda7444a857485312b3687e5b58c64f1574988810591d83df8b5608f1b7b2cfb5601be906736151ff9ef8c7c54", 0x95, 0x9}], 0x90000, &(0x7f00000002c0)={[{@minixdf}], [{@obj_user}, {@uid_lt={'uid<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@subj_role={'subj_role', 0x3d, '#/H)'}}, {@fowner_eq}, {@dont_appraise}, {@obj_user}, {@smackfshat={'smackfshat', 0x3d, 'cgroup2\x00'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}) move_mount(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000140)='./file0/file0\x00', 0x1) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:22 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x40c081) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:22 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) socket$inet(0x2, 0x2, 0x1) [ 3246.074113][ T1060] FAULT_INJECTION: forcing a failure. [ 3246.074113][ T1060] name failslab, interval 1, probability 0, space 0, times 0 [ 3246.098506][ T1060] CPU: 1 PID: 1060 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3246.110054][ T1060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3246.120195][ T1060] Call Trace: [ 3246.123478][ T1060] dump_stack+0x18e/0x1de [ 3246.127803][ T1060] should_fail+0x5d8/0x740 [ 3246.132212][ T1060] ? __kernfs_new_node+0x8b/0x630 [ 3246.137230][ T1060] should_failslab+0x5/0x20 [ 3246.141724][ T1060] kmem_cache_alloc+0x36/0x290 [ 3246.146478][ T1060] __kernfs_new_node+0x8b/0x630 [ 3246.151317][ T1060] ? mutex_lock+0x6c/0xc0 [ 3246.155658][ T1060] ? kernfs_activate+0x3fc/0x420 [ 3246.160583][ T1060] kernfs_new_node+0x95/0x160 [ 3246.165282][ T1060] __kernfs_create_file+0x45/0x260 [ 3246.170378][ T1060] sysfs_add_file_mode_ns+0x293/0x340 [ 3246.175736][ T1060] sysfs_merge_group+0x19b/0x320 [ 3246.180835][ T1060] dpm_sysfs_add+0xbd/0x260 [ 3246.185323][ T1060] device_add+0xcec/0x1820 [ 3246.189729][ T1060] device_create_vargs+0x1b8/0x210 [ 3246.194826][ T1060] device_create+0x86/0xb0 [ 3246.199229][ T1060] ? vsnprintf+0x1a07/0x1aa0 [ 3246.203803][ T1060] bdi_register_va+0x89/0x5e0 [ 3246.208498][ T1060] bdi_register+0x80/0xa0 [ 3246.212814][ T1060] ? __device_add_disk+0x50a/0x1220 [ 3246.218016][ T1060] bdi_register_owner+0x56/0xf0 [ 3246.222861][ T1060] __device_add_disk+0x583/0x1220 [ 3246.227875][ T1060] loop_add+0x554/0x710 [ 3246.232016][ T1060] loop_control_ioctl+0x468/0x680 [ 3246.237024][ T1060] ? xor_init+0x60/0x60 [ 3246.241183][ T1060] do_vfs_ioctl+0x6fb/0x15b0 [ 3246.245769][ T1060] __x64_sys_ioctl+0xd4/0x110 [ 3246.250434][ T1060] do_syscall_64+0xcb/0x1e0 [ 3246.254922][ T1060] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3246.260796][ T1060] RIP: 0033:0x7f145855da39 [ 3246.265196][ T1060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3246.284789][ T1060] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3246.293185][ T1060] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3246.301140][ T1060] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3246.309102][ T1060] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3246.317056][ T1060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3246.325012][ T1060] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3246.333518][ T1060] ------------[ cut here ]------------ [ 3246.338994][ T1060] WARNING: CPU: 1 PID: 1060 at block/genhd.c:742 __device_add_disk+0xe90/0x1220 [ 3246.347988][ T1060] Modules linked in: [ 3246.351874][ T1060] CPU: 1 PID: 1060 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3246.363396][ T1060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3246.373451][ T1060] RIP: 0010:__device_add_disk+0xe90/0x1220 [ 3246.379241][ T1060] Code: ff e8 84 4b 4c ff 0f 0b e9 6b fe ff ff e8 78 4b 4c ff 0f 0b e9 a1 f2 ff ff e8 6c 4b 4c ff 0f 0b e9 5d f8 ff ff e8 60 4b 4c ff <0f> 0b e9 04 f7 ff ff e8 54 4b 4c ff 43 80 3c 26 00 0f 85 4f fd ff [ 3246.398828][ T1060] RSP: 0018:ffff8881de82fce8 EFLAGS: 00010246 [ 3246.404880][ T1060] RAX: ffffffff82148400 RBX: 00000000fffffff4 RCX: 0000000000040000 [ 3246.412836][ T1060] RDX: ffffc9000bfa3000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3246.420806][ T1060] RBP: ffff8881ef75c4d8 R08: ffffffff82147afe R09: 0000000000000010 [ 3246.428762][ T1060] R10: ffffffff84600000 R11: 0000000000000000 R12: dffffc0000000000 [ 3246.436723][ T1060] R13: 1ffff11039198201 R14: 1ffff1103919829d R15: ffff8881c8cc1000 [ 3246.444683][ T1060] FS: 00007f14562b3700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3246.453604][ T1060] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3246.460352][ T1060] CR2: 00007f6c9bba4058 CR3: 00000001f51eb000 CR4: 00000000003406e0 [ 3246.468307][ T1060] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3246.476351][ T1060] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3246.484418][ T1060] Call Trace: [ 3246.487700][ T1060] loop_add+0x554/0x710 [ 3246.491842][ T1060] loop_control_ioctl+0x468/0x680 [ 3246.496853][ T1060] ? xor_init+0x60/0x60 [ 3246.500994][ T1060] do_vfs_ioctl+0x6fb/0x15b0 [ 3246.505577][ T1060] __x64_sys_ioctl+0xd4/0x110 [ 3246.510237][ T1060] do_syscall_64+0xcb/0x1e0 [ 3246.514726][ T1060] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3246.520603][ T1060] RIP: 0033:0x7f145855da39 [ 3246.525002][ T1060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3246.544692][ T1060] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3246.553095][ T1060] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3246.561074][ T1060] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:22 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 66) 20:01:22 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) syz_io_uring_setup(0x390e, &(0x7f00000000c0)={0x0, 0x86f, 0x20, 0x0, 0x364}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)=0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) syz_io_uring_submit(0x0, r0, &(0x7f0000000a00)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r1, 0x0, &(0x7f00000009c0)={&(0x7f0000000400)=@in={0x2, 0x4e23, @broadcast}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000480)="785b6eccdb27d7c821a9b465b39ea3c17aaabe624c559e7dc4c507d348ea2beb5e62579d71b1446355f9af93c844", 0x2e}, {&(0x7f00000004c0)="c40e9636ed94265bfab22d9c15da42920e946581efcc6e5f6fbd096f5c7ff8a7035112f19f47825fe6b49bce8388001056b0e914a7f3b3bf734358940beaeec137a68de888d6182b4bba12e6b563349b2bd5338708c26a0a3dea33258b86e7a5683f1151f108067780ca96f616c1e7c98f3c91309951bc79f8621f0b3533671c05b0faf1d4847a028905399034f93d3ad2fc8d707e7e679fe0b20401932d2c83e942b51d3c44932e811451fafac3faa79bf4394a92cf3716a9f3baec3f6381ced114a6cf99e63734", 0xc8}, {&(0x7f00000005c0)="da8336af437bf5be40eabf9f6190a494d288dd85a05a61c993622cc5994ed9e075a63fc0b76afdbdd31344f6ca60da5833351fe8f7dc80aff3b0", 0x3a}], 0x3, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x350}, 0x0, 0x20000011}, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:22 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) socket$inet(0x2, 0x2, 0x1) 20:01:22 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f00000000c0)=""/63) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x80000) 20:01:22 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = geteuid() mount$cgroup2(0x0, &(0x7f00000028c0)='./file0\x00', &(0x7f0000002c80), 0x6000, &(0x7f0000003080)={[{@subsystem='rdma'}, {@memory_localevents}, {@subsystem='rlimit'}, {}, {@memory_localevents}, {@subsystem='blkio'}, {@subsystem='rlimit'}], [{@appraise_type}, {@fowner_lt={'fowner<', r0}}, {@obj_type={'obj_type', 0x3d, '}'}}, {@smackfshat={'smackfshat', 0x3d, ',]'}}, {@smackfsdef={'smackfsdef', 0x3d, 'erofs\x00'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@dont_hash}, {@smackfsdef={'smackfsdef', 0x3d, 'fsname'}}, {@smackfshat={'smackfshat', 0x3d, 'POLICY_CHECK'}}, {@pcr={'pcr', 0x3d, 0x5}}]}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) recvmsg$unix(0xffffffffffffffff, &(0x7f0000002e80)={&(0x7f00000026c0), 0x6e, &(0x7f0000002cc0)=[{&(0x7f0000002740)=""/153, 0x99}, {&(0x7f0000002800)=""/164, 0xa4}, {&(0x7f00000028c0)}, {&(0x7f0000002900)=""/201, 0xc9}, {&(0x7f0000002a00)=""/122, 0x7a}, {&(0x7f0000002a80)=""/197, 0xc5}, {&(0x7f0000002b80)=""/99, 0x63}, {&(0x7f0000002c00)=""/84, 0x54}, {&(0x7f0000002c80)}], 0x9, &(0x7f0000002d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}, 0x4100) syz_mount_image$erofs(&(0x7f0000000140), &(0x7f0000001380)='./file0\x00', 0x8001, 0x6, &(0x7f0000002600)=[{&(0x7f00000013c0)="325edb2818ff9e822cca8f116d1f2c795f736a3b91b29de1b0d5f3d4b8ca495c87c29e96f30c02af39a1c5e06f5c0cbf35bf99fc8c37c8d0c43f42b7ca70a8658cb0e7e625398087a4bf37f0e72db340739c80b0fbb8615310b1bc29f82fb6c5ab81b8d081cd944a", 0x68, 0x9000000000}, {&(0x7f0000001440)="2e73ecb05a740985bd6b", 0xa, 0x74}, {&(0x7f0000001480)="5bca03b77aba93626155233fda87f2528c367ebe08cf306d309a0710ce77240481f6d4b9f8ae484a928b565f48277c99037497d41c9ffa9f5c1396b521b5471bbbe3ee77e7be776625de2a85b10c3ad52188574bf0b36ab678ae679ddd63bacddc6f8a91ec9b", 0x66, 0x6}, {&(0x7f0000001500)="cc3d8f892b3b1966d9de0329d8a9c5197a84de3695cc9089f30c5ff767afb05bd942e2540550421d2eb0286a18ffcb68ef7a1f14bc4a2064101fa372f403d9dc6f6445456205fc42de36f6816189bf0d62a81264a082b157727d68ca7e7c331458ddd096bde3b3f6bfa0eecdeacf19ed525e2bf86ebdd30722719c347ca611df00d6ff94da9278", 0x87, 0x8}, {&(0x7f00000015c0)="8ee2a9f0da85302d5c04d1dead8061a739b115261019e27e3cf3641290217bae1b88bb9fd0fad0", 0x27, 0x40}, {&(0x7f0000001600)="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", 0x1000, 0x8000}], 0x1020800, &(0x7f0000002ec0)={[{@noacl}, {@acl}], [{@fsname={'fsname', 0x3d, '}.!%[\\'}}, {@obj_type={'obj_type', 0x3d, 'cgroup2\x00'}}, {@euid_gt={'euid>', r2}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@subj_role={'subj_role', 0x3d, 'cgroup2\x00'}}]}) recvmsg(r1, &(0x7f0000000100)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/174, 0xae}, {&(0x7f00000012c0)=""/160, 0xa0}], 0x3}, 0x1) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:22 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) getuid() r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) [ 3246.569036][ T1060] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3246.576992][ T1060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3246.585038][ T1060] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3246.592999][ T1060] ---[ end trace 7aed1b66616f08d0 ]--- 20:01:22 executing program 3: socket$inet(0x2, 0x2, 0x1) 20:01:22 executing program 4: mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x210400, 0x0) 20:01:22 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800040, 0x0) lgetxattr(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=@known='user.incfs.id\x00', &(0x7f0000000480)=""/249, 0xf9) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)={&(0x7f0000000100)='./file0\x00', 0x0, 0x18}, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x115001, 0x1b6) syz_mount_image$tmpfs(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x7fffffff, 0x2, &(0x7f0000000300)=[{&(0x7f0000000240)="e115bc01dea8", 0x6, 0x9}, {&(0x7f0000000280)="f300a38fadd74dc1aee474fe34dfbcc7f69e0458aa07571279d47aec4e0942f45a6e7c7a7366e2d15ac16e644d4e383670977dc428b5417e9fb619931f57ed8b297f65178036322f7474161df343", 0x4e, 0x8000}], 0x400, &(0x7f0000000340)=ANY=[@ANYBLOB="6e725f626c6f636b733d7070746d38336e742c6d6f64653d30303030303030303030303030303030303030303030332c687567653d6e657665722c687567653d616c776179732c687567653d6e657665722c687567653d6e657665722c736d61636b66736861743d0b88e3027d402f2b2c2c7375626a5f757365723d2921292c00"]) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2, 0x10) 20:01:23 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) epoll_wait(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200, 0x28) syz_genetlink_get_family_id$wireguard(&(0x7f00000000c0), r1) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40000) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000080)=0xc051) [ 3246.670515][ T1076] FAULT_INJECTION: forcing a failure. [ 3246.670515][ T1076] name failslab, interval 1, probability 0, space 0, times 0 [ 3246.722080][ T1076] CPU: 1 PID: 1076 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3246.733623][ T1076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3246.743658][ T1076] Call Trace: [ 3246.746938][ T1076] dump_stack+0x18e/0x1de [ 3246.751267][ T1076] should_fail+0x5d8/0x740 [ 3246.755675][ T1076] ? kobject_uevent_env+0x252/0x1000 [ 3246.760952][ T1076] should_failslab+0x5/0x20 [ 3246.765449][ T1076] kmem_cache_alloc_trace+0x39/0x2b0 [ 3246.770720][ T1076] ? sysfs_add_file_mode_ns+0x2b4/0x340 [ 3246.776254][ T1076] kobject_uevent_env+0x252/0x1000 [ 3246.781356][ T1076] ? mutex_lock+0x6c/0xc0 [ 3246.785671][ T1076] device_add+0xecf/0x1820 [ 3246.790078][ T1076] device_create_vargs+0x1b8/0x210 [ 3246.795174][ T1076] device_create+0x86/0xb0 [ 3246.799582][ T1076] ? vsnprintf+0x1a07/0x1aa0 [ 3246.804158][ T1076] bdi_register_va+0x89/0x5e0 [ 3246.808817][ T1076] bdi_register+0x80/0xa0 [ 3246.813132][ T1076] ? __device_add_disk+0x50a/0x1220 [ 3246.818409][ T1076] bdi_register_owner+0x56/0xf0 [ 3246.823244][ T1076] __device_add_disk+0x583/0x1220 [ 3246.828354][ T1076] loop_add+0x554/0x710 [ 3246.832494][ T1076] loop_control_ioctl+0x468/0x680 [ 3246.837501][ T1076] ? xor_init+0x60/0x60 [ 3246.841641][ T1076] do_vfs_ioctl+0x6fb/0x15b0 [ 3246.846219][ T1076] __x64_sys_ioctl+0xd4/0x110 [ 3246.850880][ T1076] do_syscall_64+0xcb/0x1e0 [ 3246.855369][ T1076] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3246.861247][ T1076] RIP: 0033:0x7f145855da39 [ 3246.865667][ T1076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3246.885259][ T1076] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3246.893657][ T1076] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3246.901624][ T1076] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3246.909682][ T1076] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:23 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x224100, 0x104) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000140)={&(0x7f00000000c0)='./file0\x00', r0}, 0x10) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x3, 0x5, &(0x7f0000001500)=[{&(0x7f0000000200)="be9ec476a8e93daad5663dadf2a1c3c7839158dee9e884978acae22cc710cec104a00a3361ddabc793fbf60e7c07a9b548099ba93e8030f9fc3f499b5dcc3a5c2100b28c6caa4b8be28677a8557f0664f4098155644a255e08254cc23040dd64baffea8aa0c8df65791b8c538e87b09a6974c0d301a748030536bebce93972ac9076d9fd90c004be6c2b183409b2d7d330dbbb064bd5f4a62a84e6639acca43ad6da9147b64be4e4c0addb0f436c6e92fdcfe5083f5dbbdf08347b3e1d61bfd5224ea1264cb8bfe54fa34c8ff1325c6272116e325b039103ecdb2af0455082e465c2162cdcbbb4edd8e423e5760d2733956c579952c097966cc27195064d4d", 0xff, 0x2}, {&(0x7f0000000300)="0872ec2256ba5d95d6562fe81218c57f1165e7ec67209efba90c8dd513ffcf47ee66ad46cbc0d50f4f302497c9592762813a756b49b8bd607ca8e927c5629fdc8589a404965b15314626ab2a42a6e7db27c6fe4968480217ed6bb14342b7c5fbc8ea87be66ca62e659708412ed75b4202df6e5af4ebcc8039ece8dac76e4c32bcda0bca9d821b903217ec36c988f679180", 0x91, 0x1ff}, {&(0x7f00000003c0)="6011f71a0d4145d2e14e72bca9a3e0d2bc3765602e2ed08dcefb1bd634f23151d9205cf13b257384c6ef8ef2c7f17d5a7032b4e89bb3a5c2761337628d73ff4eab1f0a8fd23fa18341248543bd21a28135328aba9ed54074ebfb9e63bf126c7a173a0ad46f3283b1817e76f966b1c447de52a026aa686dd41ee18dd80f3a35da780fdf1c328539db0d754eac2f74469e1a0d840b00d71545715ff557986c6d5d2b91622a66e48b4d8c90c55f1c10426ddf902184af6e8877e3d5532f29213104c46fa1ea902485fc2d3bf65beac6de71fc0a222ca04a9353b469eb2edb30a85e108e464e5360e7c0f2dcbdcac371b8e6d72855b464f325cadf054536edf460427e75f9053ab21c63d25e772e9ae03e37c8e1665b64329f4ef82d11a2fd86089bd2a6c205280e9449a85b4fa95ee48d9ac599f35d98832879bb85ac782b399e0dd0493044a99f7112ed8e48411564472f2967265665c7e6cb0728882010625b795bc67a400583ba0121c70ae2cf2da56a4afd4349312a118ce5fcbd945a2687e7967f78ecdf694ebc776a707f0b6c9ca8ece6413a1fc48925b7386593fcb158ab61303a60c6b5c5ed2a95456c65c0a003ca832ab5ebfe7af80ffd26cbac6a74cc401c0c5816b8e0749a398fb0c4ff7760ecd788676aa28a6de9945c945793d26b470f0af1748eb1409a7f2ac03e2b61ccf5d9e76db0d49a5c2b3b947b2b401aa20e9c8bf591ea7dc9ce75615a68341a0b6cc11ce0e162781aac3ba77945874bf07b0a992c562d1c270c5ff8738956f78cadbf1c772556047af8f61718acfcb31a473b7db6886624e52393a6667b4db7627a69d997d529eb58e1c7a9211b5723a74021813397aa99c71a7ae431c4f03518b1c026a96fd51089fd3c9d3ed5017e7e8aa6ee7e6ea5afd87c74ef8586d881f81a4a6714a0852cc4cfafcdfdf20aba47c8f676147ac148ca4a3d7b23b59f328ddeebead9360629b1e8c9f9057ed23ab83dd45899e76eaffc7786f78d7d71b2521fe143b6c1838dff5628129febfad9f06fccf3baeca47d98e238408b099d32ec79cb1b0ac889d422a08fd7c32dac898c5d57044e513b2127edf19ab18b6eaefa3230213a631a61609e22a58a7c9938df7b0eacad05665ea556a396924024f948fa9d363976e980d191f88dd3a431b5081bf30d6fd70d16f756b6c1db8965e38a439df0e2aaae3103ea68c9945adc9036d7736e1449f28dbeb758f543025a8feb89a77ce56537f991f52c1ce2b8cc8c07be73c64fb7031fb9e44ce6fb23629c44177d048702971f6a5e28ec1bbf25e652414a8f10b31198195217f1e2623a3ae4aeee4ddbdb618c50f2d25d8b8511198e54592cf05cf0074b78f3abc932233c85b5811e8ac4f8fa95f9341b52b4055848d298cd23200f400469c7a71e0b87a2c5d6b107137f76ca35d047cc3d3c6149931db32ce1c08d76feb8e5fb3c83ceaf5310880cef4ccb33312514bc471b003aee173f8837f3448efb9a2dd36989f4fa25b7037516508fd4483ab238ed2612904057048eaac8282a1b50bbb8ccfe05fdaae20361be43726a4233eb31ec1ba407f227ce9282cc277700794bc331c875e7fcf7f4534f76c20c3af95fd13bcb4e4a0af623d3d313825e06f0ee9fa538b05939c7dbebeca5bc7d18b0fb6493f8d67ce37f95348dee267c42fe048e6768778760bb1be1653a9f6a79e1fc390c3a85e27b062f21e4867528a7cad703217cbb29ca4e7a029bc66c790488153280cab1a2c62ba4008c3073d07609e8baa12a35fd729339ac6ea94cd40fb436c49a29c6cf6bbc4dc581d4c84114724c6a81dd6fef287e078c62e8e93e5fc8b1ea7a0ebe86ed286821f45efcc8abb81ca13ab8cd535acf5af64abb8043e423adcdbe6463e469f1abbe62bacd28b6807b3e418a58ff090b720f57349c4acaaa277fe67888925b02e752b2fa65995733cd9cbd5ac99e3a224809f69c2e8815221ed63fca0055630ba3a258b6d56862dd8ff21260c49645a72d5c49bd9453effe7ec144d7eeb8752dd54bc2f9bbb3d4ce71d6eef8db60c0817078df3b202a66abc799e943f8ad5fd32a2f2b57c75d21d1d63f3c67c9716b238315871b7f061ed3e7b9bcee08c2e83e15c9ba9fe5255e516e1155e266f5ba442f2b03244fde2f9ff50379c610873fbd234a607f41662627a51827d464ab7d5a0928a1e2611833e6cfd8f093f6fd4381aaf7e852f034b752737a1d9e4a433b6e47f3e6ed5992c1dfd36f563f101625f29d7e1659fb85acabcacbd9450728bb1bf8be3ed88402f9fe4db87ba3d3ec1cbd3754cfe5aa9b03b0a56403b427dca2e30fd69f7e2e96bf6cf015b8bd95b8b57aab80fc3a2b292243f5886033c4260c6780baf2e88b1da215167d1825f004ee4a36d82571e8afa4abb74ac049d4989b788e938f3464fee6bf005ef29300ce888e13f34407b220a3b26ef9615e2bf5a553267aa5ee64015781a3120a8ab2d3678ef656290a7a86f70c738cf26c47428ac429016f761cfdd559b6020a2c5f4a754f79bd1a2aa092dc332e5d6cf04e71435a9e898500eabb472261b252adb6dfb1ad7ceeaf160b08e30beaf154abbcc04cbe8446be55ccf5bdcc84f445cf40106fe06ed4235abed09baa9a74998b3c83aa5f9f0b27632d0b39e37065f4a01472e508e07a93061999754669cf96ea93fb6a244a9a3cb9240963b59a2072c13b14040b0503359b46d94edc0e2bcd8611ef881070f53b7c7e0f4dd010b3ecc3182e18b725e275c010419e1e5458087124fa1060598d0cc1bcb259cc2a9dc349db309b82cb418df4cebc32b45cbdb9bb313bf0d0970a8f738fc743c189aec462b38f0049f67f307a57c7dfe773b572cf21f77b94eb4014bd5e6a8475ceb764e025bc6f5f0febfb2b2af1cc472fa4fbe68d1fcbe6c758f83a54073da4cc17a1649ead446d8acae14c5e0c8c1e629d1a1c1e220335c3030a2e1c29dccac4a7e05d6ea5fe61883ee5a37b2a462bdedad6acc5fa559f0c72f87238ed6f91ad133baa137c40ceaaff8b69ca5433dffc9739584b92ccee31815df51e4d7f451e59628ce8d67d151c33ed2deedb5cd72fb8bebc0577834cfeebf08e2e08b9214b646ade9d36e2268e874e36022bbb179be9f9f3ecd349117663bafac30a40ebd6cffbdb5d41b748b52973b65dc063ff302d52ea257e13aa596ac0bb8b8d2823ca147b4e74e7b59b509444bb9cb20a394ae9e18888c0f68003e867bc98faddf5648cda63d40f41b16d10b2fc6d02153bc08f003879c135fef29e205f2911b0cca52137fcb415aedfd90c60aa5bf7baab9d2e76cc5a43016be730b9454db58d30316d28ccef86b0f98bec0e84b514354f57b713289ff8692863f7b502a15184fc2de90636f63a4ace5c269c980514209eee1904891b56d6df572fff7524127794914e45f038fd4049dce09768fe01586a3773051f4d3595015bda88ba22aba8e1cb7487fecd7557f2202245ae5ec9b25396e4f0a76147968132b6eb7c423b0e2b7d908a0e66d2db2a8b0a6ad4933850a9bb6dba8ed7c86601e3f2e297c0c175fe20a2ef8dff2a8a19ae8e060795d96a364e979a8c3efdf726918c11c3cae9831bed36adfab7a0781c6379a978fd3618314d6cfdff5de4709b3f79d26fafc7ce40d883d8dc69144301408093ef1c5cc60c8a5edd6937a4e545e9697ff0729eb9435a61902a5c5b8cf7ea18aa100c2d9c00e5a33c49c36b1b9c39a0aa6cee398a0407bb9839e50f5878145f22e0f36e98b4a128cf9355c22111275461f19f42b8edb68f7ea23760c361aa387b5d81b131d932ac6b63123b32034de60eb492dacb1d1117d074c44c971d40417e04e568d786bba1214df92315636418947e9cce5a6067d28f0323a2154081bd20b5d0751b0ac3b6e8d5a033c00cace9ff8921137d6e031df9a26555de8334d01fd1721d98a5b6de5ff505827689049f1d340f4efbb59ab97637c3212386addfc313ee86011e05e62a9acd01b2ee801e736c833d22ee0049485b41142d25c4b2302f2f12c7fe6e2b6efd5a7dbf9d6c003b1e7d447f902105ad5250ed4036d92e241ca27cd8032d3bea18eb52dc90e052d4430ae922018cc0061058051d88aceb9d186f04744a9308f411fa1b0e4a1734bf4cf1a33a3ed6d82583a804a2fa1e87ffbce95aee561b2c5cd9e538cbab91637dc9130fe162465a785beac334bef05b6bc3c9c82a23d4253f6f6d2e74fa15f5431f5569650470c1d8178843f1728a01b19a92bd6c497a6b5caa5afa826c70813344c8470aad5908a721d3e17c9ded4452fd8a7a7db4e2083d47d7fa563a5dbd8a417c1afe631a3edd2d6b5c7496ab4a4e7cfec2a1929a8a60d87f59a3553d995c054ffdb27fae8ff4916ca92c3ef8eaf206a4d3e7dd5cbad72024a7161017a74af1f0a510e7a15eb86d27e5966e2c7307d0f8e77ace28bb92ec4f4813d1c2ebf1ef062698c53adb36a1b9636e3f0a89cbd27a221b706e8ac064f5c9a05d017e5a4cdf3e454dce6be45d263e1c4ecaaa24dba8b7b0c59db4425c288e498b639e77715ba29d48b7ab57b9347230b6c33c738af7b010c70683a43cc6055f6e5f9bc85afd53cc31de6d5f257ec5a6885a37d5368dee1d062d3f552edaa95518c7ebf250dc4baa22d9f80d930b1e5c2ca5ecdfb5f5f9213c59c46cba5c06e4c984fbf9e4d756978fccb27d01936e18977bdcc16fa953a1b9053b8bd65080c0d9ae40c8ea4b59220864298e847a949a24135d4f2c7b6a077535976595c42db6d827f873131a2242eafb555d3d75022a4ae13678bc0e884ac7c60053bdf09d6e9b0d49a8171ff49c15879ef3550d73cfc1b185fedf7508449dab647503a36b51ee5d7df54e0f9c111bb9b6e6017823ee651031ad8a5fa63cb3783c693fdae6db884e06c8a11f2848d1cb4a06934a69c423b987bb1aee33a6cb84a1c4420b10031009977f7d7419b19d880d93fd41e48e0b59fcb3375f729d603ad27f59408c10bdbd1983c7dac82cf4df52c3fd327ca3739fc6a8dbabcba1c64f36d1f3ccd6c9ed8f22b6f2c4d75b6797d11f567d91c5d525efbfc2ac02796cb40c22ea3008692d8cbffc17d90f58117bdd53131941f24ada5fda5ba7b7a39c73c1d4e87ffc010aa546a217748517617eddb8397641caa31c79f5fe8d97d624f3389c3437cc3d88086c78f5d70ceb6405a32dbe1a643419e55bc6a6d9c086369fe87673afb1c90d5a0d8b4ddc2787f32ca0f6e1adcfa94ad94f849a22f77a6dd691d60aa98e33060c5a239e2f6f8ede1131aa9025705408fb56d7c0889af7708d5d3756db5e3b870eab77c24086f8e1a6ba437da57a4f0e9ad469f99f8f8a1f27487188c6e241908ab4499275a4c06ccc1f2fa6985cdbda68e1f52c7f8b8ec9a821afec8b7c0807121738037e48135972a7ef0666fd8c8c2902adada2d49e62ea3b0de65cddff2570ed4abd15793458d91431a1b0d690c46562f58905f7158651d00b2dbd6f5ab936cdb0b6a752da7c958155df06db29a7f785fc981095c17026eb97153f5b0b4e9f155dcd542527a3d6703a30a35063b864c9db224879c6f19f917a7d3fda3ee359ae461100fcc9eb602e6cf10749d5dc6aa93a06b8e49dbd8b9136bb0f63a8d0424c639ebc64e176c233ce4b0dd3d9153d85163127793754de65ef9a2e930c6252a36df6b425af7e0f81b345caab1fed0d0d8becca8523a4451cbee7e9f769ad8b90237996b0ab44d60d49e9acb54851c2383ea939b25839a9355f098c74e42ae130821555c75c5914afb4fa56509f", 0x1000, 0x9}, {&(0x7f00000013c0)="1498fa37eafb166a0e9524a97f21c75471266f7e394fcaeae859222324a92fb3d96e2a586d", 0x25}, {&(0x7f0000001400)="2ad05231ebf4d915cd3daa60e2fa80dea95b8249182ab3677421b6d0c8b8caad77c06f6cfd5942464114a70531303e5fd80acfce91dbaff85a6b380d7ef07760e0b531a18b41cef2a594bf32251843340aedc9a3983dac3416ecee09547b230cc1af8bcf461c9a44caadfcd907c54a384af1369388d4af5f6806174a5ce181b57aee3e13dd3cf80c2409ff62acf1be184a47b73b5c4f6785f462f693b87afb985b6814527950443cfe6bb7934242fc102a4570111e81d5ac18f278dfbb55abe5d66d18c8906a6a53c6847ae17ce080b8f10baf4c38eab74b06905891d8ae6d058f72ac3006ba533eb5", 0xe9, 0x1}], 0x40, &(0x7f0000001580)=ANY=[@ANYBLOB='shortname=win95,utf8=0,fowner>', @ANYRESDEC=0x0, @ANYBLOB="2c425df2ba775b1a040ecee895735b61637368"]) 20:01:23 executing program 3: socket$inet(0x2, 0x0, 0x1) [ 3246.917645][ T1076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3246.925606][ T1076] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:23 executing program 3: socket$inet(0x2, 0x0, 0x1) 20:01:23 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 67) 20:01:23 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') 20:01:23 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="200428bd7000fbdbdf251400000008000100000000000c0006000000e3000000000008000300", @ANYRES32=r3, @ANYBLOB="080001000100000008000300", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0800010003000000"], 0x50}, 0x1, 0x0, 0x0, 0x1}, 0x40084) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000180)={'wpan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000200)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x40, r2, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x8}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x20}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x40}, 0x1, 0x0, 0x0, 0x20008014}, 0x61) 20:01:23 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) syz_io_uring_setup(0x41d9, &(0x7f0000000080)={0x0, 0x15d5, 0x1, 0x1, 0x1d4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x4007, @fd=r0, 0x1, &(0x7f00000004c0)=""/9, 0x9, 0xb}, 0x40) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000200)=@raw={'raw\x00', 0x9, 0x3, 0x230, 0xc0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ip={@loopback, @dev={0xac, 0x14, 0x14, 0x12}, 0xffffff00, 0xff, 'veth0_to_bond\x00', 'veth0_to_hsr\x00', {}, {}, 0x0, 0x1, 0x40}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}]}, @common=@unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x4}}}, {{@ip={@multicast2, @empty, 0xff, 0xff000000, 'veth1_virt_wifi\x00', 'veth0_to_bridge\x00', {0xff}, {0xff}, 0x67, 0x0, 0x58}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x11, 0x0, 0x1, 0x3, 'pptp\x00', 'syz0\x00', {0x7}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x290) [ 3247.053473][ T1101] FAULT_INJECTION: forcing a failure. [ 3247.053473][ T1101] name failslab, interval 1, probability 0, space 0, times 0 [ 3247.069925][ T1101] CPU: 1 PID: 1101 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3247.081470][ T1101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3247.091517][ T1101] Call Trace: [ 3247.094887][ T1101] dump_stack+0x18e/0x1de [ 3247.099212][ T1101] should_fail+0x5d8/0x740 [ 3247.103619][ T1101] ? kzalloc+0x1d/0x30 [ 3247.107680][ T1101] should_failslab+0x5/0x20 [ 3247.112177][ T1101] __kmalloc+0x5f/0x2f0 [ 3247.116320][ T1101] kzalloc+0x1d/0x30 [ 3247.120208][ T1101] kobject_get_path+0xb3/0x190 [ 3247.124968][ T1101] kobject_uevent_env+0x269/0x1000 [ 3247.130068][ T1101] ? mutex_lock+0x6c/0xc0 [ 3247.134390][ T1101] device_add+0xecf/0x1820 [ 3247.138799][ T1101] device_create_vargs+0x1b8/0x210 [ 3247.143900][ T1101] device_create+0x86/0xb0 [ 3247.148307][ T1101] ? vsnprintf+0x1a07/0x1aa0 20:01:23 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x1, &(0x7f0000000100)=[{&(0x7f0000000200)="30a1f12db34d2de97868144be887ae3d2513b30c8baecb2ce9b097a9336e1be0b7dd02a166acdec1ab48720571b412bfe00a83775b19555547c359c5e4ea6021ac7924824eb59fc2679980d2e7fb4c204135b63bf9a8f8a8bbb387b4393ce957fcbe1958f849e017dda7444a857485312b3687e5b58c64f1574988810591d83df8b5608f1b7b2cfb5601be906736151ff9ef8c7c54", 0x95, 0x9}], 0x90000, &(0x7f00000002c0)={[{@minixdf}], [{@obj_user}, {@uid_lt={'uid<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@subj_role={'subj_role', 0x3d, '#/H)'}}, {@fowner_eq}, {@dont_appraise}, {@obj_user}, {@smackfshat={'smackfshat', 0x3d, 'cgroup2\x00'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}) move_mount(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000140)='./file0/file0\x00', 0x1) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:23 executing program 3: socket$inet(0x2, 0x0, 0x1) 20:01:23 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f0000000000)={0x7, 0x0, 0x1}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) [ 3247.152893][ T1101] bdi_register_va+0x89/0x5e0 [ 3247.157570][ T1101] bdi_register+0x80/0xa0 [ 3247.161894][ T1101] ? __device_add_disk+0x50a/0x1220 [ 3247.167080][ T1101] bdi_register_owner+0x56/0xf0 [ 3247.171919][ T1101] __device_add_disk+0x583/0x1220 [ 3247.176943][ T1101] loop_add+0x554/0x710 [ 3247.181084][ T1101] loop_control_ioctl+0x468/0x680 [ 3247.186095][ T1101] ? xor_init+0x60/0x60 [ 3247.190242][ T1101] do_vfs_ioctl+0x6fb/0x15b0 [ 3247.194827][ T1101] __x64_sys_ioctl+0xd4/0x110 [ 3247.199495][ T1101] do_syscall_64+0xcb/0x1e0 [ 3247.203988][ T1101] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3247.209864][ T1101] RIP: 0033:0x7f145855da39 [ 3247.214271][ T1101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3247.233859][ T1101] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3247.242256][ T1101] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 20:01:23 executing program 3: socket$inet(0x2, 0x2, 0x0) 20:01:23 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x8}, 0x10) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:23 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000000)={0x9, 0x31327d6e}) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r2) socketpair(0x8, 0xa, 0x20, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x84, 0x2, 0x1, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@CTA_PROTOINFO={0x5c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x58, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x9b}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x6}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x67}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x9f}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x5d}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x5}, @CTA_PROTOINFO_DCCP_ROLE={0x5}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x81}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x99}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0xf7}]}}, @CTA_SYNPROXY={0xc, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x1}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x9}]}, 0x84}, 0x1, 0x0, 0x0, 0x24004001}, 0x8000) r4 = openat(r0, &(0x7f0000000240)='./file0\x00', 0x24c000, 0x4) ioctl$BLKSECTGET(r4, 0x1267, &(0x7f0000000400)) 20:01:23 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f0000000000)={0x7, 0x0, 0x1}) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) 20:01:23 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7, 0x8, &(0x7f0000000580)=[{&(0x7f0000000140)="88a92d0d8532b099b8b4acefb264004a412a5edc5ce2e2c5b5224403bf13a0decd89dcaa2a68054358fce3e278f557f2b61851fdc333f3f7ca8065e46c65f5f889420baaca1f10185445310762d428d24acffa269df16b1f7cb8afc5c519866adb737c6cf39e6a20e6a2f6d86ed170f173a6a5a4fca5db613cbee92493376bb2e08d7d39486db589b8aa3b4b5a8a2c99b10bfe25c8adcffbd7069841aabce69a2737c16af60a7652f3dd675b234738475d797aa63f80597bb21adeb447fa165c5a017c07fd51ec72b777f70b87d81c29257bcbf091bdd815131f196b9158ad95290882e94c4b348df5da1438feca262809b3394bdaba6c1422", 0xf9}, {&(0x7f0000000240)="6771d5ca9caf3925bb6468d9c5cf2de73b6e9cb8dfe41b21baaf80c53e9a51626a42db81b60a78c185f28354613154130e57082d97fe02cd434440475ab584b6ed8262239102dc8fad4825c928723723a961a0f647e4ba4256be4450e55fbc3356fb12e3f2f1573326cb641ca974638ed6cdad60479e60c0fd48186bacdb1cb8246ca8d9cb25d525f8d406f06da86ef66851ee63b89c8c8746c6df066bb8dbfbdf21441342efee84399c448c6d2d71e8a77149232f6a38759e6d6b14434b7fa5b2a9695a83c32c8d29383cec8995765dc1cf56", 0xd3, 0x101}, {&(0x7f0000000080)="5233e306fbe641838de8cd1386e3567dfbec80a8efcfdfd27eb49e35053cfb44f05e633d9e6cf1abae2d4c888cf007cb6f90b0cb6df85885fc8f00cfe7a9019b78723b2b2652939108058479c9aff751c37b8e6741aac46b7155d47e58ccd64841e695f474bbe7d15f16dc", 0x6b, 0x2}, {&(0x7f0000000340)="e35b2088", 0x4, 0x400}, {&(0x7f0000000380)="7bc2b11c65302f945190009966320922459a26891b10b3def4a9a8139b37e5de04", 0x21, 0xfffffffffffffffa}, {&(0x7f00000003c0)="a39f9b43a3753e6f5e62f36eb6e89f9bd195a53a09643afce9f6ea79a03371fe7b0de2bd8ea89b07d8b687d6217d13af33bea79d49ffb6cbf648a0ee549b0fb344160d2e4e0d3edb06b7f12449ae4e44bbbf8215b2bc70a79e6922f496093c0bdd2ebfb314d6f67a04043fe22bc493117e64ee655430a03c1723244112e6d95624719105912984348c4ed7dde4deed4b2761472b3cd4ea1d28c9922cd26b4a44f7b307f7db6e821dc49ded061bb7106ca71b", 0xb2, 0xb5}, {&(0x7f0000000480)="10508ef5f8f86630e8b65697fd714a99cf3f4f7553e581539bb2d7d85dffe2d84bcdf55368624f72a37a33f8e64af09957d4cde77435ab215415b2ce61e0ec89f45deb3494ff2169988eba3940354f8a0c97422ecdb0a66ddf87e4bd9825e219e1f0180b309ead2453832f2e626f211994db412ab9e3354f387bd3f9806695e9ded234", 0x83, 0x3ff}, {&(0x7f0000000540)="603f59d776bc01fb5752a5d70a776679ebb6226f1690f288196991", 0x1b, 0xffffffff}], 0x1a03020, &(0x7f0000000640)={[{@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@huge_never}, {@uid={'uid', 0x3d, 0xee01}}], [{@dont_measure}, {@hash}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@uid_lt={'uid<', 0xee01}}]}) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:23 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 68) 20:01:23 executing program 3: socket$inet(0x2, 0x2, 0x0) [ 3247.250302][ T1101] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3247.258353][ T1101] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3247.266309][ T1101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3247.274263][ T1101] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:23 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40001000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0xdc, 0x2, 0x2, 0x401, 0x0, 0x0, {0x1}, [@CTA_EXPECT_TUPLE={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x7f}, @CTA_EXPECT_MASTER={0x20, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @rand_addr=0x64010101}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x9}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}, @CTA_EXPECT_HELP_NAME={0xf, 0x6, 'netbios-ns\x00'}, @CTA_EXPECT_HELP_NAME={0xa, 0x6, 'H.245\x00'}, @CTA_EXPECT_HELP_NAME={0x8, 0x6, 'RAS\x00'}]}, 0xdc}, 0x1, 0x0, 0x0, 0x44000}, 0x20004000) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r2) r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0xac0) ioctl$EVIOCGREP(r3, 0x80004509, 0x0) 20:01:23 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff1f00, 0x0) 20:01:23 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20841, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000140)=@mangle={'mangle\x00', 0x1f, 0x6, 0x550, 0x188, 0x188, 0x3f8, 0x310, 0x310, 0x4b8, 0x4b8, 0x4b8, 0x4b8, 0x4b8, 0x6, &(0x7f00000000c0), {[{{@ip={@broadcast, @rand_addr=0x64010101, 0x0, 0x0, 'nr0\x00', 'geneve0\x00', {0xff}, {0xff}, 0x89, 0x1, 0xa}, 0x0, 0x160, 0x188, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xc}}, @common=@unspec=@conntrack3={{0xc8}, {{@ipv6=@remote, [0xff000000, 0xff000000, 0xffffff00, 0xff], @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, [0x0, 0xffffff00, 0x0, 0xffffffff], @ipv6=@mcast2, [0x0, 0xff, 0xff, 0xff000000], @ipv4=@multicast2, [0xffffff00, 0xff000000, 0xffffffff], 0x1, 0x7, 0x2f, 0x4e21, 0x4e24, 0x4e22, 0x4e21, 0x2823, 0x204}, 0x81, 0x84, 0x4e24, 0x4e23, 0x4e20, 0x4e20}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffd}}, {{@ip={@multicast1, @empty, 0x0, 0xffffffff, '\x00', 'veth1_virt_wifi\x00', {0xff}, {0xbf7b9c072d72fc32}, 0x16, 0x3, 0x41}, 0x0, 0x90, 0xc0, 0x0, {}, [@common=@socket0={{0x20}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0xff7a, 0x7fff, @dev={0xac, 0x14, 0x14, 0x15}, 0x4e21}}}, {{@ip={@broadcast, @multicast2, 0x0, 0xff, 'veth1_to_bridge\x00', 'tunl0\x00', {}, {}, 0x8, 0x7, 0x40}, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x2, 0x7b}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x401, 0x6, @empty, 0x4e22}}}, {{@ip={@empty, @loopback, 0xffffffff, 0xff000000, 'ipvlan0\x00', 'syzkaller1\x00', {0xff}, {0xff}, 0x6c, 0x3}, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xa}}, @common=@icmp={{0x28}, {0xd, "e3df"}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x0, 0x5}}}, {{@ip={@multicast2, @local, 0x0, 0xffffff00, 'caif0\x00', 'netdevsim0\x00', {0xff}, {}, 0xff, 0x3, 0x10}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x92780e68cd585ffe}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x0, 0x4, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x5b0) pivot_root(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)='./file0\x00') setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000007c0)=@raw={'raw\x00', 0x9, 0x3, 0x298, 0x0, 0xffffffff, 0xffffffff, 0xd8, 0xffffffff, 0x200, 0xffffffff, 0xffffffff, 0x200, 0xffffffff, 0x3, &(0x7f0000000780), {[{{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x8, 0x0, 0x0, 0x1, 'syz1\x00', 'syz0\x00', {0x2}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1a}, @rand_addr=0x64010101, 0xffffff00, 0xffffffff, 'sit0\x00', 'rose0\x00', {}, {0xff}, 0x84, 0x2, 0x15}, 0x0, 0xc0, 0x128, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0x1, 0x2, 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x1000, 0x10000, 0x9, 'netbios-ns\x00', 'syz0\x00', {0xcc67}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f8) 20:01:23 executing program 3: socket$inet(0x2, 0x2, 0x0) 20:01:23 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100, 0x195) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) truncate(&(0x7f0000000080)='./file0\x00', 0x9) 20:01:23 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x80, r0, 0x4, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x80}, 0x1, 0x0, 0x0, 0x8030}, 0x4840) socketpair(0x29, 0x6, 0x1f, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000008c0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x448, 0x190, 0xd0, 0x318, 0x250, 0x0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x6, &(0x7f0000000840), {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {}, [@common=@unspec=@statistic={{0x38}, {0x1, 0x0, 0x0, 0x0, 0x6, {0x6ec9b2ec}}}]}, @TTL={0x28, 'TTL\x00', 0x0, {0x2, 0xbc}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x8}}]}, @TTL={0x28, 'TTL\x00', 0x0, {0x1, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x8}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x11, 0x4}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x3b}, @local, 0x0, 0xffffffff, 'gre0\x00', 'vxcan1\x00', {0xff}, {0xff}, 0xff, 0x0, 0x8}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@addrtype={{0x30}, {0x1, 0x230, 0x1, 0x1}}]}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x4, 0x7f}}}, {{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x183cec970299be7f, 0x3, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8) 20:01:23 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xffff1f00, 0x0) 20:01:23 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000080), 0x9, 0x400042) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0x1000200a}) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x7a6, 0x43e400) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:23 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f00000001c0)=""/173) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf25210000000c00060002000000000000000c000600dd509d98614e92d3"], 0x2c}, 0x1, 0x0, 0x0, 0x20008010}, 0x4000014) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x5) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0xe6ebba85a1a78653, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_loose}], [{@uid_lt={'uid<', 0xee00}}, {@subj_user}, {@fsmagic={'fsmagic', 0x3d, 0x4}}]}}) 20:01:23 executing program 3: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x40000, 0x0) [ 3247.393037][ T1130] FAULT_INJECTION: forcing a failure. [ 3247.393037][ T1130] name failslab, interval 1, probability 0, space 0, times 0 [ 3247.425515][ T1130] CPU: 1 PID: 1130 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3247.437058][ T1130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3247.447098][ T1130] Call Trace: [ 3247.450383][ T1130] dump_stack+0x18e/0x1de [ 3247.454704][ T1130] should_fail+0x5d8/0x740 [ 3247.459114][ T1130] ? __alloc_skb+0x75/0x4d0 [ 3247.463607][ T1130] should_failslab+0x5/0x20 [ 3247.468099][ T1130] kmem_cache_alloc+0x36/0x290 [ 3247.472853][ T1130] __alloc_skb+0x75/0x4d0 [ 3247.477168][ T1130] ? mutex_lock+0x6c/0xc0 [ 3247.481482][ T1130] alloc_uevent_skb+0x73/0x220 [ 3247.486237][ T1130] kobject_uevent_env+0xaee/0x1000 [ 3247.491335][ T1130] device_add+0xecf/0x1820 [ 3247.495740][ T1130] device_create_vargs+0x1b8/0x210 [ 3247.500836][ T1130] device_create+0x86/0xb0 [ 3247.505235][ T1130] ? vsnprintf+0x1a07/0x1aa0 [ 3247.509810][ T1130] bdi_register_va+0x89/0x5e0 [ 3247.514471][ T1130] bdi_register+0x80/0xa0 [ 3247.518785][ T1130] ? __device_add_disk+0x50a/0x1220 [ 3247.523967][ T1130] bdi_register_owner+0x56/0xf0 [ 3247.528800][ T1130] __device_add_disk+0x583/0x1220 [ 3247.533805][ T1130] loop_add+0x554/0x710 [ 3247.537945][ T1130] loop_control_ioctl+0x468/0x680 [ 3247.542956][ T1130] ? xor_init+0x60/0x60 [ 3247.547101][ T1130] do_vfs_ioctl+0x6fb/0x15b0 [ 3247.551689][ T1130] __x64_sys_ioctl+0xd4/0x110 [ 3247.556352][ T1130] do_syscall_64+0xcb/0x1e0 [ 3247.560846][ T1130] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3247.566723][ T1130] RIP: 0033:0x7f145855da39 [ 3247.571159][ T1130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:23 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 69) 20:01:23 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x3e63d3ca}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x10) ioctl$UI_BEGIN_FF_ERASE(r3, 0xc00c55ca, &(0x7f0000000140)={0xf, 0x7f, 0x9}) [ 3247.590752][ T1130] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3247.599154][ T1130] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3247.607121][ T1130] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3247.615083][ T1130] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3247.623047][ T1130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3247.631002][ T1130] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:23 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0xa, 0x997200) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:23 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x100) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:23 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0xfffffff6, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:24 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x881) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:24 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x3e63d3ca}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x10) ioctl$UI_BEGIN_FF_ERASE(r3, 0xc00c55ca, &(0x7f0000000140)={0xf, 0x7f, 0x9}) [ 3247.722151][ T1163] FAULT_INJECTION: forcing a failure. [ 3247.722151][ T1163] name failslab, interval 1, probability 0, space 0, times 0 [ 3247.757258][ T1163] CPU: 1 PID: 1163 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 20:01:24 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x392, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:24 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000c40), r0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000d80)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x5c, r2, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x5c}}, 0x20004840) sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f0000000400)={&(0x7f00000001c0), 0xc, &(0x7f00000003c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="08010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x108}}, 0x800) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) sendmsg$GTP_CMD_NEWPDP(r4, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x1c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [@GTPA_LINK={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x20000841) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000007c0)=[{&(0x7f00000002c0)=""/111, 0x6f}, {&(0x7f0000000340)=""/99, 0x63}, {&(0x7f0000000600)=""/74, 0x4a}, {&(0x7f0000000440)=""/140, 0x8c}, {&(0x7f0000000500)=""/241, 0xf1}], 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES32], 0x78}, 0x0) utime(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x81, 0x800}) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000001}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, 0x0, 0x8, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20000020) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000780)={&(0x7f0000000740)='./file0\x00'}, 0x10) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000180), 0x2, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000680)={0x7fff}) 20:01:24 executing program 5: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000011) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f0000000700)=ANY=[@ANYBLOB="240000001a0f7b3380a0c8138b12e3a91b9344580a2a0d0240a4ac07beee5ca5d900003eb25759ca1299f4ae47bd29b94f3aea93c66d20745664ec92c7432da76ff3f62f63bd57286e94fce7515f34c8396e521a09167af73eea18f6ac32fed14cfeed12e1d929", @ANYRES16=0x0, @ANYBLOB="000404bd7000000000000000006e35cf693711a8c1983ab77b96b1c6ede680e502dd2221ac05697eb648a572b1ee423e8c5f4c01424f06019e6e88af766ab3411a500553fdb64553a48f3ee9d1a801586d1db7eec6183e4d6973e0e2f87c1aae2bcffcc489701ef7ca20248239465e75914479ee2e3d354d1e039bcb2aa807b910341f06556829e304de72338b1e7c6a91e02a0a1de299c55447e22324ecfffc6ec2a249bc5043f72911587c114bbdab34", @ANYRES32=r0, @ANYBLOB="08000300", @ANYRES32=r1, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x9, 0x3, 0x250, 0x100, 0xffffffff, 0xffffffff, 0x100, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000000100), {[{{@ip={@empty, @loopback, 0xff, 0xff, 'netdevsim0\x00', 'bond0\x00', {0xff}, {0xff}, 0x2f, 0x0, 0x20}, 0x0, 0x98, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x6, 0x3, 0x1f, 'snmp_trap\x00', 'syz1\x00', {0x2}}}}, {{@ip={@remote, @private=0xa010100, 0xff, 0x0, 'batadv0\x00', 'bridge0\x00', {0xff}, {}, 0xff, 0x2, 0x10}, 0x0, 0x98, 0xb8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x9}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b0) syz_mount_image$vfat(&(0x7f00000004c0), &(0x7f0000000940)='./file0\x00', 0x0, 0x1, &(0x7f0000000840)=[{&(0x7f0000000600)="fbeb57df7aa2a28906dd70505ae80c73f6d288b099e7a4471087b84d530be20e8265bbdc57473c965bdb9c3f054840c425fbba3af7952585cf1e787c2e861aa5d2694061a8eee5e32b6b8fcea38b5bccac757015ddb800a0b105f79352ee477632ad8c2ad262f2964fb12c1e3dedb0b16717c1c8dfdb41251bbea9e1de120b77dbb7e757f23e070fd46bc451dfc564e5c38298a78272bf47deedae9384919befe22852e618b622ed808c424ce8deea3031e3f1307ccf453acf6b823271d16d2aa1ad867f2ea2af0eb5fbaa4652f5", 0xce, 0x6}], 0x400, &(0x7f0000000880)={[{@rodir}, {@shortname_win95}, {@shortname_mixed}, {@shortname_mixed}, {@fat=@showexec}, {@utf8no}, {@nonumtail}, {@uni_xlateno}, {@shortname_lower}], [{@fowner_eq}, {@dont_appraise}, {@subj_role={'subj_role', 0x3d, '/#!'}}, {@dont_measure}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x20000, 0x1) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3247.768809][ T1163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3247.778849][ T1163] Call Trace: [ 3247.782135][ T1163] dump_stack+0x18e/0x1de [ 3247.786464][ T1163] should_fail+0x5d8/0x740 [ 3247.790870][ T1163] ? alloc_uevent_skb+0x73/0x220 [ 3247.795801][ T1163] should_failslab+0x5/0x20 [ 3247.800297][ T1163] __kmalloc_track_caller+0x5d/0x2e0 [ 3247.805568][ T1163] ? kmem_cache_alloc+0x115/0x290 [ 3247.810750][ T1163] ? alloc_uevent_skb+0x73/0x220 [ 3247.815680][ T1163] __alloc_skb+0xaf/0x4d0 20:01:24 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0xec) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) 20:01:24 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) truncate(&(0x7f0000000700)='./file0\x00', 0xfffffffffffff657) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000740), 0x18b242, 0x0) getresuid(&(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640)=0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x9, 0x8, &(0x7f0000000500)=[{&(0x7f00000000c0)="89f597e75cb264dba139ce8ee99bd0675a7f13a978f75e142bfdb5e7ad6d6aae01d8992c02ca0b57e7993ab7691ffb54d82354cbc73dad0ac415268399c9a7163fcc2c464e6452008248e30eae71b8", 0x4f, 0x1}, {&(0x7f0000000140)="64850a570324be71bd49e404473ddeae6c331547af17a20bfc", 0x19, 0xaab}, {&(0x7f0000000200)="5c11909742f73d1404806f33e6134ae5a55dc31c48adcdd66689d9406ebbff8122a6fbfed39eb3f385b6f2b7c04a1b0efcea533c9208c5ce292b45e940b185924a32b1d765b3833f37a2752646dbd474961ff45052249f2f0dc4", 0x5a, 0x2c60}, {&(0x7f0000000280)="d526f860370e6dc04cacfb9a1d6c7b390b73a2eb589f44ab23bfa36cfc3668ff95db8f692729d52ad99c7d333b8dacfdc1c508b19c3f6cd8a5ebef710aa4a12a39e040d05051a13822b007cc0e2dbb112a88fe0d44be19ada25eb5e9e0eb946ac09548a6f19980414df3cb856016d63eaf5637cce95a38bb97ae87bf02d81eb095644cec87baa4f6d9c74c2347fa869631e09d98185bb6a5771cf6b0290b9e1197f9cdd171019f77cef2564077b086e282cc45de52c244fc3b4f85390d37a13da9d5ca4921a5e55c6dfdbaf311ea271a96c6726bbfd0", 0xd6, 0x1810}, {&(0x7f0000000380)="9d3a67a7dcd04e469f34103a9d3c349302232cdd42ab80d1ba57cb68900aa7a3caac5cb972f3b62133e784f7538687c7e07c30319264db767ceee3a1506c49c6de92287b4d2adf89cf8cd0d201f9bc5c02f2e03bf1034455", 0x58, 0x100000001}, {&(0x7f0000000400)="b812453bcb1165655677", 0xa, 0x3}, {&(0x7f0000000440)="32c2e73e7cfc3a052b1533e1d2bde16e9dd7d60b93e5ce441ffd6121c1e42d22d686a7f10faa7b643005cb51058e394bceb4460d9c9639e7554eec73ee17efe36095ffb2030b05c4020bf567f04432b836c51a26c1fd5fb5", 0x58, 0xcff8}, {&(0x7f00000004c0)="3e4c8292077dc310792ef8c2997125a02796fcbe986848bba95a0db302e11030bf49e17855be18cf5ce4637bcabaa99d7fde18e1bccd66f1", 0x38, 0x4}], 0x0, &(0x7f0000000680)={[{@nonumtail}, {@utf8}, {@utf8}], [{@hash}, {@euid_gt={'euid>', r0}}, {@smackfsroot={'smackfsroot', 0x3d, '(-*+'}}, {@appraise_type}]}) [ 3247.820000][ T1163] ? mutex_lock+0x6c/0xc0 [ 3247.824317][ T1163] alloc_uevent_skb+0x73/0x220 [ 3247.829069][ T1163] kobject_uevent_env+0xaee/0x1000 [ 3247.834171][ T1163] device_add+0xecf/0x1820 [ 3247.838575][ T1163] device_create_vargs+0x1b8/0x210 [ 3247.843670][ T1163] device_create+0x86/0xb0 [ 3247.848095][ T1163] ? vsnprintf+0x1a07/0x1aa0 [ 3247.852676][ T1163] bdi_register_va+0x89/0x5e0 [ 3247.857520][ T1163] bdi_register+0x80/0xa0 [ 3247.861846][ T1163] ? __device_add_disk+0x50a/0x1220 [ 3247.867032][ T1163] bdi_register_owner+0x56/0xf0 [ 3247.871868][ T1163] __device_add_disk+0x583/0x1220 [ 3247.876972][ T1163] loop_add+0x554/0x710 [ 3247.881116][ T1163] loop_control_ioctl+0x468/0x680 [ 3247.886134][ T1163] ? xor_init+0x60/0x60 [ 3247.890277][ T1163] do_vfs_ioctl+0x6fb/0x15b0 [ 3247.894861][ T1163] __x64_sys_ioctl+0xd4/0x110 [ 3247.899526][ T1163] do_syscall_64+0xcb/0x1e0 [ 3247.904013][ T1163] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3247.909887][ T1163] RIP: 0033:0x7f145855da39 [ 3247.914295][ T1163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3247.933891][ T1163] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3247.942288][ T1163] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3247.950248][ T1163] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3247.958205][ T1163] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:24 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 70) 20:01:24 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f00000003c0)='./file0/file0\x00', 0xe7, 0x2, &(0x7f0000000540)=[{&(0x7f0000000400), 0x0, 0x8}, {&(0x7f0000000440)="3ebde21952849db6ac2b2407a57d1e33e59fdd62d0fe42c9dafaf3f72cdacc87b455822fa1bb35894eb8329ed530a692208faabf7d36d8fd3b214156b03ff97803a068d7a38d9077e3e5094f6584a4836f56ac249a28acf98e760a21a6b83829968bd0359020d5839b6538c6032eaf37d48b7338b567d0c28372e500dfe23bb86d56655edfedf6be89aa637476dfcc263cf250a3b5076429ffbfacc0fb242489ba869bc75d3861cad09a9df26714e30f71603acbf9f180a4755403a37ff013555677ebc9d295f6aca2446027189edbb7aafb6159f325ab3374e3b8f16a30b95ba05cbf393400a06250b6d0633ad6b20bad8e4d7661b6cc", 0xf7, 0x1ff}], 0x48000, &(0x7f0000000580)={[{@mpol={'mpol', 0x3d, {'prefer', '', @void}}}, {@mpol={'mpol', 0x3d, {'local', '', @void}}}, {@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x6b]}}, {@nr_blocks={'nr_blocks', 0x3d, [0xd50ff8bd3bc56697, 0x6b, 0x6b, 0x65]}}, {@size={'size', 0x3d, [0x39, 0x78, 0x2d, 0x25]}}, {@huge_always}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee00}}], [{@fowner_eq}, {@fsuuid={'fsuuid', 0x3d, {[0x39, 0x33, 0x30, 0x61, 0x30, 0x36, 0x37, 0x35], 0x2d, [0x39, 0x37, 0x63, 0x65], 0x2d, [0x35, 0x65, 0xc7, 0x36], 0x2d, [0x35, 0xa, 0x61, 0x61], 0x2d, [0x34, 0x37, 0x36, 0x38, 0x65, 0x65, 0x36, 0x31]}}}, {@pcr={'pcr', 0x3d, 0x5}}, {@measure}, {@subj_type={'subj_type', 0x3d, 'uid>'}}]}) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x3, 0x2, &(0x7f0000000240)=[{&(0x7f00000000c0)="28f8d52297916cec4660ccc73d1c822e53893b41556661b69d749649ff5bd2caab28ae9fbdb2c812ca97ebe80d201eb28786abf1faf016adcf57c033b13737d5b312d2d330c6069278423ffdf4dec8c820b248961cfcfdeb2fad160ebb1c7a8c404d186893994f29842f8e83cc5d5cbe44847e9b41666b3fbe5a9f8a9bb52798112e9b9db89e658dc50013", 0x8b, 0x4}, {&(0x7f0000000200)="91e5d8050267866bf43ea49887bd", 0xe}], 0x2000, &(0x7f0000000280)={[{@noinline_dentry}, {@jqfmt_vfsold}, {@noquota}, {@lfs_mode}, {@nolazytime}, {@background_gc_on}, {@jqfmt_vfsold}, {@noacl}, {@acl}, {@jqfmt_vfsv0}], [{@uid_gt={'uid>', 0xffffffffffffffff}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x38, 0x64, 0x62, 0x63, 0x65, 0x37, 0x61], 0x2d, [0x64, 0x32, 0x61, 0x36], 0x2d, [0x66, 0x64, 0x63, 0x63], 0x2d, [0x33, 0x0, 0x37, 0x66], 0x2d, [0x32, 0x35, 0x30, 0x36, 0x39, 0x39, 0x31, 0x64]}}}]}) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:24 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0xec) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) 20:01:24 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x3e63d3ca}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x10) ioctl$UI_BEGIN_FF_ERASE(r3, 0xc00c55ca, &(0x7f0000000140)={0xf, 0x7f, 0x9}) 20:01:24 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000c40), r0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000d80)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x5c, r2, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x5c}}, 0x20004840) sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f0000000400)={&(0x7f00000001c0), 0xc, &(0x7f00000003c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="08010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x108}}, 0x800) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) sendmsg$GTP_CMD_NEWPDP(r4, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x1c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [@GTPA_LINK={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x20000841) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000007c0)=[{&(0x7f00000002c0)=""/111, 0x6f}, {&(0x7f0000000340)=""/99, 0x63}, {&(0x7f0000000600)=""/74, 0x4a}, {&(0x7f0000000440)=""/140, 0x8c}, {&(0x7f0000000500)=""/241, 0xf1}], 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c00000200fd009b998d9b86ecf94e42b1202e35dd15e96fe7331cf341b08bbbadf42ce42c2df0a62e2f867b90295cd43d48449251082eb0a7a15d45a149315e664e726e74beae8438fcdc07afb5cdb3429d2ce0ce275a247d8dde72925ed99668f91b88241a7ae7b6f022c58d8829e3e5b0b13ae10a2276d1cea70700f22ce72646b5aedf4a6acceb8a273322e76f25b01825f02e0b382b372d348ef1002b73345756b2341df80c7f8e3fe652a53d251e8c1ab597fdc1857c196a3bbb8002344336348881183ba0378bb031f87c417cb91d6c686c7bb43c709633000b2ebc9ac12441429baaece12fb9251d3865bbde7cf75310f53709268f2113cceb28258662517820c25340390691f38e62353d9e969fbdfb1e00ea153783a2a74155badee2c5437d4d150b87668071289a20f0bd1449137578deea4a50c3fc5248b06eb5ca2837533545a8a8ab", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES32], 0x78}, 0x0) utime(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x81, 0x800}) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='./file0\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000001}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, 0x0, 0x8, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20000020) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000780)={&(0x7f0000000740)='./file0\x00'}, 0x10) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000180), 0x2, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000680)={0x7fff}) [ 3247.966162][ T1163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3247.974116][ T1163] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:24 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f00000003c0)='./file0/file0\x00', 0xe7, 0x2, &(0x7f0000000540)=[{&(0x7f0000000400), 0x0, 0x8}, {&(0x7f0000000440)="3ebde21952849db6ac2b2407a57d1e33e59fdd62d0fe42c9dafaf3f72cdacc87b455822fa1bb35894eb8329ed530a692208faabf7d36d8fd3b214156b03ff97803a068d7a38d9077e3e5094f6584a4836f56ac249a28acf98e760a21a6b83829968bd0359020d5839b6538c6032eaf37d48b7338b567d0c28372e500dfe23bb86d56655edfedf6be89aa637476dfcc263cf250a3b5076429ffbfacc0fb242489ba869bc75d3861cad09a9df26714e30f71603acbf9f180a4755403a37ff013555677ebc9d295f6aca2446027189edbb7aafb6159f325ab3374e3b8f16a30b95ba05cbf393400a06250b6d0633ad6b20bad8e4d7661b6cc", 0xf7, 0x1ff}], 0x48000, &(0x7f0000000580)={[{@mpol={'mpol', 0x3d, {'prefer', '', @void}}}, {@mpol={'mpol', 0x3d, {'local', '', @void}}}, {@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x6b]}}, {@nr_blocks={'nr_blocks', 0x3d, [0xd50ff8bd3bc56697, 0x6b, 0x6b, 0x65]}}, {@size={'size', 0x3d, [0x39, 0x78, 0x2d, 0x25]}}, {@huge_always}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee00}}], [{@fowner_eq}, {@fsuuid={'fsuuid', 0x3d, {[0x39, 0x33, 0x30, 0x61, 0x30, 0x36, 0x37, 0x35], 0x2d, [0x39, 0x37, 0x63, 0x65], 0x2d, [0x35, 0x65, 0xc7, 0x36], 0x2d, [0x35, 0xa, 0x61, 0x61], 0x2d, [0x34, 0x37, 0x36, 0x38, 0x65, 0x65, 0x36, 0x31]}}}, {@pcr={'pcr', 0x3d, 0x5}}, {@measure}, {@subj_type={'subj_type', 0x3d, 'uid>'}}]}) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x3, 0x2, &(0x7f0000000240)=[{&(0x7f00000000c0)="28f8d52297916cec4660ccc73d1c822e53893b41556661b69d749649ff5bd2caab28ae9fbdb2c812ca97ebe80d201eb28786abf1faf016adcf57c033b13737d5b312d2d330c6069278423ffdf4dec8c820b248961cfcfdeb2fad160ebb1c7a8c404d186893994f29842f8e83cc5d5cbe44847e9b41666b3fbe5a9f8a9bb52798112e9b9db89e658dc50013", 0x8b, 0x4}, {&(0x7f0000000200)="91e5d8050267866bf43ea49887bd", 0xe}], 0x2000, &(0x7f0000000280)={[{@noinline_dentry}, {@jqfmt_vfsold}, {@noquota}, {@lfs_mode}, {@nolazytime}, {@background_gc_on}, {@jqfmt_vfsold}, {@noacl}, {@acl}, {@jqfmt_vfsv0}], [{@uid_gt={'uid>', 0xffffffffffffffff}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x38, 0x64, 0x62, 0x63, 0x65, 0x37, 0x61], 0x2d, [0x64, 0x32, 0x61, 0x36], 0x2d, [0x66, 0x64, 0x63, 0x63], 0x2d, [0x33, 0x0, 0x37, 0x66], 0x2d, [0x32, 0x35, 0x30, 0x36, 0x39, 0x39, 0x31, 0x64]}}}]}) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3248.061362][ T1193] FAULT_INJECTION: forcing a failure. [ 3248.061362][ T1193] name failslab, interval 1, probability 0, space 0, times 0 [ 3248.086255][ T1193] CPU: 1 PID: 1193 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3248.097790][ T1193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3248.107834][ T1193] Call Trace: 20:01:24 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x109420, 0x20) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x100d, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@privport}, {@access_client}, {@loose}, {@access_user}, {@msize={'msize', 0x3d, 0x8}}, {@cache_loose}, {@access_client}, {@access_uid={'access', 0x3d, 0xee00}}], [{@appraise}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}}) 20:01:24 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x3, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x3e63d3ca}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x10) 20:01:24 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r1 = epoll_create(0x1000) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff) r2 = openat(r0, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x80) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000200)={0x10}) syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0xffffffffffff7507, 0x6, &(0x7f0000001600)=[{&(0x7f0000000280)="6fa2f29b319a4450a85bf8b83b5ed07b55100b2831a20fce8200b7890e1acb66d207230ab6c4c9f3a47ad6c83b0e9c1379b484b761e0fb126272192a3618b86cb3b82828b97dc0c988c628", 0x4b, 0x4}, {&(0x7f0000000300)="d912a1d25a2c1eb4499b59b6ff632696ef2a4cf86950df783d8b5b20dd62e2a3c278d34592d1b3422c2af32b0dfa23a3f07b967abcdfe9470297cec40de97c1b1fbcdf59ad3cd11c395205baa8e3bada2526327eacf940e553d8", 0x5a, 0x394bba2000000}, {&(0x7f0000000380)="b9a0c85ab5ae0ec17b5ee1ee9f0d9d71c2435762b6114351f3688822f208b39afd53e72f71315b03d823f93a945c31757d4dba5346fa7c8cc9f0a3c82494578151cb26d22dc88f82050120e022c08c30beba87a0d5b35e859e1438fc95972c193b452c9fdb2e813e4e421d0471e5e5ac609ddbb5e10cd624b4dd4debc9d6f00dc1445ce6", 0x84, 0x1ebe}, {&(0x7f0000000440)="1261c938eff765c56a7c646c0305c869a85b9a618048ac5ba70ed2d52769f6ba12d541abcce9f66dc52a77733cea41e7ce90c293e7dc4bb97b9d646819f020787775afd013dd7ad7a2f7354928bd92877213847d0836b92815e129b6fc3498559dcf70bcd2ed9e2616c10041108912e38ffade81f39e528a9ecc93a5c22520ee25985fbc1c52d113058287cfc5def89cd6bcadabe99b72606931a27b80c150fec1362dbfd90d551c99974b", 0xab, 0xff}, {&(0x7f0000000500)="2d922426f66a52357b4bd47d577cc481223e5b06c5ae39da30ae3885f7c06ea37c6dc8c1a6f7592f88ff9cdfb61c9d6d982eaeb355069a0671f18156c845b209127f49683630f6b83ca5cc449d9ce7d61008c3177c7f753029943f9c442539f12c9a43d5675c189606475671c5a113d6bf51c3016cb2360377373779bbca5f4fc69850c974e9342e3705dee561a559fda284f0c56e0054c549150283eb919fe6e9cb492d90cb20efc7e9861a4e9b4af2adeadee883eff3cb885660b709e66aca72d250c5bd06ec4d3979d9f25ccd8539a1d000342d614467ea54f6d43151c353e82a4cf4b7f5fe1e4981bde2", 0xec, 0x6}, {&(0x7f0000000600)="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", 0x1000, 0x4}], 0x0, &(0x7f00000016c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x74, 0x38, 0x37, 0x2, 0x65]}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@huge_never}, {@huge_advise}, {@huge_never}, {@uid={'uid', 0x3d, 0xee01}}, {@nr_blocks={'nr_blocks', 0x3d, [0x35, 0x25]}}, {@mpol={'mpol', 0x3d, {'prefer', '=static', @void}}}], [{@dont_appraise}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x18}}, {@smackfsroot={'smackfsroot', 0x3d, '*.D\xcd\\:![-\"'}}, {@fsname={'fsname', 0x3d, '%}}.!'}}, {@fsname={'fsname', 0x3d, ':'}}, {@pcr={'pcr', 0x3d, 0x40}}, {@uid_eq={'uid', 0x3d, 0xee01}}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x2001, 0x188) lgetxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB], &(0x7f0000000140)=""/55, 0x37) [ 3248.111120][ T1193] dump_stack+0x18e/0x1de [ 3248.115443][ T1193] should_fail+0x5d8/0x740 [ 3248.119847][ T1193] ? skb_clone+0x1b2/0x360 [ 3248.124252][ T1193] should_failslab+0x5/0x20 [ 3248.128744][ T1193] kmem_cache_alloc+0x36/0x290 [ 3248.133495][ T1193] ? string+0x280/0x2c0 [ 3248.137642][ T1193] skb_clone+0x1b2/0x360 [ 3248.141873][ T1193] netlink_broadcast_filtered+0x5e1/0x10b0 [ 3248.147753][ T1193] ? skb_put+0x101/0x1e0 [ 3248.151992][ T1193] netlink_broadcast+0x35/0x50 [ 3248.156744][ T1193] kobject_uevent_env+0xb1f/0x1000 20:01:24 executing program 4: ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2440, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) getresuid(&(0x7f0000002a80), &(0x7f0000002ac0)=0x0, &(0x7f0000002b00)) r1 = getuid() syz_mount_image$tmpfs(&(0x7f00000016c0), &(0x7f0000001700)='./file0\x00', 0x30, 0x4, &(0x7f0000002a00)=[{&(0x7f0000001740)="a6051fc4661932b4291b53e28dad10c95cdebef8da9550b634d59ea56678d26e2628b32ab37f35b544a7bd875522747f5ff3db94c3d8a560d04ef48d9fdd06ad4fc349e4d66d02887e50794901e5f6376cbdc6ee0f998013a839f631b5438d3be01fa2625a2c56a568bd8710498e22a9a69571b347d448e5cb9ebb7fe3f928059d4af0ba6d3a4ac50dfa691a29c0670b0da1c66124686bd064b50f7a9ee1fffd69f85f8aff51d3bc30217912702d12df87d47573ac8137a85a374f90f7149127349a5f64ee6f063a0e3d93bbdb56966370bc9d0c5b14c4e944226195d2bed2827dd4fc5eb4cc7baff339d7ec17ef570e772bcacadc6f220801591faabe1039c61cd300259a195ec7eecd2b4d89cd4bbd59f881147ed9d8e5022c5405ee937acf23680d16c6bb8f5da892d25a41fca7e2da2a0b21aba43b343f6216e5ddfe28d5efdfcae290f57af949f777ba3e46c030137ed1416ab472a7582147e847514fd16fac057f6515b94426914d5b795b76c9d7376075c7a51633b218c50fbd925a3b712dc1517aa0703d7ff9c9c33e5ffa2083d7c3a6fb8db533f772c464b0ce020c60f5e71fc47f5e2aa0d5112afe0ecb6048423eb523f3b123a1fe0c1fab4a86e6e5b42f7cc0778d1cc359fbba7cf92fa4eb4544912761741b348dac8fdfce77c10379f96f63679fc5ce443e0abc266d9a16cc4036fc49571f8118142671470edcfdf15e0773b956656a4f242b71d3d94e0d32c7459287d704c636c0d711117a59c07deaa44325767ce58c6cd16b440af1b13d7043fae46387fb297bf570964e5783846016fafa721bd647b47f7e0667e60ea1d42be02e11bc7ac1fda43bf44267363342385b9d689bc3ac03d596571aabaf2ea5e014b5ccee1ac537b3d34cca9df18a6114f4fc5a5adb709f1b323112b92f4dc285291f00418b738769a0440c49e3cdbc9913fe16348470bcc649a6056fc927e4f7b8449207639607c66e8b49ab7feaa599e27a9919e1280f55aecef42c7b56677651095d59bb7ed8deb4a5fecdefdcffb2cb712682159ea8d55047da8562c9da1dd7ce37047bdebedcecbc24d69375563f87d0068741fa2b8553842796b072640a89ab62b09db9e01c4003fa0de96d96b5b498c2e6415af29c2da774ea155d8946b9080fbb9f47223f8f3ec687c6ad9b250f759356c1d31692e4c7a5c5834d4f3d861c027375f6f27290b7cc83ba0ec66f443ff6ff8aa50e867286b29b5fb848c01133836bc718b1f26910273e14bd446b9ba3137581ec1f79b07b2ea4c7fdac0db8303199bcf2557d195b070199f930537ba4194938032ec5b0617420c8b50e274e85a56e55cc5803179977741ccfa6490c7289b899b1f28122e45520e3e0606c3ef8ae4b31a738cce70809655a3da7e217c146dc528442163eaec581a4b382fa4081a51df5da0258a352533b7a4ae89f9c36f8d7da8c08bdeab71d6d19d12a7a3239f3a7864d1ad7d0da6a0c4be0ee248217c7260998735d156fa8e6522efebe1629b3f673ede9d26aa56877630fcdecad59cdddffdd51de65fdd8dc5306e4986e6795156ed6fa87d9f3a4a2b7e155c2f7dc826cc39a2164466906dab6815359f61b43bd364b7c1f97ecdf7219495c8ce688b069f734e91c367302d87c84003f50fe2b0f9efde29010fed2b1292813a6072a4c08e17072d383804115a26e2411818c61930a36a769b9f2c8ab540aed69c5b621691b59a2ef5b324527a2c1afbaffd961a47ed064c5cdec8146ab44f45569985389bcd1c26afef9c239b31cc3d1021703d250d9eee25b4af8a94e614d96f856b5298eb1a04cffa8c21d625e41a1e42f3e5c6ee152764933639c58bf6a0df5cc52d5d095a2c8a5c407e563b2573f2de07083a4e1772802133c97c252e0ca303dabc8941bc33919452bcb413e2da5bae45e48bcbeba3e9b8ad46b52aa456c6874efd60f995b4d0b008a54141becde6e598d1f25a3b661674076ef484d3608f1b901851729e7aac60bd6f5d0a38f1694f5434fb01a73785bfdfbc88618a910b4e454ece2b48fc758b6c456ff796699c2099ec2fed3e3028b5004fc2469dd6850788cec3819bc19f06c8e28639ccbff9d4822e881cc4c0bff837159e5e72d4a5e124ee2919e4a1541fb9149435751ac859a32107b114fdcc505fb5b32e36f3e761b613bd57e9e9f44d06bc05e5d889b1c9ec50bf5e7b5b7e5761ddeed09a84e136ee8d70e6062755b9e54467db82ba805a317847c08628ad1af2a61230b956e0174bcc207e6f8b5d6c795e14b454c204bd55aa1a39773668c6c81a61629ddcadcb3bc38d5c47ca4f5b8f7ed3d7d2578a55c1b75242a712b28760dd53503406ff5367f96b89900cbd10f26c91d460b4d31a5af757300fb52502f833a059e8f3c6f62d3432d02f8d97534da4fce6ab018784af9c2c2dd3c69bbfc587b38543c5d764476615c1f37296b912bbb7e78c3d4849435c237b5395406d0dea771bf28b1874eb11a1d6ae9827f025ceedde5267d488921ecdf732e5b1314adba7157fd58d7d2a21380eee5d35d071b9dc957f4f1cad7ae6b717ce858920d7bbfca4cc74d523d07e06598d610ea2a9ebfa09cc4a727741266a872263061dce5ff8b710d9441592dd4563f73618493e9dd7ee6dd988504460d9cf6c95300cf71e34298dc457700ffe95243e3720f4e89e30557cbc1f91a102a1a283bc5d859554faca78a1a44f731ec0bc7f316f02f5c70888c426e4f65b924782fc203de0ea7e91bfe113b8add6d4490363914977cfbc47832434a21cdaa8f02e7409463499f2cf914d6188c6721095c1e2b486a45516d972532aab703649c0513819f6ae2817308b480b48d85194ceb1f600060dcc6af4b01d5bda7cb9e613490e244807acae20687f6db629d7604a16f3a8611d76aac34d8f1c0627594a0e764f0712462043f07a7c0456a56c4e7852e96d9c42035de5c964c6495742688adb1a3d6945c8483a7cde722b97657a304f288672bf2252856dd1e932e7369a9e6a61b39677fef1bc0ee2453b3e63f1b8c3b960d236b8fcf41cb33f9e43c0cf5d008fbc8e92c2c76edada6df2fe1f11e8a7d9d96632c9fd208d84f90bd5c7cadf56e52c4c61a907f7c1dfa44e20b28c10b70e599cb74eff22f681f5c11e57e10db049dc580192211ee55fc20fedd0680547e8c354c5a37dcaa1e8d7b75a8dd4533cd4953be771a8670d79428e0379a1c3606de53af90ac9fba1402b1593dfb8d4de671b12fe317cb4dda3e451f7b0fcb642d6958785aca994db79f6e255b5f39e1ddd9f6836953a20170356705d8d7f0c01f8e5c024f1d82b7ca7b44d99f19fb9dbe829ca9a3c8a69e8548d3b2478e43f3963423d8f04a6269ce4b30acdb633717334d9b7bd8ad97805436f665d087e997cb797841821db873b5e0ef2b6252b1987593281b9e2b5a1c08188537ec1d718da618e5f388eccc13b155ce5342479991b1adfe72482c2b44156d91e9ea30d3ec68d0d658aff70f6659b580482919c4b7d5c4e5683c58328a0bae965d11ced154bf77ad140afd2769b917f63a0e0820a88f43648fa1aae4843438d173a694e90c26e43a821ae8a213b346e38d995c124bf80abd61567ac89dcb508c8fc7828bc486fb092d2ba78ffe91255f13ca0b11b3a4c1cca21887c3ae24cf2cd64664bc570d25433bd4d7eac7341aed6b6975dd0441bef93f84c32637377f08caf3ec051afdbee379705314a87442ef9f51a9c3d4d6dab49ea3d350e960a9adce22e004a652ba5e73e585e1707214986cf9716e4e873d9edb45c1256033fa4a45ef4ad8df2f4e5849507c87f0686daef95d75ca23317cad41770c949afbd30f44abe64c8c1918d9f19871820863a99b045293167908a2375647cbb8fd8aac69678844a5ff4de3e751f70c99fdbe0592d369069ed94f8761da4180ead50f9847d72c2d939d4526a7912e74b2bcd3c4f62ef05489585eebab54139964c00ef729efb65a68833191d5315049a930bc2861720ed85e90614c7b224f3c96e5fbb1243d194a5f8f40da0d27d9f532e23ba045d4b48c988aa160e3bb555b47c25c5cfb240586abe4e2946d8aeb237e3a39e9d946c58139ec8caeeec7913ca0eee6b9626bae1d0df03d2e530f683c200789cecf082e5bc1e180483dc8c6888652a5d9197144ea318ddde340eef8c879f0db77d4ea5febe79662ccf8fc12f71b0c383c1ff688a168605754559d8bd97562e52c7feaa7e3fd7fd9b593b29f30f2d63e590e6c8c3b2be2f381e3b973003e6edd7ad7ccba3add1a9376fe867c5128a116433c7ff0db9444f2357be9c70e949b2addec891fc6be444a4499f0bd59b8c82964ade15ec341f22835435b4c2200bd768e4052087a123d4716f9118983d4b5df53857240df2c1d070f61851f77a64ffcf1ec334539f2efd3a469afd1bd79661b0d13eb699e99be6fdbe2fea4f86efb083fea958118d2a3eea0f5c404b3c1498ac679a1c85045c0e795db1a6f203a321445cd2c76bfd0b2b10ad06b972bea44d7b6a5166deab2cf07c383129fb150ba6d934583e621ee734cd622c4b11fffb16fe441c8d66406e4554645684f269f8f4f28db719f4b753e3b0cf3f871dcc3d50c92faa2caab8a4f393829793780a064ebd6c508ddfb8ab21f915c297b9960726828bfc61692190c68ecbf4e030342910ec53d99f4bafec5c19f77f2f55ba8906f3922986f6b52d85c2335326140621b71c569ff75753d49945f8b8b2604208a6adff6c997ae7a60212f68f11e238092ba7226ee79deb87ca468e9a206094cb6e844c91860d9d638157b369823847a4d2b113b0440f2f6f7aa1a2ff69808b87df3322fa0f0e99b0334c3d2460eade47d72ec38877926e1a60d62b82b57050636e33883e677d54f108dbf32aa60c90e26e41c8a59a20575532feb7fd96de773ac1768b84a099106d107b9600ee82f59399b482a06490f509293440dd7a5f0158549b1938a8ead3cb36d8e1b5b3591e44da4db9b28fe8c8d0a987601ef02bed3463e05480af20f886796608054f1f4893ce93d121fb2fe287cd861e8d1461e107ace2ebcc63b5d1b551a163d03cc6bbd8ebcef24c97b6dea2c8df0d6d4625416a0758032f63ba05831ca7819ff8c6573fe0441abb00374c80dd61fb5e44246c597d6f6f116c90d23abb12052b0b09ba57694d4cde8de1f1d217cae6bf4f2dc4ca4b2d9f39ac881e41f2ded757b1898c62e0c3384381a0227e3192ed55cc9e263c3d1f75e7866a643e8b56ee8d7a2fd540227cf6bc9206ac523b5f66e0467da302933f808f3f83bc4e42f12e923d2dce27cec01fe3962db35f472fd7e64c2a979e4ff14eaf3578ed038286f5f7cf7df2229cb16de0a495e60edbe3df9b3871fd6bb034af10813b15b95cd1c88a0a1527940d983882f2ce182d53eb9243273f1a6f8202b05e883b8e37ec21eca38f8e5ad5fa3aa9f5b12b19c56610d0eaedf9041c921b791ef7505bd2365b66a0d5503b802773b8810f1c65378c327a29498edd7db26c408c2421d8031fa966eb8e885d8d45d1390e6d1c7d3e44b2812480b582b14b0b66c3d5330f77a45b2e0cd3454f7be6a1cd9680f06cb797eb8799c803922300e02fd1be695634812821ff37f4a751d35f7e6d8571f23e8519f10efe1efb33c46f0e8cca2f7a2da9eec8f9288e2275c3b6efd49e6ee336eff5e08812c8b59d5ae1ba1ee22fedf6ab845448c12a627ebd0379c631a3835dd9be09ab681fd1606624ffc55df996fedadf1e75a7d9546bbd88da4940e88048b804df5f68814ff", 0x1000, 0xe74}, {&(0x7f0000002740)="9ec80c62cd2a41414b324ff8d44a76c3cff56f280d6bf61037342e094e650ae57d694340c3dde6a5bcdf8f7b030f559a66a66dcc284af607bf457b1f7a2dead8437b94892129c11939e4bac06b9a5893e368b4d6f800a60219dacb44ed1dedfb882cdfb4c9e7e704d480e7ab3e5d856a1b8743214bf56c3e9d121409683796f297b70501f3382772bab20090afa23a", 0x8f, 0x9}, {&(0x7f0000002800)="4b14270db0e57bcbd508a44fc18a8765471114d9c6ebbf181f880ae0816ed487da352e09c5cbcb0d605c75da2119f3ba65093354bcf149e1f9998da10e6f766af8e32fb0030a5d21eb4b83b83db4d5003dd6cd181cc0a5bc25e31cf54f35adbe79b3e1819cd0d26d339d6a70c8d36a91eb92a7cb316ef62626870d038ab6dbb129562b3f89ddc80c73e5224bec4f4b37370cef417e8c693c2448df30f063167fe03097c5f341d798dd71230647bf4568247a90ef715da24f6ca4fd75ef852f1a4aec1f226873a3ea5c765d1b609a8457a351a275ec7de0437ffb0a370b6ff593089f", 0xe2, 0x4}, {&(0x7f0000002900)="3cd529dc46da4d6ca8c7ad03da5de0fabd942c50f2d9cf5fec7b7cf51e10e19dd0d67f4ee713193f5fa40ddf78b86016fd1bec5a1ab59c16fe7e522df7e33a5ed169d715d66693f2f60e9719cb97448c19d5125b5a3c23c868074f3a515492f37bb8812158e593a0efc90708222d46738a5c739a2c6712472ebe9aba13627f5b1172ae7d325c09f9e8b02a688b03406d92a5ec9d532d403f073495ee2f4d61de6bcb9a1531ddc78261f28f59c213a6a85380d8cdea6551998609452117fc56e9152f", 0xc2, 0xacc}], 0xa24000, &(0x7f0000002b40)={[{@mode={'mode', 0x3d, 0x3ff}}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee00}}, {@mpol={'mpol', 0x3d, {'default', '=relative', @void}}}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}], [{@euid_eq={'euid', 0x3d, r0}}, {@smackfsdef={'smackfsdef', 0x3d, 'fsname'}}, {@appraise_type}, {@fowner_eq={'fowner', 0x3d, r1}}, {@fsname={'fsname', 0x3d, 'noinline_dentry'}}, {@uid_gt={'uid>', 0xffffffffffffffff}}]}) r2 = getuid() r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) recvmsg$unix(r3, &(0x7f0000004080)={&(0x7f0000002c40)=@abs, 0x6e, &(0x7f0000003f00)=[{&(0x7f0000002cc0)=""/111, 0x6f}, {&(0x7f0000002d40)=""/3, 0x3}, {&(0x7f0000002d80)=""/99, 0x63}, {&(0x7f0000002e00)=""/239, 0xef}, {&(0x7f0000002f00)=""/4096, 0x1000}], 0x5, &(0x7f0000003f80)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x2000) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r3, &(0x7f0000001680)={&(0x7f0000001580), 0xc, &(0x7f0000001640)={&(0x7f00000015c0)={0x58, 0x2, 0x7, 0x101, 0x0, 0x0, {0x3, 0x0, 0x3}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x5}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x1223cf4ea25fe47b) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x3f, 0x6, &(0x7f0000001400)=[{&(0x7f00000000c0)="c04fe4b0dc62a2687159f8b4d73ff8db", 0x10, 0x6}, {&(0x7f0000000200)="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", 0x1000, 0x88}, {&(0x7f0000000100)="e220e8e072db28840ccbe9e12613a6db", 0x10, 0x2000000}, {&(0x7f0000001200)="4a57fad589f9b0bd56861a34b596f8e5959fd8ad57d0e55ffa90ff35f87baeaca795009d901e6a785a9b4a2f845a48aee5cf9f96d1115ef4b7048c6c625dd0a183f1f946041a12587f6625cfb17647e2108bb8fe51bc566f85046454359b68f0f570883335c8b17032fad5b9a4029ced0b316eaa6eb34c301e21bf0d5659f5173f711cc099deb47337f48a58537b3035c54a2f1f2e64f2ad60abb12ab3bda7b43931aa7b7a45846ce4a9302abfa8ba08f1f7c3cf8bf1b4528d812825a212d9bd5a4b4e22b25c0b05a503fd2a317e", 0xce, 0x7}, {&(0x7f0000001300)="9f00af00102a1bc6f89d7f5cc8d7a84f5e83d54b3ab89546b984110575942aaf458b3ba09ec832e369e126d2e1f4fe9a86c08d51191a989cb8830fe0af5f12ef29b3f900fdab442eb1f71603aa8f1d1cc3e8273f85244501c1fe7d703793f8547d78d629d546560aee106039d5b90d64eea8d09fc0d4f463f4ec458578eeafa7a8fca74afc7025e8d6a5edc3ee3334b158ddfa15aac66b1538c398e2c24bc91244ac9df7b6c9f24d621983f334d5d01365032c0bb8f64dbc64acc6636374088ae168b787f10c7b2a3a", 0xc9, 0x7}, {&(0x7f0000000140)="bd4bb669bb5e42336ad2bc5f5afd16fceccc1fbdfdb64363b24c839b95e3589dd2f803fd7c38b4", 0x27, 0x3}], 0x8000, &(0x7f00000014c0)={[{@noinline_dentry}, {@noflush_merge}], [{@subj_role={'subj_role', 0x3d, '@'}}, {@euid_lt={'euid<', 0xee00}}, {@fsname}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@hash}, {@uid_lt={'uid<', r2}}]}) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000001540)={0x6}) [ 3248.161842][ T1193] device_add+0xecf/0x1820 [ 3248.166249][ T1193] device_create_vargs+0x1b8/0x210 [ 3248.171347][ T1193] device_create+0x86/0xb0 [ 3248.175755][ T1193] ? vsnprintf+0x1a07/0x1aa0 [ 3248.180338][ T1193] bdi_register_va+0x89/0x5e0 [ 3248.185004][ T1193] bdi_register+0x80/0xa0 [ 3248.189321][ T1193] ? __device_add_disk+0x50a/0x1220 [ 3248.194506][ T1193] bdi_register_owner+0x56/0xf0 [ 3248.199344][ T1193] __device_add_disk+0x583/0x1220 [ 3248.204362][ T1193] loop_add+0x554/0x710 [ 3248.208503][ T1193] loop_control_ioctl+0x468/0x680 [ 3248.213512][ T1193] ? xor_init+0x60/0x60 [ 3248.217658][ T1193] do_vfs_ioctl+0x6fb/0x15b0 [ 3248.222233][ T1193] __x64_sys_ioctl+0xd4/0x110 [ 3248.226894][ T1193] do_syscall_64+0xcb/0x1e0 [ 3248.231384][ T1193] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3248.237264][ T1193] RIP: 0033:0x7f145855da39 [ 3248.241661][ T1193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:01:24 executing program 0: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:24 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) 20:01:24 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 71) 20:01:24 executing program 5: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3248.261251][ T1193] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3248.269651][ T1193] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3248.277606][ T1193] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3248.285564][ T1193] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3248.293523][ T1193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3248.301487][ T1193] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:24 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = accept$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x60) recvmsg(r1, &(0x7f00000006c0)={&(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000740)=""/208, 0xd0}, {&(0x7f0000000480)=""/127, 0x7f}, {&(0x7f0000000240)=""/55, 0x37}, {&(0x7f0000000340)=""/43, 0x2b}], 0x4, &(0x7f0000000680)=""/32, 0x20}, 0x2) sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0xa040820}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x2c, 0x3, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000084}, 0xc010) socketpair(0x3, 0x80000, 0x0, &(0x7f0000000940)={0xffffffffffffffff}) syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r3) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0) lremovexattr(0x0, &(0x7f0000000440)=@known='trusted.overlay.opaque\x00') recvmsg$unix(r0, &(0x7f0000000700)={&(0x7f0000000500)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000580)=""/165, 0xa5}], 0x1}, 0x40010102) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'osx.', 'trusted.overlay.opaque\x00'}, &(0x7f0000000200)=""/48, 0x30) syz_mount_image$ext4(0x0, &(0x7f0000002640)='./file0\x00', 0x3, 0x5, &(0x7f0000003a00)=[{&(0x7f0000002680)="ee2ea4a40a1727524bd1ae4bbde1f4c522332b231b59d641d1571cc3e52ce2f46df4533597800a5e8200204b0b3ad263802e9c95197ae9f0e652ce01e7a74bd4319528c0c3a78ff6ceb9522e532179c5", 0x50, 0x51}, {0x0, 0x0, 0x7}, {&(0x7f0000003800), 0x0, 0x4}, {&(0x7f00000038c0)="955d0e6303400937e537afad7edfbe6f8e2eec03a4c7292f6b521cde3fc39e71d017a134adcc216af2a743c8f50ad6be13b122c5df40", 0x36}, {&(0x7f0000003940)="18414a00ba0f78d8c495bb0cb45edf556d359df3ee6a92429e1caf0c211eddb9118fb6aac44e34563dd17023071935c1395b6fb2677d188c781190ca797548b64ef81ca965bfeba40be4b5708d5a77de320504d1225596766c45cd95c7907e48448891f19261de47299204ee8fd034db41b532613d28f09236bc72a578d9d136e204aa37de6c54527d17bf0b858374b2f0ba7036aa0899116803508e4a2176340c9ae07b", 0xa4, 0x3ff}], 0x20004, &(0x7f0000000180)=ANY=[@ANYBLOB="00fa0e9ba26f99cbc65d0e8cfb843cef9001aba68e558904a1e3d8d4688c4de1fbec969a55e5a4380d75e5050074f99e80155b29030a8f671e1f60221bc671224c1eced0606755830f45df05f506996c65c16ff907b963f48ed1e50dada0dd02e4ddba2bbe5dace904e265a0d990e05d79b77163"]) truncate(&(0x7f0000003b00)='./file0\x00', 0x1) r4 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r4, 0x80004509, 0x0) 20:01:24 executing program 0: write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="2321202e2f667d6c65302027212b242540202f6465762f696e7075742f6576656e742300200a95d5587559c123ea6702439ad41fb2c872fb732adfaefdca76d9ff324e806ca556ea2dd100177483748607994cf9e6c25f59853b66a7bbe7a4b7951ad81872e2f2fbe3608afbe1d7b3d4e0d3753143813f6e500a44a3169f11268ed42579da992098e62ea9409289c880d4db46526f75f3a6e4197f010b36b930e625649e9438cf936ccf2fd794fd02a8cafb8d9eb7d1cbdec78bd6d1606dccfee53c1813d00000"], 0xc7) utime(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x9, 0x9}) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:24 executing program 4: ioctl$BLKSECTGET(0xffffffffffffffff, 0x1267, &(0x7f0000000000)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:24 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x45) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) r1 = openat(r0, &(0x7f0000000100)='./file0\x00', 0x420d80, 0x58) syz_genetlink_get_family_id$wireguard(&(0x7f00000000c0), r1) openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x802, 0x0) 20:01:24 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x40, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:24 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 1) 20:01:24 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x2, 0x400, {0x51, 0x8, 0x34, {0x81, 0xfff}, {0x6, 0x80}, @rumble={0x0, 0x1}}, {0x54, 0xffff, 0x0, {0x6, 0x401}, {0x5, 0x5}, @cond=[{0x5, 0x1, 0xb613, 0x3, 0x7fff}, {0x100, 0x9, 0xffff, 0x6, 0x0, 0x1}]}}) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) [ 3248.395184][ T1217] FAULT_INJECTION: forcing a failure. [ 3248.395184][ T1217] name failslab, interval 1, probability 0, space 0, times 0 [ 3248.409619][ T1234] FAULT_INJECTION: forcing a failure. [ 3248.409619][ T1234] name failslab, interval 1, probability 0, space 0, times 0 [ 3248.422248][ T1234] CPU: 1 PID: 1234 Comm: syz-executor.0 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3248.433767][ T1234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3248.443808][ T1234] Call Trace: [ 3248.447087][ T1234] dump_stack+0x18e/0x1de [ 3248.451414][ T1234] should_fail+0x5d8/0x740 [ 3248.455819][ T1234] ? context_struct_to_string+0x3a5/0x7c0 [ 3248.461530][ T1234] should_failslab+0x5/0x20 [ 3248.466016][ T1234] __kmalloc+0x5f/0x2f0 [ 3248.470157][ T1234] ? get_page_from_freelist+0x550/0x8b0 [ 3248.475686][ T1234] ? __alloc_pages_nodemask+0x2d6/0x740 [ 3248.481218][ T1234] ? handle_mm_fault+0x152c/0x3f30 [ 3248.486314][ T1234] ? do_user_addr_fault+0x4a0/0xb40 [ 3248.491495][ T1234] context_struct_to_string+0x3a5/0x7c0 [ 3248.497030][ T1234] context_add_hash+0xe6/0x1d0 [ 3248.501782][ T1234] security_compute_sid+0xfcb/0x1a70 [ 3248.507108][ T1234] security_transition_sid+0x78/0x90 [ 3248.512370][ T1234] selinux_socket_create+0x1b7/0x2c0 [ 3248.517643][ T1234] security_socket_create+0x6a/0xd0 [ 3248.522824][ T1234] __sock_create+0xd2/0x730 [ 3248.527310][ T1234] ? vfs_write+0x422/0x4e0 [ 3248.531715][ T1234] __sys_socket+0xfd/0x2b0 [ 3248.536117][ T1234] __x64_sys_socket+0x76/0x80 [ 3248.540771][ T1234] do_syscall_64+0xcb/0x1e0 [ 3248.545253][ T1234] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3248.551121][ T1234] RIP: 0033:0x7f6c9bac2a39 [ 3248.555519][ T1234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3248.575128][ T1234] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 3248.583521][ T1234] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 20:01:24 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) mknodat(r0, &(0x7f0000000100)='./file0\x00', 0x20, 0x3) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:24 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101440, 0xc) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3248.591486][ T1234] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0000000000000002 [ 3248.599443][ T1234] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3248.607404][ T1234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3248.615371][ T1234] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3248.624942][ T1217] CPU: 1 PID: 1217 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3248.636481][ T1217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3248.646520][ T1217] Call Trace: [ 3248.649800][ T1217] dump_stack+0x18e/0x1de [ 3248.654121][ T1217] should_fail+0x5d8/0x740 [ 3248.658524][ T1217] ? __d_alloc+0x2a/0x6a0 [ 3248.662850][ T1217] should_failslab+0x5/0x20 [ 3248.667341][ T1217] kmem_cache_alloc+0x36/0x290 [ 3248.672094][ T1217] __d_alloc+0x2a/0x6a0 [ 3248.676236][ T1217] ? kobject_uevent_env+0xbb2/0x1000 [ 3248.681505][ T1217] d_alloc_parallel+0x7d/0x12b0 [ 3248.686347][ T1217] ? avc_has_perm_noaudit+0x2fc/0x380 [ 3248.691716][ T1217] ? avc_has_perm_noaudit+0x2b0/0x380 [ 3248.697081][ T1217] ? __d_lookup+0x4b8/0x510 [ 3248.701573][ T1217] __lookup_slow+0xef/0x3b0 [ 3248.706062][ T1217] lookup_one_len+0x11d/0x210 [ 3248.710727][ T1217] start_creating+0xec/0x270 [ 3248.715300][ T1217] debugfs_create_dir+0x24/0x3f0 [ 3248.720220][ T1217] bdi_register_va+0x232/0x5e0 [ 3248.724973][ T1217] bdi_register+0x80/0xa0 [ 3248.729292][ T1217] ? __device_add_disk+0x50a/0x1220 [ 3248.734483][ T1217] bdi_register_owner+0x56/0xf0 [ 3248.739325][ T1217] __device_add_disk+0x583/0x1220 [ 3248.744342][ T1217] loop_add+0x554/0x710 [ 3248.748489][ T1217] loop_control_ioctl+0x468/0x680 [ 3248.753509][ T1217] ? xor_init+0x60/0x60 [ 3248.757656][ T1217] do_vfs_ioctl+0x6fb/0x15b0 [ 3248.762239][ T1217] __x64_sys_ioctl+0xd4/0x110 [ 3248.766904][ T1217] do_syscall_64+0xcb/0x1e0 [ 3248.771394][ T1217] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3248.777274][ T1217] RIP: 0033:0x7f145855da39 [ 3248.781676][ T1217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3248.801260][ T1217] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3248.809644][ T1217] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3248.817592][ T1217] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3248.825560][ T1217] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3248.833505][ T1217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:25 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x111060, 0x8) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:25 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 72) 20:01:25 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000300)={'rose0', 0x32, 0x39}, 0x8) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) [ 3248.841450][ T1217] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3248.948796][ T1249] FAULT_INJECTION: forcing a failure. [ 3248.948796][ T1249] name failslab, interval 1, probability 0, space 0, times 0 [ 3248.961512][ T1249] CPU: 0 PID: 1249 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3248.973044][ T1249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3248.983084][ T1249] Call Trace: [ 3248.986364][ T1249] dump_stack+0x18e/0x1de [ 3248.990685][ T1249] should_fail+0x5d8/0x740 [ 3248.995092][ T1249] ? new_inode_pseudo+0x79/0x220 [ 3249.000016][ T1249] should_failslab+0x5/0x20 [ 3249.004506][ T1249] kmem_cache_alloc+0x36/0x290 [ 3249.009343][ T1249] new_inode_pseudo+0x79/0x220 [ 3249.014094][ T1249] new_inode+0x25/0x1d0 [ 3249.018236][ T1249] ? start_creating+0x183/0x270 [ 3249.023082][ T1249] debugfs_create_dir+0x68/0x3f0 [ 3249.028012][ T1249] bdi_register_va+0x232/0x5e0 [ 3249.032769][ T1249] bdi_register+0x80/0xa0 [ 3249.037083][ T1249] ? __device_add_disk+0x50a/0x1220 [ 3249.042267][ T1249] bdi_register_owner+0x56/0xf0 [ 3249.047102][ T1249] __device_add_disk+0x583/0x1220 [ 3249.052111][ T1249] loop_add+0x554/0x710 [ 3249.056253][ T1249] loop_control_ioctl+0x468/0x680 [ 3249.061263][ T1249] ? xor_init+0x60/0x60 [ 3249.065403][ T1249] do_vfs_ioctl+0x6fb/0x15b0 [ 3249.069978][ T1249] __x64_sys_ioctl+0xd4/0x110 [ 3249.074640][ T1249] do_syscall_64+0xcb/0x1e0 [ 3249.079130][ T1249] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3249.085009][ T1249] RIP: 0033:0x7f145855da39 [ 3249.089412][ T1249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3249.109100][ T1249] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3249.117500][ T1249] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3249.125560][ T1249] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3249.133538][ T1249] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3249.141497][ T1249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3249.149454][ T1249] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3249.159228][ T1249] debugfs: out of free dentries, can not create directory '7:0' 20:01:25 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$FOU_CMD_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x60, 0x0, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x3a}}, @FOU_ATTR_PEER_V4={0x8, 0x8, @broadcast}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x32}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x800) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0xa4, 0x2, 0x1, 0x401, 0x0, 0x0, {0x2, 0x0, 0x6}, [@CTA_LABELS_MASK={0x18, 0x17, [0x10001, 0x0, 0x81, 0xffff, 0x80000001]}, @CTA_PROTOINFO={0x3c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x38, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x4d6e}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x5c}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0xfd}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x40}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x3f}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0xf7}]}}, @CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x800}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x20}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0xfe}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x3000}, @CTA_LABELS={0x10, 0x16, 0x1, 0x0, [0x0, 0xd00, 0x8000]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20008811}, 0x4000) 20:01:25 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1400000003030500000000000000000001000007309e846e9e89c6c32a14472f898ebf7867807f52f3771193c69e896e41178f0ab399f2714a142061588b1037add55d2458b0099e6d550f8abd47b220a4d08ce1c01bace60e362fe9d116eeb63d667a093c6fc1bcfe42b02406b5d93ffc17ee404614b17c71f7bb1841b0a43b15408ec26dc7264ad06020d15a16a0db0a573af5ea09c4fe4efa22dfb32099f2e5a953fe9721040b53ff37f861df14f45071b881b02525683517dfbd76be00"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x94) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:25 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 2) 20:01:25 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x19) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x0) 20:01:25 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) 20:01:25 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 73) 20:01:25 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x800, 0x2) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 3249.280695][ T1263] FAULT_INJECTION: forcing a failure. [ 3249.280695][ T1263] name failslab, interval 1, probability 0, space 0, times 0 [ 3249.301619][ T1258] FAULT_INJECTION: forcing a failure. [ 3249.301619][ T1258] name failslab, interval 1, probability 0, space 0, times 0 [ 3249.315023][ T1258] CPU: 1 PID: 1258 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3249.326559][ T1258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3249.336607][ T1258] Call Trace: [ 3249.339893][ T1258] dump_stack+0x18e/0x1de [ 3249.344215][ T1258] should_fail+0x5d8/0x740 [ 3249.348623][ T1258] ? security_inode_alloc+0x32/0x1d0 [ 3249.353903][ T1258] should_failslab+0x5/0x20 [ 3249.358396][ T1258] kmem_cache_alloc+0x36/0x290 [ 3249.363152][ T1258] security_inode_alloc+0x32/0x1d0 [ 3249.368252][ T1258] inode_init_always+0x387/0x810 [ 3249.373179][ T1258] new_inode_pseudo+0x90/0x220 [ 3249.377929][ T1258] new_inode+0x25/0x1d0 [ 3249.382072][ T1258] ? start_creating+0x183/0x270 [ 3249.386907][ T1258] debugfs_create_dir+0x68/0x3f0 [ 3249.391830][ T1258] bdi_register_va+0x232/0x5e0 [ 3249.396583][ T1258] bdi_register+0x80/0xa0 [ 3249.400898][ T1258] ? __device_add_disk+0x50a/0x1220 [ 3249.406082][ T1258] bdi_register_owner+0x56/0xf0 [ 3249.410920][ T1258] __device_add_disk+0x583/0x1220 [ 3249.415935][ T1258] loop_add+0x554/0x710 [ 3249.420077][ T1258] loop_control_ioctl+0x468/0x680 [ 3249.425085][ T1258] ? xor_init+0x60/0x60 [ 3249.429227][ T1258] do_vfs_ioctl+0x6fb/0x15b0 [ 3249.433812][ T1258] __x64_sys_ioctl+0xd4/0x110 [ 3249.438476][ T1258] do_syscall_64+0xcb/0x1e0 [ 3249.443337][ T1258] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3249.449208][ T1258] RIP: 0033:0x7f145855da39 [ 3249.453607][ T1258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3249.473192][ T1258] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3249.481585][ T1258] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3249.489545][ T1258] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3249.497510][ T1258] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3249.505468][ T1258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3249.513426][ T1258] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3249.521388][ T1263] CPU: 0 PID: 1263 Comm: syz-executor.0 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3249.529985][ T1258] debugfs: out of free dentries, can not create directory '7:0' [ 3249.532997][ T1263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3249.533006][ T1263] Call Trace: [ 3249.533019][ T1263] dump_stack+0x18e/0x1de [ 3249.533036][ T1263] should_fail+0x5d8/0x740 [ 3249.562743][ T1263] ? sock_alloc_inode+0x17/0xb0 [ 3249.567590][ T1263] should_failslab+0x5/0x20 [ 3249.572089][ T1263] kmem_cache_alloc+0x36/0x290 [ 3249.576851][ T1263] ? selinux_socket_create+0x178/0x2c0 [ 3249.582297][ T1263] ? sockfs_init_fs_context+0xa0/0xa0 [ 3249.587834][ T1263] sock_alloc_inode+0x17/0xb0 [ 3249.592503][ T1263] ? sockfs_init_fs_context+0xa0/0xa0 [ 3249.597860][ T1263] new_inode_pseudo+0x61/0x220 [ 3249.602612][ T1263] __sock_create+0x12f/0x730 [ 3249.607191][ T1263] __sys_socket+0xfd/0x2b0 [ 3249.611605][ T1263] __x64_sys_socket+0x76/0x80 [ 3249.616279][ T1263] do_syscall_64+0xcb/0x1e0 [ 3249.620868][ T1263] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3249.626880][ T1263] RIP: 0033:0x7f6c9bac2a39 [ 3249.631289][ T1263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3249.650882][ T1263] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 3249.659289][ T1263] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3249.667246][ T1263] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0000000000000002 20:01:25 executing program 5: ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{@none}]}) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(0xffffffffffffffff, 0x800448d3, &(0x7f00000001c0)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x99d, 0x7f, 0x3, 0x2, 0x8adf, "9ea575c9079f0e5092effef0db454fa2d7bd32f56c62806898241b6725984ee51bcb9107acb8c05ba65515f9512ac807497114613f782b780b23a2dbe5ee728de283ef65b913b23686ba138d86810e0a05b3982295e74168091d335aebef85b7a87b1f8009c5e0c522dcafa2671fc41f1b56a2aa0ed42fec94b8b73eb21e7845"}) 20:01:25 executing program 2: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack_tftp', 0x648980, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:25 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) fspick(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080), 0x1000040, 0x0) 20:01:25 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 74) 20:01:25 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/firmware', 0x488181, 0x10) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) 20:01:26 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/spi', 0x880, 0x22) ioctl$UI_DEV_DESTROY(r0, 0x5502) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:26 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) ioctl$EVIOCGREP(r0, 0x80004508, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) 20:01:26 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 3) 20:01:26 executing program 2: ioctl$BLKGETSIZE(0xffffffffffffffff, 0x1260, &(0x7f0000000200)) r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x301040) syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x4, 0x40, 0x0, 0x5, 0x10, 0x4, "3228411016955153be1206ec7b044e20cc915c49fc979d9984e77dd1eaf240c241c9bcca01a0222a244b4282be6ec17522882d31cd3af6e2e149a7a98ab76425", "958c55336e5964a809174127075888188c32d7ae98607596b9ef780f349830d8eaeb1b195f56a71683b15fce0dd9fd9118a1552e6c5aea138ff1192267c6d470", "0f9de6e97702464565a02c989b419cf91ad0ffa8f7212fd91189175ef4b98d0a", [0xf636, 0x6]}) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x15f340, 0xef) openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080), 0x2, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x101) [ 3249.675206][ T1263] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3249.683170][ T1263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3249.691219][ T1263] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3249.715990][ T1263] socket: no more sockets 20:01:26 executing program 3: syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x80600) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) [ 3249.769969][ T1282] FAULT_INJECTION: forcing a failure. [ 3249.769969][ T1282] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3249.786801][ T1291] FAULT_INJECTION: forcing a failure. [ 3249.786801][ T1291] name failslab, interval 1, probability 0, space 0, times 0 [ 3249.800981][ T1282] CPU: 0 PID: 1282 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 20:01:26 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)={&(0x7f00000000c0)='./file0/../file0\x00', 0x1}, 0x10) move_mount(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)='./file0/../file0\x00', 0x0) [ 3249.812859][ T1282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3249.822902][ T1282] Call Trace: [ 3249.826185][ T1282] dump_stack+0x18e/0x1de [ 3249.830506][ T1282] should_fail+0x5d8/0x740 [ 3249.834911][ T1282] __alloc_pages_nodemask+0x12e/0x740 [ 3249.840288][ T1282] __get_free_pages+0xa/0x30 [ 3249.844864][ T1282] inode_doinit_with_dentry+0x8d4/0x1170 [ 3249.850487][ T1282] security_d_instantiate+0xa5/0x100 [ 3249.855760][ T1282] d_instantiate+0x51/0x90 [ 3249.860161][ T1282] debugfs_create_dir+0x1bc/0x3f0 [ 3249.865177][ T1282] bdi_register_va+0x232/0x5e0 [ 3249.869934][ T1282] bdi_register+0x80/0xa0 [ 3249.874253][ T1282] ? __device_add_disk+0x50a/0x1220 [ 3249.879441][ T1282] bdi_register_owner+0x56/0xf0 [ 3249.884278][ T1282] __device_add_disk+0x583/0x1220 [ 3249.889292][ T1282] loop_add+0x554/0x710 [ 3249.893438][ T1282] loop_control_ioctl+0x468/0x680 [ 3249.898449][ T1282] ? xor_init+0x60/0x60 [ 3249.902588][ T1282] do_vfs_ioctl+0x6fb/0x15b0 [ 3249.907172][ T1282] __x64_sys_ioctl+0xd4/0x110 [ 3249.911834][ T1282] do_syscall_64+0xcb/0x1e0 [ 3249.916325][ T1282] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3249.922201][ T1282] RIP: 0033:0x7f145855da39 [ 3249.926598][ T1282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3249.946188][ T1282] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3249.954591][ T1282] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3249.962548][ T1282] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 20:01:26 executing program 5: ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x127e, &(0x7f00000005c0)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)=ANY=[@ANYBLOB="7c0000000a0a0104000000000300000000000000080007400000001b080007400000002c0c00104000000000000000043c0009800800014000000009200002801c0001800800014000000005080001400000010008000140000000070800014000000422646da5080001400000002708000340000000050800074000"], 0x7c}, 0x1, 0x0, 0x0, 0x4001}, 0x18) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='user.incfs.size\x00', &(0x7f0000000180)=""/165, 0xa5) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000a00)={0x0, 0x6}) recvmsg$unix(r0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x701, 0x4, &(0x7f0000000480)=[{&(0x7f0000000300)="948f3449", 0x4, 0x2}, {&(0x7f0000000340)="03b819732be4d5", 0x7, 0x4}, {&(0x7f0000000380)="75ab94d2b341e21eaf115ed88d32156aa08ce7259e2831bc6ca61a79941b977f27200ed00c2dd3988f37885007c2c36e3104a47097d09e4f411d01492399db4ad518ab7b463583798cf015d797e8c7577d4f4d07f6df25ac0f3adec31d137294ce6fc122ecb58aba3c6d2f91b5c02e703c6741f4bb652b8fbcf72fc8b6aa65d66eee8dbee249bb603739ef8d294a3d11704aec304762902c3748a686c4b1c771b269b4978fa6473173222bb21275c04ffbabd8bc", 0xb4, 0x2}, {&(0x7f0000000440)="4a5f41b9d9", 0x5, 0x1000}], 0x60040, &(0x7f0000000a40)=ANY=[@ANYRES64, @ANYRESDEC=0x0, @ANYBLOB="040000000027c174c1f72fad5617f5feb182d215c6ba790cf1943417745762bbc847b135f8dc04e19dddd91a9f81eac445d638863e58cb84cc399b8bcc62fd2ab54988f0c561289ef0e07aa2f8335f115bd2c3742ffc02289977638fc6e9aefa7a7cc03e3a79a318600ae793ac1a0e911e317319ad3f5b2b68c8e9c4dd341a3f5e528cf3d29c3eb660afa2691185bc652e8b7f0f", @ANYRESDEC=0xee01, @ANYBLOB=',audit,fscontext=unconfined_u,mask=^MAY_READ,\x00']) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000680)={'batadv_slave_0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x1d, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="091f00800600000061baf0ff1000000018250000", @ANYRES32=r0, @ANYBLOB="06000000200014"], &(0x7f0000000640)='GPL\x00', 0x5, 0x8f, &(0x7f0000000800)=""/143, 0x41000, 0x9, '\x00', r3, 0x15, 0xffffffffffffffff, 0x8, &(0x7f00000008c0)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000900)={0x0, 0xd, 0x4, 0xc5}, 0x10}, 0x78) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004940)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001180)={&(0x7f0000004680)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB='\b\x00/\x00', @ANYRES32=0xee01, @ANYBLOB="08008e00", @ANYRES32=0x0, @ANYBLOB="0c007e00010000000000e7000c004400040000000000000008009400ffffff7f0012ebc692b50265300837748c90927627b670f1203ab9e3d4fe62e95f733d2f71a998f7ca559e891b21c9f95b1ea56fbbcf48d44233c3bcf495414da0150f2b88cf9273dcfef7927abe10f7b09771f20e3b0171247a0cd0fde0576444b75842dc3908007600e0000001000000"], 0x288}, 0x1, 0x0, 0x0, 0x4}, 0x40000) recvmsg$unix(r2, 0x0, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000000c0)={r0, 0xffffffffffffffff, 0x4, r2}, 0x10) openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000500), 0x2, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001240)=@nat={'nat\x00', 0x1b, 0x5, 0x3c0, 0x118, 0x118, 0xffffffff, 0x1c0, 0x0, 0x328, 0x328, 0xffffffff, 0x328, 0x328, 0x5, &(0x7f00000011c0), {[{{@ip={@rand_addr=0x64010100, @private=0xa010100, 0xffffff00, 0xffffffff, 'erspan0\x00', 'vlan0\x00', {0xff}, {0xff}, 0x88, 0x3, 0x4}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@set={{0x40}, {{0x2, [0x4, 0x0, 0x1, 0x4, 0xdb233cb869332ab4, 0x1], 0x4, 0x5}}}, @common=@ah={{0x30}, {[0x5, 0x9], 0x1}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @rand_addr=0x64010101, @multicast1, @icmp_id=0x64, @icmp_id=0x66}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x4, @remote, @multicast2, @port=0x4e24, @port=0x4e22}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@ip={@empty, @multicast2, 0xffffff00, 0xff000000, 'wlan0\x00', 'veth0_virt_wifi\x00', {0xff}, {0xff}, 0x6c, 0x3, 0x50}, 0x0, 0x98, 0xd0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "2ed9", 0x1}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x4, @multicast2, @broadcast, @icmp_id=0x66, @icmp_id=0x67}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x420) 20:01:26 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x1) 20:01:26 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'osx.', '\x00'}, &(0x7f00000000c0)=""/140, 0x8c) lremovexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='com.apple.FinderInfo\x00') mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3249.970507][ T1282] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3249.978465][ T1282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3249.986420][ T1282] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:26 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mknodat(r0, &(0x7f00000000c0)='./file0\x00', 0x10, 0x5) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000, 0x0) [ 3250.043853][ T1291] CPU: 0 PID: 1291 Comm: syz-executor.0 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3250.055402][ T1291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3250.065450][ T1291] Call Trace: [ 3250.068727][ T1291] dump_stack+0x18e/0x1de [ 3250.073051][ T1291] should_fail+0x5d8/0x740 [ 3250.077461][ T1291] ? security_inode_alloc+0x32/0x1d0 [ 3250.082734][ T1291] should_failslab+0x5/0x20 [ 3250.087314][ T1291] kmem_cache_alloc+0x36/0x290 [ 3250.092068][ T1291] security_inode_alloc+0x32/0x1d0 [ 3250.097177][ T1291] inode_init_always+0x387/0x810 [ 3250.102103][ T1291] ? sockfs_init_fs_context+0xa0/0xa0 [ 3250.107466][ T1291] new_inode_pseudo+0x90/0x220 [ 3250.112303][ T1291] __sock_create+0x12f/0x730 [ 3250.116880][ T1291] __sys_socket+0xfd/0x2b0 [ 3250.121284][ T1291] __x64_sys_socket+0x76/0x80 [ 3250.125954][ T1291] do_syscall_64+0xcb/0x1e0 [ 3250.130446][ T1291] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3250.136323][ T1291] RIP: 0033:0x7f6c9bac2a39 [ 3250.140722][ T1291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3250.160311][ T1291] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 3250.168713][ T1291] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3250.176680][ T1291] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0000000000000002 [ 3250.184638][ T1291] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 20:01:26 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 75) 20:01:26 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000140)="8ef6a08d1213a892b2fe132e5425d58184b361051c8b1c8f85b0e166bc37f9bf9a02ec5965c058c277402df4ca20237d8baa3df43990d54b39cbba77cc6cef3350123bdaa1e72e14d1ea26784cf8df073b1f6cb91e30273d93e135307b2dbb3b886680a83d13343e7a5bbe3c17", 0x6d, 0x6}, {&(0x7f00000001c0)="f53795349ec318c30a0fc057e20d963f346d2ec69838a5e90bc7ec7217cae2fce01ecf12fac3974f48876342d331f4a1eafc5f9b1500e3ac583dd618f2580bcbd7973bf21a204367d2f4fbdfc33caaed4c1c56ab", 0x54}, {&(0x7f0000000240)="13fc8c7c4111b24aa2bb7549f4a0b26a4652a25b66748a8c67f6a51ddabfdc04d3fdeb2e8a78f4136bc4930aaa57bf24dd7caf5f609481980597d191f6558f63bfd3121549a9b03b02fb043275103ecc3f8622a5", 0x54, 0x1fa}], 0x0, &(0x7f0000000340)={[{}, {@fault_injection={'fault_injection', 0x3d, 0x3}}, {}, {}], [{@subj_user}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}) 20:01:26 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x8) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000040)=""/146, 0x92}, {&(0x7f0000000140)=""/252, 0xfc}, {&(0x7f0000000240)=""/4096, 0x1000}], 0x3}, 0x40) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$UI_SET_FFBIT(r1, 0x4004556b, 0x3d) 20:01:26 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000001600)={&(0x7f0000000340)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000480)=""/107, 0x6b}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3, &(0x7f0000001500)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf0}, 0x1) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, r2, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x501000, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r3, 0x0, 0x0) fspick(r3, &(0x7f0000000000)='./file1\x00', 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) [ 3250.192604][ T1291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3250.200561][ T1291] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3250.212087][ T1291] socket: no more sockets 20:01:26 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 4) 20:01:26 executing program 3: openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x1) 20:01:26 executing program 3: openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x1) 20:01:26 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x101, 0x60000) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:26 executing program 3: openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x1) 20:01:26 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x80) fspick(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80000, 0x8) move_mount(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4) [ 3250.289300][ T1323] FAULT_INJECTION: forcing a failure. [ 3250.289300][ T1323] name failslab, interval 1, probability 0, space 0, times 0 [ 3250.322123][ T1321] FAULT_INJECTION: forcing a failure. [ 3250.322123][ T1321] name failslab, interval 1, probability 0, space 0, times 0 20:01:26 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) utime(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x8, 0x1}) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="757365722e6367726f757032008c013a8069efd9d8ebdebe884f8f91932b29395aa3fe01f44863ad5e730f33d5460df2987d761dac0db17b1e4b4b111a637c86d7a7941b497f65fac015d134ca76a784acac59ef67d61499a70008d8361e01f30cab2958cae6eeba074321ee6acd1ff1711c4527493ee8de982999691367d0f60e65bb7ea3e3b36ff2ed372e85f00bda5065621bdb0d6523ff7406addde842519a4528a426e84443d5ec1f214ee3900244eb8d9dfcb715abc764579a5076b17148e8b8ba8b6c37798a49994a1903e020413647c0b38c7295d86c15fba9cffcdf35f22642c5b0dbcd8a7f3a6e2078000000000000"]) 20:01:26 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) [ 3250.322666][ T1323] CPU: 0 PID: 1323 Comm: syz-executor.0 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3250.346229][ T1323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3250.356273][ T1323] Call Trace: [ 3250.359557][ T1323] dump_stack+0x18e/0x1de [ 3250.363881][ T1323] should_fail+0x5d8/0x740 [ 3250.368371][ T1323] ? sk_prot_alloc+0x58/0x3b0 [ 3250.373059][ T1323] should_failslab+0x5/0x20 [ 3250.377544][ T1323] kmem_cache_alloc+0x36/0x290 [ 3250.382292][ T1323] sk_prot_alloc+0x58/0x3b0 [ 3250.386784][ T1323] sk_alloc+0x30/0x330 [ 3250.391016][ T1323] inet_create+0x3c0/0xa70 [ 3250.395585][ T1323] __sock_create+0x393/0x730 [ 3250.400151][ T1323] __sys_socket+0xfd/0x2b0 [ 3250.404650][ T1323] __x64_sys_socket+0x76/0x80 [ 3250.409312][ T1323] do_syscall_64+0xcb/0x1e0 [ 3250.413796][ T1323] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3250.419762][ T1323] RIP: 0033:0x7f6c9bac2a39 [ 3250.424156][ T1323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3250.443736][ T1323] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 3250.452124][ T1323] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3250.460091][ T1323] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0000000000000002 [ 3250.468041][ T1323] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3250.475986][ T1323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3250.483932][ T1323] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3250.491889][ T1321] CPU: 1 PID: 1321 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3250.503411][ T1321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3250.513454][ T1321] Call Trace: [ 3250.516739][ T1321] dump_stack+0x18e/0x1de [ 3250.521061][ T1321] should_fail+0x5d8/0x740 [ 3250.525555][ T1321] ? __d_alloc+0x2a/0x6a0 [ 3250.529877][ T1321] should_failslab+0x5/0x20 [ 3250.534367][ T1321] kmem_cache_alloc+0x36/0x290 [ 3250.539115][ T1321] ? stack_trace_save+0xc4/0x160 [ 3250.544040][ T1321] __d_alloc+0x2a/0x6a0 [ 3250.548181][ T1321] ? save_stack+0x107/0x170 [ 3250.552674][ T1321] d_alloc_parallel+0x7d/0x12b0 [ 3250.557508][ T1321] ? avc_has_perm_noaudit+0x2fc/0x380 [ 3250.562867][ T1321] ? avc_has_perm_noaudit+0x2b0/0x380 [ 3250.568226][ T1321] ? __d_lookup+0x4b8/0x510 [ 3250.572716][ T1321] __lookup_slow+0xef/0x3b0 [ 3250.577207][ T1321] lookup_one_len+0x11d/0x210 [ 3250.581898][ T1321] start_creating+0xec/0x270 [ 3250.586471][ T1321] __debugfs_create_file+0x74/0x460 [ 3250.591653][ T1321] ? debugfs_create_dir+0x302/0x3f0 [ 3250.596845][ T1321] bdi_register_va+0x274/0x5e0 [ 3250.601600][ T1321] bdi_register+0x80/0xa0 [ 3250.605922][ T1321] ? __device_add_disk+0x50a/0x1220 [ 3250.611105][ T1321] bdi_register_owner+0x56/0xf0 [ 3250.615941][ T1321] __device_add_disk+0x583/0x1220 [ 3250.620960][ T1321] loop_add+0x554/0x710 [ 3250.625102][ T1321] loop_control_ioctl+0x468/0x680 [ 3250.630109][ T1321] ? xor_init+0x60/0x60 [ 3250.634249][ T1321] do_vfs_ioctl+0x6fb/0x15b0 [ 3250.638830][ T1321] __x64_sys_ioctl+0xd4/0x110 [ 3250.643491][ T1321] do_syscall_64+0xcb/0x1e0 [ 3250.647983][ T1321] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3250.653857][ T1321] RIP: 0033:0x7f145855da39 [ 3250.658257][ T1321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3250.677933][ T1321] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:01:27 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 76) 20:01:27 executing program 3: ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x127e, &(0x7f00000005c0)) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)=ANY=[@ANYBLOB="7c0000000a0a0104000000000300000000000000080007400000001b080007400000002c0c00104000000000000000043c0009800800014000000009200002801c0001800800014000000005080001400000010008000140000000070800014000000422646da5080001400000002708000340000000050800074000"], 0x7c}, 0x1, 0x0, 0x0, 0x4001}, 0x18) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='user.incfs.size\x00', &(0x7f0000000180)=""/165, 0xa5) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000a00)={0x0, 0x6}) recvmsg$unix(r0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x701, 0x4, &(0x7f0000000480)=[{&(0x7f0000000300)="948f3449", 0x4, 0x2}, {&(0x7f0000000340)="03b819732be4d5", 0x7, 0x4}, {&(0x7f0000000380)="75ab94d2b341e21eaf115ed88d32156aa08ce7259e2831bc6ca61a79941b977f27200ed00c2dd3988f37885007c2c36e3104a47097d09e4f411d01492399db4ad518ab7b463583798cf015d797e8c7577d4f4d07f6df25ac0f3adec31d137294ce6fc122ecb58aba3c6d2f91b5c02e703c6741f4bb652b8fbcf72fc8b6aa65d66eee8dbee249bb603739ef8d294a3d11704aec304762902c3748a686c4b1c771b269b4978fa6473173222bb21275c04ffbabd8bc", 0xb4, 0x2}, {&(0x7f0000000440)="4a5f41b9d9", 0x5, 0x1000}], 0x60040, &(0x7f0000000a40)=ANY=[@ANYRES64, @ANYRESDEC=0x0, @ANYBLOB="040000000027c174c1f72fad5617f5feb182d215c6ba790cf1943417745762bbc847b135f8dc04e19dddd91a9f81eac445d638863e58cb84cc399b8bcc62fd2ab54988f0c561289ef0e07aa2f8335f115bd2c3742ffc02289977638fc6e9aefa7a7cc03e3a79a318600ae793ac1a0e911e317319ad3f5b2b68c8e9c4dd341a3f5e528cf3d29c3eb660afa2691185bc652e8b7f0f", @ANYRESDEC=0xee01, @ANYBLOB=',audit,fscontext=unconfined_u,mask=^MAY_READ,\x00']) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000680)={'batadv_slave_0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x1d, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="091f00800600000061baf0ff1000000018250000", @ANYRES32=r0, @ANYBLOB="06000000200014"], &(0x7f0000000640)='GPL\x00', 0x5, 0x8f, &(0x7f0000000800)=""/143, 0x41000, 0x9, '\x00', r3, 0x15, 0xffffffffffffffff, 0x8, &(0x7f00000008c0)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000900)={0x0, 0xd, 0x4, 0xc5}, 0x10}, 0x78) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004940)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001180)={&(0x7f0000004680)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB='\b\x00/\x00', @ANYRES32=0xee01, @ANYBLOB="08008e00", @ANYRES32=0x0, @ANYBLOB="0c007e00010000000000e7000c004400040000000000000008009400ffffff7f0012ebc692b50265300837748c90927627b670f1203ab9e3d4fe62e95f733d2f71a998f7ca559e891b21c9f95b1ea56fbbcf48d44233c3bcf495414da0150f2b88cf9273dcfef7927abe10f7b09771f20e3b0171247a0cd0fde0576444b75842dc3908007600e0000001000000"], 0x288}, 0x1, 0x0, 0x0, 0x4}, 0x40000) recvmsg$unix(r2, 0x0, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000000c0)={r0, 0xffffffffffffffff, 0x4, r2}, 0x10) openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000500), 0x2, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001240)=@nat={'nat\x00', 0x1b, 0x5, 0x3c0, 0x118, 0x118, 0xffffffff, 0x1c0, 0x0, 0x328, 0x328, 0xffffffff, 0x328, 0x328, 0x5, &(0x7f00000011c0), {[{{@ip={@rand_addr=0x64010100, @private=0xa010100, 0xffffff00, 0xffffffff, 'erspan0\x00', 'vlan0\x00', {0xff}, {0xff}, 0x88, 0x3, 0x4}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@set={{0x40}, {{0x2, [0x4, 0x0, 0x1, 0x4, 0xdb233cb869332ab4, 0x1], 0x4, 0x5}}}, @common=@ah={{0x30}, {[0x5, 0x9], 0x1}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @rand_addr=0x64010101, @multicast1, @icmp_id=0x64, @icmp_id=0x66}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x4, @remote, @multicast2, @port=0x4e24, @port=0x4e22}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@ip={@empty, @multicast2, 0xffffff00, 0xff000000, 'wlan0\x00', 'veth0_virt_wifi\x00', {0xff}, {0xff}, 0x6c, 0x3, 0x50}, 0x0, 0x98, 0xd0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "2ed9", 0x1}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x4, @multicast2, @broadcast, @icmp_id=0x66, @icmp_id=0x67}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x420) 20:01:27 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 5) 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x400400, 0x3) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:27 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/module/clocksource', 0x2000, 0x121) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001280)=@nat={'nat\x00', 0x1b, 0x5, 0x458, 0x0, 0xc8, 0xffffffff, 0x2e8, 0x0, 0x3c0, 0x3c0, 0xffffffff, 0x3c0, 0x3c0, 0x5, &(0x7f0000001200), {[{{@ip={@private=0xa010100, @loopback, 0xff000000, 0xffffff00, 'lo\x00', 'veth1_macvtap\x00', {0xff}, {0xff}, 0x62, 0x1, 0x79}, 0x0, 0x90, 0xc8, 0x0, {}, [@common=@socket0={{0x20}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x14, @private=0xa010100, @loopback, @port=0x4e20, @icmp_id=0x64}}}}, {{@uncond, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz1\x00', 0x0, 0x0, 0x2, 0x1}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x6, @empty, @empty, @icmp_id=0x66, @gre_key=0x6}}}}, {{@uncond, 0x0, 0xc0, 0x108, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0x11, 0x2}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x8, @ipv6=@private2, @ipv6=@mcast2, @icmp_id=0x65, @icmp_id=0x68}}}, {{@uncond, 0x0, 0xa0, 0xd8, 0x0, {}, [@common=@addrtype={{0x30}, {0x200, 0x44, 0x1}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x2, @empty, @private=0xa010100, @icmp_id=0x67, @port=0x4e23}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4b8) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) 20:01:27 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000003040)={'batadv0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000003100)={0x2, 0x3, &(0x7f0000000000)=@raw=[@jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0x8}, @exit, @ldst={0x1, 0x2, 0x3, 0x0, 0xb, 0xfffffffffffffffe, 0xffffffffffffffff}], &(0x7f0000000080)='syzkaller\x00', 0x36, 0x0, 0x0, 0x41000, 0x6, '\x00', r0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000003080)={0x8, 0x5}, 0x8, 0x10, &(0x7f00000030c0)={0x1, 0x10, 0x4, 0x7f}, 0x10, 0xffffffffffffffff}, 0x78) [ 3250.686333][ T1321] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3250.694292][ T1321] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3250.702252][ T1321] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3250.710217][ T1321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3250.718219][ T1321] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:27 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) mknodat(r0, &(0x7f00000000c0)='./file0\x00', 0x10, 0x9) 20:01:27 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) (fail_nth: 1) 20:01:27 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000000)=0x2) [ 3250.776377][ T1348] FAULT_INJECTION: forcing a failure. [ 3250.776377][ T1348] name failslab, interval 1, probability 0, space 0, times 0 [ 3250.803168][ T1348] CPU: 0 PID: 1348 Comm: syz-executor.0 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3250.814714][ T1348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0xc8040, 0x54) recvmsg$unix(r0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0/../file0', [{0x20, 'cgroup2\x00'}, {0x20, 'cgroup2\x00'}, {0x20, '}+}\'!$-'}, {0x20, 'cgroup2\x00'}, {0x20, 'cgroup2\x00'}], 0xa, "54c4646b91"}, 0x45) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x2061) connect$nfc_raw(r0, &(0x7f0000000000)={0x27, 0x0, 0x2, 0x3}, 0x10) lgetxattr(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)=@known='system.sockprotoname\x00', &(0x7f0000000140), 0x0) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x4) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r2, 0x0, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x20802, 0x0) ioctl$UI_DEV_CREATE(r3, 0x5501) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r2) [ 3250.824756][ T1348] Call Trace: [ 3250.828036][ T1348] dump_stack+0x18e/0x1de [ 3250.832355][ T1348] should_fail+0x5d8/0x740 [ 3250.836768][ T1348] ? selinux_sk_alloc_security+0x7e/0x160 [ 3250.842485][ T1348] should_failslab+0x5/0x20 [ 3250.846976][ T1348] kmem_cache_alloc_trace+0x39/0x2b0 [ 3250.852346][ T1348] selinux_sk_alloc_security+0x7e/0x160 [ 3250.857894][ T1348] security_sk_alloc+0x55/0xb0 [ 3250.862645][ T1348] sk_prot_alloc+0xd2/0x3b0 [ 3250.867139][ T1348] sk_alloc+0x30/0x330 [ 3250.871193][ T1348] inet_create+0x3c0/0xa70 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x5280a, 0x0) [ 3250.875602][ T1348] __sock_create+0x393/0x730 [ 3250.880186][ T1348] __sys_socket+0xfd/0x2b0 [ 3250.884594][ T1348] __x64_sys_socket+0x76/0x80 [ 3250.889258][ T1348] do_syscall_64+0xcb/0x1e0 [ 3250.893756][ T1348] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3250.899633][ T1348] RIP: 0033:0x7f6c9bac2a39 [ 3250.904558][ T1348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3250.924162][ T1348] RSP: 002b:00007f6c99839188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 3250.932566][ T1348] RAX: ffffffffffffffda RBX: 00007f6c9bbc5f60 RCX: 00007f6c9bac2a39 [ 3250.940527][ T1348] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0000000000000002 [ 3250.948485][ T1348] RBP: 00007f6c998391d0 R08: 0000000000000000 R09: 0000000000000000 [ 3250.956445][ T1348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3250.964404][ T1348] R13: 00007ffc762745ef R14: 00007f6c99839300 R15: 0000000000022000 [ 3250.977617][ T1369] FAULT_INJECTION: forcing a failure. [ 3250.977617][ T1369] name failslab, interval 1, probability 0, space 0, times 0 [ 3250.994556][ T1370] FAULT_INJECTION: forcing a failure. [ 3250.994556][ T1370] name failslab, interval 1, probability 0, space 0, times 0 [ 3251.028231][ T1369] CPU: 1 PID: 1369 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3251.039774][ T1369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3251.049824][ T1369] Call Trace: [ 3251.053189][ T1369] dump_stack+0x18e/0x1de [ 3251.057502][ T1369] should_fail+0x5d8/0x740 [ 3251.062004][ T1369] ? new_inode_pseudo+0x79/0x220 [ 3251.066919][ T1369] should_failslab+0x5/0x20 [ 3251.071401][ T1369] kmem_cache_alloc+0x36/0x290 [ 3251.076156][ T1369] new_inode_pseudo+0x79/0x220 [ 3251.080904][ T1369] new_inode+0x25/0x1d0 [ 3251.085044][ T1369] ? start_creating+0x183/0x270 [ 3251.089899][ T1369] __debugfs_create_file+0xb5/0x460 [ 3251.095079][ T1369] ? debugfs_create_dir+0x302/0x3f0 [ 3251.100261][ T1369] bdi_register_va+0x274/0x5e0 [ 3251.105032][ T1369] bdi_register+0x80/0xa0 [ 3251.109345][ T1369] ? __device_add_disk+0x50a/0x1220 [ 3251.114525][ T1369] bdi_register_owner+0x56/0xf0 [ 3251.119355][ T1369] __device_add_disk+0x583/0x1220 [ 3251.124361][ T1369] loop_add+0x554/0x710 [ 3251.128506][ T1369] loop_control_ioctl+0x468/0x680 [ 3251.133517][ T1369] ? xor_init+0x60/0x60 [ 3251.137659][ T1369] do_vfs_ioctl+0x6fb/0x15b0 [ 3251.142248][ T1369] __x64_sys_ioctl+0xd4/0x110 [ 3251.146904][ T1369] do_syscall_64+0xcb/0x1e0 [ 3251.151390][ T1369] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3251.157266][ T1369] RIP: 0033:0x7f145855da39 [ 3251.161684][ T1369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3251.181272][ T1369] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3251.189670][ T1369] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3251.197637][ T1369] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3251.205586][ T1369] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3251.213535][ T1369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3251.221483][ T1369] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3251.229454][ T1370] CPU: 0 PID: 1370 Comm: syz-executor.3 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3251.235084][ T1369] debugfs: out of free dentries, can not create file 'stats' [ 3251.241063][ T1370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3251.241066][ T1370] Call Trace: [ 3251.241079][ T1370] dump_stack+0x18e/0x1de [ 3251.241095][ T1370] should_fail+0x5d8/0x740 [ 3251.270505][ T1370] ? fsnotify+0x1130/0x11e0 [ 3251.274998][ T1370] ? getname_flags+0xba/0x640 [ 3251.279663][ T1370] should_failslab+0x5/0x20 [ 3251.284150][ T1370] kmem_cache_alloc+0x36/0x290 [ 3251.288898][ T1370] getname_flags+0xba/0x640 [ 3251.293390][ T1370] do_sys_open+0x2a0/0x6d0 [ 3251.297793][ T1370] ? check_preemption_disabled+0xde/0x2c0 [ 3251.303516][ T1370] do_syscall_64+0xcb/0x1e0 [ 3251.308008][ T1370] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3251.313911][ T1370] RIP: 0033:0x7f7ec9f8ba39 [ 3251.318312][ T1370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3251.337904][ T1370] RSP: 002b:00007f7ec7d02188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3251.346308][ T1370] RAX: ffffffffffffffda RBX: 00007f7eca08ef60 RCX: 00007f7ec9f8ba39 [ 3251.354277][ T1370] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c [ 3251.362240][ T1370] RBP: 00007f7ec7d021d0 R08: 0000000000000000 R09: 0000000000000000 [ 3251.370201][ T1370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 20:01:27 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 77) 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x84) mount$cgroup2(0x0, &(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0), 0x1020801, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0/file0\x00', 0x800, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="2b57c6d52279ceedc4a148b98d4e1cac201d36f13864412575ade1f37b884a3c644819d7c2cafae0dce7e9c6f2a66d699c124065dd4e8bc3a00e252a4114752da33b0e9cb2bc46818585620442d7635b442e81b9559431f35968ae301924ad76e64cb27024052121a856f900a3f88d", 0x6f, 0x7fffffff}, {&(0x7f00000001c0)="b82880ddf4fbb4bf03a5dbb0f61e826e88cb647b31756c82c62af22df475ef9697f9ea98de5b8f440c5a8de7a7402d9cc3501a93e4", 0x35, 0x7fffffff}], 0x10000, &(0x7f0000000240)={[{@rodir}], [{@fsname}, {@dont_appraise}, {@seclabel}]}) 20:01:27 executing program 4: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}]}, 0x34}, 0x1, 0x0, 0x0, 0x50}, 0x4000) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:27 executing program 0: socket$inet(0x2, 0x2, 0x1) (fail_nth: 6) 20:01:27 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0x20, 0x40) ioctl$EVIOCGREP(0xffffffffffffffff, 0x80084503, &(0x7f0000000180)=""/68) syz_io_uring_setup(0x6b70, &(0x7f0000000000)={0x0, 0x85dd, 0xa, 0x3, 0x17a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 20:01:27 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) (fail_nth: 2) [ 3251.378163][ T1370] R13: 00007fff392fc41f R14: 00007f7ec7d02300 R15: 0000000000022000 20:01:27 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) ioctl$BLKREPORTZONE(r1, 0xc0101282, &(0x7f0000000280)=ANY=[@ANYBLOB="2300000000000000040000000000000000010000000000000900e9c1776d0000000000020000000000000000000000000000000000000000000000000000000000000000000000000009000000000000001f00000000000000510600000000000008068000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000007000000000000007322000000000000015906020000000000000000000000000000000000000000000000000000000000000000000000009f540000000000000100000000000000310400000000000008090307000000000000000000000000000000000000000000000028e151e8010649272e00"/277]) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:27 executing program 0: socket$inet(0x2, 0x2, 0x1) 20:01:27 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101440, 0x4) sched_getaffinity(0x0, 0x8, &(0x7f0000000080)) mount$cgroup2(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000), 0x200500b, 0x0) [ 3251.446585][ T1387] FAULT_INJECTION: forcing a failure. [ 3251.446585][ T1387] name failslab, interval 1, probability 0, space 0, times 0 [ 3251.484958][ T1389] FAULT_INJECTION: forcing a failure. 20:01:27 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) socketpair(0x8, 0xa, 0x105, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = getuid() mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x428, &(0x7f0000000200)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_any}], [{@smackfsfloor}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@subj_role={'subj_role', 0x3d, '#&\xd3'}}, {@euid_eq={'euid', 0x3d, r1}}, {@dont_measure}, {@appraise_type}]}}) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) getresuid(&(0x7f00000003c0), &(0x7f0000000400)=0x0, &(0x7f0000000440)) syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000380)=[{&(0x7f00000002c0)="b3f2098117461fdc5d7143fd1007293edc7e5ec07321e3076cf55a0a0f4d05b486d4e82f74b5bddf96a22099b17efb66f5ae9ceac7ddecded16863fd1d8860f64e5a0f2e13723005551393df30920f04086ca4b3bbabf3985c94209a4e1611d5db631031d8ef6bb3dbdc23c070b11d74f1f6050b2bf5e2c5bce1531c981d28d35e1d03fbf60aa976bf764263d2f4f525f6943b64c9dee43f233ea2bb092fe3d8454d12e067580d71810a3f", 0xab, 0xfffffffffffffffe}], 0x3000, &(0x7f0000000480)={[{@utf8}, {@uni_xlateno}, {@fat=@time_offset={'time_offset', 0x3d, 0x378}}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@iocharset={'iocharset', 0x3d, 'cp874'}}, {@shortname_lower}, {@shortname_win95}], [{@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@euid_lt={'euid<', r2}}, {@subj_user={'subj_user', 0x3d, '#&\xd3'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@euid_lt={'euid<', r1}}, {@subj_type={'subj_type', 0x3d, 'dont_measure'}}]}) [ 3251.484958][ T1389] name failslab, interval 1, probability 0, space 0, times 0 [ 3251.492804][ T1387] CPU: 0 PID: 1387 Comm: syz-executor.3 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3251.509151][ T1387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3251.519193][ T1387] Call Trace: [ 3251.522469][ T1387] dump_stack+0x18e/0x1de [ 3251.526787][ T1387] should_fail+0x5d8/0x740 [ 3251.531184][ T1387] ? unwind_get_return_address+0x48/0x80 [ 3251.536792][ T1387] ? __alloc_file+0x26/0x380 [ 3251.541401][ T1387] should_failslab+0x5/0x20 [ 3251.545894][ T1387] kmem_cache_alloc+0x36/0x290 [ 3251.550646][ T1387] __alloc_file+0x26/0x380 [ 3251.555046][ T1387] ? alloc_empty_file+0x49/0x1b0 [ 3251.559965][ T1387] alloc_empty_file+0xa9/0x1b0 [ 3251.564709][ T1387] path_openat+0xa2/0x3a50 [ 3251.569106][ T1387] ? kmem_cache_alloc+0x115/0x290 [ 3251.574205][ T1387] ? getname_flags+0xba/0x640 [ 3251.578863][ T1387] ? do_sys_open+0x2a0/0x6d0 [ 3251.583450][ T1387] ? do_syscall_64+0xcb/0x1e0 [ 3251.588103][ T1387] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3251.594176][ T1387] do_filp_open+0x19a/0x3a0 [ 3251.598677][ T1387] do_sys_open+0x2e2/0x6d0 [ 3251.603083][ T1387] ? check_preemption_disabled+0xde/0x2c0 [ 3251.608783][ T1387] do_syscall_64+0xcb/0x1e0 [ 3251.613272][ T1387] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3251.619143][ T1387] RIP: 0033:0x7f7ec9f8ba39 [ 3251.623536][ T1387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3251.643205][ T1387] RSP: 002b:00007f7ec7d02188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3251.651597][ T1387] RAX: ffffffffffffffda RBX: 00007f7eca08ef60 RCX: 00007f7ec9f8ba39 [ 3251.659544][ T1387] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c [ 3251.667490][ T1387] RBP: 00007f7ec7d021d0 R08: 0000000000000000 R09: 0000000000000000 [ 3251.675437][ T1387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3251.683384][ T1387] R13: 00007fff392fc41f R14: 00007f7ec7d02300 R15: 0000000000022000 [ 3251.691343][ T1389] CPU: 1 PID: 1389 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3251.702861][ T1389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3251.712899][ T1389] Call Trace: [ 3251.716179][ T1389] dump_stack+0x18e/0x1de [ 3251.720500][ T1389] should_fail+0x5d8/0x740 [ 3251.724907][ T1389] ? security_inode_alloc+0x32/0x1d0 [ 3251.730180][ T1389] should_failslab+0x5/0x20 [ 3251.734673][ T1389] kmem_cache_alloc+0x36/0x290 [ 3251.739426][ T1389] security_inode_alloc+0x32/0x1d0 [ 3251.744531][ T1389] inode_init_always+0x387/0x810 [ 3251.749463][ T1389] new_inode_pseudo+0x90/0x220 [ 3251.754387][ T1389] new_inode+0x25/0x1d0 [ 3251.758529][ T1389] ? start_creating+0x183/0x270 [ 3251.763373][ T1389] __debugfs_create_file+0xb5/0x460 [ 3251.768557][ T1389] ? debugfs_create_dir+0x302/0x3f0 [ 3251.773744][ T1389] bdi_register_va+0x274/0x5e0 [ 3251.778494][ T1389] bdi_register+0x80/0xa0 [ 3251.782809][ T1389] ? __device_add_disk+0x50a/0x1220 [ 3251.787993][ T1389] bdi_register_owner+0x56/0xf0 [ 3251.792845][ T1389] __device_add_disk+0x583/0x1220 [ 3251.797856][ T1389] loop_add+0x554/0x710 [ 3251.802005][ T1389] loop_control_ioctl+0x468/0x680 [ 3251.807024][ T1389] ? xor_init+0x60/0x60 [ 3251.811169][ T1389] do_vfs_ioctl+0x6fb/0x15b0 [ 3251.815784][ T1389] __x64_sys_ioctl+0xd4/0x110 [ 3251.820451][ T1389] do_syscall_64+0xcb/0x1e0 [ 3251.824944][ T1389] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3251.830823][ T1389] RIP: 0033:0x7f145855da39 [ 3251.835222][ T1389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3251.854980][ T1389] RSP: 002b:00007f14562b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3251.863379][ T1389] RAX: ffffffffffffffda RBX: 00007f1458661020 RCX: 00007f145855da39 [ 3251.871366][ T1389] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3251.879327][ T1389] RBP: 00007f14562b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 3251.887283][ T1389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:01:28 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000080)=""/145) ioctl$UI_SET_FFBIT(0xffffffffffffffff, 0x4004556b, 0x55) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:28 executing program 0: socket$inet(0x3, 0x2, 0x1) 20:01:28 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 78) 20:01:28 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) fspick(r0, &(0x7f00000000c0)='./file0\x00', 0x0) 20:01:28 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x9, 0x3, 0x2a0, 0x108, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x208, 0xffffffff, 0xffffffff, 0x208, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ip={@dev={0xac, 0x14, 0x14, 0x29}, @empty, 0xffffffff, 0xffffffff, 'xfrm0\x00', 'sit0\x00', {}, {0xff}, 0x11, 0x1, 0x8}, 0x0, 0xc0, 0x108, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xc}}, @inet=@rpfilter={{0x28}, {0x4}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x8afe, 0x2, 0x1, 'netbios-ns\x00', {0x8}}}}, {{@uncond, 0x0, 0x98, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x1000, 0x600000, 0x3, 'pptp\x00', 'syz0\x00', {0x1}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x300) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) 20:01:28 executing program 0: socket$inet(0x5, 0x2, 0x1) [ 3251.895239][ T1389] R13: 00007fff36c8ea3f R14: 00007f14562b3300 R15: 0000000000022000 [ 3251.905208][ T1389] debugfs: out of free dentries, can not create file 'stats' 20:01:28 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) (fail_nth: 3) 20:01:28 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r0, 0x0, 0x0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x9, 0x0, 0x800, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xafc}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="528c6992430e"}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x801) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:28 executing program 0: socket$inet(0x6, 0x2, 0x1) 20:01:28 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan1\x00'}) r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) ioctl$EVIOCGREP(r1, 0x80004509, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x20240, 0x62d53b5597538f1d) ioctl$ION_IOC_HEAP_QUERY(r2, 0xc0184908, &(0x7f0000000200)={0x34, 0x0, &(0x7f00000001c0)}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x222020, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_user}, {@access_user}, {@fscache}], [{@appraise}]}}) 20:01:28 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f00000000c0)={0x80000001, 0x6, 0xe1d, 0x5ffd}) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:28 executing program 0: socket$inet(0xa, 0x2, 0x1) [ 3252.018906][ T1418] FAULT_INJECTION: forcing a failure. [ 3252.018906][ T1418] name failslab, interval 1, probability 0, space 0, times 0 [ 3252.041330][ T1414] FAULT_INJECTION: forcing a failure. [ 3252.041330][ T1414] name fail_page_alloc, interval 1, probability 0, space 0, times 0 20:01:28 executing program 0: socket$inet(0xf, 0x2, 0x1) 20:01:28 executing program 0: socket$inet(0x10, 0x2, 0x1) [ 3252.058514][ T1418] CPU: 0 PID: 1418 Comm: syz-executor.3 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3252.070044][ T1418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3252.080083][ T1418] Call Trace: [ 3252.083367][ T1418] dump_stack+0x18e/0x1de [ 3252.087693][ T1418] should_fail+0x5d8/0x740 [ 3252.092093][ T1418] ? security_file_alloc+0x32/0x1f0 [ 3252.097272][ T1418] should_failslab+0x5/0x20 [ 3252.101759][ T1418] kmem_cache_alloc+0x36/0x290 [ 3252.106511][ T1418] security_file_alloc+0x32/0x1f0 [ 3252.111523][ T1418] __alloc_file+0xba/0x380 [ 3252.115926][ T1418] alloc_empty_file+0xa9/0x1b0 [ 3252.120669][ T1418] path_openat+0xa2/0x3a50 [ 3252.125071][ T1418] ? kmem_cache_alloc+0x115/0x290 [ 3252.130081][ T1418] ? getname_flags+0xba/0x640 [ 3252.134741][ T1418] ? do_sys_open+0x2a0/0x6d0 [ 3252.139312][ T1418] ? do_syscall_64+0xcb/0x1e0 [ 3252.143966][ T1418] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3252.150013][ T1418] do_filp_open+0x19a/0x3a0 [ 3252.154518][ T1418] do_sys_open+0x2e2/0x6d0 [ 3252.158913][ T1418] ? check_preemption_disabled+0xde/0x2c0 [ 3252.164613][ T1418] do_syscall_64+0xcb/0x1e0 [ 3252.169093][ T1418] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3252.174959][ T1418] RIP: 0033:0x7f7ec9f8ba39 [ 3252.179363][ T1418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3252.198947][ T1418] RSP: 002b:00007f7ec7d02188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3252.207678][ T1418] RAX: ffffffffffffffda RBX: 00007f7eca08ef60 RCX: 00007f7ec9f8ba39 [ 3252.215623][ T1418] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c [ 3252.223574][ T1418] RBP: 00007f7ec7d021d0 R08: 0000000000000000 R09: 0000000000000000 [ 3252.231519][ T1418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3252.239475][ T1418] R13: 00007fff392fc41f R14: 00007f7ec7d02300 R15: 0000000000022000 [ 3252.247429][ T1414] CPU: 1 PID: 1414 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3252.258952][ T1414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3252.268992][ T1414] Call Trace: [ 3252.272271][ T1414] dump_stack+0x18e/0x1de [ 3252.276588][ T1414] should_fail+0x5d8/0x740 [ 3252.280996][ T1414] __alloc_pages_nodemask+0x12e/0x740 [ 3252.286355][ T1414] __get_free_pages+0xa/0x30 [ 3252.290931][ T1414] inode_doinit_with_dentry+0x8d4/0x1170 [ 3252.296553][ T1414] security_d_instantiate+0xa5/0x100 [ 3252.301832][ T1414] d_instantiate+0x51/0x90 [ 3252.306234][ T1414] __debugfs_create_file+0x256/0x460 [ 3252.311848][ T1414] bdi_register_va+0x274/0x5e0 [ 3252.316595][ T1414] bdi_register+0x80/0xa0 [ 3252.320910][ T1414] ? __device_add_disk+0x50a/0x1220 [ 3252.326095][ T1414] bdi_register_owner+0x56/0xf0 [ 3252.330932][ T1414] __device_add_disk+0x583/0x1220 [ 3252.335941][ T1414] loop_add+0x554/0x710 [ 3252.340081][ T1414] loop_control_ioctl+0x468/0x680 [ 3252.345092][ T1414] ? xor_init+0x60/0x60 [ 3252.349234][ T1414] do_vfs_ioctl+0x6fb/0x15b0 [ 3252.353818][ T1414] __x64_sys_ioctl+0xd4/0x110 [ 3252.358479][ T1414] do_syscall_64+0xcb/0x1e0 [ 3252.363063][ T1414] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3252.368939][ T1414] RIP: 0033:0x7f145855da39 [ 3252.373335][ T1414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3252.393121][ T1414] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3252.401516][ T1414] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3252.409475][ T1414] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3252.417429][ T1414] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3252.425386][ T1414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3252.433339][ T1414] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:28 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 79) 20:01:28 executing program 0: socket$inet(0x11, 0x2, 0x1) 20:01:28 executing program 5: syz_io_uring_setup(0xdce, &(0x7f00000000c0)={0x0, 0xba10, 0x8, 0x3, 0x75}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000180)) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) r2 = openat$ion(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000240)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x4, &(0x7f0000000200)=[r1, r2], 0x2}, 0x7b) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:28 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) (fail_nth: 4) 20:01:28 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:28 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r2, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_O_TEI={0x8}, @GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}, @GTPA_NET_NS_FD={0x8}, @GTPA_VERSION={0x8}, @GTPA_FLOW={0x6, 0x6, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0x4801) ioctl$EVIOCGREP(r0, 0x80004509, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00'}) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1800003965e11bd695881c4c00", @ANYRES16=r3, @ANYBLOB="000327bd7000fbdbdf250300000004000500"], 0x18}, 0x1, 0x0, 0x0, 0xcc3963959e8fe00a}, 0x9) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x14900080}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, 0x0, 0x20, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x3c}}, 0x40) 20:01:28 executing program 0: socket$inet(0x2c, 0x2, 0x1) [ 3252.531099][ T1444] FAULT_INJECTION: forcing a failure. [ 3252.531099][ T1444] name failslab, interval 1, probability 0, space 0, times 0 [ 3252.560964][ T1444] CPU: 1 PID: 1444 Comm: syz-executor.3 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3252.572506][ T1444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3252.582550][ T1444] Call Trace: [ 3252.585833][ T1444] dump_stack+0x18e/0x1de [ 3252.590163][ T1444] should_fail+0x5d8/0x740 [ 3252.594570][ T1444] ? avc_has_perm+0xfd/0x1c0 [ 3252.599151][ T1444] ? configfs_new_dirent+0x59/0x360 [ 3252.604339][ T1444] should_failslab+0x5/0x20 [ 3252.608881][ T1444] kmem_cache_alloc+0x36/0x290 [ 3252.613633][ T1444] configfs_new_dirent+0x59/0x360 [ 3252.618643][ T1444] ? _raw_spin_lock+0x6c/0x170 [ 3252.623401][ T1444] configfs_dir_open+0xd5/0x1a0 [ 3252.628247][ T1444] ? configfs_readdir+0x8d0/0x8d0 [ 3252.633260][ T1444] do_dentry_open+0x7e6/0xef0 [ 3252.637928][ T1444] path_openat+0xfed/0x3a50 [ 3252.642418][ T1444] ? kmem_cache_alloc+0x115/0x290 [ 3252.647428][ T1444] ? do_sys_open+0x2a0/0x6d0 [ 3252.652007][ T1444] do_filp_open+0x19a/0x3a0 [ 3252.656507][ T1444] do_sys_open+0x2e2/0x6d0 [ 3252.660917][ T1444] ? check_preemption_disabled+0xde/0x2c0 [ 3252.666620][ T1444] do_syscall_64+0xcb/0x1e0 [ 3252.671106][ T1444] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3252.676983][ T1444] RIP: 0033:0x7f7ec9f8ba39 [ 3252.681386][ T1444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3252.700978][ T1444] RSP: 002b:00007f7ec7d02188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3252.709479][ T1444] RAX: ffffffffffffffda RBX: 00007f7eca08ef60 RCX: 00007f7ec9f8ba39 [ 3252.717446][ T1444] RDX: 0000000000000000 RSI: 0000000020000180 RDI: ffffffffffffff9c 20:01:29 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/ram8', 0x402401, 0x8) recvmsg$unix(r0, 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=@security={'security\x00', 0xe, 0x4, 0x420, 0xffffffff, 0x0, 0x100, 0x268, 0xffffffff, 0xffffffff, 0x388, 0x388, 0x388, 0xffffffff, 0x4, &(0x7f0000000000), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@inet=@iprange={{0x68}, {@ipv6=@mcast2, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, @ipv4=@empty, @ipv4=@remote, 0x23}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x401, 0x8a}}}, {{@uncond, 0x0, 0x108, 0x168, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0x6, 0x0, 0x1}}, @common=@unspec=@ipvs={{0x48}, {@ipv6=@mcast1, [0xffffff00, 0x0, 0xffffffff, 0xff000000], 0x4e23, 0x0, 0x2, 0x4e24, 0x10, 0x20}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}, 0x1, 0x4, [0x6, 0x2f, 0x40, 0x2d, 0x16, 0x2d, 0x3d, 0x1c, 0x23, 0x3e, 0x3f, 0x37, 0x1b, 0x1c, 0x2c, 0x28], 0x2, 0xbb36, 0x7}}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@icmp={{0x28}, {0x0, "4c15"}}, @common=@icmp={{0x28}, {0x10, "113f"}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x5, 0x0, 0x5, 0x2, 0x4, 0x3], 0x5}, {0x2, [0x2, 0x1, 0x2, 0x5, 0x4], 0x6}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x480) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000002100)={&(0x7f0000000680)=@abs, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001bc0)=""/186, 0xba}, {&(0x7f0000001c80)=""/255, 0xff}, {&(0x7f0000001d80)=""/89, 0x59}, {&(0x7f0000001e00)=""/148, 0x94}, {&(0x7f0000001ec0)=""/177, 0xb1}, {&(0x7f0000001f80)=""/29, 0x1d}], 0x6, &(0x7f00000000c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x1) recvmsg$unix(r2, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000002280)=[{&(0x7f0000002140)=""/129, 0x81}, {&(0x7f0000002200)=""/73, 0x49}], 0x2, &(0x7f00000022c0)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}, 0x2020) 20:01:29 executing program 2: socket$inet(0x11, 0x2, 0x1) 20:01:29 executing program 0: socket$inet(0x63, 0x2, 0x1) 20:01:29 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xe0041, 0x1c) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:29 executing program 2: socket$inet(0x11, 0x2, 0x1) [ 3252.725410][ T1444] RBP: 00007f7ec7d021d0 R08: 0000000000000000 R09: 0000000000000000 [ 3252.733375][ T1444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3252.741532][ T1444] R13: 00007fff392fc41f R14: 00007f7ec7d02300 R15: 0000000000022000 [ 3252.751909][ T1447] FAULT_INJECTION: forcing a failure. [ 3252.751909][ T1447] name failslab, interval 1, probability 0, space 0, times 0 [ 3252.778125][ T1447] CPU: 0 PID: 1447 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3252.789665][ T1447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3252.799717][ T1447] Call Trace: [ 3252.803001][ T1447] dump_stack+0x18e/0x1de [ 3252.807321][ T1447] should_fail+0x5d8/0x740 [ 3252.811725][ T1447] ? kobj_map+0x70/0x650 [ 3252.815957][ T1447] should_failslab+0x5/0x20 [ 3252.820451][ T1447] __kmalloc+0x5f/0x2f0 [ 3252.824592][ T1447] kobj_map+0x70/0x650 [ 3252.828650][ T1447] ? exact_match+0x10/0x10 [ 3252.833050][ T1447] ? refcount_inc_checked+0x1a/0x50 [ 3252.838234][ T1447] ? disk_check_events+0x580/0x580 [ 3252.843331][ T1447] __device_add_disk+0x5ff/0x1220 [ 3252.848340][ T1447] loop_add+0x554/0x710 [ 3252.852581][ T1447] loop_control_ioctl+0x468/0x680 [ 3252.857588][ T1447] ? xor_init+0x60/0x60 [ 3252.861726][ T1447] do_vfs_ioctl+0x6fb/0x15b0 [ 3252.866306][ T1447] __x64_sys_ioctl+0xd4/0x110 [ 3252.870973][ T1447] do_syscall_64+0xcb/0x1e0 [ 3252.875467][ T1447] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3252.881343][ T1447] RIP: 0033:0x7f145855da39 [ 3252.885745][ T1447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3252.905767][ T1447] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3252.914167][ T1447] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3252.922127][ T1447] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3252.930097][ T1447] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3252.938048][ T1447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3252.946004][ T1447] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 20:01:29 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 80) 20:01:29 executing program 0: socket$inet(0x2, 0x3, 0x1) 20:01:29 executing program 2: socket$inet(0x11, 0x2, 0x1) 20:01:29 executing program 4: r0 = epoll_create1(0x0) epoll_wait(r0, &(0x7f0000000000)=[{}, {}], 0x2, 0x9) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101040, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x1010, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x130b, &(0x7f0000000080)={0x0, 0x26fb, 0x1, 0x8, 0xa4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r3 = syz_mount_image$f2fs(&(0x7f0000000240), &(0x7f0000000280)='./file0/file0\x00', 0x2, 0x4, &(0x7f00000005c0)=[{&(0x7f00000002c0)="299e6194f21a4ccf5e79f09a3abcd8a930bffbbddc2729ea99b9f026b2585a858eb1488d4479a4dda84e73af3a0e7ec4fa255d68c43ab14ca15563de09eeea0748f54ad46099075727a033af42a8ff03066cd8a8debcd304de4d44d1f1f6f5e9212b2e966dbc98235c92f281c1f3182efd97458269135a2984cae0782cc0d2828e8ac8f775b06a038e9de688cf6a733a2f387ce568c7ba69fd51c2218c03c1f4491f44cf4db14b428327d716f757d39d9ba15ef988715eff84a9e6f07ec53899c2a8391cf084096bcdbf50cc6ab2e667eb3b999d40bc43aff5d12c4dcf24", 0xde, 0x80}, {&(0x7f00000003c0)="4e5db2ebc6c82c04cfb096366649200f7dd3c82143ce747a2af30c27858958a753217562aadbdac9a6c5b900dda0474e081cd27f52a58f3fc1317a05cbd9e38ef2fe37cd532306992c589280433332fb1cdda06ada92cad2b77c562b6d7c4056530545010c9438ccfcc75993c356abf953649a6732c26d035aa02e4b6046470d2b0316735811b2ee87522914dc3db48b7a0b", 0x92, 0xffffffffffffffc1}, {&(0x7f0000000480)="fa8c3a5ca79ea5151424780beda3ff9d3d859ffbde4321a08b149d98b0d4b2b7a94df35bc2226a1e4f", 0x29, 0x1}, {&(0x7f00000004c0)="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", 0xff, 0x8}], 0x2264000, &(0x7f0000000640)={[{@jqfmt_vfsold}, {@noacl}, {@alloc_mode_def}, {@grpjquota={'grpjquota', 0x3d, '{'}}], [{@dont_appraise}, {@subj_user={'subj_user', 0x3d, ']}-[@['}}, {@dont_measure}, {@appraise}]}) fspick(r3, &(0x7f00000006c0)='./file0\x00', 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x800) 20:01:29 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) (fail_nth: 5) 20:01:29 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/class/msr', 0x521081, 0x20) recvmsg$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_WRITEV={0x2, 0x1, 0x4004, @fd_index=0x1, 0x1, &(0x7f00000003c0)=[{&(0x7f0000000140)="5d6cdc58490ced3715474d4d561d4fb65f1d446ee6bf7a6a36f94d1535f529cc9e09e099fac50b24052d02372655606bdad6e0f12ddbaef948e3c110051367cda52574fdf782255c6960848aab54415596c558c57644973a42ac0f08ecc23eaa641b65e5e2e6afcf3be3d7b60dc3286ae751414a7959f0ab1b0f6052f2c1d6b74ed01e3ef49b41", 0x87}, {&(0x7f0000000200)="f494199528cb2abe546d6960946d149e9ffc13f40e9634527dfd3a84dc6643e44dacd1d88891c09cf69c8889745fff3c306d6b93a56aea85b88c3be8aa1cf35a4efa705047ee4e78688b6da208d65ee041", 0x51}, {&(0x7f0000000280)="e3f2c05742307fdac8702ad5ecee4a754b19191742ecf67fe5047c9a0698e3f797f3803aa3d8d75a76f80aff272b38b00b1d3d7179f9def39f9aec6a90eccc3e364dc97b9a1284e15a94f597b483e5905d555cf484036f32ae4dbc042af82a6ba1ab83960bf2e6", 0x67}, {&(0x7f0000000300)="6356349b7ad53544ee198dd5e97136757e85ec522eeabcda77314146d1bc643f8735268edb18e2fc88a90d9b14a6aa0ccddfd00118f6f15cb9fcb8405c01a1074d0874d4335e5a13da90cf59a1e0a9eefb1adaefb8f21f4877f58727c3d7dac657afca59a5be98c9916814bd1554f0a6df54496e965851554c57a051f9db52073314276ad8a6058017d18eca86168e", 0x8f}, {&(0x7f00000000c0)="6bc193357577194daddca47ba02bfbf08251680c9e79e2bb", 0x18}], 0x5, 0x9, 0x1}, 0x80000000) 20:01:29 executing program 2: socket$inet(0x11, 0x0, 0x1) 20:01:29 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x0, 0x0) 20:01:29 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000180), 0x9, 0x20000) ioctl$IOC_PR_CLEAR(r0, 0x401070cd, &(0x7f00000001c0)={0x4}) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x3) ioctl$UI_SET_PROPBIT(0xffffffffffffffff, 0x4004556e, 0xa) r2 = openat(r1, &(0x7f00000000c0)='./file1\x00', 0x800, 0x30) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r2}, 0x8) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000340)={'batadv_slave_0\x00'}) ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x1, 0x1d, 0x1, "9ed2cea9b29c9db1d18ac77838f6c0b00b1153f272ebfe8afd47d78f9a042ac350ca827195b64eb9a081a7ca6a9691cf250960e11d32ed5830ebe15941758a6c", "6e87b464c84162f725e5623e8bd4a43f9a5e401faa934e1edf1a19c6247739123cbb983bd2d27000d4bfe74f168cbbd09a995299f592cffde0f1a7f191629d4e", "5bb8234c231b7c355fcdfe1b4cf1d4768b689a7786c237e4208fb1640fb6fbf6", [0x7, 0x5]}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_snapshot', 0x0, 0x0) recvmsg$unix(r4, 0x0, 0x0) ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x11) ioctl$UI_END_FF_UPLOAD(r2, 0x406855c9, &(0x7f0000000100)={0xf, 0xd972, {0x53, 0xff, 0x3, {0x7fff, 0x81}, {0x7fff, 0x9}, @ramp={0x7, 0x8, {0x9, 0x5, 0x6, 0x7ff}}}, {0x57, 0x8, 0x2, {0x827a, 0x6b}, {0x7e, 0x4}, @const={0x95ad, {0x6, 0x7, 0x154, 0x6}}}}) 20:01:29 executing program 0: socket$inet(0x2, 0x5, 0x1) 20:01:29 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x2, 0x0) 20:01:29 executing program 2: socket$inet(0x11, 0x0, 0x1) [ 3253.136651][ T1476] FAULT_INJECTION: forcing a failure. [ 3253.136651][ T1476] name failslab, interval 1, probability 0, space 0, times 0 [ 3253.161445][ T1476] CPU: 0 PID: 1476 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3253.172993][ T1476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3253.183063][ T1476] Call Trace: [ 3253.186352][ T1476] dump_stack+0x18e/0x1de [ 3253.190673][ T1476] should_fail+0x5d8/0x740 [ 3253.195087][ T1476] ? kobject_set_name_vargs+0x5d/0x110 [ 3253.200620][ T1476] should_failslab+0x5/0x20 [ 3253.205266][ T1476] __kmalloc_track_caller+0x5d/0x2e0 [ 3253.210568][ T1476] kstrdup_const+0x51/0x90 [ 3253.214976][ T1476] kobject_set_name_vargs+0x5d/0x110 [ 3253.220257][ T1476] dev_set_name+0x80/0xa0 [ 3253.224584][ T1476] ? kobj_map+0x61e/0x650 [ 3253.228928][ T1476] __device_add_disk+0x678/0x1220 [ 3253.234084][ T1476] loop_add+0x554/0x710 [ 3253.238230][ T1476] loop_control_ioctl+0x468/0x680 [ 3253.243242][ T1476] ? xor_init+0x60/0x60 [ 3253.247390][ T1476] do_vfs_ioctl+0x6fb/0x15b0 [ 3253.251979][ T1476] __x64_sys_ioctl+0xd4/0x110 [ 3253.256656][ T1476] do_syscall_64+0xcb/0x1e0 [ 3253.261158][ T1476] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3253.267037][ T1476] RIP: 0033:0x7f145855da39 [ 3253.271439][ T1476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3253.291028][ T1476] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3253.299428][ T1476] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3253.307386][ T1476] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3253.315363][ T1476] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3253.323317][ T1476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3253.331273][ T1476] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3253.344115][ T1476] kobject_add_internal failed for queue (error: -2 parent: (null)) [ 3253.352162][ T1476] ------------[ cut here ]------------ [ 3253.357623][ T1476] WARNING: CPU: 0 PID: 1476 at fs/sysfs/file.c:328 sysfs_create_files+0x1ef/0x380 [ 3253.366796][ T1476] Modules linked in: [ 3253.370682][ T1476] CPU: 0 PID: 1476 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3253.382196][ T1476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3253.392252][ T1476] RIP: 0010:sysfs_create_files+0x1ef/0x380 [ 3253.398041][ T1476] Code: 85 ed 0f 84 a4 00 00 00 e8 be 96 ae ff 89 eb 48 8b 6c 24 10 4c 8b 7c 24 28 e9 ad fe ff ff e8 a8 96 ae ff eb 05 e8 a1 96 ae ff <0f> 0b 41 bc ea ff ff ff eb 8d 3c 03 0f 8f a1 fe ff ff 48 8d 7c 24 [ 3253.417653][ T1476] RSP: 0018:ffff8881e0aa7c68 EFLAGS: 00010246 [ 3253.423729][ T1476] RAX: ffffffff81b238bf RBX: 0000000000000000 RCX: 0000000000040000 [ 3253.431684][ T1476] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3253.439639][ T1476] RBP: ffff8881ca7b30a0 R08: ffffffff821b288c R09: ffffed103c154f8b [ 3253.447595][ T1476] R10: ffffed103c154f8b R11: 0000000000000000 R12: dffffc0000000000 [ 3253.455558][ T1476] R13: ffffffff84e296c0 R14: dffffc0000000000 R15: ffff8881ca7b3070 [ 3253.463519][ T1476] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3253.472432][ T1476] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3253.479000][ T1476] CR2: 0000555556ce9b38 CR3: 00000001ed1ca000 CR4: 00000000003406f0 [ 3253.486960][ T1476] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3253.494918][ T1476] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3253.502873][ T1476] Call Trace: [ 3253.506163][ T1476] __device_add_disk+0xced/0x1220 [ 3253.511180][ T1476] loop_add+0x554/0x710 [ 3253.515319][ T1476] loop_control_ioctl+0x468/0x680 [ 3253.520330][ T1476] ? xor_init+0x60/0x60 [ 3253.524469][ T1476] do_vfs_ioctl+0x6fb/0x15b0 [ 3253.529047][ T1476] __x64_sys_ioctl+0xd4/0x110 [ 3253.533716][ T1476] do_syscall_64+0xcb/0x1e0 [ 3253.538205][ T1476] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3253.544077][ T1476] RIP: 0033:0x7f145855da39 [ 3253.548478][ T1476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3253.568163][ T1476] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3253.576560][ T1476] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3253.584524][ T1476] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3253.592482][ T1476] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 [ 3253.600957][ T1476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3253.608922][ T1476] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3253.616890][ T1476] ---[ end trace 7aed1b66616f08d1 ]--- [ 3253.624641][ T1476] ------------[ cut here ]------------ [ 3253.630155][ T1476] kernfs: can not remove 'events', no directory [ 3253.636548][ T1476] WARNING: CPU: 0 PID: 1476 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90 [ 3253.646153][ T1476] Modules linked in: [ 3253.650560][ T1476] CPU: 0 PID: 1476 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3253.662337][ T1476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3253.672390][ T1476] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 3253.678528][ T1476] Code: 48 89 c3 e8 61 f2 ae ff 48 89 df e8 b9 f0 ff ff 31 db eb 29 e8 50 f2 ae ff 48 c7 c7 40 c3 cb 84 4c 89 fe 31 c0 e8 1f 79 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 f2 ae ff bb fe ff ff ff 48 c7 c7 [ 3253.698130][ T1476] RSP: 0018:ffff8881e0aa7c48 EFLAGS: 00010246 [ 3253.704184][ T1476] RAX: 95b0e62c90a73a00 RBX: 0000000000000000 RCX: 0000000000040000 [ 3253.712144][ T1476] RDX: ffffc9000bba1000 RSI: 000000000003ffff RDI: 0000000000040000 [ 3253.720107][ T1476] RBP: ffffffff84e296c0 R08: ffffffff814b2a4c R09: ffffed103edc3eb2 [ 3253.728505][ T1476] R10: ffffed103edc3eb2 R11: 0000000000000000 R12: 00000000ffffffea [ 3253.736473][ T1476] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff84e29780 [ 3253.744474][ T1476] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3253.753383][ T1476] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3253.759954][ T1476] CR2: 0000555556ce9b38 CR3: 00000001ed1ca000 CR4: 00000000003406f0 [ 3253.768005][ T1476] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3253.775962][ T1476] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3253.783915][ T1476] Call Trace: [ 3253.787196][ T1476] sysfs_create_files+0x321/0x380 [ 3253.792215][ T1476] __device_add_disk+0xced/0x1220 [ 3253.797238][ T1476] loop_add+0x554/0x710 [ 3253.801386][ T1476] loop_control_ioctl+0x468/0x680 [ 3253.806400][ T1476] ? xor_init+0x60/0x60 [ 3253.810542][ T1476] do_vfs_ioctl+0x6fb/0x15b0 [ 3253.815123][ T1476] __x64_sys_ioctl+0xd4/0x110 [ 3253.819787][ T1476] do_syscall_64+0xcb/0x1e0 [ 3253.824276][ T1476] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3253.830150][ T1476] RIP: 0033:0x7f145855da39 [ 3253.834557][ T1476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3253.854151][ T1476] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3253.862552][ T1476] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3253.870510][ T1476] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003 [ 3253.878726][ T1476] RBP: 00007f14562d41d0 R08: 0000000000000000 R09: 0000000000000000 20:01:30 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 20:01:30 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x3, 0x0) 20:01:30 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x133240, 0x0) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:30 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) fspick(r0, &(0x7f00000000c0)='./file0\x00', 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:01:30 executing program 0: socket$inet(0x2, 0x6, 0x1) 20:01:30 executing program 2: socket$inet(0x11, 0x0, 0x1) 20:01:30 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x4, 0x0) [ 3253.886685][ T1476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3253.894647][ T1476] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3253.902609][ T1476] ---[ end trace 7aed1b66616f08d2 ]--- [ 3253.913331][ T1476] loop0: failed to create sysfs files for events 20:01:30 executing program 0: socket$inet(0x2, 0xa, 0x1) 20:01:30 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x131840, 0x80) mount$cgroup2(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 20:01:30 executing program 2: socket$inet(0x11, 0x2, 0x0) 20:01:30 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/config', 0x300, 0x0) 20:01:30 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181440, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x10001, 0x8a) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x182001a, 0x0) syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x81, 0x8, &(0x7f0000001500)=[{&(0x7f0000000140)="f8395cf729f8ae8bf13fde2d708749a747384bd8069fc215583a529153e95d879f9af73c214b3691455be762bfeea27baa0f05707fbcddb39a2f177bee8a00b8db45a7f80b4f456add3f392857e20edf40848026f259a364d0e25a2440d438ed90b2444e7db2ed6c19350020e46384efffe7387dad42c142d89561a911bbd71198c58a4e5c5213f2340a02c9f316badbdf04f7b02c71a5c53fbac066371072f0b4b2434149fc46d4c04111330b4708f125223ce9b1d87ed6c8640acb49c0c9b2f80e737d7984d4a9d3230271fe9dd4a42290240cd9aff5811118185184014d8843a6b929d006ee099bc9de004cf7ea", 0xef, 0x7e0}, {&(0x7f0000000240)="aa8c8002", 0x4, 0x7cc}, {&(0x7f0000000280)="a4b4d0b62f9bb02a8fab23c4b4b4e5e7f3b33e780e955f07471298cf15a6e4a4ccc4d198ad59783421ccc85c8e1f8d09c0cac13d293c53eb4f872e8e3a7d9db5523a61a9d760ee7247d62ea9e0d4a6a281246b544f992488a090c398729b2e6236b2", 0x62, 0xffff}, {&(0x7f0000000300)="94091bff221ebd79140997b14bac136e880287d420697310b5e54bea4fac4c1d79c7054eaa3d07daa7affb8a090bb1a38fc73d12891a4769f9f1618df01f4b7058dd2b30ca80348726ecd80de38c77303354f016b02803c6d4332cb6e6bdabd03c17a9888f804b95e47202156322d289293f2baf2292de47fece70b6819ddcdc274fdfd39022611838da657fcd7eaf19bdb1bab1695b421202", 0x99, 0x100}, {&(0x7f00000003c0)="365969c650513731bb0ed45e4f504e4982473befbb98dc3942963840854dfd0d455d3651bb5ee4131983312f046893aa3bb5f05c297e90334d989bb2c87633cd670475d822a9236f104fe7aca4cd57a18f5f97e26051dcdc99416bc0eb68ca3734b0879d884337719b79b423d341badf3fad457e051f3802ac135b5bb183ee44df3b6f4f81effe40e503c694544429c80c6f2be9762f318abddbca8d8cd895e86ba2e26c756ca9cd294e1da363", 0xad}, {&(0x7f0000000480), 0x0, 0x6}, {&(0x7f00000004c0)="cbc4f4dd761533ef458aacd8900b3d4fac48f92c8f2a9bbd99821588fb2ddef4671a82b69ae4f1efdc52447f0f40616a34e11d262496b493d234942480e256a4efbb99ca952f9079cd660e5cc3eb6c693d1b133fdc81df2d8dc8c14fd506603065825b29fe3e045853080d1dde87cbdadefaae1d03fb4ef80030bcabdbfd7df75cc2a53d646fbad1f407b6fe938d282dbba77e8cc69ac9a829a9d9d9be1f3bdf93cf69820c8676524b20d860723ba0887e58bb7e701cd87d4c6e21f090ead09a80ec30cfd96d496d103f434975569762e28a40be6ce1948daab12ac65f2f574b9dc3fd25fd6eaef14f55cb7ecaaf457b5b51244a3017ced89450fdaa9be2b22a223cf7a3090aedb60679965e033bbc73203a4cf6654b369d63554091237b5aea9bcac1c031ded5d9c4732ac4848636e9a50ba94af3ad6e0b36464b36e09c3180b6a439fa52546135c8595a81fc8ec6e21b1fefedbbacdfb97d943a428879d229140d582be86510607822ad3452ea698303eeac9a55ae6197379b07dc8e940969b6bb22fefdd78b715a186896105bcbfba7758056f815d816140709d8b904bcd0c381ff2cc2200390f87ae00b94ccf3992ee41db20553c1650ee3fc12a20973e10dcb56c8c3cd522a38aa52340a141c009fe980da0a8f5da6978ed076970ef1492a59bd0e2570576db054d49ad7af1703ef6a1b9eb45d069151a132a8180c1b0567c31b5c7fe19e6c61d8876f461496d6fe63f6d6e2b74f6bbb26b2980b16961725a32990d6a0ba851e525380772741ee3fe0f38acda109bf50f4a5b5815f51c3767da092b6958fda80a2f0195f2ebad5e34f9244c5ea9d61b71cc5e4f1c39a92a710fc6503ee9b2443296cca4dc6c87e720e3ae7568423aae38eaba96130dfd19d86a4467f469d3de97b1a161cefff3d4ad4e24694b26b5da5ef3de97967ffbab641401586898fa67c2263cdc4256dfaebd7c0dcada24d9058bacab611f4fd591b8a0d1cf109ac156e1b01db996de352dbbce95ac312c6525af4562e32870c78c24427e449c56052ad4d8d6303bf3badf1a9e684a8ee1980168a2d93b9128eaad259ec27252baf52b12a01a4e3b894995e22428b78575eeada82c9185a17ae17c32e32d0432c255fabfe6f28eea27979a1666295726b2e65374919b2afce73deb23d06f1f97c9259141c737065c6dbac149ac8d1a9846e242a7e4d8bfc1259dc11dbf39c4eb2a0a4db4d7bc820ae37bbcdf40661b1398cfe7983bb9045a7b1644834cf6cc52b5de71d0e522f2f971a84dc46d098f4ee52d48435b2fab34e70b5e183cf359bf6e833b700703a773f491bdaa52ffbc266420d3ab664ec47974f82084302a941be03c6b306ee1ca17b770147c72463ca52a1e3b175f78f6fa3d69a0efebae7314e83216bc38b6689fd83b3ee429b1ffa22db745ab7264667bf8ffe2ff1d5a9a5ab7e11fbf796c160adabbc8ef00bf27be790bd35ae3ca4ad5799a264b4eb0559cb8296952db7d32c76174e0143083d60a1d2bcee7b740636e0eba3d25f748706c9d9deb90be3f062c6d26349cddcbb4e000de4fa46c48b7c80cc426f2ff747b247f0d0fcb2ed939f93e9574008b1d6539e1d5ccb8ee686dfb6c55d5ef685dd026cbfab51cd0432b88796f1453cbe9c0dcfeaaedcc2c4d48e805a91027dd8872e83c8d376744f11296e23540573c8942039589f507ce562fd12d2f12cd60b32ea5e8a8636a781b1b31016c191422b582d6569e6545faf4f4d804c1587ec0ea4aa67908a5fcc8b147f6ee0216ef0454f999cac2810a9ad04cd89b83af42e5821a88ac85797be84eb6cd5ba7ad5efcd834bf33cd7ccc6ada7b65e06c7469c0cfcfb27fdffd93789d61291aa755e4e0eae17201edd8beb5be95b38eed99228275202c0f47f097bdf78c6718ddd4db8e41c761f4aef69e79f9d03f070a4bc36f501e6fe52be0efceba84310192a65b2bb709f1032cb53c6ca47aa4eabac8672d9f50279fec85b3ab7d529583067c3c08cf74830d1f6f46a80b3012b66482e4c2db818a028ffca4f32299b692c6f2bca4e820c9da8f351c4004b24824b342ff8101746c1dd33edcb44051035cd9fe53238bc6b765c040af238c75865755ef560aef1838b4d86f5a68edee76804295b58840292fc3b14c011c63f62ef24c1a43d26e04681cf632881e3244417a592e0232a1b87eb97030dfcabcb82bb58c2bed7990f414fb9f0ddbae24e232e5f4e8f6b00d74f9c0aae74d0c6f979e92bb873193540fd9b418aa01752e5e7dfecdd1c2d472175dd354e362fc247375570bcce22618ac8f43145e7ffa9ff4aafadff95c82870e877bb886c4ba198ffddb27edf50b7153b21a7c8f90a99f6bdc29cacef8fb03997d535ec44cf41edb614fc02c7384893c1210e8b02d75ae279d38eb0150a077cb8268423468edbafa967ac9c9f231201cafd6da5a53f579fdf0eda8b3de0ce63b5641da8c2d45224bbd6922c966a103a282a21aed20e25f04eee56ba9bb4fcbcc16e392949b97b1d5e42f907a634dfb3865bcfb2891023f0ad854329356dd246199e211fdf0ee3e0361608d169ec5614791271ceaa8fad5edc987de904ea30c674aa360e4f8c0a30cf7043e73a9e0faa3fdf276a7affe54568590a9aa9b869cfdda9c451334e1c206f9f1ae10b754fefab3e34cd0dbb1b2e1df2d045ac9ca5ad7d05ccfd0c95a7605d5176f39ca2c52498e57695bff621b329a95211cceeffcf355afe33b355f4f52fac9b2ed417e1b2fa8c553f672447085f44f249bbac54beb20b117772a1755ed3ea784ae60a0bee7a0be4932031371fbfc292124e5a93b112fcc8c06b6f8602ed8aba60fe16d6d0dcb32d78e379a97b7dec3d56ed2262596afa21161853c2261bb5378407c96c155de96d04797ce216878ab125d2f5b6eb502f4e2076895c4872f9ba722145841907f7d20feb2413f31604b5ee04a1a8c18ad6177cc0e35606c351f77249b3dcb452c2312bb5dd6bf298d4999f40bfa1a2a67bf4e87b413f47348c1bafd8cf99af51ad0dedd2167260371431fa053590d7da434142c9b8879dea76b48f1d46ace7fc37f5aab8eee4ca8ebd9f065f9c7914c1a293ea6685ef9b9c5562c52a022efc6a76e49f4a053adbd41b89b85c1c38579030da8c6f296b7f5dcf01c06c1d361db3e451f8771ba1bf0d80e90d120f7bf465369351dec1c936fc724171620670cfd2b9c4c1cb056644c48936aaefae4f6ea612a0714825675f907aee058e35b6237a798523ee73363bf9a9654c8e0e45243be20db393552b8c7e34275048e4f681e8bed4f45fce293b564c84f853efa93a7d25a094e33e49cfc9a8304b5814dbd1ecac84ea8be5d3a5f51a0c932746709d228ceb7be430fbc93492db3fd4207327fd752d7ef89f31eccd78b5501caa15b34d73cdecfbb5f7a97640e59ae65b4a0aea4c11ecd277166336675fb9794e0d219133454436c31fb33ad2a4daa46f46b9f4e90d0eea4bcb57f5a6f00b7e93d20ba62ec817ed6625a97aeefd952eab0ce495c4fde7478a5889712e15ad5d11cbb4227fe15d8e1e7bfe11837486afd73313d9dbcb52480075f3e04e830e5f62d5a529d1ed7816bffa96f160b80bc2d1614afafb510795902ec6a482c3aab2e2f3692f8cf1f7c563d1092571f44c579afcc02f20752de4ca74eb4f104675abdb95087db17e3f64e6d116c511ad830f2ac086eeaa9d840e8dbac6bb07fe1d6eba6d46cb0dc29c3d4d0cee5a2c9e135c935bcd878f9065f8c7468254e5b7ae348a0cc3564c96a40755e7a3e588ebd796a1c31daa1f82b8110ea90dad2c2ee93c8f1dd5e002c9d1cf287edab42edaa96c56025fe3c35efb21a1b5b887d372e59a4511ec34e8d2894f299300e41155c8da174323b9b31b9b2e60c75dbeace902cbbf83e727d707c7a0cf2742ff26bd33f409f8c8ec17299a4c72e80abcb189d32229ecf5b66dc631d8379c12494314ae108e5e401c0e70377e519bcfb27b191528fa28f17ad587c03101108b96a54330c7e800a64d808468136623de890f7f075cd28e62f7c37253efae01705d9082a97b1bab68c242734a45ca2b96a0fcbc9c315e9866988e1ce6aa75ed4b40aa0d8d5224dee8bf5031b01073880598c0792d21a2b897af944223ba2454c4b67b35ff922b0bf4812b40f67330903df06a813fc63fdb40424ab465f75add72b6dd7787fd1760098164ec54b7a2ce73f4c1c101f0ddf324ebce3f432b1d6be94a631346050d6d0f626266cb288016617899617272f0ca9196869f165125093d9ea347d05d15c96d3438c3da3eb6325ea95fdf3781012a8afb325b605d6c2522dd618c2e4368e2e0dec37bb07da48f91b8394e9241e39a046fe5265e9ea4fb15beaf1148c035dfbeb678bdcf4b8a8a82baab53a042929d22262fde13868f643462fe952edf90e5673dc216ba5464a2e2bfe19ee10b51c1d539afbb890a40611df759087e6d93a99361e996b276d83c91ce0454bf6f468e0d74b148f613e27dae778c0dd0c71e63e8b825c227ee2e0fa3d5fcf1e1db283389a6006ba4dd4447564f9eed906987c5c9ebe0cfc3f2b2209879b5fbe6426b5e2b1744012aa1c39128a093d41d954caa7ab47c34370b729fc0cf011148d111d1c45bf8076e200f24fcea6470f813350d75b1183fb025fa33b669cd8c835f7aeba970fd0a9302bd91e78c84094b8e83600d4e592d7d021324acf64f462674545516c8b14ccbda10a473a20e0129aa850653b78a8054be6601b9c2a8b1dc07441c0795be3f5d9e72cc8aa878de47aa3a5b893a50c92b856f9a21e5ecd2b858cb859bd504f4eff2f076eb25d48faf6f6991dee3aae739dba5101398116e317996842368e9aac8b48664d23611341ca770ecdb8ef9195c5c36c007bef69469a256805aab2a78b2d6ef9f6d3357a66dfc8691f6cc194bb06f08dbe8520b3a1fef02ed5d5808c67938dffd604287424e0b20531e7c49f4119e2ac929e91ac0f6c04de35a0ff7a0ee5b5f37563c0501a373dd0653ef9bee7a9fb04d15676ba33737ee7650c0657e360b026ce994e1548a9bc0846c0e5c51c236d03186a84d85f92881a84cdc8d9c599a6efd6e100a954b34e164b7792f7c744cf1711d0d0481741975169dd957a1d179c7a39f5c09780ef2d1b2504059987e14d0d176e987b05f48d4c556bc95b02797aa927782721a15203bab645e51b5729382812f257366d1920a6e00c3090886ddd6bbcfc3a9592f6658553a9b25b8f5523e081e7d89b276af4592130a6c0ca0ebc16b2305532473f987bebe1dc1e5cd1778d15f4fd139b1bebe5bcaa588a355f0d125d2415b89a8b298954f47eeba3d517571cb659746b294992ec7cfc53f08f41bd840b6f6ea881423359b7fd21e8e1d6b020c532de6dccca767ac545a40cbbfe7069cb355fb0cbefdb862308f2870e82b9be69f90c897f6f9eb9cb00f87f286c7f9d1197d6b1a45d3fc5cc911c5a8cb3a2ecc702152665d06a5bfaf809e9c8471ee5c817efc94a927eac7b61808c7cbac7e0d6ce98dd789dd7b224d4bec9b3ba5b85dfaf2d33ee3a9e214afe913b33bbb5788c6c8988e6a75527415ab1c908237f6243e269d1156995d258b435dc6ecdf907d77748661738260eaf8db8356681ec9b1975cd05cb10acfcd63d497910f86e2510fd70b7d3e7f2393c211b0d8bd8e64f633de81a91a509c3f758cc17ffa01e4bee3af8c023f37bcfd38f2b66ec3b547a7dd99b3ee228175bcc1e9219c3fb52296364a608ddf957de0c6f885f47ebdd93563f99be3", 0x1000, 0x9}, {&(0x7f00000014c0)="b0d49acf59a7ee74eb0eac", 0xb, 0x2}], 0x4060, &(0x7f00000015c0)={[{@nouser_xattr}, {@noacl}, {@noacl}, {@noacl}, {}, {@nouser_xattr}, {}, {@fault_injection={'fault_injection', 0x3d, 0x9}}, {}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@dont_appraise}, {@fsname={'fsname', 0x3d, 'cgroup2\x00'}}, {@fsname={'fsname', 0x3d, 'cgroup2\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@fowner_eq={'fowner', 0x3d, 0xee01}}]}) syz_io_uring_submit(0x0, 0x0, &(0x7f00000016c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, {0x4041}}, 0x3) [ 3253.994705][ T1505] ------------[ cut here ]------------ [ 3254.030947][ T1505] kernfs: can not remove 'events', no directory [ 3254.074488][ T1505] WARNING: CPU: 1 PID: 1505 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90 [ 3254.084126][ T1505] Modules linked in: [ 3254.088035][ T1505] CPU: 1 PID: 1505 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3254.099559][ T1505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3254.109617][ T1505] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 3254.115761][ T1505] Code: 48 89 c3 e8 61 f2 ae ff 48 89 df e8 b9 f0 ff ff 31 db eb 29 e8 50 f2 ae ff 48 c7 c7 40 c3 cb 84 4c 89 fe 31 c0 e8 1f 79 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 f2 ae ff bb fe ff ff ff 48 c7 c7 [ 3254.135572][ T1505] RSP: 0018:ffff8881e5ccfcf8 EFLAGS: 00010246 [ 3254.141631][ T1505] RAX: f0056c55d5ef0d00 RBX: 0000000000000000 RCX: ffff8881c99c6e40 [ 3254.149588][ T1505] RDX: 0000000000000003 RSI: 000000000001b88d RDI: 0000000000000000 [ 3254.157547][ T1505] RBP: ffffffff85e46960 R08: ffffffff814b2a4c R09: 0000000000006e24 [ 3254.165598][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: 0000000000000000 [ 3254.173561][ T1505] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84e29780 [ 3254.181526][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3254.190444][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3254.197017][ T1505] CR2: 00007f7eca08b000 CR3: 00000001e5d95000 CR4: 00000000003406e0 [ 3254.204981][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3254.212941][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3254.220988][ T1505] Call Trace: [ 3254.224369][ T1505] sysfs_remove_files+0x99/0xf0 [ 3254.229221][ T1505] del_gendisk+0x259/0xb70 [ 3254.233627][ T1505] ? radix_tree_delete_item+0x22a/0x320 [ 3254.239169][ T1505] loop_control_ioctl+0x563/0x680 [ 3254.244183][ T1505] ? xor_init+0x60/0x60 [ 3254.248325][ T1505] do_vfs_ioctl+0x6fb/0x15b0 [ 3254.253251][ T1505] __x64_sys_ioctl+0xd4/0x110 [ 3254.258388][ T1505] do_syscall_64+0xcb/0x1e0 [ 3254.262880][ T1505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3254.268765][ T1505] RIP: 0033:0x7f145855da39 [ 3254.273193][ T1505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3254.292808][ T1505] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3254.301211][ T1505] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3254.309176][ T1505] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 3254.317224][ T1505] RBP: 00007f14585b7e8f R08: 0000000000000000 R09: 0000000000000000 [ 3254.325183][ T1505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3254.333144][ T1505] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3254.341109][ T1505] ---[ end trace 7aed1b66616f08d3 ]--- [ 3254.358074][ T1505] ------------[ cut here ]------------ [ 3254.363923][ T1505] kernfs: can not remove 'events_async', no directory [ 3254.370868][ T1505] WARNING: CPU: 1 PID: 1505 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90 [ 3254.380473][ T1505] Modules linked in: [ 3254.384361][ T1505] CPU: 1 PID: 1505 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3254.395883][ T1505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3254.405936][ T1505] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 3254.412077][ T1505] Code: 48 89 c3 e8 61 f2 ae ff 48 89 df e8 b9 f0 ff ff 31 db eb 29 e8 50 f2 ae ff 48 c7 c7 40 c3 cb 84 4c 89 fe 31 c0 e8 1f 79 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 f2 ae ff bb fe ff ff ff 48 c7 c7 [ 3254.431756][ T1505] RSP: 0018:ffff8881e5ccfcf8 EFLAGS: 00010246 [ 3254.437814][ T1505] RAX: f0056c55d5ef0d00 RBX: 0000000000000000 RCX: ffff8881c99c6e40 [ 3254.445775][ T1505] RDX: 0000000000000003 RSI: 0000000080000000 RDI: 0000000000000000 [ 3254.453735][ T1505] RBP: ffffffff85e46960 R08: ffffffff814b2a4c R09: 000000000000ffff [ 3254.461707][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: 0000000000000000 [ 3254.469664][ T1505] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84e298c0 [ 3254.477624][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3254.486537][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3254.493112][ T1505] CR2: 00007ffcc4dbaff8 CR3: 00000001e5d95000 CR4: 00000000003406e0 [ 3254.501084][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3254.509044][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3254.517009][ T1505] Call Trace: [ 3254.520292][ T1505] sysfs_remove_files+0x99/0xf0 [ 3254.525141][ T1505] del_gendisk+0x259/0xb70 [ 3254.529548][ T1505] ? radix_tree_delete_item+0x22a/0x320 [ 3254.535093][ T1505] loop_control_ioctl+0x563/0x680 [ 3254.540117][ T1505] ? xor_init+0x60/0x60 [ 3254.544271][ T1505] do_vfs_ioctl+0x6fb/0x15b0 [ 3254.548946][ T1505] __x64_sys_ioctl+0xd4/0x110 [ 3254.553627][ T1505] do_syscall_64+0xcb/0x1e0 [ 3254.558130][ T1505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3254.564012][ T1505] RIP: 0033:0x7f145855da39 [ 3254.568418][ T1505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3254.588182][ T1505] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3254.596581][ T1505] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3254.604548][ T1505] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 3254.612514][ T1505] RBP: 00007f14585b7e8f R08: 0000000000000000 R09: 0000000000000000 [ 3254.620483][ T1505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3254.628444][ T1505] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3254.636410][ T1505] ---[ end trace 7aed1b66616f08d4 ]--- [ 3254.642022][ T1505] ------------[ cut here ]------------ [ 3254.647496][ T1505] kernfs: can not remove 'events_poll_msecs', no directory [ 3254.654803][ T1505] WARNING: CPU: 1 PID: 1505 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90 [ 3254.664408][ T1505] Modules linked in: [ 3254.668302][ T1505] CPU: 1 PID: 1505 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3254.679822][ T1505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3254.689880][ T1505] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 3254.696020][ T1505] Code: 48 89 c3 e8 61 f2 ae ff 48 89 df e8 b9 f0 ff ff 31 db eb 29 e8 50 f2 ae ff 48 c7 c7 40 c3 cb 84 4c 89 fe 31 c0 e8 1f 79 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 f2 ae ff bb fe ff ff ff 48 c7 c7 [ 3254.715619][ T1505] RSP: 0018:ffff8881e5ccfcf8 EFLAGS: 00010246 [ 3254.721676][ T1505] RAX: f0056c55d5ef0d00 RBX: 0000000000000000 RCX: ffff8881c99c6e40 [ 3254.729637][ T1505] RDX: 0000000000000003 RSI: 0000000080000000 RDI: 0000000000000000 [ 3254.737593][ T1505] RBP: ffffffff85e46960 R08: ffffffff814b2a4c R09: 000000000000ffff [ 3254.745546][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: 0000000000000000 [ 3254.753502][ T1505] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84e29900 [ 3254.761469][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3254.770478][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3254.777071][ T1505] CR2: 00007ffcc4dbaff8 CR3: 00000001e5d95000 CR4: 00000000003406e0 [ 3254.785031][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3254.792989][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3254.800945][ T1505] Call Trace: [ 3254.804235][ T1505] sysfs_remove_files+0x99/0xf0 [ 3254.809083][ T1505] del_gendisk+0x259/0xb70 [ 3254.813587][ T1505] ? radix_tree_delete_item+0x22a/0x320 [ 3254.819128][ T1505] loop_control_ioctl+0x563/0x680 [ 3254.824144][ T1505] ? xor_init+0x60/0x60 [ 3254.828296][ T1505] do_vfs_ioctl+0x6fb/0x15b0 [ 3254.832878][ T1505] __x64_sys_ioctl+0xd4/0x110 [ 3254.837547][ T1505] do_syscall_64+0xcb/0x1e0 [ 3254.842041][ T1505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3254.847915][ T1505] RIP: 0033:0x7f145855da39 [ 3254.852324][ T1505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3254.871911][ T1505] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3254.880311][ T1505] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3254.888271][ T1505] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 3254.896234][ T1505] RBP: 00007f14585b7e8f R08: 0000000000000000 R09: 0000000000000000 [ 3254.904190][ T1505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3254.912164][ T1505] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3254.920123][ T1505] ---[ end trace 7aed1b66616f08d5 ]--- [ 3254.926130][ T1505] ------------[ cut here ]------------ [ 3254.931634][ T1505] kernfs: can not remove 'bdi', no directory [ 3254.937723][ T1505] WARNING: CPU: 1 PID: 1505 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90 [ 3254.947329][ T1505] Modules linked in: [ 3254.951212][ T1505] CPU: 1 PID: 1505 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3254.962724][ T1505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3254.972778][ T1505] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90 [ 3254.978914][ T1505] Code: 48 89 c3 e8 61 f2 ae ff 48 89 df e8 b9 f0 ff ff 31 db eb 29 e8 50 f2 ae ff 48 c7 c7 40 c3 cb 84 4c 89 fe 31 c0 e8 1f 79 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 f2 ae ff bb fe ff ff ff 48 c7 c7 [ 3254.998502][ T1505] RSP: 0018:ffff8881e5ccfd38 EFLAGS: 00010246 [ 3255.004556][ T1505] RAX: f0056c55d5ef0d00 RBX: 0000000000000000 RCX: ffff8881c99c6e40 [ 3255.012514][ T1505] RDX: 0000000000000003 RSI: 0000000080000000 RDI: 0000000000000000 [ 3255.020469][ T1505] RBP: 0000000000000000 R08: ffffffff814b2a4c R09: 000000000000ffff [ 3255.028428][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: 1ffff110394f6600 [ 3255.036385][ T1505] R13: ffff8881ca7b34e8 R14: 0000000000000000 R15: ffffffff84e291a0 [ 3255.044345][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 3255.053344][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3255.059916][ T1505] CR2: 00007ffcc4dbaff8 CR3: 00000001e5d95000 CR4: 00000000003406e0 [ 3255.067972][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3255.075934][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3255.083885][ T1505] Call Trace: [ 3255.087162][ T1505] del_gendisk+0x543/0xb70 [ 3255.091572][ T1505] loop_control_ioctl+0x563/0x680 [ 3255.096958][ T1505] ? xor_init+0x60/0x60 [ 3255.101101][ T1505] do_vfs_ioctl+0x6fb/0x15b0 [ 3255.105684][ T1505] __x64_sys_ioctl+0xd4/0x110 [ 3255.110348][ T1505] do_syscall_64+0xcb/0x1e0 [ 3255.114838][ T1505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3255.120825][ T1505] RIP: 0033:0x7f145855da39 [ 3255.125223][ T1505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3255.144812][ T1505] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3255.153214][ T1505] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3255.161170][ T1505] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 3255.169129][ T1505] RBP: 00007f14585b7e8f R08: 0000000000000000 R09: 0000000000000000 [ 3255.177086][ T1505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3255.185040][ T1505] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3255.193007][ T1505] ---[ end trace 7aed1b66616f08d6 ]--- [ 3255.200704][ T1505] kasan: CONFIG_KASAN_INLINE enabled [ 3255.205988][ T1505] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 3255.229713][ T1505] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 3255.236655][ T1505] CPU: 0 PID: 1505 Comm: syz-executor.1 Tainted: G W 5.4.147-syzkaller-00036-geb4a5a5dbd5b #0 [ 3255.248177][ T1505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3255.258232][ T1505] RIP: 0010:strlen+0x27/0x60 [ 3255.262810][ T1505] Code: 0f 1f 00 41 57 41 56 53 49 89 fe 49 bf 00 00 00 00 00 fc ff df 48 89 f8 66 66 2e 0f 1f 84 00 00 00 00 00 48 89 c3 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 0b 48 8d 43 01 80 3b 00 75 e7 eb 13 89 d9 [ 3255.282400][ T1505] RSP: 0018:ffff8881e5ccfcd0 EFLAGS: 00010246 [ 3255.288449][ T1505] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000200001 [ 3255.296408][ T1505] RDX: 0000000000200000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3255.304465][ T1505] RBP: 0000000000000000 R08: ffffffff81b1affb R09: 000000000000ffff [ 3255.312423][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: ffff8881f18e33e8 [ 3255.320381][ T1505] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 3255.328339][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3255.337250][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3255.343817][ T1505] CR2: 0000001b2db34000 CR3: 00000001e5d95000 CR4: 00000000003406f0 [ 3255.351808][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3255.360113][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3255.368070][ T1505] Call Trace: [ 3255.371351][ T1505] kernfs_find_ns+0x83/0x430 [ 3255.375926][ T1505] ? mutex_lock+0x6c/0xc0 [ 3255.380247][ T1505] kernfs_remove_by_name_ns+0x32/0x90 [ 3255.385607][ T1505] del_gendisk+0x93d/0xb70 [ 3255.390012][ T1505] loop_control_ioctl+0x563/0x680 [ 3255.395021][ T1505] ? xor_init+0x60/0x60 [ 3255.399165][ T1505] do_vfs_ioctl+0x6fb/0x15b0 [ 3255.403745][ T1505] __x64_sys_ioctl+0xd4/0x110 [ 3255.408407][ T1505] do_syscall_64+0xcb/0x1e0 [ 3255.412899][ T1505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3255.418774][ T1505] RIP: 0033:0x7f145855da39 [ 3255.423172][ T1505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3255.442763][ T1505] RSP: 002b:00007f14562d4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3255.451257][ T1505] RAX: ffffffffffffffda RBX: 00007f1458660f60 RCX: 00007f145855da39 [ 3255.459214][ T1505] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003 [ 3255.467170][ T1505] RBP: 00007f14585b7e8f R08: 0000000000000000 R09: 0000000000000000 [ 3255.475127][ T1505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3255.483097][ T1505] R13: 00007fff36c8ea3f R14: 00007f14562d4300 R15: 0000000000022000 [ 3255.491054][ T1505] Modules linked in: [ 3255.565261][ T1505] ---[ end trace 7aed1b66616f08d7 ]--- [ 3255.570789][ T1505] RIP: 0010:strlen+0x27/0x60 [ 3255.575453][ T1505] Code: 0f 1f 00 41 57 41 56 53 49 89 fe 49 bf 00 00 00 00 00 fc ff df 48 89 f8 66 66 2e 0f 1f 84 00 00 00 00 00 48 89 c3 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 0b 48 8d 43 01 80 3b 00 75 e7 eb 13 89 d9 [ 3255.595536][ T1505] RSP: 0018:ffff8881e5ccfcd0 EFLAGS: 00010246 [ 3255.601742][ T1505] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000200001 [ 3255.609865][ T1505] RDX: 0000000000200000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3255.617853][ T1505] RBP: 0000000000000000 R08: ffffffff81b1affb R09: 000000000000ffff [ 3255.626128][ T1505] R10: ffffc9000bba1000 R11: 0000000000000000 R12: ffff8881f18e33e8 [ 3255.634277][ T1505] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 3255.642437][ T1505] FS: 00007f14562d4700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 3255.651675][ T1505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3255.658276][ T1505] CR2: 0000001b2db34000 CR3: 00000001e5d95000 CR4: 00000000003406f0 [ 3255.666451][ T1505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3255.674570][ T1505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3255.682783][ T1505] Kernel panic - not syncing: Fatal exception [ 3255.689062][ T1505] Kernel Offset: disabled [ 3255.693365][ T1505] Rebooting in 86400 seconds..