ad3f38"], 0x1018}], 0x3, &(0x7f00000012c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, r6}}}, @rights={{0x28, 0x1, 0x1, [r8, r1, 0xffffffffffffffff, r0, r0, r9]}}], 0x48, 0x4004090}, 0x80) set_mempolicy(0x4000, &(0x7f0000000040)=0x7fff, 0xfff) syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x4) 17:07:11 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x1, &(0x7f0000000040)=0x7, 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:12 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x2}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r1, 0x0) tkill(0x0, 0x1000000000016) 17:07:12 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x204c) 17:07:12 executing program 4: set_mempolicy(0x4001, &(0x7f0000000040)=0x5, 0x40) r0 = io_uring_setup(0x2206, &(0x7f0000000680)) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x28102, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$RTC_UIE_OFF(r1, 0x7004) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/suspend_stats', 0x2a000, 0x30) close(r2) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_UIE_OFF(r3, 0x7004) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[r0, r1, r0, r0, r2, r0, r3, 0xffffffffffffffff]}, 0x8) 17:07:12 executing program 2 (fault-call:7 fault-nth:1): r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:12 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = fsmount(0xffffffffffffffff, 0x0, 0x70) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x2, 0x2, 0x8000, 0x9, 0x2, "47efd5908c30439a8804232ace4573840a3978"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) 17:07:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) r1 = creat(&(0x7f00000001c0)='./file0/bus\x00', 0x6857b21ff1155d90) fcntl$lock(r1, 0x7, &(0x7f0000027000)={0x1}) ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f0000000140)={0x1, 0x0, 0x1c, 0x10, 0xfd, &(0x7f0000000200)}) r2 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r2) r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0) lseek(r4, 0x1000000000000003, 0x0) r5 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r5, 0x5608) signalfd(r5, &(0x7f0000000180)={[0x7fffffff]}, 0x8) sendfile(r3, r3, 0x0, 0x0) [ 909.617976][ T5181] serio: Serial port pts2 17:07:12 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x0, 0x81, 0x40, 0x5}]}) 17:07:12 executing program 4: removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'osx.', '/%%\x00'}) unshare(0x60000480) r0 = socket$nl_generic(0x10, 0x3, 0x10) unshare(0x20000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/rt_acct\x00') syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1) connect(r0, 0x0, 0x0) [ 909.707744][ T5200] FAULT_INJECTION: forcing a failure. [ 909.707744][ T5200] name failslab, interval 1, probability 0, space 0, times 0 [ 909.720433][ T5200] CPU: 0 PID: 5200 Comm: syz-executor.2 Tainted: G W 5.13.0-syzkaller #0 [ 909.730179][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 909.740223][ T5200] Call Trace: [ 909.743498][ T5200] dump_stack_lvl+0xb7/0x103 [ 909.748159][ T5200] dump_stack+0x11/0x1a [ 909.752375][ T5200] should_fail+0x23c/0x250 [ 909.756993][ T5200] __should_failslab+0x81/0x90 [ 909.761977][ T5200] should_failslab+0x5/0x20 [ 909.766472][ T5200] kmem_cache_alloc_node+0x58/0x2b0 [ 909.771679][ T5200] ? dup_task_struct+0x63/0x630 [ 909.776715][ T5200] ? unix_seqpacket_sendmsg+0xcc/0x110 [ 909.782157][ T5200] dup_task_struct+0x63/0x630 [ 909.786975][ T5200] copy_process+0x3ff/0x2f70 [ 909.791750][ T5200] ? io_issue_sqe+0x5980/0x69f0 [ 909.796611][ T5200] ? create_io_worker+0x3a0/0x3a0 [ 909.801778][ T5200] create_io_thread+0x81/0xa0 [ 909.806464][ T5200] ? create_io_worker+0x3a0/0x3a0 [ 909.811491][ T5200] create_io_worker+0x106/0x3a0 [ 909.816428][ T5200] io_wqe_enqueue+0x487/0x560 [ 909.821267][ T5200] io_wq_enqueue+0x31/0x40 [ 909.825717][ T5200] io_queue_async_work+0x171/0x230 [ 909.830893][ T5200] __io_queue_sqe+0x33d/0x360 [ 909.835627][ T5200] io_async_task_func+0x360/0x560 [ 909.840783][ T5200] tctx_task_work+0x1a3/0x400 [ 909.845584][ T5200] task_work_run+0xae/0x130 [ 909.850071][ T5200] exit_to_user_mode_prepare+0xf8/0x190 [ 909.855599][ T5200] syscall_exit_to_user_mode+0x20/0x40 [ 909.861146][ T5200] do_syscall_64+0x49/0x90 [ 909.865682][ T5200] ? irqentry_exit+0xe/0x30 [ 909.870186][ T5200] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 909.876115][ T5200] RIP: 0033:0x4665d9 [ 909.880045][ T5200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 909.899672][ T5200] RSP: 002b:00007f301d4c0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 909.908186][ T5200] RAX: 0000000000000000 RBX: 000000000056c038 RCX: 00000000004665d9 [ 909.916517][ T5200] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004 [ 909.924472][ T5200] RBP: 00007f301d4c01d0 R08: 0000000000000000 R09: 0000000000000000 [ 909.932426][ T5200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 909.940395][ T5200] R13: 00007ffc1913612f R14: 00007f301d4c0300 R15: 0000000000022000 17:07:14 executing program 3: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 17:07:14 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x27) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:14 executing program 4: capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x33) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) capset(&(0x7f0000000300)={0x0, r0}, &(0x7f0000000340)={0x9, 0x8, 0x1, 0x7, 0x1, 0x81}) r1 = gettid() ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x33) tkill(r1, 0x37) wait4(0x0, &(0x7f0000000100), 0x4, &(0x7f00000001c0)) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) capset(&(0x7f0000000280)={0x20071026, r1}, &(0x7f00000002c0)={0x615b, 0x8, 0x90000000, 0x1000, 0xfffffe00, 0x3aa}) capset(&(0x7f0000000000)={0x19980330, r1}, &(0x7f00000000c0)={0x400, 0xb07c, 0x96bb, 0x5, 0xffff, 0x1}) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000180)='cubic\x00', 0x6) 17:07:14 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x0) 17:07:14 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2060) 17:07:14 executing program 2 (fault-call:7 fault-nth:2): r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:14 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="b3495efb45672700b063525e643961ae8c", 0x11, 0x4011, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = openat$incfs(0xffffffffffffffff, &(0x7f0000000080)='.log\x00', 0x3401, 0x100) syz_open_pts(r2, 0x141800) [ 912.207688][ T5781] serio: Serial port pts2 17:07:14 executing program 4: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r1, 0x942e, 0x0) r2 = creat(&(0x7f0000002dc0)='./bus\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000380)=ANY=[], 0xfffffd28) pipe(&(0x7f0000000180)={0xffffffffffffffff}) perf_event_open(&(0x7f0000001240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newsa={0x18c, 0x10, 0x713, 0x0, 0x0, {{@in6=@local, @in6=@remote}, {@in=@private, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x54, 0x2, {{'cbc(des3_ede)\x00'}, 0x60, "a6107b18cf2a876e21fb88b3"}}, @algo_auth={0x48, 0x1, {{'sha1\x00'}}}]}, 0x18c}}, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x4, 0x8010, r4, 0xb3d04000) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000012c0)={0x7, [], 0x1, "1dcf943a0292f1"}) sendfile(0xffffffffffffffff, r3, &(0x7f0000000140)=0x1000, 0x6) fsetxattr$security_selinux(0xffffffffffffffff, 0x0, &(0x7f0000000080)='system_u:object_r:login_exec_t:s0\x00', 0x22, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x14) dup2(r3, r0) openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x8000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) 17:07:14 executing program 3: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f00000000c0)={0x7ff, 0x8, 0x5, 0x80000001, 0x5, [{0x5, 0x7, 0x7, '\x00', 0x2000}, {0x4, 0x8, 0x1}, {0x0, 0x9, 0x8, '\x00', 0x282}, {0x8, 0x5, 0x9, '\x00', 0xa}, {0xfee, 0xa39, 0x3, '\x00', 0x58c}]}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000002c0)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) pipe2(&(0x7f0000000280), 0x800) r0 = socket(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)={0x18, 0x15, 0xe09, 0x0, 0x0, {0x2}}, 0x4c}}, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x406, r0) sendmsg$WG_CMD_GET_DEVICE(r1, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f0000001200)={0x880, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e21}, @WGDEVICE_A_PEERS={0xa4, 0x8, 0x0, 0x1, [{0x68, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x6}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "7dd312c2fe448f86e58462f39ebfff0a01bc68f70a5243b24caa55597d8128f6"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "a59cf59a615bba5890db01000000000000004189110000000000000000000100"}]}, {0x38, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_PRESHARED_KEY={0x1b, 0x2, "f72d5060347cec3ce380f4bfddac5c2a0b5638d80c09f8a8a495354ad16c59f1"}]}]}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_PEERS={0x7b0, 0x8, 0x0, 0x1, [{0x66c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4b8, 0x9, 0x0, 0x1, [{0xc4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x42}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x3}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x40}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x1}}]}, {0xb8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @rand_addr=0x64010102}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x5}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "d55527fbe3c4cff054ec972b57189a1dee6a89985a7b92780c1c3f1b2416d20b"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "6a779821613e62c0c21e63926b6dc161a64c1ec9141159848ccb9d7032054e4a"}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x5}, @WGPEER_A_ALLOWEDIPS={0x110, 0x9, 0x0, 0x1, [{0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x2}]}, {0x68, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x94f, @empty, 0x8001}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @multicast1}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x0, @mcast2, 0x2ed4}}]}, {0x6c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "c1510d88ad8c80621a037ef0e8b4050930d08ac502664994fcdfce824b19dc32"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "a1b9b42e10330201b88f5c95c330aafc7d549a0f70c3f6871347cb37b153487d"}]}, {0x30, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "e46968e2218e273ffa95516415d015caefb721a386d308917f4b239c52ead80d"}]}, {0x14, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x6}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x5}]}, {0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "b71ad1d4b7b464b8bb6808282e0bae7bd375f181556a6647521bb1ec226fbd03"}]}]}]}, 0x880}, 0x1, 0x0, 0x0, 0x1}, 0x4800) [ 912.304584][ T5799] FAULT_INJECTION: forcing a failure. [ 912.304584][ T5799] name failslab, interval 1, probability 0, space 0, times 0 [ 912.317352][ T5799] CPU: 1 PID: 5799 Comm: syz-executor.2 Tainted: G W 5.13.0-syzkaller #0 [ 912.327084][ T5799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 912.337169][ T5799] Call Trace: [ 912.340472][ T5799] dump_stack_lvl+0xb7/0x103 [ 912.345150][ T5799] dump_stack+0x11/0x1a [ 912.349318][ T5799] should_fail+0x23c/0x250 [ 912.353746][ T5799] ? alloc_pid+0x71/0x760 [ 912.358209][ T5799] __should_failslab+0x81/0x90 [ 912.362989][ T5799] should_failslab+0x5/0x20 [ 912.367501][ T5799] kmem_cache_alloc+0x46/0x2e0 [ 912.372378][ T5799] ? avc_has_perm+0x59/0x150 [ 912.376991][ T5799] ? avc_has_perm+0xc8/0x150 [ 912.382474][ T5799] alloc_pid+0x71/0x760 [ 912.386636][ T5799] ? create_io_worker+0x3a0/0x3a0 [ 912.391671][ T5799] ? copy_thread+0x116/0x1f0 [ 912.396328][ T5799] copy_process+0x16eb/0x2f70 [ 912.401017][ T5799] ? create_io_worker+0x3a0/0x3a0 [ 912.406044][ T5799] create_io_thread+0x81/0xa0 [ 912.410789][ T5799] ? create_io_worker+0x3a0/0x3a0 [ 912.415899][ T5799] create_io_worker+0x106/0x3a0 [ 912.420763][ T5799] io_wqe_enqueue+0x487/0x560 [ 912.425478][ T5799] io_wq_enqueue+0x31/0x40 [ 912.430070][ T5799] io_queue_async_work+0x171/0x230 [ 912.435275][ T5799] __io_queue_sqe+0x33d/0x360 [ 912.439955][ T5799] io_async_task_func+0x360/0x560 [ 912.445073][ T5799] tctx_task_work+0x1a3/0x400 [ 912.449754][ T5799] task_work_run+0xae/0x130 [ 912.454270][ T5799] exit_to_user_mode_prepare+0xf8/0x190 [ 912.460014][ T5799] syscall_exit_to_user_mode+0x20/0x40 [ 912.465482][ T5799] do_syscall_64+0x49/0x90 [ 912.469990][ T5799] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 912.475900][ T5799] RIP: 0033:0x4665d9 [ 912.480041][ T5799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x2f6, 0x0, 0x2, 0x9, 0xb, "c513d84a67553b8079227e93c1364238b15ea1"}) set_mempolicy(0x4000, &(0x7f0000000040)=0x8, 0x37) 17:07:15 executing program 3: r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x1800007, 0x11, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00') write$binfmt_script(0xffffffffffffffff, &(0x7f00000039c0)=ANY=[@ANYBLOB="b3c12f7a7e23e59dfb28786a7a3d32ae6b0b052a880829d00b5b52a9bc34455b23ecb7e87c5d906af2dd4139042040ccae8002fa76b6f3cae6aae8c783eadc24773834df6981c1d12db77b40e27b66dbc0010354268914121bb9500fbe8ad98f4af77ec5ac1e46e51ac6effc3ce50aafeff09b5703ddeed79e724682f469e4590f39fc902ede02c14f4103943353da111142873ba3874b38e1fd32147a47a5dc"], 0xe6) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x6000) io_setup(0x202, &(0x7f0000000200)=0x0) ftruncate(r2, 0x81fd) creat(0x0, 0x0) sendmmsg$unix(r1, &(0x7f000000c440)=[{0x0, 0x0, &(0x7f0000003cc0)=[{0x0}], 0x10000000000002ed}, {0x0, 0x0, 0x0, 0x0, &(0x7f00000072c0)=[@cred={{0x1c}}], 0x20}], 0x2, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x1a1a01, 0x0) recvmmsg(r4, &(0x7f0000003f80)=[{{&(0x7f0000000140)=@nl=@unspec, 0x80, &(0x7f0000000580)=[{&(0x7f00000001c0)=""/31, 0x1f}, {&(0x7f0000000240)=""/247, 0xf7}, {&(0x7f0000000340)=""/83, 0x53}, {&(0x7f00000003c0)=""/198, 0xc6}, {&(0x7f00000004c0)=""/64, 0x40}], 0x5, &(0x7f0000000500)=""/54, 0x36}, 0x5}, {{&(0x7f0000000600)=@nfc_llcp, 0x80, &(0x7f0000000780)=[{&(0x7f0000000680)=""/194, 0xc2}], 0x1}, 0x5669}, {{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/143, 0x8f}, {&(0x7f0000000880)=""/9, 0x9}, {&(0x7f00000008c0)=""/59, 0x3b}, {&(0x7f0000000900)=""/53, 0x35}, {&(0x7f0000000940)=""/211, 0xd3}, {&(0x7f0000000a40)=""/134, 0x86}, {&(0x7f0000000b00)=""/45, 0x2d}, {&(0x7f0000000b40)=""/59, 0x3b}], 0x8, &(0x7f0000000c00)=""/155, 0x9b}, 0x8}, {{&(0x7f0000000cc0)=@x25={0x9, @remote}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000d40)=""/15, 0xf}, {&(0x7f0000000d80)=""/209, 0xd1}, {&(0x7f0000000e80)=""/10, 0xa}], 0x3, &(0x7f0000000f00)=""/211, 0xd3}, 0x2}, {{&(0x7f0000001000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000001200)=[{&(0x7f0000001080)=""/176, 0xb0}, {&(0x7f0000001140)=""/161, 0xa1}], 0x2, &(0x7f0000001240)=""/182, 0xb6}, 0x3}, {{&(0x7f0000001300)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, &(0x7f0000003600)=[{&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/161, 0xa1}, {&(0x7f0000002440)=""/4096, 0x1000}, {&(0x7f0000003440)=""/177, 0xb1}, {&(0x7f0000003500)=""/198, 0xc6}], 0x5, &(0x7f0000003680)=""/207, 0xcf}, 0x5}, {{0x0, 0x0, &(0x7f00000037c0)=[{&(0x7f0000003780)=""/32, 0x20}], 0x1, 0xfffffffffffffffe}, 0x10000}, {{&(0x7f0000003a80)=@alg, 0x80, &(0x7f0000003e80)=[{&(0x7f0000003b00)=""/141, 0x8d}, {&(0x7f0000003bc0)=""/80, 0x50}, {&(0x7f0000003d00)=""/135, 0x87}, {&(0x7f0000003dc0)=""/163, 0xa3}, {&(0x7f0000003c40)=""/15, 0xf}], 0x5, &(0x7f0000003f00)=""/69, 0x45}, 0x6a0b7246}], 0x8, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299}) io_submit(r3, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x16000}]) [ 912.499850][ T5799] RSP: 002b:00007f301d4c0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 912.508288][ T5799] RAX: 0000000000000000 RBX: 000000000056c038 RCX: 00000000004665d9 [ 912.516273][ T5799] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004 [ 912.524247][ T5799] RBP: 00007f301d4c01d0 R08: 0000000000000000 R09: 0000000000000000 [ 912.532222][ T5799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 912.540196][ T5799] R13: 00007ffc1913612f R14: 00007f301d4c0300 R15: 0000000000022000 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/xz_dec', 0x80000, 0xe9) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0xfffffff9) 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000280)={{0x107, 0x8, 0x58, 0xdd, 0x280, 0x8, 0x3a7, 0xe1f}, "2abd64c7631973ae5c11e9df55a5d6a0ff86c64752c01212c994f41bc347cebb346279a0818bfbe0c7fff1140b58441c7a2f0c53159c53872410f08c0ea26ea85bfc9d2d6879219b7714f1c7ef62189baeb5d9f082ce859b7633cc994d3a1a5828cf25ad0b46936d9e7dbcc4403c9a62418835f0e3cd5fa6c8a12423f22a939ae7dec12a342070e6cf5580a918a9832404eecaf2f1236c730b9076dd79c1d016b8e0df3d88629c5804c3b95e28", ['\x00']}, 0x1cd) 17:07:15 executing program 4: clone3(&(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000600)=[0x0], 0x1}, 0x58) 17:07:15 executing program 5: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) r7 = open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) fsconfig$FSCONFIG_SET_PATH(r7, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 912.730537][ T5893] loop5: detected capacity change from 0 to 7 17:07:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x0) 17:07:15 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2068) 17:07:15 executing program 2 (fault-call:7 fault-nth:3): r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400108001000240000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="b3"]) 17:07:15 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fallocate(r1, 0x0, 0x8003, 0x8020001) r2 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0) write$P9_RREMOVE(r3, &(0x7f0000000280)={0xfffffffffffffdc1}, 0x1033b) r4 = accept(r0, 0x0, &(0x7f0000000000)) preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000340)=""/195, 0xc3}, {&(0x7f0000000080)=""/9, 0x9}], 0x2, 0x2, 0x2) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000200)={0x0, r3}) 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) set_mempolicy(0x4007, &(0x7f0000000040)=0x3, 0xaf49) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x8000, &(0x7f0000000040), 0x3) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:15 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) r7 = open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) fsconfig$FSCONFIG_SET_PATH(r7, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 913.117896][ T6442] serio: Serial port pts2 [ 913.124525][ T6445] loop3: detected capacity change from 0 to 6 [ 913.145955][ T6445] FAT-fs (loop3): Unrecognized mount option "³" or missing value 17:07:15 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) set_mempolicy(0x8000, &(0x7f0000000040)=0x80, 0x400) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x5) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) [ 913.186803][ T6464] loop4: detected capacity change from 0 to 7 [ 913.225964][ T6477] FAULT_INJECTION: forcing a failure. [ 913.225964][ T6477] name failslab, interval 1, probability 0, space 0, times 0 [ 913.225988][ T6477] CPU: 0 PID: 6477 Comm: syz-executor.2 Tainted: G W 5.13.0-syzkaller #0 17:07:16 executing program 3: setresuid(0x0, 0xee00, 0xee00) symlinkat(&(0x7f0000000180)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00') r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5) setuid(r1) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r2, 0x6, &(0x7f0000000040)) renameat2(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x2) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5) setuid(r4) newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) setresuid(r1, r4, r5) 17:07:16 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0xaf, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) [ 913.226010][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 913.226069][ T6477] Call Trace: [ 913.226076][ T6477] dump_stack_lvl+0xb7/0x103 [ 913.226101][ T6477] dump_stack+0x11/0x1a 17:07:16 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000380)='./file0\x00', 0x0, 0x0, &(0x7f00000003c0), 0x8000, &(0x7f0000000400)={[{@fat=@dos1xfloppy}]}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$RTC_UIE_OFF(r1, 0x7004) write$binfmt_script(r1, &(0x7f0000000040)={'#! ', './file0', [{0x20, '}[)-$^--'}, {0x20, 'vfat\x00'}, {}, {}], 0xa, "860ce78fc613b81e654d37bea3fe2fca3265976f279fda1ff38289a268832efe0429d7b1c4a3e876b5641864dd45b7fd58528b5608"}, 0x51) chdir(&(0x7f0000000000)='./file0\x00') r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) sendfile(r2, r0, &(0x7f00000000c0)=0x5, 0x3) [ 913.226118][ T6477] should_fail+0x23c/0x250 [ 913.226140][ T6477] __should_failslab+0x81/0x90 [ 913.226242][ T6477] should_failslab+0x5/0x20 [ 913.226261][ T6477] kmem_cache_alloc_node+0x58/0x2b0 [ 913.226340][ T6477] ? __alloc_pages+0x2fd/0x320 [ 913.226398][ T6477] ? alloc_vmap_area+0x12f/0x1340 [ 913.226417][ T6477] ? put_dec_trunc8+0x10e/0x130 [ 913.226431][ T6477] alloc_vmap_area+0x12f/0x1340 [ 913.226490][ T6477] ? should_fail+0xd6/0x250 [ 913.226505][ T6477] ? kmem_cache_alloc_node_trace+0x1f0/0x2e0 [ 913.226523][ T6477] __get_vm_area_node+0x165/0x260 [ 913.226579][ T6477] __vmalloc_node_range+0xb7/0x5a0 [ 913.226597][ T6477] ? copy_process+0x3ff/0x2f70 [ 913.226679][ T6477] ? kmem_cache_alloc_node+0x1d4/0x2b0 [ 913.226698][ T6477] dup_task_struct+0x470/0x630 [ 913.226723][ T6477] ? copy_process+0x3ff/0x2f70 [ 913.226736][ T6477] copy_process+0x3ff/0x2f70 [ 913.226749][ T6477] ? io_issue_sqe+0x5980/0x69f0 [ 913.226769][ T6477] ? create_io_worker+0x3a0/0x3a0 [ 913.226808][ T6477] create_io_thread+0x81/0xa0 [ 913.226823][ T6477] ? create_io_worker+0x3a0/0x3a0 [ 913.226838][ T6477] create_io_worker+0x106/0x3a0 [ 913.226853][ T6477] io_wqe_enqueue+0x487/0x560 [ 913.226868][ T6477] io_wq_enqueue+0x31/0x40 [ 913.227030][ T6477] io_queue_async_work+0x171/0x230 [ 913.227044][ T6477] __io_queue_sqe+0x33d/0x360 [ 913.227057][ T6477] io_async_task_func+0x360/0x560 [ 913.227132][ T6477] tctx_task_work+0x1a3/0x400 [ 913.227146][ T6477] task_work_run+0xae/0x130 [ 913.227160][ T6477] exit_to_user_mode_prepare+0xf8/0x190 [ 913.227177][ T6477] syscall_exit_to_user_mode+0x20/0x40 [ 913.227192][ T6477] do_syscall_64+0x49/0x90 [ 913.227268][ T6477] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 913.227288][ T6477] RIP: 0033:0x4665d9 [ 913.227298][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.227352][ T6477] RSP: 002b:00007f301d4c0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 913.227367][ T6477] RAX: 0000000000000000 RBX: 000000000056c038 RCX: 00000000004665d9 [ 913.227375][ T6477] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004 [ 913.227384][ T6477] RBP: 00007f301d4c01d0 R08: 0000000000000000 R09: 0000000000000000 [ 913.227392][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 913.227401][ T6477] R13: 00007ffc1913612f R14: 00007f301d4c0300 R15: 0000000000022000 [ 913.227428][ T6477] syz-executor.2: vmalloc error: size 16384, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0 [ 913.227473][ T6477] CPU: 0 PID: 6477 Comm: syz-executor.2 Tainted: G W 5.13.0-syzkaller #0 [ 913.227511][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 913.227522][ T6477] Call Trace: [ 913.227527][ T6477] dump_stack_lvl+0xb7/0x103 [ 913.227546][ T6477] dump_stack+0x11/0x1a [ 913.227564][ T6477] warn_alloc+0x105/0x160 [ 913.227581][ T6477] ? kfree+0xf0/0x1d0 [ 913.227621][ T6477] __vmalloc_node_range+0x20f/0x5a0 [ 913.227693][ T6477] ? kmem_cache_alloc_node+0x1d4/0x2b0 [ 913.227715][ T6477] dup_task_struct+0x470/0x630 [ 913.227728][ T6477] ? copy_process+0x3ff/0x2f70 [ 913.227741][ T6477] copy_process+0x3ff/0x2f70 [ 913.227757][ T6477] ? io_issue_sqe+0x5980/0x69f0 [ 913.227854][ T6477] ? create_io_worker+0x3a0/0x3a0 [ 913.227905][ T6477] create_io_thread+0x81/0xa0 [ 913.227922][ T6477] ? create_io_worker+0x3a0/0x3a0 [ 913.228003][ T6477] create_io_worker+0x106/0x3a0 [ 913.228024][ T6477] io_wqe_enqueue+0x487/0x560 [ 913.228044][ T6477] io_wq_enqueue+0x31/0x40 [ 913.228063][ T6477] io_queue_async_work+0x171/0x230 [ 913.228083][ T6477] __io_queue_sqe+0x33d/0x360 [ 913.228141][ T6477] io_async_task_func+0x360/0x560 [ 913.228164][ T6477] tctx_task_work+0x1a3/0x400 [ 913.228180][ T6477] task_work_run+0xae/0x130 [ 913.228198][ T6477] exit_to_user_mode_prepare+0xf8/0x190 [ 913.228221][ T6477] syscall_exit_to_user_mode+0x20/0x40 [ 913.228246][ T6477] do_syscall_64+0x49/0x90 [ 913.228264][ T6477] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 913.228303][ T6477] RIP: 0033:0x4665d9 [ 913.228312][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.228325][ T6477] RSP: 002b:00007f301d4c0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 913.228338][ T6477] RAX: 0000000000000000 RBX: 000000000056c038 RCX: 00000000004665d9 [ 913.228347][ T6477] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004 [ 913.228355][ T6477] RBP: 00007f301d4c01d0 R08: 0000000000000000 R09: 0000000000000000 [ 913.228364][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 913.228376][ T6477] R13: 00007ffc1913612f R14: 00007f301d4c0300 R15: 0000000000022000 [ 913.228390][ T6477] Mem-Info: [ 913.228395][ T6477] active_anon:5008 inactive_anon:102204 isolated_anon:0 [ 913.228395][ T6477] active_file:10735 inactive_file:54918 isolated_file:0 [ 913.228395][ T6477] unevictable:0 dirty:232 writeback:6 [ 913.228395][ T6477] slab_reclaimable:5145 slab_unreclaimable:9418 [ 913.228395][ T6477] mapped:65426 shmem:10398 pagetables:6867 bounce:0 [ 913.228395][ T6477] free:1711140 free_pcp:2849 free_cma:0 17:07:16 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x0) [ 913.228465][ T6477] Node 0 active_anon:20032kB inactive_anon:408816kB active_file:42940kB inactive_file:219672kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:261704kB dirty:928kB writeback:24kB shmem:41592kB writeback_tmp:0kB kernel_stack:5232kB pagetables:27468kB all_unreclaimable? no [ 913.228505][ T6477] Node 0 DMA free:15360kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 913.228554][ T6477] lowmem_reserve[]: 0 2938 7916 7916 [ 913.228619][ T6477] Node 0 DMA32 free:3010236kB min:4220kB low:7228kB high:10236kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:3013476kB mlocked:0kB bounce:0kB free_pcp:3240kB local_pcp:52kB free_cma:0kB [ 913.228726][ T6477] lowmem_reserve[]: 0 0 4978 4978 [ 913.228742][ T6477] Node 0 Normal free:3818964kB min:7152kB low:12248kB high:17344kB reserved_highatomic:0KB active_anon:20032kB inactive_anon:408816kB active_file:42940kB inactive_file:219672kB unevictable:0kB writepending:968kB present:5242880kB managed:5098252kB mlocked:0kB bounce:0kB free_pcp:8156kB local_pcp:4772kB free_cma:0kB [ 913.228795][ T6477] lowmem_reserve[]: 0 0 0 0 [ 913.228813][ T6477] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 913.228929][ T6477] Node 0 DMA32: 5*4kB (M) 1*8kB (M) 4*16kB (M) 5*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 2*1024kB (M) 1*2048kB (M) 733*4096kB (M) = 3010236kB [ 913.229244][ T6477] Node 0 Normal: 2112*4kB (UME) 713*8kB (UME) 477*16kB (UME) 276*32kB (UME) 220*64kB (UME) 99*128kB (UME) 20*256kB (UME) 9*512kB (ME) 2*1024kB (M) 7*2048kB (UME) 912*4096kB (UM) = 3819032kB [ 913.229403][ T6477] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB 17:07:16 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x206c) 17:07:16 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r1, 0xf502, 0x0) 17:07:16 executing program 2 (fault-call:7 fault-nth:4): r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:16 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) r7 = open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) fsconfig$FSCONFIG_SET_PATH(r7, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 913.229416][ T6477] 31241 total pagecache pages [ 913.229421][ T6477] 0 pages in swap cache [ 913.229424][ T6477] Swap cache stats: add 0, delete 0, find 0/0 [ 913.229432][ T6477] Free swap = 0kB [ 913.229436][ T6477] Total swap = 0kB [ 913.229440][ T6477] 2097051 pages RAM [ 913.229445][ T6477] 0 pages HighMem/MovableOnly [ 913.229450][ T6477] 65279 pages reserved 17:07:16 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x19) [ 914.172313][ T7081] serio: Serial port pts3 17:07:16 executing program 3: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x10000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef0100010000009f09c75f000000000000000001000000000000000b0000008000000038000000c20201006b04000076b65be2f6da47278c750525a5b65a090000000000000000", 0x80, 0x400}, {&(0x7f0000010080)="000000000000000000000000ede2de4df49d4f87b54a3176cfd4eb4f010040000c000000000000009f09c75f00"/64, 0x40, 0x4e0}, {&(0x7f00000100c0)="0100000000000000000000000000000000000000040100001200000000000000", 0x20, 0x560}, {&(0x7f00000100e0)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb0300000013000000230000002b0005000200040000000000907306c205002a9c00000000000000000000000000000000000000000000000091ecd11b00000000", 0x60, 0x7e0}, {&(0x7f0000010160)="ffff05000c000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b000000dc030a026c6f73742b666f756e6400"/1088, 0x440, 0xc00}, {&(0x7f00000105a0)="0000000000000000000000000000000000000000000000000c0000de46b807b70b0000000c0001022e00000002000000e80302022e2e00"/64, 0x40, 0x13e0}, {&(0x7f00000105e0)="0000000000000000000000000000000000000000000000000c0000de5551aadd00000000f40300"/64, 0x40, 0x17e0}, {&(0x7f0000010620)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1be0}, {&(0x7f0000010660)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1fe0}, {&(0x7f00000106a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x23e0}, {&(0x7f00000106e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x27e0}, {&(0x7f0000010720)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2be0}, {&(0x7f0000010760)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2fe0}, {&(0x7f00000107a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x33e0}, {&(0x7f00000107e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x37e0}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3be0}, {&(0x7f0000010860)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3fe0}, {&(0x7f00000108a0)="0000000000000000000000000000000000000000000000000c0000de2b607f29", 0x20, 0x43e0}, {&(0x7f00000108c0)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0x4c00}, {&(0x7f0000010cc0)="00000000000000009f09c75f9f09c75f9f09c75f00"/32, 0x20, 0x8c00}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004000000000000000000000001000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005c1f0000", 0xa0, 0x8c60}, {&(0x7f0000010d80)="00000000000000000000000000000000000000000000000000000000acff0000", 0x20, 0x8d60}, {&(0x7f0000010da0)="000000000000000000000000000000000000000000000000000000000ee30000", 0x20, 0x8de0}, {&(0x7f0000010dc0)="00000000000000000000000000000000000000000000000000000000ce1e0000", 0x20, 0x8e60}, {&(0x7f0000010de0)="000000000000000000000000000000000000000000000000000000007f6e000080810000003004049f09c75f9f09c75f9f09c75f000000000000010002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000000000000000005620000", 0xa0, 0x8ee0}, {&(0x7f0000010e80)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00;W\x00\x00', 0x20, 0x8fe0}, {&(0x7f0000010ea0)="00000000000000000000000000000000000000000000000000000000fbaa0000", 0x20, 0x9060}, {&(0x7f0000010ec0)="000000000000000000000000000000000000000000000000000000004ada0000c0410000003000009f09c75f9f09c75f9f09c75f00000000000002001800000000000800000000000af301000400000000000000000000000c0000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070fa0000", 0xa0, 0x90e0}], 0x0, &(0x7f0000010f60)) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000140)=ANY=[@ANYBLOB="0200000000000000000000000000000000000000000000000000000000000000000000000000000040000000", @ANYRES32=0x0, @ANYBLOB="00000002000000000000000000000000000000000000000000000000000000000102030405060708200a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f40"]) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x1c0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000500)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @a}) preadv2(r0, &(0x7f00000009c0)=[{&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f00000006c0)=""/154, 0x9a}, {&(0x7f0000000780)=""/225, 0xe1}, {&(0x7f0000000040)=""/27, 0x1b}, {&(0x7f0000000880)=""/92, 0x5c}, {&(0x7f0000000900)=""/176, 0xb0}], 0x6, 0x1, 0x1, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000580)='mnt/encrypted_dir/file\x00', 0x42, 0x180) write(r3, &(0x7f00000005c0)='foo', 0x3) 17:07:16 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x1, &(0x7f0000000040)=0xad7a, 0x82) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$TIOCSRS485(r1, 0x542f, &(0x7f0000000100)={0xffffffff, 0x0, 0x6}) r2 = syz_open_pts(r0, 0x0) syz_open_pts(r2, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) set_mempolicy(0x0, &(0x7f0000000080)=0x745a5084, 0x4) [ 914.249640][ T7100] loop4: detected capacity change from 0 to 7 [ 914.256042][ T7103] loop3: detected capacity change from 0 to 144 [ 914.256144][ T7102] FAULT_INJECTION: forcing a failure. [ 914.256144][ T7102] name failslab, interval 1, probability 0, space 0, times 0 [ 914.275031][ T7102] CPU: 1 PID: 7102 Comm: syz-executor.2 Tainted: G W 5.13.0-syzkaller #0 17:07:17 executing program 3: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x10000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef0100010000009f09c75f000000000000000001000000000000000b0000008000000038000000c20201006b04000076b65be2f6da47278c750525a5b65a090000000000000000", 0x80, 0x400}, {&(0x7f0000010080)="000000000000000000000000ede2de4df49d4f87b54a3176cfd4eb4f010040000c000000000000009f09c75f00"/64, 0x40, 0x4e0}, {&(0x7f00000100c0)="0100000000000000000000000000000000000000040100001200000000000000", 0x20, 0x560}, {&(0x7f00000100e0)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb0300000013000000230000002b0005000200040000000000907306c205002a9c00000000000000000000000000000000000000000000000091ecd11b00000000", 0x60, 0x7e0}, {&(0x7f0000010160)="ffff05000c000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b000000dc030a026c6f73742b666f756e6400"/1088, 0x440, 0xc00}, {&(0x7f00000105a0)="0000000000000000000000000000000000000000000000000c0000de46b807b70b0000000c0001022e00000002000000e80302022e2e00"/64, 0x40, 0x13e0}, {&(0x7f00000105e0)="0000000000000000000000000000000000000000000000000c0000de5551aadd00000000f40300"/64, 0x40, 0x17e0}, {&(0x7f0000010620)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1be0}, {&(0x7f0000010660)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1fe0}, {&(0x7f00000106a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x23e0}, {&(0x7f00000106e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x27e0}, {&(0x7f0000010720)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2be0}, {&(0x7f0000010760)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2fe0}, {&(0x7f00000107a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x33e0}, {&(0x7f00000107e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x37e0}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3be0}, {&(0x7f0000010860)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3fe0}, {&(0x7f00000108a0)="0000000000000000000000000000000000000000000000000c0000de2b607f29", 0x20, 0x43e0}, {&(0x7f00000108c0)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0x4c00}, {&(0x7f0000010cc0)="00000000000000009f09c75f9f09c75f9f09c75f00"/32, 0x20, 0x8c00}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004000000000000000000000001000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005c1f0000", 0xa0, 0x8c60}, {&(0x7f0000010d80)="00000000000000000000000000000000000000000000000000000000acff0000", 0x20, 0x8d60}, {&(0x7f0000010da0)="000000000000000000000000000000000000000000000000000000000ee30000", 0x20, 0x8de0}, {&(0x7f0000010dc0)="00000000000000000000000000000000000000000000000000000000ce1e0000", 0x20, 0x8e60}, {&(0x7f0000010de0)="000000000000000000000000000000000000000000000000000000007f6e000080810000003004049f09c75f9f09c75f9f09c75f000000000000010002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000000000000000005620000", 0xa0, 0x8ee0}, {&(0x7f0000010e80)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00;W\x00\x00', 0x20, 0x8fe0}, {&(0x7f0000010ea0)="00000000000000000000000000000000000000000000000000000000fbaa0000", 0x20, 0x9060}, {&(0x7f0000010ec0)="000000000000000000000000000000000000000000000000000000004ada0000c0410000003000009f09c75f9f09c75f9f09c75f00000000000002001800000000000800000000000af301000400000000000000000000000c0000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070fa0000", 0xa0, 0x90e0}], 0x0, &(0x7f0000010f60)) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000140)=ANY=[@ANYBLOB="0200000000000000000000000000000000000000000000000000000000000000000000000000000040000000", @ANYRES32=0x0, @ANYBLOB="00000002000000000000000000000000000000000000000000000000000000000102030405060708200a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f40"]) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x1c0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000500)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @a}) preadv2(r0, &(0x7f00000009c0)=[{&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f00000006c0)=""/154, 0x9a}, {&(0x7f0000000780)=""/225, 0xe1}, {&(0x7f0000000040)=""/27, 0x1b}, {&(0x7f0000000880)=""/92, 0x5c}, {&(0x7f0000000900)=""/176, 0xb0}], 0x6, 0x1, 0x1, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000580)='mnt/encrypted_dir/file\x00', 0x42, 0x180) write(r3, &(0x7f00000005c0)='foo', 0x3) [ 914.275155][ T7102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.275165][ T7102] Call Trace: [ 914.275171][ T7102] dump_stack_lvl+0xb7/0x103 [ 914.275198][ T7102] dump_stack+0x11/0x1a [ 914.275217][ T7102] should_fail+0x23c/0x250 [ 914.275235][ T7102] ? security_inode_alloc+0x30/0x180 [ 914.275251][ T7102] __should_failslab+0x81/0x90 [ 914.275350][ T7102] should_failslab+0x5/0x20 [ 914.275365][ T7102] kmem_cache_alloc+0x46/0x2e0 [ 914.275382][ T7102] security_inode_alloc+0x30/0x180 [ 914.275396][ T7102] inode_init_always+0x20b/0x420 [ 914.275411][ T7102] new_inode_pseudo+0x73/0x1c0 [ 914.275428][ T7102] __ns_get_path+0xd7/0x2a0 [ 914.275443][ T7102] ns_get_path+0x3d/0x70 [ 914.275473][ T7102] perf_event_namespaces+0x8c/0x4f0 [ 914.275492][ T7102] perf_event_fork+0xd2/0x100 [ 914.275509][ T7102] copy_process+0x2b19/0x2f70 17:07:17 executing program 3: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x10000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef0100010000009f09c75f000000000000000001000000000000000b0000008000000038000000c20201006b04000076b65be2f6da47278c750525a5b65a090000000000000000", 0x80, 0x400}, {&(0x7f0000010080)="000000000000000000000000ede2de4df49d4f87b54a3176cfd4eb4f010040000c000000000000009f09c75f00"/64, 0x40, 0x4e0}, {&(0x7f00000100c0)="0100000000000000000000000000000000000000040100001200000000000000", 0x20, 0x560}, {&(0x7f00000100e0)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb0300000013000000230000002b0005000200040000000000907306c205002a9c00000000000000000000000000000000000000000000000091ecd11b00000000", 0x60, 0x7e0}, {&(0x7f0000010160)="ffff05000c000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b000000dc030a026c6f73742b666f756e6400"/1088, 0x440, 0xc00}, {&(0x7f00000105a0)="0000000000000000000000000000000000000000000000000c0000de46b807b70b0000000c0001022e00000002000000e80302022e2e00"/64, 0x40, 0x13e0}, {&(0x7f00000105e0)="0000000000000000000000000000000000000000000000000c0000de5551aadd00000000f40300"/64, 0x40, 0x17e0}, {&(0x7f0000010620)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1be0}, {&(0x7f0000010660)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1fe0}, {&(0x7f00000106a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x23e0}, {&(0x7f00000106e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x27e0}, {&(0x7f0000010720)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2be0}, {&(0x7f0000010760)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2fe0}, {&(0x7f00000107a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x33e0}, {&(0x7f00000107e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x37e0}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3be0}, {&(0x7f0000010860)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3fe0}, {&(0x7f00000108a0)="0000000000000000000000000000000000000000000000000c0000de2b607f29", 0x20, 0x43e0}, {&(0x7f00000108c0)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0x4c00}, {&(0x7f0000010cc0)="00000000000000009f09c75f9f09c75f9f09c75f00"/32, 0x20, 0x8c00}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004000000000000000000000001000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005c1f0000", 0xa0, 0x8c60}, {&(0x7f0000010d80)="00000000000000000000000000000000000000000000000000000000acff0000", 0x20, 0x8d60}, {&(0x7f0000010da0)="000000000000000000000000000000000000000000000000000000000ee30000", 0x20, 0x8de0}, {&(0x7f0000010dc0)="00000000000000000000000000000000000000000000000000000000ce1e0000", 0x20, 0x8e60}, {&(0x7f0000010de0)="000000000000000000000000000000000000000000000000000000007f6e000080810000003004049f09c75f9f09c75f9f09c75f000000000000010002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000000000000000005620000", 0xa0, 0x8ee0}, {&(0x7f0000010e80)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00;W\x00\x00', 0x20, 0x8fe0}, {&(0x7f0000010ea0)="00000000000000000000000000000000000000000000000000000000fbaa0000", 0x20, 0x9060}, {&(0x7f0000010ec0)="000000000000000000000000000000000000000000000000000000004ada0000c0410000003000009f09c75f9f09c75f9f09c75f00000000000002001800000000000800000000000af301000400000000000000000000000c0000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070fa0000", 0xa0, 0x90e0}], 0x0, &(0x7f0000010f60)) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000140)=ANY=[@ANYBLOB="0200000000000000000000000000000000000000000000000000000000000000000000000000000040000000", @ANYRES32=0x0, @ANYBLOB="00000002000000000000000000000000000000000000000000000000000000000102030405060708200a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f40"]) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x1c0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000500)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @a}) preadv2(r0, &(0x7f00000009c0)=[{&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f00000006c0)=""/154, 0x9a}, {&(0x7f0000000780)=""/225, 0xe1}, {&(0x7f0000000040)=""/27, 0x1b}, {&(0x7f0000000880)=""/92, 0x5c}, {&(0x7f0000000900)=""/176, 0xb0}], 0x6, 0x1, 0x1, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000580)='mnt/encrypted_dir/file\x00', 0x42, 0x180) write(r3, &(0x7f00000005c0)='foo', 0x3) [ 914.275527][ T7102] ? create_io_worker+0x3a0/0x3a0 [ 914.275615][ T7102] create_io_thread+0x81/0xa0 [ 914.275629][ T7102] ? create_io_worker+0x3a0/0x3a0 [ 914.275648][ T7102] create_io_worker+0x106/0x3a0 17:07:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$msdos(&(0x7f0000000200), &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x8800, &(0x7f0000000040)=ANY=[@ANYBLOB="646f7370792c00c288d551058d3e6499f7a4a8b1f180765cb6857b7b00c97f0d2c6f"]) r1 = socket$inet(0x2, 0x3, 0x7fffffff) preadv(r1, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/111, 0x6f}, {&(0x7f0000000140)=""/79, 0x4f}, {&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000000240)=""/132, 0x84}, {&(0x7f0000001400)=""/220, 0xdc}], 0x5, 0x7, 0xffffffff) [ 914.275677][ T7102] io_wqe_enqueue+0x487/0x560 [ 914.275695][ T7102] io_wq_enqueue+0x31/0x40 [ 914.275712][ T7102] io_queue_async_work+0x171/0x230 [ 914.275728][ T7102] __io_queue_sqe+0x33d/0x360 [ 914.275743][ T7102] io_async_task_func+0x360/0x560 [ 914.275826][ T7102] tctx_task_work+0x1a3/0x400 [ 914.275842][ T7102] task_work_run+0xae/0x130 [ 914.275859][ T7102] exit_to_user_mode_prepare+0xf8/0x190 [ 914.275880][ T7102] syscall_exit_to_user_mode+0x20/0x40 [ 914.275901][ T7102] do_syscall_64+0x49/0x90 [ 914.275993][ T7102] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 914.276015][ T7102] RIP: 0033:0x4665d9 [ 914.276027][ T7102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 914.276042][ T7102] RSP: 002b:00007f301d4c0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 914.276060][ T7102] RAX: 0000000000000000 RBX: 000000000056c038 RCX: 00000000004665d9 [ 914.276184][ T7102] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004 [ 914.276195][ T7102] RBP: 00007f301d4c01d0 R08: 0000000000000000 R09: 0000000000000000 [ 914.276206][ T7102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 914.276217][ T7102] R13: 00007ffc1913612f R14: 00007f301d4c0300 R15: 0000000000022000 [ 914.277131][ T7103] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 17:07:17 executing program 3: pipe(&(0x7f0000000080)) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_flowlabel\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='mounts\x00') dup2(r0, r1) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="0003000000000000"]) [ 914.277277][ T7103] ext4 filesystem being mounted at /root/syzkaller-testdir203449691/syzkaller.8DrMy1/2131/mnt supports timestamps until 2038 (0x7fffffff) [ 914.396052][ T7154] loop3: detected capacity change from 0 to 144 [ 914.405041][ T7154] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 914.405095][ T7154] ext4 filesystem being mounted at /root/syzkaller-testdir203449691/syzkaller.8DrMy1/2132/mnt supports timestamps until 2038 (0x7fffffff) [ 914.468581][ T7208] loop3: detected capacity change from 0 to 144 [ 914.486117][ T7208] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 17:07:17 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) r7 = open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) fsconfig$FSCONFIG_SET_PATH(r7, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 914.486176][ T7208] ext4 filesystem being mounted at /root/syzkaller-testdir203449691/syzkaller.8DrMy1/2133/mnt supports timestamps until 2038 (0x7fffffff) [ 914.858286][ T7629] loop4: detected capacity change from 0 to 7 17:07:17 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2074) 17:07:17 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x6a) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) setrlimit(0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ptrace$getregs(0xc, 0x0, 0x16, &(0x7f0000000340)=""/39) clone3(&(0x7f00000004c0)={0x2000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000100), {0x1}, 0x0, 0x5c, 0x0, 0x0, 0x14}, 0x58) sched_setattr(0x0, 0x0, 0x0) sendmmsg$sock(r1, &(0x7f0000000400), 0x0, 0x40) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write(r3, &(0x7f0000001400)="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"/3584, 0xe00) openat(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0xa) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) sendfile(r3, r4, 0x0, 0x11f08) 17:07:17 executing program 2 (fault-call:7 fault-nth:5): r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:17 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCL_UNBLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000040)) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = fcntl$dupfd(r0, 0x406, r0) ioctl$TCXONC(r2, 0x540a, 0x2) 17:07:17 executing program 0 (fault-call:4 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:17 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) [ 915.058912][ T7778] serio: Serial port pts2 17:07:17 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) set_mempolicy(0x0, &(0x7f0000000040)=0xda1, 0x8) [ 915.079123][ T7787] FAULT_INJECTION: forcing a failure. [ 915.079123][ T7787] name fail_futex, interval 1, probability 0, space 0, times 1 [ 915.092028][ T7787] CPU: 0 PID: 7787 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 915.092056][ T7787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.092067][ T7787] Call Trace: [ 915.092074][ T7787] dump_stack_lvl+0xb7/0x103 [ 915.092122][ T7787] dump_stack+0x11/0x1a [ 915.092160][ T7787] should_fail+0x23c/0x250 [ 915.092181][ T7787] __se_sys_futex+0x13b/0x370 [ 915.092199][ T7787] ? fput+0x2d/0x130 [ 915.092219][ T7787] __x64_sys_futex+0x74/0x80 [ 915.092265][ T7787] do_syscall_64+0x3d/0x90 [ 915.092285][ T7787] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 915.092310][ T7787] RIP: 0033:0x4665d9 [ 915.092323][ T7787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 17:07:17 executing program 0 (fault-call:4 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 915.092340][ T7787] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 915.092373][ T7787] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 915.092383][ T7787] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 915.092392][ T7787] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 915.092402][ T7787] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 915.092414][ T7787] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 915.235103][ T7800] loop4: detected capacity change from 0 to 7 [ 915.357342][ T7819] FAULT_INJECTION: forcing a failure. [ 915.357342][ T7819] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 915.386657][ T7819] CPU: 1 PID: 7819 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 17:07:18 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x1000000, 0xffffffff, 0x19, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x218000) 17:07:18 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) [ 915.386676][ T7819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.386688][ T7819] Call Trace: [ 915.386696][ T7819] dump_stack_lvl+0xb7/0x103 [ 915.414634][ T7819] dump_stack+0x11/0x1a [ 915.418873][ T7819] should_fail+0x23c/0x250 [ 915.423303][ T7819] should_fail_usercopy+0x16/0x20 [ 915.428354][ T7819] _copy_from_user+0x1c/0xd0 [ 915.432946][ T7819] get_timespec64+0x31/0xd0 [ 915.437462][ T7819] __se_sys_futex+0x158/0x370 17:07:18 executing program 0 (fault-call:4 fault-nth:2): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 915.442148][ T7819] ? fput+0x2d/0x130 [ 915.442168][ T7819] __x64_sys_futex+0x74/0x80 [ 915.442188][ T7819] do_syscall_64+0x3d/0x90 [ 915.442243][ T7819] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 915.442265][ T7819] RIP: 0033:0x4665d9 [ 915.442276][ T7819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 915.442289][ T7819] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 915.442303][ T7819] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 915.442312][ T7819] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 915.442385][ T7819] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 915.442399][ T7819] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 17:07:18 executing program 0 (fault-call:4 fault-nth:3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 915.442410][ T7819] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 915.509282][ T8052] FAULT_INJECTION: forcing a failure. [ 915.509282][ T8052] name failslab, interval 1, probability 0, space 0, times 0 [ 915.509315][ T8052] CPU: 1 PID: 8052 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 915.509333][ T8052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.509342][ T8052] Call Trace: [ 915.509348][ T8052] dump_stack_lvl+0xb7/0x103 [ 915.509376][ T8052] dump_stack+0x11/0x1a [ 915.509428][ T8052] should_fail+0x23c/0x250 [ 915.509450][ T8052] __should_failslab+0x81/0x90 [ 915.509471][ T8052] ? futex_lock_pi+0xf2/0x860 [ 915.509486][ T8052] should_failslab+0x5/0x20 [ 915.509504][ T8052] kmem_cache_alloc_trace+0x49/0x310 [ 915.509598][ T8052] ? rmqueue_pcplist+0x145/0x1d0 [ 915.509615][ T8052] futex_lock_pi+0xf2/0x860 [ 915.509629][ T8052] do_futex+0x9dc/0x1f10 [ 915.509640][ T8052] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 915.509658][ T8052] ? kstrtoull+0x321/0x360 [ 915.509675][ T8052] ? kstrtouint_from_user+0x104/0x130 [ 915.509693][ T8052] ? fsnotify_perm+0x59/0x2e0 [ 915.509732][ T8052] ? __fsnotify_parent+0x32f/0x430 [ 915.509748][ T8052] ? get_pid_task+0x8b/0xc0 [ 915.509764][ T8052] ? should_fail+0xd6/0x250 [ 915.509782][ T8052] ? _copy_from_user+0x94/0xd0 [ 915.509799][ T8052] __se_sys_futex+0xc6/0x370 [ 915.509817][ T8052] __x64_sys_futex+0x74/0x80 [ 915.509834][ T8052] do_syscall_64+0x3d/0x90 [ 915.509894][ T8052] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 915.509920][ T8052] RIP: 0033:0x4665d9 [ 915.509931][ T8052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 915.509944][ T8052] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 915.509959][ T8052] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 915.509968][ T8052] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 915.509995][ T8052] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 915.510015][ T8052] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 915.510027][ T8052] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 915.577755][ T8237] FAULT_INJECTION: forcing a failure. [ 915.577755][ T8237] name fail_futex, interval 1, probability 0, space 0, times 0 [ 915.730357][ T8377] loop4: detected capacity change from 0 to 7 [ 915.738142][ T8237] CPU: 0 PID: 8237 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 915.738166][ T8237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.738176][ T8237] Call Trace: [ 915.823391][ T8237] dump_stack_lvl+0xb7/0x103 [ 915.823444][ T8237] dump_stack+0x11/0x1a [ 915.823459][ T8237] should_fail+0x23c/0x250 [ 915.823475][ T8237] get_futex_key+0xdb/0x830 [ 915.823516][ T8237] ? kmem_cache_alloc_trace+0x2fc/0x310 [ 915.823534][ T8237] ? hrtimer_init_sleeper+0x13f/0x1e0 [ 915.823589][ T8237] futex_lock_pi+0x191/0x860 [ 915.823602][ T8237] ? __run_hrtimer+0x480/0x480 [ 915.823616][ T8237] do_futex+0x9dc/0x1f10 [ 915.823627][ T8237] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 915.823641][ T8237] ? kstrtoull+0x321/0x360 [ 915.823660][ T8237] ? kstrtouint_from_user+0x104/0x130 [ 915.823674][ T8237] ? fsnotify_perm+0x59/0x2e0 [ 915.823687][ T8237] ? __fsnotify_parent+0x32f/0x430 [ 915.823699][ T8237] ? get_pid_task+0x8b/0xc0 [ 915.823712][ T8237] ? should_fail+0xd6/0x250 [ 915.823794][ T8237] ? _copy_from_user+0x94/0xd0 [ 915.823806][ T8237] __se_sys_futex+0xc6/0x370 [ 915.823818][ T8237] __x64_sys_futex+0x74/0x80 [ 915.823830][ T8237] do_syscall_64+0x3d/0x90 [ 915.823848][ T8237] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 915.823885][ T8237] RIP: 0033:0x4665d9 17:07:18 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x207a) [ 915.823896][ T8237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 915.823989][ T8237] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 915.824003][ T8237] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 915.824012][ T8237] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 915.824020][ T8237] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 915.824029][ T8237] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 915.824128][ T8237] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:18 executing program 3: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) set_mempolicy(0x0, &(0x7f0000000040)=0xda1, 0x8) 17:07:18 executing program 0 (fault-call:4 fault-nth:4): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:18 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:18 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) open_tree(r3, &(0x7f0000000080)='./file0\x00', 0x100) 17:07:18 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KDSKBLED(r0, 0x4b65, 0x4) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:18 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2003, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) set_mempolicy(0x1, &(0x7f0000000080)=0x1, 0x8) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) [ 916.088528][ T8407] serio: Serial port pts2 [ 916.103862][ T8413] FAULT_INJECTION: forcing a failure. [ 916.103862][ T8413] name fail_futex, interval 1, probability 0, space 0, times 0 [ 916.116721][ T8413] CPU: 0 PID: 8413 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 916.126444][ T8413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.137000][ T8413] Call Trace: [ 916.137011][ T8413] dump_stack_lvl+0xb7/0x103 [ 916.137038][ T8413] dump_stack+0x11/0x1a [ 916.137058][ T8413] should_fail+0x23c/0x250 [ 916.137120][ T8413] get_futex_key+0x108/0x830 [ 916.137167][ T8413] ? kmem_cache_alloc_trace+0x2fc/0x310 [ 916.137188][ T8413] ? hrtimer_init_sleeper+0x13f/0x1e0 [ 916.137210][ T8413] futex_lock_pi+0x191/0x860 17:07:18 executing program 0 (fault-call:4 fault-nth:5): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:18 executing program 3: mlock(&(0x7f0000ff4000/0xc000)=nil, 0xc000) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040)=0x20, 0x0, 0x4) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4000, &(0x7f0000000080)=0x1, 0x0, 0x1) getrlimit(0x0, &(0x7f0000000000)) [ 916.137229][ T8413] ? __run_hrtimer+0x480/0x480 [ 916.137248][ T8413] do_futex+0x9dc/0x1f10 [ 916.137332][ T8413] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 916.137410][ T8413] ? kstrtoull+0x321/0x360 [ 916.137444][ T8413] ? kstrtouint_from_user+0x104/0x130 [ 916.137461][ T8413] ? fsnotify_perm+0x59/0x2e0 [ 916.137480][ T8413] ? __fsnotify_parent+0x32f/0x430 [ 916.137495][ T8413] ? get_pid_task+0x8b/0xc0 [ 916.137512][ T8413] ? should_fail+0xd6/0x250 17:07:18 executing program 5: r0 = syz_open_dev$vcsu(&(0x7f0000000080), 0x100, 0x80001) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x15c, r1, 0x8, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffff7fff}]}, @TIPC_NLA_MEDIA={0xf0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x733d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x76e2}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xed}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffc0}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x581}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x80}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xe9c2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x81}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x804}, 0x8000) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x8, "00000000000000000000008000"}) r3 = syz_open_pts(r2, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) [ 916.137605][ T8413] ? _copy_from_user+0x94/0xd0 [ 916.137685][ T8413] __se_sys_futex+0xc6/0x370 [ 916.137702][ T8413] __x64_sys_futex+0x74/0x80 [ 916.137717][ T8413] do_syscall_64+0x3d/0x90 [ 916.137738][ T8413] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 916.137761][ T8413] RIP: 0033:0x4665d9 [ 916.137773][ T8413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 17:07:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x646780, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) fcntl$setownex(r1, 0xf, &(0x7f0000000180)={0x2}) rseq(&(0x7f00000001c0), 0x20, 0x0, 0x0) r2 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x80000) fcntl$getownex(r2, 0x10, &(0x7f0000000240)) openat(r0, &(0x7f0000000140)='./file0\x00', 0x2200, 0x110) syz_io_uring_setup(0x7761, &(0x7f0000000040), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r3, 0x6, &(0x7f0000000040)) sendmsg$nl_netfilter(r3, &(0x7f0000001500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000014c0)={&(0x7f00000002c0)={0x11d0, 0x14, 0x7, 0x201, 0x70bd2b, 0x25dfdbff, {0x1, 0x0, 0x2}, [@generic="8d20dd60a51a78e8e6bbbe0f51a20d2d79fef8f636fbe50568e6869f763a63d43962704edabbbcf3a054d9ea4f6c7e038c9b5b8f130a0e1cb024cfd3bc", @typed={0x4, 0x31}, @nested={0xc, 0x60, 0x0, 0x1, [@typed={0x7, 0x95, 0x0, 0x0, @str='L%\x00'}]}, @nested={0x116a, 0x6e, 0x0, 0x1, [@typed={0x1004, 0x95, 0x0, 0x0, @binary="9da5ed4cf8d2f649e9f6a6fa601e489c97c005de49863d6006ea7b49691680b58a40f38201b485e66c7672bc69b7b9454e79e82dcd379f1ce4a3ed40c65d6287108845aa41b00a3ed7e0e471789eccfee08e891dbc71fffa75bffdb3fcd0c4e889e6cf88574f78846f41c56b53d0ac6008e72858605189ab6699fb32b553c15f2a73efd59b91983044429f42e7bfb06f215fd1172c3153a58f096e1be85d412dc2d6a42b6773013c122fcb275e5232b778ec18b4e27c9f6fbca9a4f4c72eec9045e85a3d75e34c1f075b35ca711a2fca7b4560086bc9e6f77cdc49d8d5ac4c1bcf0a3a97855f3ae7e8f617a2b15e0509f2892469c47e7d18be97c890fc524af060baeec5f8541fa9fa1816e7c930331fb4b2a11f3a3f23d6ade961dd45e590f36165fad3b5c2b85872283a377fc844c8edeaba53b484c5c112e2e1b304b03fab6f65107cbf4d9daf3e7c049f0c7644702a7b7454191cf637446e40d867325bacba9a589918086a63435b89c1d359b1bc515a8a014eb1ac1cc44b074c3e404bc2d14fe284cb213c0dd01f527a84d13954621a1586266ede42e58402d1c3119eb5e50ce75e3d64c83e26547d5aa61a7a5adec40d2d67aa6988c5001beb827700b374e07cadfd6f7b6441af0237970bd3da0f16b12e5008b0cad0f7587908fe3b0c2a2160d9f15185a406ce7e56064fab45120605209ded46c1875e317b76eac07558cd45e15d64d357030d04469389eea57f73c4fce2a878ef7db72c37eb91f338e340f5361bdce9e1fab0d414ec9f5a844987ba2c125472db206ac0c99978146c4f827216cc194d2ec0854d942e9e670a2de18288d3a42fd0466c13ad578af1e21518c76d270f65df2eeb68a0f7b0cef36dbf78a11f5569704dbfa4f2d8540f3bfc44dc8cb6d498199336077003f7869a3bba7db0bb6b3e20b0be6019d7e75949dda8c4563630adb523c9f67b6f8f0f7f436e29a4d03d5e3efe2407792a6b020440ae4c647cdf2fd9c98a6c6ebb2ed7099a9c39dcff861be2fe3de2b78b586afe4efeeb4dbfe939f40d6f393f38b86e5c6bfc388d0a45f714ae74ea66b4477c6e1bb7326d939f2a58f052858fcda9a139617081275dfdd39000a802cb758019348edab139df2ec7804bb2829d521a5c6f7e4449610001d465bd4488a9c138bb2a8e831f408b4d3c5bd1370c71279e8207f674ec369549320bc689164ae7788fc7c51ba77bdcf34d2ae95d54ddde8aaaa594b73801ad4ae613c88fc9ae8687a3305867932e64d7aedc9888f624bb1d1dfc26b69891107b95abfc74ea0b2142a2f6004b363cfd591a7c9db55e6c8f1c5784c452fddd732c68f12464a25eaecb3bca199b0742ac3aa0a29987e6dbd3dc27545ecab09b1629fbf425d0d6aaae07f1a9597d2005fd3c94ec0150b76789c5adcd18638512bc9d2c1e790f40fc50d66e5469535b76f1d3831d692ccf90812ea25b3228e49918fd27ef590b3e0806ce5c1619dd1e7e97d961153f03e09ad7495a294a400802418ff99878a42b8a9c8d278790df1d3ab385a6db333c9a8ef86c7dcd3194a3bc2dd10ec4b903b2825ce813dad43c554a9b69a03518cad0a9d3d51d0e3b8918892355e3cbe215943f6ed2c38de68aee54de962ce1c39ca4b54ee10cecb71394a583d7b2ce465951909dd0896c7e98cd64aa5da95630490818aa884dd0d882d30ae12d2960e9b063b5f781fe6c9c8cbf24edd80c96dd8d04990e7cbea98a913d279716abee613e7abe2fe21823993b56666fae428e2a2c41d9a235a22c63d62edc703c5c45aa626a8f4ee20e8a75ddbabb43695350e86f8bb08c6056b1c393f72bb34f11814171a6fafb8433e2097f8d617948d7f079c579fa37ded8f7b253ba1d05b2bb605322bb6bf24248a928368ec8ec7a840608b1e363430aea9383c96c2780aa9a55501ea34fd675da99856301375b572afe163f92802cfe21754b5664b3476ff9a1dd1b96462aed09ace9ecc3f7b8ebd62f7d64b2e65aca4141d130ecee56b2fbe9254b4566ee090b9a6fd6531ff2bf32840652ca792f1fd880e16bcf63aedd6970e04793f0903a4f12ec7ffeb0fe2e5813bd3d8e413fa1279324d58d6c6fd4ebd426a63b8b20b1ac17101dc0a1ff46f24476586335db4cde3fda31cc67e1055a3e031438621c442ba27799132b358ab8f9fa09cef9aba566d3dc73bb2de8ab5b77b48ace397bc72a6f4ccbd5a46654f2ab09284c79d722d891adba1aa38a753cfcc1506f280228873175d359b859999ebdb10b894430a010600cad494a661899fe1648ae343ab15f53e6de405dfb03c8038120ae247e78d00dc26afd1a358246840a5447994f88143b5369d5fb8ca98439a5beb56e8f841754ecf2ef0587b1844ed3a9ee4f738151d220ee6b9f74fd8e2f25c0da3ed36cd73c2e139280f10183eb87b9d5276243f9adbc36b56acc4e13823ab1f067c5ae488b9c04092206e1fa3a28527dfc13022e0d1e122a6c029bb5ae71cb5b896c2c9d632aa5c24378b214399dc8e8000665b95dd7a89676c58b5c8b880b2de3eb6a1503254ba4f4595feba1aa5dbec67aa912035f9c97a906f4423804b923dcb63971b4018af26dba114353e983e67c5cef4671cc04208a52cd046628032a115ea454ea07a3afc9f4b6de491f1b9ad8273f2a853ec7698db3ba69816da1f93a95916222e6de0af4ad0d850a75271aaaa8b15ada8d4fcb76620c73c049834f7e782780c68f0d87daae4709d85b6029a8b1d72e3f8b7abadb7f0cb88c00b70d325a5d14d59c8d16eb490e52de4dc80fb0b3ae055ca0304aeed81cff9a2b1a3a012584b8440320e9fcdac5f0f19dd1f71a54cf5a32775ffcc20ddc10779fdb38d7c75544ff3d0a01801efe85dbfab7314a9278c70d3a7dc4b502ab361b8b6842171fdee69ac8a70b44542efb3cd21bfbbd1d3b7d028323fca223b172a9df389ffe68a13d37d9ed08077df2c968de3f44448d625082d2c12cf2b3ad56b9ab4cb9c2c83b2e20a2996b0290ac0c077b616646568946cc841acfe454acb0d952ee14457d8e1206f9f9f551380f311d0b3bdb7402c000afeebc8270489fb88e32c1a1f1cd81430794a8f256ec9e093410b9ac51a6ff58f59ae8c6e1744c05bae3e5a55a48c1383aedd5c521f4190aced5aeec48e3b9b1fbb3dceb11ee1212d3fefced8e2884bcc7c69d4a80701fa00aef72b4898a39c00caed91c76a65eff95af5240879f6c24472466648474922ae4208d2aac59192765eea8a9757dad2dab9bd4f504b66ab5f621cdfeb6b68697bed46190a55a188ba2d17d12d79367b036edc383c16b66c619078d4502841dec9afb5d35b30096af5b4a03590ba333a13a333ac8b1712bc67a279404a5a4c8e6f382944dbf28829806c83910308eec379413a84451b16c8d6b18280e2943404e5b3611b48fef909172a290a2fb467a4736d72e1891ae73750239e1293c828cf3a211193dfee113f2100cb5324423f00532383acb0af5fbea5f9949b2ba98539624d57dbdcc9972477602576278db5d9a7770cee981d945dc98d9bdd0991f741c87fb19a69640835e49169214ac8ce4dfea8d3ef12cb00b004f1a36b3cabeaf375bf6d8faf15ecdacafc2df42e4902c1e2a9c2ec0840a6eeec3f20493f384d08b7b74ab84a9b3bbc755276bbbd6d3b621c2d90e63b529135d8fc3bb7aec9d84584d08e5ddd791c6983e79034f53de95948b763435fc084596ed654b84780a280e9bf264845b29383800f8ec4a0750dbe3725cc5ab6c9e0e1c60add37d645e8a2909b00e66618c2e6e118e14cb31dbb5e92e93d60f1c312cc76b5fab9820ee0fe326761c72a5f4fef547c365d3dcead8469fefcbdb06390f3495a977b7c3f030f780939e8122943bc76e7a692d0667492ce812eac23a5aac794070f7a99a880d7ba5b34b42eb42d9f5ca545b2e1939d8024e499d0b7417838bf3f109e8004a9618efa33a8f972c09019a38e0182817c36a1a409b3242b297089985870036fe9afbf3d98876a33ebb69a2a0dd16820596a489786139ad2d6f838df371eb2cf573c010348e97eeefe91f0c68df31204b9c19079f486c7d44b50dbca5de87c4e50979b519a0e08e1630aa84950fc1012538d4a970e7693ac5de2e5acdf7a2008ee799b7d4ec6a068529b1eedec0ab11cb0ec117cc33d0d1c85347759fd4164f4fc750e48bc88910b3e187116fb9b73b548f4a16603fcde3d1ba791ddcc80a77a4d0ccc8333c8b0488d115fdceb9a846af27c40a29d8ef328e22a6df9788927147b5a463f9c77ab1cbec1e1cd113f3ef15d04452d4ccddf15fb7dc2fab7d98b1a52c7a1467869bec87099497a8244d0cf150c8512a6f45849216699ae4ea9ab17cade84097fd67ccb5f90e0bf1e700dc9498126bc1c20a4fe91a534360717635f6221e9fa31ff879308cb89a20081e7810d55e4e4f26bb48f9f0393a431ca9f0d082f710e09a3acb4bf065cf9ce7c318f0033315e4d925ebfd04f49c89290245d2b0b34854f5911cf68c3455c589cd76b6afa973c537a2941ae3b874a958ac4895245ccafcaa0b61986091c179ee27f5e4e453c619c0c591554aceec5df331c164622b3c7be59bf71c0abb720926d05b528843298edfa92913a532c3d14c1e06d0d9317419903a7c61fd3335f462ba6d2730e4383908e3abdd92577ec76934e1fff8f6bb6f4771d1f055fea0947e5a8289ebcb6adf438cd4fcbc9f3d0e60e73e3ce9d05cefab91d9c05a85e30411f101faa895fb2a5a38c1782e3a7e029a8288e9103ec6b704ae4c28dee5a89e8f8ab00df971673dae930ffcbb7faaa30909690f29c50288debde751fa8b711a5b44c0b43a9c37ab12ddec62548aea579c1ec1b2ecf70c9e5a7d64a667a7947a9fac08dc763a2caa8ea2bf8c7a1a27c7b1b5c3ea77c0de025d26917e39ef2053db79f8e5af2bfc1269284f16a51d369f01b30dfe5d996d67f94fdbc1ffce63fb1ef556f9380c9b24e52060d64b648969ac265f42ec3f1716f8e52e52c49311837c5eea1592f0fda7ea6202cfa973d3090bb1093578156f00c318978c64a4c6377fa488714a0f57fa3c2b438c6972da689ff6ff5356b4ffa76b4815a611ba6ef7b6a6976600f4fa35dfde20fc663a1c6c978338b79e0c8fc2a40b03ae974a0b92f68a98582d63129294f50e03040d9125374030dc880dd9edd89b1b19905327cef015fab9d87aef71ce6350febb956f5cb50cc06d9c7a343512df92e6705f7bd15778b259c457b8cfa8a9667ffaaa0705f1d4a32bfb15de4ba307d34b44143b30e62ac59948c50f04bda51f82b774323cfdcb4a7addbf0c964d34733f7c75b91d6219a41132737e468de44de0b69c588dfe64c707ad816191b60217ed0aa12a123722dd0fec60054fb88cff110b383c6a30c5f40e715ceda8b24bfa63606aecc1310095ee893f2e30c6546ee15a5101ba684008eb9c878b3c9534474d47dc7c0039fa4987967f42de50945bbad9d58bba15bd777097750e8a6f5b3f1d309c2e7e2704aa699bd64698a650e99605151274c6d789914fe8d2590466e56402a4a2107fbac91ba8f2ed1d7aad97d7b8ce6187b62e52e48a35699b02a723ab839e99814db707690397a58e6dd457c121ef611554e062c2978a0fbd7df5d24564a2499690a1e19c9c62538cdeb2048fcbefb744394f3aee5e4a4eeec2a5f71a0d298e8e81be808417146b1f733a97c7c966cc563c23cb90083e11d8c3f18bb4884a17f73907413d42d92cef33758e91083269dcc7fb0c54cfca6262754a0a39012b8b"}, @generic="6e6f57d002629f819709ee753efff387f6a62880a2166eb0be4d20afbf3a41f838ab705df60a93b1d0462827993d35c7ae953ac47ee71f4dea59", @generic="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", @generic="96ccfd4ec7c38ff2578a558ace0d0e45654f3dd044e7d58b537dc5d73ac61fc361ad3b9e5e1f1e38a0"]}]}, 0x11d0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000002) [ 916.137840][ T8413] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 916.137857][ T8413] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 916.137894][ T8413] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 916.137938][ T8413] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 916.137949][ T8413] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 916.137961][ T8413] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 916.188877][ T8431] loop4: detected capacity change from 0 to 7 [ 916.224536][ T8450] FAULT_INJECTION: forcing a failure. [ 916.224536][ T8450] name fail_futex, interval 1, probability 0, space 0, times 0 [ 916.357298][ T8450] CPU: 1 PID: 8450 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 916.357321][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.357332][ T8450] Call Trace: [ 916.357340][ T8450] dump_stack_lvl+0xb7/0x103 [ 916.357441][ T8450] dump_stack+0x11/0x1a [ 916.357460][ T8450] should_fail+0x23c/0x250 [ 916.357477][ T8450] get_futex_key+0x59e/0x830 [ 916.357493][ T8450] futex_lock_pi+0x191/0x860 [ 916.357539][ T8450] ? __run_hrtimer+0x480/0x480 [ 916.357560][ T8450] do_futex+0x9dc/0x1f10 [ 916.357574][ T8450] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 916.357592][ T8450] ? kstrtoull+0x321/0x360 [ 916.357653][ T8450] ? kstrtouint_from_user+0x104/0x130 [ 916.357672][ T8450] ? fsnotify_perm+0x59/0x2e0 [ 916.432567][ T8450] ? __fsnotify_parent+0x32f/0x430 [ 916.432725][ T8450] ? get_pid_task+0x8b/0xc0 17:07:19 executing program 0 (fault-call:4 fault-nth:6): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 916.442792][ T8450] ? should_fail+0xd6/0x250 [ 916.442817][ T8450] ? _copy_from_user+0x94/0xd0 [ 916.442832][ T8450] __se_sys_futex+0xc6/0x370 [ 916.442847][ T8450] __x64_sys_futex+0x74/0x80 [ 916.442878][ T8450] do_syscall_64+0x3d/0x90 [ 916.442897][ T8450] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 916.442987][ T8450] RIP: 0033:0x4665d9 [ 916.442998][ T8450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.443013][ T8450] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 916.443032][ T8450] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 916.443045][ T8450] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 916.443104][ T8450] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 916.443117][ T8450] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 916.443128][ T8450] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 916.480259][ T8942] FAULT_INJECTION: forcing a failure. [ 916.480259][ T8942] name fail_futex, interval 1, probability 0, space 0, times 0 [ 916.577851][ T8942] CPU: 1 PID: 8942 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 916.577868][ T8942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.577933][ T8942] Call Trace: [ 916.577938][ T8942] dump_stack_lvl+0xb7/0x103 [ 916.577956][ T8942] dump_stack+0x11/0x1a [ 916.577968][ T8942] should_fail+0x23c/0x250 [ 916.577981][ T8942] futex_lock_pi_atomic+0xdc/0x520 [ 916.577993][ T8942] ? get_futex_key+0x71a/0x830 [ 916.578011][ T8942] futex_lock_pi+0x2d1/0x860 [ 916.578023][ T8942] ? __run_hrtimer+0x480/0x480 [ 916.578034][ T8942] do_futex+0x9dc/0x1f10 [ 916.578047][ T8942] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 916.578059][ T8942] ? kstrtoull+0x321/0x360 [ 916.578069][ T8942] ? kstrtouint_from_user+0x104/0x130 [ 916.578080][ T8942] ? fsnotify_perm+0x59/0x2e0 [ 916.578091][ T8942] ? __fsnotify_parent+0x32f/0x430 [ 916.578171][ T8942] ? get_pid_task+0x8b/0xc0 [ 916.578182][ T8942] ? should_fail+0xd6/0x250 [ 916.578193][ T8942] ? _copy_from_user+0x94/0xd0 [ 916.578239][ T8942] __se_sys_futex+0xc6/0x370 [ 916.578249][ T8942] __x64_sys_futex+0x74/0x80 [ 916.578258][ T8942] do_syscall_64+0x3d/0x90 [ 916.578272][ T8942] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 916.578287][ T8942] RIP: 0033:0x4665d9 [ 916.578296][ T8942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.578306][ T8942] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 916.578335][ T8942] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 916.578341][ T8942] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 916.578348][ T8942] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 916.578356][ T8942] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 916.578366][ T8942] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:19 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2500) 17:07:19 executing program 0 (fault-call:4 fault-nth:7): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:19 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x40c2, 0x0) r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) write(r0, &(0x7f0000000600)="34fd98aa1d0e7adec937a5f331a75f487934f50242a0751944936972896c29a5068c8ecba1aa0a4e2a631b5180e1fbde79f4502dc4c4a1fba9dcd9ed83e639aefa1b87631c33d1a82cb0c0035676ddfeb0fe7984d7519b0f839d497fc9d64ef14d1de22220ff2623df4950134b9fb734a52adad95f131cce3672a9d7d7b400d2c62810b5f20351639330948107bf8d4534a03ac389455c54d8eb4d609b3e858b7213b38eb01f0eeaba3739ae927916e28da6a79a3fd5e32d30ab30bf959d4596e5ffbff6789a650b9e7d248d1ba849012336a4f3ef8fab07a8f5b81bb0bc45b2174538315ca12b7c723b2157562564a8a1f19d28179f8c565448e0e921b8c3e6fc4adaafa8b929ad077f633325b6a6f71a586cabc4883e03e19315f946b277858593a7367e232202fe9ad656c6768a1517da7f0498b48cb078e929fb11db0cc551f754bffc4859dd89a396915cc809b07d448573098409ea21371056f67ef4114ec10547f498d24513fe594308bf022868ad21e85bba811942fdc45161a1a8a7fe00d5c6b05ed7954f631bbd12a5c9a5cfa5965e0595de608b04ebe02b3fcbf3b9f57807a1a7ad8528992e2ec65949da2f4a0478dfd3ae52639c15d8aeaa351da6d393b58c772168fae604d097fef4d6b9360eb169a0b0ee70cdc22435a003e68698f61b3b63b1f51011bc8f4ef944c1de821785f670124a1c6ed18335d63412", 0x200) sendfile(r0, r1, 0x0, 0xef83) r2 = open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0) sendfile(r2, r0, 0x0, 0xffffff38) setrlimit(0xc, &(0x7f0000000000)={0x80000001, 0x8c50}) 17:07:19 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x2) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:19 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) 17:07:19 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = dup2(r0, r0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000040)={0x1, 0x9, 0x10000, 0x100, 0x0, "4fb82691dd43bc89504ac338c203a727801583"}) r3 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) [ 916.956983][ T9029] FAULT_INJECTION: forcing a failure. [ 916.956983][ T9029] name fail_futex, interval 1, probability 0, space 0, times 0 [ 916.970103][ T9029] CPU: 1 PID: 9029 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 916.979820][ T9029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.989979][ T9029] Call Trace: [ 916.993266][ T9029] dump_stack_lvl+0xb7/0x103 [ 916.998199][ T9029] dump_stack+0x11/0x1a [ 917.002493][ T9029] should_fail+0x23c/0x250 17:07:19 executing program 0 (fault-call:4 fault-nth:8): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 917.007089][ T9029] futex_lock_pi_atomic+0x113/0x520 [ 917.008383][ T9030] serio: Serial port pts2 [ 917.012611][ T9029] ? get_futex_key+0x71a/0x830 [ 917.012638][ T9029] futex_lock_pi+0x2d1/0x860 [ 917.012654][ T9029] ? __run_hrtimer+0x480/0x480 [ 917.012670][ T9029] do_futex+0x9dc/0x1f10 [ 917.036251][ T9029] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 917.036269][ T9029] ? kstrtoull+0x321/0x360 [ 917.036281][ T9029] ? kstrtouint_from_user+0x104/0x130 [ 917.036291][ T9029] ? fsnotify_perm+0x59/0x2e0 [ 917.036302][ T9029] ? __fsnotify_parent+0x32f/0x430 [ 917.036312][ T9029] ? get_pid_task+0x8b/0xc0 [ 917.036323][ T9029] ? should_fail+0xd6/0x250 [ 917.036349][ T9029] ? _copy_from_user+0x94/0xd0 [ 917.036359][ T9029] __se_sys_futex+0xc6/0x370 [ 917.036370][ T9029] __x64_sys_futex+0x74/0x80 [ 917.036380][ T9029] do_syscall_64+0x3d/0x90 [ 917.036463][ T9029] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.036518][ T9029] RIP: 0033:0x4665d9 [ 917.036526][ T9029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 917.036536][ T9029] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 917.036547][ T9029] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 917.036554][ T9029] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 917.036561][ T9029] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 917.036567][ T9029] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 917.036574][ T9029] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 917.062525][ T9045] FAULT_INJECTION: forcing a failure. [ 917.062525][ T9045] name fail_futex, interval 1, probability 0, space 0, times 0 [ 917.192302][ T9045] CPU: 0 PID: 9045 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 17:07:19 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000000040)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {0x0, 0x0, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[]) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000040)) openat(r0, &(0x7f00000000c0)='./file0\x00', 0x70c00, 0x1c) 17:07:19 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x3) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 917.192333][ T9045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.192411][ T9045] Call Trace: [ 917.192419][ T9045] dump_stack_lvl+0xb7/0x103 17:07:20 executing program 0 (fault-call:4 fault-nth:9): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:20 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) accept$inet6(0xffffffffffffffff, &(0x7f0000000b00)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000b40)=0x1c) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x1) sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000000540)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/block/loop0', 0x200000, 0x80) r1 = gettid() rt_sigqueueinfo(r1, 0xa, &(0x7f00000002c0)) sched_setattr(r1, &(0x7f0000000040)={0x38, 0x5, 0x10, 0x5, 0xffffffff, 0x9, 0x6, 0x0, 0x4, 0x5}, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x4, 0x40, 0xff, 0xad, 0x0, 0x8, 0x20044, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x0, @perf_config_ext={0x9}, 0x2000, 0x0, 0xff, 0x2, 0x2, 0x8, 0x97e, 0x0, 0x81, 0x0, 0x2}, 0x0, 0x7, r0, 0x2) mkdir(&(0x7f0000000640)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', 0x183) r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000000180)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYRESOCT, @ANYBLOB="006e491bd66f092d229eaaea93941f60659ea9ef0f82b41ba2ba65dafef564e3ef14114f7a5caa845bf73052764f59d0044d26d04c38b00ec72a3a735361db", @ANYBLOB="0c778ac56823d6c381a5c3f2b88291160f72"]) syz_mount_image$ext4(&(0x7f0000000500)='ext2\x00', &(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', 0x0, 0x0, &(0x7f0000000940), 0x10940a, &(0x7f0000000a80)={[{@dioread_lock}], [{@fowner_eq}, {@dont_measure}]}) stat(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r2, r3, 0xffffffffffffffff) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/arp\x00') [ 917.192458][ T9045] dump_stack+0x11/0x1a [ 917.192489][ T9045] should_fail+0x23c/0x250 [ 917.192549][ T9045] futex_lock_pi_atomic+0x291/0x520 [ 917.192565][ T9045] futex_lock_pi+0x2d1/0x860 [ 917.192582][ T9045] ? __run_hrtimer+0x480/0x480 [ 917.192600][ T9045] do_futex+0x9dc/0x1f10 [ 917.192615][ T9045] ? __mod_memcg_lruvec_state+0xa7/0x190 [ 917.192685][ T9045] ? kstrtoull+0x321/0x360 17:07:20 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x84, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASK={0x30, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x4, 0x3, @mcast1}, {0x14, 0x4, @dev}}}]}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_MASTER={0x4}]}, 0x84}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x44, 0x1, 0x4, 0x101, 0x0, 0x0, {0x2}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x3}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x10001}, @NFULA_CFG_CMD={0x5, 0x1, 0x4}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x1f}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x6}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x401}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0) [ 917.192698][ T9045] ? kstrtouint_from_user+0x104/0x130 [ 917.192715][ T9045] ? fsnotify_perm+0x59/0x2e0 [ 917.192733][ T9045] ? __fsnotify_parent+0x32f/0x430 [ 917.192750][ T9045] ? get_pid_task+0x8b/0xc0 [ 917.192765][ T9045] ? should_fail+0xd6/0x250 [ 917.192803][ T9045] ? _copy_from_user+0x94/0xd0 [ 917.192835][ T9045] __se_sys_futex+0xc6/0x370 [ 917.192978][ T9045] __x64_sys_futex+0x74/0x80 [ 917.193002][ T9045] do_syscall_64+0x3d/0x90 [ 917.193025][ T9045] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.193051][ T9045] RIP: 0033:0x4665d9 [ 917.193065][ T9045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 917.193081][ T9045] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 917.193100][ T9045] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 917.193111][ T9045] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 917.193120][ T9045] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 917.193193][ T9045] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 917.193205][ T9045] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 917.211472][ T9062] loop4: detected capacity change from 0 to 7 [ 917.257039][ T9070] loop3: detected capacity change from 0 to 4096 [ 917.272713][ T9070] EXT4-fs error (device loop3): ext4_quota_enable:6434: comm syz-executor.3: Bad quota inode # 3 [ 917.272744][ T9070] EXT4-fs warning (device loop3): ext4_enable_quotas:6474: Failed to enable quota tracking (type=0, err=-116). Please run e2fsck to fix. [ 917.273005][ T9070] EXT4-fs (loop3): mount failed [ 917.370340][ T9085] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 917.370924][ T9085] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 917.410904][ T9079] FAULT_INJECTION: forcing a failure. [ 917.410904][ T9079] name fail_futex, interval 1, probability 0, space 0, times 0 [ 917.410931][ T9079] CPU: 0 PID: 9079 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 917.410952][ T9079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.410963][ T9079] Call Trace: [ 917.410970][ T9079] dump_stack_lvl+0xb7/0x103 [ 917.410997][ T9079] dump_stack+0x11/0x1a [ 917.411025][ T9079] should_fail+0x23c/0x250 [ 917.411046][ T9079] __se_sys_futex+0x13b/0x370 [ 917.411064][ T9079] ? __fpregs_load_activate+0x100/0x1b0 [ 917.411088][ T9079] __x64_sys_futex+0x74/0x80 [ 917.411133][ T9079] do_syscall_64+0x3d/0x90 [ 917.411155][ T9079] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.411233][ T9079] RIP: 0033:0x4665d9 [ 917.411245][ T9079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 917.411261][ T9079] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 917.411322][ T9079] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 917.411335][ T9079] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 917.411347][ T9079] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 917.411359][ T9079] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 917.411372][ T9079] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:20 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2900) 17:07:20 executing program 3: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46802) io_setup(0x1, &(0x7f0000000180)=0x0) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r3 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r3, 0x0) fallocate(r2, 0x0, 0x0, 0x1000f4) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RREMOVE(r4, &(0x7f0000000280)={0xd4fa3fe959b9ad8}, 0xff7f) r5 = openat(0xffffffffffffffff, &(0x7f0000000000)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r6, 0x7003) ioctl$RTC_UIE_OFF(r6, 0x7004) dup2(r6, r5) r7 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) fdatasync(r4) ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000000200)={0x100000, r4, 0x9}) io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) 17:07:20 executing program 0 (fault-call:4 fault-nth:10): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:20 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSBRK(r0, 0x5427) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:20 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000200)=0x2) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 917.808491][ T9111] serio: Serial port pts2 17:07:20 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) syz_open_pts(r0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 917.829261][ T9118] loop4: detected capacity change from 0 to 7 17:07:20 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f00000001c0)={0x3f, 0x0, 0x80, 0xb8, 0x6, "68618a0cf5f5fc013fd2513a493357e5483892"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) r4 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, 0x0) r5 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) r8 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r8, 0x5608) close_range(0xffffffffffffffff, r8, 0x2) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r7]}, @devid}) r9 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r9, 0x5608) ioctl$TCSETS(r9, 0x5402, &(0x7f0000000080)={0x3, 0x0, 0x2, 0x0, 0x8, "5423f28e5bb98d31209623a252e083a0e3c1b5"}) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000280)={{r3}, r6, 0x0, @inherit={0x70, &(0x7f0000001400)=ANY=[@ANYBLOB="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"]}, @subvolid=0xda8c}) [ 917.901921][ T9116] FAULT_INJECTION: forcing a failure. [ 917.901921][ T9116] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 917.915120][ T9116] CPU: 0 PID: 9116 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 917.924865][ T9116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.934947][ T9116] Call Trace: [ 917.938271][ T9116] dump_stack_lvl+0xb7/0x103 [ 917.942895][ T9116] dump_stack+0x11/0x1a [ 917.947065][ T9116] should_fail+0x23c/0x250 [ 917.951484][ T9116] should_fail_usercopy+0x16/0x20 [ 917.956506][ T9116] _copy_from_user+0x1c/0xd0 [ 917.961110][ T9116] get_timespec64+0x31/0xd0 [ 917.965788][ T9116] __se_sys_futex+0x158/0x370 [ 917.970528][ T9116] ? __fpregs_load_activate+0x100/0x1b0 [ 917.976063][ T9116] __x64_sys_futex+0x74/0x80 [ 917.980724][ T9116] do_syscall_64+0x3d/0x90 [ 917.985142][ T9116] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 917.991076][ T9116] RIP: 0033:0x4665d9 [ 917.994985][ T9116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 918.014668][ T9116] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 918.023176][ T9116] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 918.031149][ T9116] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 918.039105][ T9116] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 918.047060][ T9116] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 918.055030][ T9116] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 918.081750][ T9149] loop4: detected capacity change from 0 to 7 17:07:20 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x1, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:20 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x5) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:20 executing program 3: mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000d, 0x40010, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, 0x0) sync() prctl$PR_GET_IO_FLUSHER(0x3a) r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x157c00, 0x166) fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x5, 0x100010, 0xffffffffffffffff, 0x8b3f9000) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$RTC_UIE_OFF(r1, 0x7004) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_UIE_OFF(r2, 0x7004) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000080)={0x7, 0x0, &(0x7f0000000040)=[r0, r0, r1, r2, r0]}, 0x5) mmap$IORING_OFF_SQ_RING(&(0x7f0000feb000/0x14000)=nil, 0x14000, 0x2000007, 0x30, r0, 0x0) 17:07:20 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) 17:07:20 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) syz_open_pts(r1, 0x100) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) [ 918.277518][ T9179] loop4: detected capacity change from 0 to 7 17:07:21 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x4000) 17:07:21 executing program 0 (fault-call:4 fault-nth:11): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:21 executing program 3: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8) close(r0) socket$nl_audit(0x10, 0x3, 0x9) fcntl$setstatus(r0, 0x4, 0x43c00) writev(r0, &(0x7f00000001c0)=[{&(0x7f00000002c0)="16", 0x1}], 0x1) 17:07:21 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x3, 0x8001, 0x10000, 0x0, 0x17, "e2461a9c9bf12e82658c5f0a8b46525163e681"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) 17:07:21 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) 17:07:21 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) set_mempolicy(0x4002, &(0x7f0000000040)=0x100000001, 0x4) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:21 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) unlink(0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0xd0, &(0x7f00000000c0)=ANY=[]) mount(&(0x7f00000002c0)=@nullb, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='ubifs\x00', 0x800018, &(0x7f0000000380)='ext4\x00') stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r0, r1, 0xffffffffffffffff) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x5, 0x10, 0x0, 0x29, 0x7, 0x7, 0x3, 0x3, 0x5}, 0x0) [ 918.663898][ T9213] serio: Serial port pts2 [ 918.682713][ T9216] loop4: detected capacity change from 0 to 7 17:07:21 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 918.734810][ T9248] loop3: detected capacity change from 0 to 4096 [ 918.745584][ T9248] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 918.762618][ T9217] FAULT_INJECTION: forcing a failure. [ 918.762618][ T9217] name fail_futex, interval 1, probability 0, space 0, times 0 [ 918.775559][ T9217] CPU: 0 PID: 9217 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 918.785351][ T9217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 918.795651][ T9217] Call Trace: [ 918.798943][ T9217] dump_stack_lvl+0xb7/0x103 [ 918.803546][ T9217] dump_stack+0x11/0x1a [ 918.807696][ T9217] should_fail+0x23c/0x250 [ 918.812098][ T9217] get_futex_key+0xdb/0x830 [ 918.816589][ T9217] ? __mod_node_page_state+0x18/0x80 [ 918.821889][ T9217] ? hrtimer_init_sleeper+0x13f/0x1e0 [ 918.827269][ T9217] futex_lock_pi+0x191/0x860 [ 918.831864][ T9217] ? do_set_pte+0x2a1/0x410 [ 918.836442][ T9217] ? unlock_page+0x4d/0x70 [ 918.840886][ T9217] ? handle_mm_fault+0x719/0x1a60 [ 918.845906][ T9217] ? __run_hrtimer+0x480/0x480 [ 918.850674][ T9217] do_futex+0x9dc/0x1f10 [ 918.854963][ T9217] ? exc_page_fault+0x91/0x220 [ 918.859866][ T9217] ? asm_exc_page_fault+0x1e/0x30 [ 918.864894][ T9217] ? copy_user_generic_unrolled+0x86/0xc0 [ 918.870695][ T9217] ? _copy_from_user+0x94/0xd0 [ 918.875450][ T9217] __se_sys_futex+0xc6/0x370 [ 918.880390][ T9217] __x64_sys_futex+0x74/0x80 [ 918.884985][ T9217] do_syscall_64+0x3d/0x90 [ 918.889408][ T9217] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 918.895412][ T9217] RIP: 0033:0x4665d9 [ 918.899311][ T9217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 918.919579][ T9217] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 918.928188][ T9217] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 918.936150][ T9217] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 918.944225][ T9217] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 918.952211][ T9217] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 918.960223][ T9217] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 918.984977][ T9262] loop4: detected capacity change from 0 to 7 17:07:21 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x6) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:21 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x0, &(0x7f0000000040)=0xb5, 0x40) set_mempolicy(0x1, &(0x7f0000000080)=0x5, 0x8) set_mempolicy(0x8000, &(0x7f0000000100)=0x3, 0x8001) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0xc, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x9) 17:07:21 executing program 3: link(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') open(&(0x7f00000001c0)='./file0\x00', 0x202100, 0x10d) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x0, &(0x7f0000000040), 0x800403, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"/591]) lsetxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)=@v1={0x1000000, [{0x81, 0x2}]}, 0xc, 0x0) 17:07:21 executing program 0 (fault-call:4 fault-nth:12): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 919.161146][ T9271] loop3: detected capacity change from 0 to 512 [ 919.173177][ T9271] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 919.261410][ T9275] FAULT_INJECTION: forcing a failure. [ 919.261410][ T9275] name fail_futex, interval 1, probability 0, space 0, times 0 [ 919.274729][ T9275] CPU: 0 PID: 9275 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 919.284624][ T9275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.294700][ T9275] Call Trace: [ 919.297965][ T9275] dump_stack_lvl+0xb7/0x103 [ 919.302554][ T9275] dump_stack+0x11/0x1a [ 919.306691][ T9275] should_fail+0x23c/0x250 [ 919.311085][ T9275] get_futex_key+0x108/0x830 [ 919.315711][ T9275] ? __mod_node_page_state+0x18/0x80 [ 919.320986][ T9275] ? hrtimer_init_sleeper+0x13f/0x1e0 [ 919.326357][ T9275] futex_lock_pi+0x191/0x860 [ 919.330926][ T9275] ? do_set_pte+0x2a1/0x410 [ 919.336232][ T9275] ? unlock_page+0x4d/0x70 [ 919.340628][ T9275] ? handle_mm_fault+0x719/0x1a60 [ 919.345632][ T9275] ? __run_hrtimer+0x480/0x480 [ 919.350389][ T9275] do_futex+0x9dc/0x1f10 [ 919.354610][ T9275] ? exc_page_fault+0x91/0x220 [ 919.359358][ T9275] ? asm_exc_page_fault+0x1e/0x30 [ 919.364464][ T9275] ? copy_user_generic_unrolled+0x86/0xc0 [ 919.370203][ T9275] ? _copy_from_user+0x94/0xd0 [ 919.374950][ T9275] __se_sys_futex+0xc6/0x370 [ 919.379527][ T9275] __x64_sys_futex+0x74/0x80 [ 919.384111][ T9275] do_syscall_64+0x3d/0x90 [ 919.388515][ T9275] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 919.394567][ T9275] RIP: 0033:0x4665d9 [ 919.398437][ T9275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 919.418101][ T9275] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 919.426563][ T9275] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 919.434522][ T9275] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 919.442487][ T9275] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 919.450460][ T9275] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 919.458422][ T9275] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:22 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x7ffff000) 17:07:22 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) 17:07:22 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) set_mempolicy(0x2, &(0x7f0000000080)=0x7f, 0x2) r1 = syz_open_pts(r0, 0x0) set_mempolicy(0x8000, &(0x7f0000000040), 0x4096) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:22 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x180000f, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x11b, &(0x7f0000000200)="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"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001440), 0x0, 0xc) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) wait4(0x0, 0x0, 0x0, 0x0) r2 = gettid() wait4(0x0, 0x0, 0x0, 0x0) tkill(r2, 0x34) 17:07:22 executing program 0 (fault-call:4 fault-nth:13): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:22 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r3, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) [ 919.513957][ T9293] serio: Serial port pts2 [ 919.530065][ T9300] loop4: detected capacity change from 0 to 7 17:07:22 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f0000000040)) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000080)=[@mss={0x2, 0x1}, @timestamp], 0x2) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x4e20, 0x0, @mcast2, 0x1}, 0x1c) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) ioctl$RTC_UIE_OFF(r4, 0x7004) bind$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e22, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6}, 0x1c) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r5, 0x7003) ioctl$RTC_UIE_OFF(r5, 0x7004) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f00000001c0)={0x0, r5, 0x400, 0xfff, 0x40, 0x8}) sendto$inet6(r1, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xfffffffffffffee0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r6, 0x6, &(0x7f0000000040)) sendmsg$NFT_MSG_GETCHAIN(r6, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="b0000000040a07050000000000000000000000055ff50900030073797a300000000028000480084001400000000114000300697036746e6c30000000000000000000080002407bc7ce7908000540ffffff6ffe48871d8b75ec102d2dd4a0c300ccc5000480080001400000000014000300736974300000000000000000000000000800014000000000080001400000000208000240276ec505080002403600000c00024000000000000000010a000700726f7574"], 0xb0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) [ 919.603917][ T9310] loop4: detected capacity change from 0 to 7 [ 919.614908][ T9298] FAULT_INJECTION: forcing a failure. [ 919.614908][ T9298] name fail_futex, interval 1, probability 0, space 0, times 0 [ 919.627760][ T9298] CPU: 0 PID: 9298 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 919.627780][ T9298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.627790][ T9298] Call Trace: [ 919.627799][ T9298] dump_stack_lvl+0xb7/0x103 [ 919.627827][ T9298] dump_stack+0x11/0x1a [ 919.627903][ T9298] should_fail+0x23c/0x250 [ 919.627927][ T9298] futex_lock_pi_atomic+0xdc/0x520 [ 919.627946][ T9298] ? get_futex_key+0x71a/0x830 [ 919.628040][ T9298] futex_lock_pi+0x2d1/0x860 [ 919.628058][ T9298] ? unlock_page+0x4d/0x70 [ 919.628077][ T9298] ? handle_mm_fault+0x719/0x1a60 [ 919.628093][ T9298] ? __run_hrtimer+0x480/0x480 [ 919.628127][ T9298] do_futex+0x9dc/0x1f10 [ 919.628141][ T9298] ? exc_page_fault+0x91/0x220 [ 919.628161][ T9298] ? asm_exc_page_fault+0x1e/0x30 [ 919.628175][ T9298] ? copy_user_generic_unrolled+0x86/0xc0 [ 919.628217][ T9298] ? _copy_from_user+0x94/0xd0 [ 919.628234][ T9298] __se_sys_futex+0xc6/0x370 [ 919.628250][ T9298] __x64_sys_futex+0x74/0x80 [ 919.628263][ T9298] do_syscall_64+0x3d/0x90 [ 919.628283][ T9298] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 919.628373][ T9298] RIP: 0033:0x4665d9 [ 919.628384][ T9298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 919.628397][ T9298] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 919.628411][ T9298] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 919.628420][ T9298] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 919.628429][ T9298] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 919.628438][ T9298] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 919.628448][ T9298] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:22 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x7) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:22 executing program 3: r0 = socket$inet(0x10, 0x80003, 0x0) sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="24000000210007041dfffd946f610500020000e8fe0208020801080008000300fd7f0000", 0x24}], 0x1}, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r2, 0x6, &(0x7f0000000040)) sendto$inet(r2, &(0x7f00000001c0)="b8d7f43264b06c9ef5a8cf9ea2f238aede3ae1f5ec07046181df81e3c7c9448fcf08156083d019e0929815c992e2935a83fb07c1a0861d5c3da26043463c2a48a64e49fb", 0x44, 0x20040000, 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10) 17:07:22 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_DEFRAG(r2, 0x50009402, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x48041, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_UIE_OFF(r3, 0x7004) r4 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r4, 0xc400941b, 0x0) poll(&(0x7f0000000080)=[{r0, 0x10202}, {r1, 0x1000}, {r3}, {r0, 0x400}, {r0, 0x4040}, {r4, 0x10}], 0x6, 0xd79) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r5 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000200)=0x2) 17:07:22 executing program 0 (fault-call:4 fault-nth:14): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 920.140311][ T9338] FAULT_INJECTION: forcing a failure. [ 920.140311][ T9338] name fail_futex, interval 1, probability 0, space 0, times 0 [ 920.153153][ T9338] CPU: 1 PID: 9338 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 920.162854][ T9338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.173232][ T9338] Call Trace: [ 920.176496][ T9338] dump_stack_lvl+0xb7/0x103 [ 920.181124][ T9338] dump_stack+0x11/0x1a [ 920.185408][ T9338] should_fail+0x23c/0x250 [ 920.189875][ T9338] futex_lock_pi_atomic+0x113/0x520 [ 920.195142][ T9338] ? get_futex_key+0x71a/0x830 [ 920.200023][ T9338] futex_lock_pi+0x2d1/0x860 [ 920.204606][ T9338] ? unlock_page+0x4d/0x70 [ 920.209028][ T9338] ? handle_mm_fault+0x719/0x1a60 [ 920.214113][ T9338] ? __run_hrtimer+0x480/0x480 [ 920.218991][ T9338] do_futex+0x9dc/0x1f10 [ 920.223232][ T9338] ? exc_page_fault+0x91/0x220 [ 920.228060][ T9338] ? asm_exc_page_fault+0x1e/0x30 [ 920.233065][ T9338] ? copy_user_generic_unrolled+0x86/0xc0 [ 920.238768][ T9338] ? _copy_from_user+0x94/0xd0 [ 920.243538][ T9338] __se_sys_futex+0xc6/0x370 [ 920.248212][ T9338] __x64_sys_futex+0x74/0x80 [ 920.252803][ T9338] do_syscall_64+0x3d/0x90 [ 920.257279][ T9338] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 920.263199][ T9338] RIP: 0033:0x4665d9 [ 920.267121][ T9338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 17:07:23 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x7ffffffff000) 17:07:23 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', r3) 17:07:23 executing program 3: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000180)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='devices.list\x00', 0x275a, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x242, 0x8) write$binfmt_script(r0, &(0x7f0000000100)=ANY=[], 0x208e24b) 17:07:23 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xb) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) 17:07:23 executing program 0 (fault-call:4 fault-nth:15): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 920.286708][ T9338] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 920.295213][ T9338] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 920.303342][ T9338] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 920.311304][ T9338] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 920.319359][ T9338] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 920.327335][ T9338] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:23 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = syz_open_pts(r1, 0x4e4182) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) 17:07:23 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000280)={0x2, 0x8, 0xd50, 0x4, 0x10, "5df9e7448d45542c387aeaa2b11dbfe6ab5966"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 920.365654][ T9352] serio: Serial port pts2 [ 920.379821][ T9358] loop3: detected capacity change from 0 to 16 [ 920.386427][ T9361] loop4: detected capacity change from 0 to 7 17:07:23 executing program 5: syz_mount_image$nfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x54, 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000480)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0) mknod$loop(&(0x7f0000000180)='./file0/file0\x00', 0x51450b279bdf586a, 0x0) lsetxattr$trusted_overlay_nlink(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000140)=@v3={0x3000000, [], 0xee00}, 0x18, 0x0) lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)=@known='trusted.overlay.opaque\x00') [ 920.471245][ T9360] FAULT_INJECTION: forcing a failure. [ 920.471245][ T9360] name fail_futex, interval 1, probability 0, space 0, times 0 [ 920.484695][ T9360] CPU: 1 PID: 9360 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 920.494502][ T9360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.504688][ T9360] Call Trace: [ 920.507971][ T9360] dump_stack_lvl+0xb7/0x103 [ 920.512572][ T9360] dump_stack+0x11/0x1a [ 920.516788][ T9360] should_fail+0x23c/0x250 [ 920.521328][ T9360] futex_lock_pi_atomic+0x39a/0x520 [ 920.526592][ T9360] futex_lock_pi+0x2d1/0x860 [ 920.531182][ T9360] ? unlock_page+0x4d/0x70 [ 920.535792][ T9360] ? handle_mm_fault+0x719/0x1a60 [ 920.540898][ T9360] ? __run_hrtimer+0x480/0x480 [ 920.545661][ T9360] do_futex+0x9dc/0x1f10 [ 920.550518][ T9360] ? exc_page_fault+0x91/0x220 [ 920.555291][ T9360] ? asm_exc_page_fault+0x1e/0x30 [ 920.560317][ T9360] ? copy_user_generic_unrolled+0x86/0xc0 [ 920.566045][ T9360] ? _copy_from_user+0x94/0xd0 [ 920.570821][ T9360] __se_sys_futex+0xc6/0x370 [ 920.575413][ T9360] __x64_sys_futex+0x74/0x80 [ 920.580148][ T9360] do_syscall_64+0x3d/0x90 [ 920.584639][ T9360] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 920.590546][ T9360] RIP: 0033:0x4665d9 [ 920.594446][ T9360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 920.614084][ T9360] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 920.622511][ T9360] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 920.630577][ T9360] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 920.638559][ T9360] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 920.646536][ T9360] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 920.654599][ T9360] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 920.668966][ T9395] loop4: detected capacity change from 0 to 7 17:07:23 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x8) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:23 executing program 5: unshare(0x40400) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x45800) creat(&(0x7f0000000000)='./file0\x00', 0x1c) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r2, 0x6, &(0x7f0000000040)) sendmsg$IPSET_CMD_HEADER(r2, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x38, 0xc, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0) preadv(r1, &(0x7f0000001700)=[{&(0x7f00000001c0)=""/243, 0xf3}, {&(0x7f00000002c0)=""/216, 0xd8}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/106, 0x6a}, {&(0x7f0000001440)=""/211, 0xd3}, {&(0x7f0000001540)=""/224, 0xe0}, {&(0x7f0000001640)=""/47, 0x2f}, {&(0x7f0000001680)=""/74, 0x4a}], 0x8, 0xe60c, 0x0) ioctl$EVIOCRMFF(r0, 0x400445a0, 0x0) 17:07:23 executing program 0 (fault-call:4 fault-nth:16): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:23 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 921.007832][ T9409] loop4: detected capacity change from 0 to 7 [ 921.083353][ T9410] FAULT_INJECTION: forcing a failure. [ 921.083353][ T9410] name fail_futex, interval 1, probability 0, space 0, times 0 [ 921.096557][ T9410] CPU: 1 PID: 9410 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 921.106363][ T9410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 921.116509][ T9410] Call Trace: [ 921.119799][ T9410] dump_stack_lvl+0xb7/0x103 [ 921.124410][ T9410] dump_stack+0x11/0x1a [ 921.128655][ T9410] should_fail+0x23c/0x250 [ 921.133193][ T9410] get_futex_key+0xdb/0x830 [ 921.137704][ T9410] futex_lock_pi+0x36f/0x860 [ 921.142296][ T9410] ? unlock_page+0x4d/0x70 [ 921.146781][ T9410] ? handle_mm_fault+0x719/0x1a60 [ 921.151807][ T9410] ? __run_hrtimer+0x480/0x480 [ 921.156573][ T9410] do_futex+0x9dc/0x1f10 [ 921.160873][ T9410] ? exc_page_fault+0x91/0x220 [ 921.165643][ T9410] ? asm_exc_page_fault+0x1e/0x30 [ 921.170668][ T9410] ? copy_user_generic_unrolled+0x86/0xc0 [ 921.176518][ T9410] ? _copy_from_user+0x94/0xd0 [ 921.181286][ T9410] __se_sys_futex+0xc6/0x370 [ 921.185881][ T9410] __x64_sys_futex+0x74/0x80 [ 921.190537][ T9410] do_syscall_64+0x3d/0x90 [ 921.194988][ T9410] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 921.200895][ T9410] RIP: 0033:0x4665d9 [ 921.204791][ T9410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 921.224468][ T9410] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca 17:07:24 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0xffffffffffffffff) 17:07:24 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000001500)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020002020202020202020202020200000000000000000bf000000000000bf000000000000000000000000000000000000000000000000000000000000000001000001010000010008080018000000000000181400000000000000000000160000000022001c", 0x9f, 0x8000}, {&(0x7f0000000140)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d002000200020002000200020002000200020002000200000000000000000bf000000000000bf252f", 0x5a, 0x8800}, {&(0x7f0000000200)="88001c0000000000c7d1ec9b000000040800780914092a1af9b7", 0x1a, 0xe000}], 0x0, &(0x7f0000000040)) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) openat(r0, &(0x7f00000001c0)='./file0\x00', 0x400, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1f, 0x20010, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x400) 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) syz_open_dev$tty20(0xc, 0x4, 0x1) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:24 executing program 0 (fault-call:4 fault-nth:17): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 921.232883][ T9410] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 921.240865][ T9410] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 921.248893][ T9410] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 921.256872][ T9410] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 921.264912][ T9410] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:24 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x74) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x101002, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x80, 0x0, "00000000000000000000008000"}) syz_open_pts(r0, 0x26801) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000080)={0x3f, 0x2b, 0x3}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCMIWAIT(r1, 0x545c, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r1, 0x500) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 921.317978][ T9430] loop5: detected capacity change from 0 to 224 [ 921.325896][ T9433] loop4: detected capacity change from 0 to 7 [ 921.372101][ T9430] ISOFS: unable to read i-node block 56 [ 921.377810][ T9430] isofs_fill_super: get root inode failed [ 921.385940][ T9442] serio: Serial port pts2 [ 921.412297][ T9430] loop5: detected capacity change from 0 to 224 [ 921.426825][ T9430] ISOFS: unable to read i-node block 56 [ 921.427571][ T9435] FAULT_INJECTION: forcing a failure. [ 921.427571][ T9435] name fail_futex, interval 1, probability 0, space 0, times 0 [ 921.432419][ T9430] isofs_fill_super: get root inode failed [ 921.445203][ T9435] CPU: 0 PID: 9435 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 921.452182][ T9456] loop4: detected capacity change from 0 to 7 [ 921.460704][ T9435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 921.460718][ T9435] Call Trace: [ 921.460725][ T9435] dump_stack_lvl+0xb7/0x103 [ 921.460753][ T9435] dump_stack+0x11/0x1a [ 921.488819][ T9435] should_fail+0x23c/0x250 [ 921.493244][ T9435] get_futex_key+0x108/0x830 [ 921.497883][ T9435] futex_lock_pi+0x36f/0x860 [ 921.502475][ T9435] ? unlock_page+0x4d/0x70 [ 921.507036][ T9435] ? handle_mm_fault+0x719/0x1a60 [ 921.512064][ T9435] ? __run_hrtimer+0x480/0x480 [ 921.516902][ T9435] do_futex+0x9dc/0x1f10 [ 921.521152][ T9435] ? exc_page_fault+0x91/0x220 [ 921.525925][ T9435] ? asm_exc_page_fault+0x1e/0x30 [ 921.530953][ T9435] ? copy_user_generic_unrolled+0x86/0xc0 [ 921.536821][ T9435] ? _copy_from_user+0x94/0xd0 [ 921.541589][ T9435] __se_sys_futex+0xc6/0x370 [ 921.546182][ T9435] __x64_sys_futex+0x74/0x80 [ 921.550778][ T9435] do_syscall_64+0x3d/0x90 [ 921.555221][ T9435] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 921.561126][ T9435] RIP: 0033:0x4665d9 [ 921.565021][ T9435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 921.584631][ T9435] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 921.593051][ T9435] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 921.601031][ T9435] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 921.609008][ T9435] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 921.616995][ T9435] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 17:07:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/bus/input/devices\x00', 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x6, 0x9, 0x80, 0x4, 0x0, 0x9, 0x200, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000080), 0x5}, 0x2802, 0x0, 0x4be8, 0x4, 0x1f, 0xbc, 0xfff, 0x0, 0x9, 0x0, 0xfffffffffffffc01}, 0xffffffffffffffff, 0xc, r0, 0x3) utimes(0x0, 0x0) 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_open_pts(r0, 0x500) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 921.625040][ T9435] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 921.691461][ T9466] loop4: detected capacity change from 0 to 7 17:07:24 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0xa) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:24 executing program 0 (fault-call:4 fault-nth:18): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:24 executing program 5: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x70003, 0x11) syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000001500)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d202020202020202020002020202020202020202020200000000000000000bf000000000000bf0000000000000000000000c3036900000000000000000000000000000000000000000001000001010000010008080018000000000000181400000000000000000000160000000022001c0000", 0x9f, 0x5}, {&(0x7f0000000180)="0243443030300100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d5e15518a5d41b41200200020002000200020002000200000000000000000bf000000000000bf252f37af1cf58a8093417d7a3b113344ca3a4750ce9392a9095eb04c85695bb503a2f477694cacf3ab03a755affad9fd2085ced72f3123bbd4fd7aaf02e4d6e4442bbaec15715e7f60df37d7f721d89e", 0xa8, 0x8800}, {&(0x7f0000011100)="88001c0000000000001c00080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824", 0x31, 0x32c}], 0x84044, &(0x7f0000000040)={[{@nocompress}, {@dmode={'dmode', 0x3d, 0x5}}, {@check_strict}]}) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) ioctl$RTC_UIE_OFF(r0, 0x7004) r1 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, 0x0) sendfile(r0, r1, 0x0, 0x0) 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) openat$incfs(0xffffffffffffff9c, &(0x7f00000002c0)='.pending_reads\x00', 0x20101, 0x144) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:24 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000008, 0x110, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fc0100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000100680000000000000048000200656362286369706865725f6e756c6c29"], 0x138}}, 0x0) sendfile(r2, r1, 0x0, 0x100000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r4, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x20000000}) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200), r3) sendmsg$IPVS_CMD_NEW_DEST(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r5, 0x400, 0x70bd07, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x80000001}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:24 executing program 5: openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan1\x00'}) sendmsg$NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) link(0x0, 0x0) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x1) lseek(r1, 0x1200, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x8400fffffffa) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x208e24b) [ 921.911849][ T9482] loop5: detected capacity change from 0 to 136 [ 921.921011][ T9483] loop4: detected capacity change from 0 to 7 [ 921.944774][ T9482] loop5: detected capacity change from 0 to 136 [ 921.990308][ T9500] loop4: detected capacity change from 0 to 7 [ 921.999927][ T9481] FAULT_INJECTION: forcing a failure. [ 921.999927][ T9481] name fail_futex, interval 1, probability 0, space 0, times 0 [ 922.012804][ T9481] CPU: 0 PID: 9481 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 922.022614][ T9481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.032666][ T9481] Call Trace: [ 922.035942][ T9481] dump_stack_lvl+0xb7/0x103 [ 922.040662][ T9481] dump_stack+0x11/0x1a [ 922.044824][ T9481] should_fail+0x23c/0x250 [ 922.049243][ T9481] futex_lock_pi_atomic+0xdc/0x520 [ 922.054455][ T9481] ? get_futex_key+0x71a/0x830 [ 922.059256][ T9481] futex_lock_pi+0x2d1/0x860 [ 922.063848][ T9481] ? unlock_page+0x4d/0x70 [ 922.068259][ T9481] ? handle_mm_fault+0x719/0x1a60 [ 922.073267][ T9481] ? __run_hrtimer+0x480/0x480 [ 922.078051][ T9481] do_futex+0x9dc/0x1f10 [ 922.082298][ T9481] ? exc_page_fault+0x91/0x220 [ 922.087051][ T9481] ? asm_exc_page_fault+0x1e/0x30 [ 922.092112][ T9481] ? copy_user_generic_unrolled+0x86/0xc0 [ 922.097816][ T9481] ? _copy_from_user+0x94/0xd0 [ 922.102867][ T9481] __se_sys_futex+0xc6/0x370 [ 922.107445][ T9481] __x64_sys_futex+0x74/0x80 [ 922.112105][ T9481] do_syscall_64+0x3d/0x90 [ 922.116557][ T9481] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 922.122564][ T9481] RIP: 0033:0x4665d9 [ 922.126537][ T9481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 922.146129][ T9481] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 922.154638][ T9481] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 922.162593][ T9481] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 922.171494][ T9481] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 922.179457][ T9481] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 17:07:24 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:24 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x1, 0x0, 0x0, 0xf, "0000000000000000000300"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x100013) read(r1, 0x0, 0x2000) 17:07:24 executing program 0 (fault-call:4 fault-nth:19): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 922.187428][ T9481] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 922.205122][ T9508] loop5: detected capacity change from 0 to 6 [ 922.240530][ T9508] FAT-fs (loop5): Directory bread(block 6) failed [ 922.254520][ T9504] FAT-fs (loop5): Directory bread(block 6) failed [ 922.264371][ T9504] FAT-fs (loop5): Directory bread(block 6) failed [ 922.279421][ T9519] loop4: detected capacity change from 0 to 7 17:07:25 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 922.288241][ T9504] FAT-fs (loop5): Directory bread(block 6) failed [ 922.303437][ T9504] FAT-fs (loop5): Directory bread(block 6) failed [ 922.324477][ T9504] FAT-fs (loop5): Directory bread(block 6) failed [ 922.353902][T14605] handle_bad_sector: 96 callbacks suppressed [ 922.353914][T14605] attempt to access beyond end of device [ 922.353914][T14605] loop5: rw=1, want=9, limit=6 [ 922.393492][ T9523] FAULT_INJECTION: forcing a failure. [ 922.393492][ T9523] name fail_futex, interval 1, probability 0, space 0, times 0 [ 922.407174][ T9523] CPU: 1 PID: 9523 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 922.417247][ T9523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.427304][ T9523] Call Trace: [ 922.430581][ T9523] dump_stack_lvl+0xb7/0x103 [ 922.432072][ T9533] loop4: detected capacity change from 0 to 7 [ 922.435229][ T9523] dump_stack+0x11/0x1a [ 922.435253][ T9523] should_fail+0x23c/0x250 [ 922.435273][ T9523] futex_lock_pi_atomic+0x113/0x520 [ 922.435290][ T9523] ? get_futex_key+0x71a/0x830 [ 922.459961][ T9523] futex_lock_pi+0x2d1/0x860 [ 922.464578][ T9523] ? unlock_page+0x4d/0x70 [ 922.469140][ T9523] ? handle_mm_fault+0x719/0x1a60 [ 922.474171][ T9523] ? __run_hrtimer+0x480/0x480 [ 922.478946][ T9523] do_futex+0x9dc/0x1f10 [ 922.483196][ T9523] ? exc_page_fault+0x91/0x220 [ 922.487997][ T9523] ? asm_exc_page_fault+0x1e/0x30 [ 922.493031][ T9523] ? copy_user_generic_unrolled+0x86/0xc0 [ 922.498765][ T9523] ? _copy_from_user+0x94/0xd0 [ 922.503577][ T9523] __se_sys_futex+0xc6/0x370 [ 922.508196][ T9523] __x64_sys_futex+0x74/0x80 [ 922.512819][ T9523] do_syscall_64+0x3d/0x90 [ 922.517244][ T9523] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 922.523190][ T9523] RIP: 0033:0x4665d9 [ 922.527080][ T9523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 922.546705][ T9523] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca 17:07:25 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 922.555128][ T9523] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 922.563100][ T9523] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 922.571250][ T9523] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 922.579920][ T9523] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 922.588068][ T9523] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 922.668037][ T9544] loop4: detected capacity change from 0 to 7 17:07:25 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x10) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:25 executing program 0 (fault-call:4 fault-nth:20): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:25 executing program 4: chdir(&(0x7f0000000040)='./file0\x00') syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000003bc0)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2, 0x20}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@loopback, 0x0, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @private}}}, 0xe8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) sendmmsg$inet(r1, &(0x7f0000001240)=[{{&(0x7f0000000480)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000880)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty, @local}}}], 0x20}}], 0x1, 0x0) 17:07:25 executing program 3: creat(&(0x7f0000000140)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/meminfo\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x2, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f8e933d00"/31, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00']) [ 922.847749][ T9560] loop4: detected capacity change from 0 to 7 17:07:25 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 922.898078][ T9569] 9pnet: Insufficient options for proto=fd [ 922.914177][ T9554] FAULT_INJECTION: forcing a failure. [ 922.914177][ T9554] name fail_futex, interval 1, probability 0, space 0, times 0 [ 922.926995][ T9554] CPU: 1 PID: 9554 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 922.936804][ T9554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.946864][ T9554] Call Trace: [ 922.950144][ T9554] dump_stack_lvl+0xb7/0x103 [ 922.954755][ T9554] dump_stack+0x11/0x1a [ 922.959049][ T9554] should_fail+0x23c/0x250 [ 922.963470][ T9554] futex_lock_pi_atomic+0x39a/0x520 [ 922.968701][ T9554] futex_lock_pi+0x2d1/0x860 [ 922.973297][ T9554] ? unlock_page+0x4d/0x70 [ 922.977863][ T9554] ? handle_mm_fault+0x719/0x1a60 [ 922.983238][ T9554] ? __run_hrtimer+0x480/0x480 [ 922.988008][ T9554] do_futex+0x9dc/0x1f10 [ 922.992264][ T9554] ? exc_page_fault+0x91/0x220 17:07:25 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1) fdatasync(r0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind(r1, &(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x80) [ 922.997032][ T9554] ? asm_exc_page_fault+0x1e/0x30 [ 923.002059][ T9554] ? copy_user_generic_unrolled+0x86/0xc0 [ 923.007787][ T9554] ? _copy_from_user+0x94/0xd0 [ 923.012621][ T9554] __se_sys_futex+0xc6/0x370 [ 923.017244][ T9554] __x64_sys_futex+0x74/0x80 [ 923.021867][ T9554] do_syscall_64+0x3d/0x90 [ 923.026296][ T9554] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 923.032207][ T9554] RIP: 0033:0x4665d9 [ 923.036144][ T9554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 923.055745][ T9554] RSP: 002b:00007f8837cd8188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 923.064223][ T9554] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 923.072288][ T9554] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 0000000020000100 [ 923.080239][ T9554] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 923.088271][ T9554] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 17:07:25 executing program 4: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:25 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) set_mempolicy(0x8000, &(0x7f0000000040)=0x7, 0xe3c) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_UIE_OFF(r2, 0x7004) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) [ 923.096353][ T9554] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 [ 923.123373][ T9584] loop4: detected capacity change from 0 to 7 17:07:25 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000000), 0x8) sendto$inet6(r0, 0x0, 0x0, 0xc803, &(0x7f00000000c0)={0xa, 0x4e1d, 0x0, @dev}, 0x1c) sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x0) 17:07:25 executing program 0 (fault-call:4 fault-nth:21): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:25 executing program 4: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 923.209150][ T9595] serio: Serial port pts2 [ 923.210246][ T9597] loop4: detected capacity change from 0 to 7 [ 923.289889][ T9611] loop4: detected capacity change from 0 to 7 [ 923.337394][ T9600] FAULT_INJECTION: forcing a failure. [ 923.337394][ T9600] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 923.350522][ T9600] CPU: 0 PID: 9600 Comm: syz-executor.0 Tainted: G W 5.13.0-syzkaller #0 [ 923.360323][ T9600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 923.370388][ T9600] Call Trace: [ 923.373675][ T9600] dump_stack_lvl+0xb7/0x103 [ 923.378282][ T9600] dump_stack+0x11/0x1a [ 923.382451][ T9600] should_fail+0x23c/0x250 [ 923.386876][ T9600] should_fail_usercopy+0x16/0x20 [ 923.392254][ T9600] _copy_to_user+0x1c/0x90 [ 923.396678][ T9600] simple_read_from_buffer+0xab/0x120 [ 923.402153][ T9600] proc_fail_nth_read+0xf6/0x140 [ 923.407149][ T9600] ? rw_verify_area+0x136/0x250 [ 923.412005][ T9600] ? proc_fault_inject_write+0x200/0x200 [ 923.417650][ T9600] vfs_read+0x154/0x5d0 [ 923.421820][ T9600] ? _copy_from_user+0x94/0xd0 [ 923.426593][ T9600] ? __fget_light+0x21b/0x260 [ 923.431282][ T9600] ? __cond_resched+0x11/0x40 [ 923.435968][ T9600] ksys_read+0xce/0x180 [ 923.440128][ T9600] __x64_sys_read+0x3e/0x50 [ 923.444639][ T9600] do_syscall_64+0x3d/0x90 [ 923.449070][ T9600] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 923.455052][ T9600] RIP: 0033:0x41935c [ 923.458951][ T9600] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 923.478694][ T9600] RSP: 002b:00007f8837cd8170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 923.487121][ T9600] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041935c [ 923.495106][ T9600] RDX: 000000000000000f RSI: 00007f8837cd81e0 RDI: 0000000000000004 [ 923.503083][ T9600] RBP: 00007f8837cd81d0 R08: 0000000000000000 R09: 0000000000000000 [ 923.511057][ T9600] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000002 [ 923.519039][ T9600] R13: 00007ffff1e9684f R14: 00007f8837cd8300 R15: 0000000000022000 17:07:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r3, 0x6, &(0x7f0000000040)) write$sndseq(r3, &(0x7f0000000240)=[{0x4, 0x40, 0x3, 0x21, @time={0x7e, 0xb5}, {0x73, 0x80}, {0x9, 0x2c}, @connect={{0x1f, 0x40}, {0xe8, 0x4}}}, {0x1, 0x8d, 0x21, 0x0, @tick=0x6, {0x1f, 0x8}, {0x0, 0x3}, @addr={0x8, 0x9a}}], 0x38) r4 = socket$nl_route(0x10, 0x3, 0x0) splice(r1, 0x0, r4, 0x0, 0x1420000a77, 0x0) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040029bd7000fddbdf253700000008005700010000000800a00000080000080057000200000008002201010300000800270004000000080027000000000008005700050000000800570003000000"], 0x54}, 0x1, 0x0, 0x0, 0xc001}, 0x8000) readv(r1, &(0x7f0000000180)=[{&(0x7f0000000100)=""/63, 0x3f}], 0x1) write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[], 0xfffffd88) 17:07:26 executing program 4: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:26 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r4, 0x7003) ioctl$RTC_UIE_OFF(r4, 0x7004) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000001c0)={0xc4f8, 0x0, &(0x7f0000000180)=[r3, r4, r0]}, 0x3) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r6, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) r8 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) fcntl$lock(r8, 0x6, &(0x7f0000000240)={0x1, 0x0, 0x7fffffff}) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc) shutdown(r5, 0x1) 17:07:26 executing program 4: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 923.803393][ T9622] loop4: detected capacity change from 0 to 7 17:07:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x2, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:26 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, &(0x7f0000000000)=0x80, &(0x7f0000000180)=@tipc=@id, 0x0, 0x0, 0x1}, 0x800) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x5, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 923.923186][ T9648] loop4: detected capacity change from 0 to 7 17:07:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x6, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:26 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = dup3(r0, r0, 0x80000) r2 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x6, "00000000000000000000008000"}) r3 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) read(r3, 0x0, 0x2000) 17:07:26 executing program 4: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x13e1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:26 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000040)={0xfffffff8, 0x7f, 0xfff, 0xfff, 0x10, "b2619a69d5ab7a50c9f1976d8d504d534104fe"}) [ 924.092061][ T9677] loop4: detected capacity change from 0 to 7 17:07:26 executing program 4: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 924.137962][ T9697] serio: Serial port pts2 [ 924.218429][ T9876] loop4: detected capacity change from 0 to 7 17:07:27 executing program 3: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000040)) sendmsg$NL80211_CMD_DEL_MPATH(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x8c, 0x0, 0x408, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4}, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, &(0x7f00000000c0)={[{@fat=@quiet}]}) r2 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') sendfile(r1, r2, 0x0, 0x800000080004103) 17:07:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x3ffff, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 924.678920][T10261] loop3: detected capacity change from 0 to 15 [ 924.707273][T10266] loop4: detected capacity change from 0 to 7 17:07:27 executing program 3: r0 = syz_io_uring_setup(0x7784, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x2e49, &(0x7f0000000000)={0x0, 0x7dfd, 0x4, 0x3, 0xd8, 0x0, r0}, &(0x7f0000ee7000/0x1000)=nil, &(0x7f0000ee8000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0xa, &(0x7f0000000180), 0x1, 0x1, 0x0, {0x0, r5}}, 0x1) eventfd(0x0) ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000340)) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index}, 0x0) io_uring_enter(r0, 0x342, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r3, 0xcb7, 0xab5e, 0x2, &(0x7f0000000240)={[0x6]}, 0x8) 17:07:27 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x1, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000000)={r4, 0x5, 0x4, 0xfff}) io_uring_enter(r5, 0x2213, 0x9e74, 0x2, &(0x7f0000000180)={[0x8]}, 0x8) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0xfffffff0, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:27 executing program 3: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = creat(&(0x7f0000002dc0)='./bus\x00', 0x0) r2 = dup(r1) write$binfmt_elf64(r2, &(0x7f0000000380)=ANY=[], 0xfffffd28) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000140)="7d65aa79805231ae8ccc727142d78145c490a50df88ed20f33c96f8704b6efae4941d70385d2095ca44be0c0a3a9df3e78d5cd8423a082ac1857aed46e91e02f5103e7b8470838d68122a904339cf36ae7380705b4f3361995599d2f1bd936d80936", 0x62}], 0x1) fsetxattr$security_selinux(r0, &(0x7f0000000040), &(0x7f0000000080)='system_u:object_r:semanage_exec_t:s0\x00', 0x21, 0x0) 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 924.867742][T10289] loop4: detected capacity change from 0 to 7 17:07:27 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x0, 0x0) mq_timedreceive(r2, &(0x7f0000000100)=""/144, 0x90, 0x0, &(0x7f0000000080)={0x0, 0x3938700}) 17:07:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0xfffffff2, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 924.984701][T10311] loop4: detected capacity change from 0 to 7 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 925.033424][T10320] serio: Serial port pts2 17:07:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0xfffffff5, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 925.073595][T10327] loop4: detected capacity change from 0 to 7 [ 925.096506][T10321] SELinux: Context system_u:object_r:semanage_exec_t is not valid (left unmapped). 17:07:27 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.sockprotoname\x00', 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x20040, 0x0) renameat2(r1, &(0x7f0000000140)='./file0\x00', r2, &(0x7f00000001c0)='./file0\x00', 0x5) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1000004, 0x4000051, r0, 0x0) write$binfmt_misc(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="dc7afea08184959730ba75ccefbbc44b0a6aa656797ea9ed66a4f8fdeaef0ad9dfbe93ec6bccc58afd82970144c3a12a459830a1e947342c64dd816506eb25878ba88da2560890b8f323579e284fe7fafd05f442ec8ab4712545e6e3d021fdf6b8ff2137a52dc71c80e3c56001709c67746a428a270ef370e01978"], 0x100) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00') creat(&(0x7f0000000040)='./file0\x00', 0x0) 17:07:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000003, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:27 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 925.205267][T10386] loop4: detected capacity change from 0 to 7 [ 925.325974][T10546] loop4: detected capacity change from 0 to 7 17:07:28 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) mlock(&(0x7f00006d6000/0x1000)=nil, 0x1000) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) r5 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r5, 0xc400941b, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x20010, r5, 0xf7a6000) 17:07:28 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @empty}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmmsg(r0, &(0x7f000000b200)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000100)="ab", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003d00)=[{&(0x7f0000000640)="06", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000005840)=[{&(0x7f00000043c0)='2', 0x1}], 0x1}}], 0x3, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='veth0_macvtap\x00', 0x10) close(r0) 17:07:28 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000004, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:28 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:28 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) syz_open_pts(r1, 0x20002) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETA(r2, 0x5406, &(0x7f0000000040)={0x0, 0x12, 0x3ff, 0x80, 0xf, "96619a87c39ade3c"}) 17:07:28 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)="a00da1ff8dab59d56c5a2a39eb43bf290ec42e43cea1ee387fc978b8fb80e995db01d4c749936b88a3e2e1") write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick=0xfffffffd, {}, {}, @ext={0x5a, &(0x7f0000000340)="c4c691019919da078a0098d1e0a593b040f7629100f06ee04fa4ea57ff22ea97be19af3dcba01419cd2386ad59157689c9c6a47312334c2a97ac2b7f0fb4aabebae8dc5dffbcd48a70502173d6efa56b60f48cf0c9d0989ecbbf"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) gettid() ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() tkill(r1, 0x40) 17:07:28 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 925.857298][T10940] loop4: detected capacity change from 0 to 7 17:07:28 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000005, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:28 executing program 3: r0 = fsopen(0x0, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={r0, 0x5, 0x10000, 0x6}) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f00000000c0)=']:%+^\x00', &(0x7f0000000100)='^[\'\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket(0x10, 0x80002, 0x0) writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001000090468fe07002b00000001000a0026000000450001070300001419001a00150002000e0001000a0003feffffff000000000000", 0x39}], 0x1) [ 925.930176][T10956] serio: Serial port pts2 17:07:28 executing program 3: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x7c) sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x10}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b4de5fcd3c9885672bf873a57c0cac00"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "7639605e8f61e4a0cb323c29043ef27d"}]}, 0x5c}, 0x1, 0x0, 0x0, 0x54}, 0x44000) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newspdinfo={0x24, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6}, @XFRMA_SPD_IPV6_HTHRESH={0x6, 0x4, {0x0, 0xea}}]}, 0x24}}, 0x0) r5 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r5, 0x5608) fsetxattr$trusted_overlay_nlink(r5, &(0x7f0000000240), &(0x7f0000000280)={'U+', 0x3}, 0x16, 0x2) sendfile(r4, r3, 0x0, 0x100000002) [ 925.959356][T10973] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'. [ 925.972937][T10980] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'. 17:07:28 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000007, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 926.032285][T11008] loop4: detected capacity change from 0 to 7 17:07:28 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 926.166478][T11071] loop4: detected capacity change from 0 to 7 17:07:29 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = io_uring_setup(0x1b04, &(0x7f0000000180)={0x0, 0xd8cd, 0x8, 0x1, 0x22b, 0x0, r0}) io_uring_enter(r5, 0x6691, 0x6279, 0x1, &(0x7f0000000000)={[0x2]}, 0x8) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r6, 0x6, &(0x7f0000000040)) io_uring_enter(r6, 0xe05, 0x581c, 0x1, &(0x7f0000000200)={[0x9d]}, 0x8) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000008, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:29 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000040)={0x0, 0xff}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x84, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_HELP={0x10, 0x10, 0x0, 0x1, {0x9, 0x1, 'snmp\x00'}}, @CTA_NAT_DST={0x10, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x2}]}]}]}, 0x84}}, 0x0) 17:07:29 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000080)={0x6, &(0x7f0000000040)=[{0x741f, 0x66, 0x3f, 0x3}, {0x7, 0x6, 0x0, 0xffa}, {0x2, 0x7, 0x81, 0x5}, {0x800, 0xff, 0x1, 0x1}, {0x1, 0x3, 0x3f, 0x1}, {0x5, 0x8, 0x7, 0x81}]}) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000009, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 926.826544][T11423] loop4: detected capacity change from 0 to 7 [ 926.832494][T11424] serio: Serial port pts2 [ 926.846634][T11422] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 926.868538][T11422] netlink: 'syz-executor.3': attribute type 1 has an invalid length. 17:07:29 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x80000000000a, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 926.954645][T11455] loop4: detected capacity change from 0 to 7 17:07:29 executing program 5: unshare(0x6c060680) socketpair(0x15, 0x80000, 0x3ff, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x10080) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98h\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') socket$nl_generic(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001c40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001400)=ANY=[@ANYRES32=r2, @ANYRESOCT, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000005f2c0)={0x0, 0x0, "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", "b9aa18890b6c90a506012dc44583f3e41a4bab7cb09106ec1a7b0187c0558267ccc95f0408dc5f17c7d018118b560efc4282d13ece7affabf0eca3a45719abae3b767d2d3b058445d1c9058f1d6d6953e63109073fadb3c885d3d153a0d602dd0a43615e1757c135f101a85c250f6bea8458b9d07c2b165385698012715b06140d59dca0282f145ab0119ca57ea24e40cd3ec87d9cbfedb035ea01e48685d48bde5014d624243eae0fc732e87459a4ec1a471dfee5fd8dd62093264eb28b6b9029919a6b585aed5d3af3bc6ba96a2de5ab0d8fc8d9df2dc300a8ad7cac17f0dac335a89ee6d8d3e1550e802762f21d42c307b4440580307f711c1c1b1d648442c2947755760227cb411c5b972a142a534ed6cadf958d321dd960e670f137ad0badce34cd3ad35bc1c64479d93622baf4a5a2b616225e3dd20bf63aef74545ef7fdb9824528e02a686bf4f2c791dc619d376beeb5462a46338003cc8d2e6d24b39fabc42dcd84b22e8741406ac4d19dcde3c3a1dc8638c9dd75499946827a42e8e84a0ec0c0313680f7d90be562e59cd4891da45da0642070cd359aebe33f1690cf6760c544e7bd48f168983b20e7cc29a6920eface454ca6deaa9db590649472ac8cecda8df95e5da4909a1d85f51d8f89e5c51d07a3af9ff4c4f5ac1eaede7e76c9b9a289706ca248303d367bc781fabe3e895473e5988d854ca17e2c22ea4fafaa74703759d919d077bcfa4d06b0ab5b3b6103ce2bf6cd763a00b4a694ad39c1776575dfef90a254f92a283be6e9ae6ef9bf388e22fcbb123e8f1c65db4ce80a6926a41eb3014fdce591d40794f5ffb7b54bd69a60625cf9fa3127ce5d441b4750f4fa21d6d04d35aec7111021513ffe4b2775bed470cdaa89c901c04638699742c8a9b9e54f91ae8d5a259d9176856bba89dc3bbfdc266d9b7d63ff0e93d84b064bdf6325aaf23ad3c4b8584d92fdc2d86f9f73f7af431bc3bb391123c4d76c08f026518f7b3ea88707c3c5fc4e19cb655d6805a34de4c724a30c798c092ae86585ed4d1bfd60b09069744f6deeabbd3e4655627621a28c4a14c4bb4f525f4bd215ad78b193a755b83515d7d00f0596cda95a6dc430f9adf7c56f85b996d93cf6a6ba5dbc8930c032a6aa1ed47a594750403f540db3914b0175d6402cc1ace41798a511620451ca9266f10e821d0ff0bead2c254f33726bf801af398bd6b8942f0ac1d8c22ba37855925c3cf9b092f2122f8a8854f3a9ad1b1eb949bd2cff0d331862491a9536122362ff237b3ade0c4e59ea08f7b75b88e87dcf79fb89743eeeffb2bd6527471b5f620f3f61abcb4339bc910aaa592af50661f2267c0032a987053c24252537845b2e7f0aaff1a89b0ee5765e1b6df08742ce8a3d07e43764d9261d993c2445bdd20a06f2156093488dc326526d8ccb964b7b4cb365febd121d038b3d20be130a258535ab8879f9f25acde3f3c5577252f26dc6796c43bb9182a73754cc22d58a48144a64a34920be0214ae5d0d5b7df4b6dfc458fd52f02201f2c9afc1b0fbc18837f19ec1267feb6d6b0b8aaaef899e6b109214f8d1cdba642ee486fe6904ea28f24fb5ea3732f4f632d9edcf90a1de790939f1e933710a57880f7918f748a3d744599f326c9bf9cc6ca68545d6a875a13fc7db6f64444832f2779e0a47944119bd85646ffb402a89c49a121fc221424d87316c837df31c3733de68dbf78ed9bd18711478bcff7dd0fcc41194f3cfc04e5defc6431988eb63b89e5caeac1b7ee2676b1bb38d50f1eeb661dd766391e03b35091485eeab9a946d274bfc5fc69f5a03d49a4663c09581bd7682ed63dad6c65f9758705fe501e2801f736e0300fa5ab533c2c8850e20efebaddba1b0e9f92e558ed66ece328644f061ca5b6e0c0e5d2a2e3146a8102f69575540d0633d46d64cf241f0217152001be4bc1e524541d481e86323fe689b63be9ca9b6f816fbb09878084cc374299bb0909576ff51d48423280d6b437ac24a96dc1d2ca9424919ae858661de50b391727d098997a03adb934e4af87f5402f55f17c7d17db28d42c8f7113a27906f344b9d5d3ec33a76d4a9c32a1d166f054cc1bb325c84a4aaf776612f4177c932963345dfa6cb05f2224e806a002125d6444dc19614093504fbb2e167a428cc3ef1a073c705be7ff1434a756bc05131e5562678d1a52755cd004d29519a780c479bbee19ca824e835054669474918faf4e759de3ae15f8b42c8e4f33aa7ffeae8460d85eaffe66ebc043447a3370116bf496a42cf5627045789aade942f04bb2e32f49475ffe36e63cc0bf87bbaea13cc1fe40fa91490a437af9afb55a6de8feb429b1368cc8b835f10fbfc1b526c82773d490e9ef1f3f407b3497c25605b657bb414469ecd286bcb810a4c47ace0cabe1f9dfd27f812350c4b6ea7461bc639b831dae51630d568db7f917ee1486d1c86a20e386deddfa1b4800d9aad5d8f20c68e5b3bd42aa4277cef5016949cdd70959e3cb88bb54f41a732e929f0ce456957c8bcebcbdda94b4ec180165063e55256038cb392892600cc7974b7f9e8b36d6919348e53c9330012e67262a10d9af6dd4460cf769078e43693f40cad60d1035dac86b68de7fddd6da934ffa7c8f7f0d89ea7eafb4d91c6a9f20d48cd91e39bab2c71b63f2e1dc65f5b5e4524f7f09a3ceba97781d8d9ba34c2646368daa0ecf64c3f587ead148afeede25cc3dab5ff7fd6f076b418b585b1b49ed26be984f2c6679e146a0cfd015232e27bc3ce708aced30a5417010a6f4118744b3d681e33cbda035a1b793d54098d33d1ca4484619d77cd849b0e47d01873f89acba5bd97b73732a4ae6c3eb326d8a91b05f0d8516b5d6a78687e6cee412a74d67872ed9002081c45412356891d3a8034226f22485fb7e083bd4990368d17b8915178f35487a1a0e9f156c49dd5763c9ed51057b9ba2bd467ead76edef78947a2a419d6cd8c118a3f7642966b0684135f0dcf85a847ab6d1ccb971c01d91f8a9ba4cf9435e278126eefbacd8209f46878091ec3c8f2d1a4435b6684eac7ac85afe09d043736fbcd461fa5c00fbf7b2cabac80d594d3502b7939dd385752e3e01d04c3c49d468c5cda759b867289e5fb420a6d00433c31aa6d6a9110558bfc1076abc7899ebdc3677f54fa6f6e3b4d10ef06277cea53afe9ac6fab1e7504a4898877a9d46fa4388a36502791a6e1147013ec372735d50146d195a26046676f54cf7b615653067fa4094691ea386f4b76bc83583dabb0a005443e545863d58be2c750e8a9db793a9cf6b492b16cb51f969adabe947af795da0ed7d1f7781ee311eafc64301e471566a9918fffeace48a0db3e828a6c6cc9c916f5c5833d9df0ad042d5338dd71049739f974e26bc35a35dbff8921ea386e2ca5f816ba99fb7eab6161bd8c2ce22660f80c8f6797d0390f27bd7a93e27c96cb43d6988af7a2b487da0b7e8433405906b86036bba50087e287e5fbb49d3cee76572806623064972ec9d4ed09ab70aee7ea9c87586fb0ea42356e9b62c68a673ae9582db5a4319fb078caa61372379208685984361d63e6004c632ca8544695ae3f4e06ad435a7fe6dcfd702aee9d7415b0dd92a4b27949ea179debec242610d4bb0b51002b50e397b424a28c0885b3fa20bd7ca962f1095cad0cd44a475347bf3805fb63cadfaeba613f98564cb1293a897a16851d50c8fe17dbd4b59c7bb28ecf28fe7d4114421f184e2b138d75880f0b394c4fa0781e24cf73509b9894518754828aaa70837beb8654f2dea88cd9581efbbcb39010381c8071b8764657b68e4bd07a6d5e2118dbb440944720f306d642866d03907cb61395a99026ccdfad76d14f7d3794c58b2387567a3196154e5d6611f5896b24cd1037e797b6fb7d15f1435121721f1c359922d273d398c157ae5a8e193c751f5d4b5df9a03ae6c3620b414692db89004303040f28caefe0a26f24dad578362956c1f149feb4671f47e27f42eee730af89c095df268aaae88e8f28b57abf3c7860d39ddba18ddfb86f606accdcf2ad067a92d456e144ef7fdd7d0f5f97a144de50c2a69966cd2b4df7facf2bdb5cec8da4977a783127bc1b20bcd4601236ed8d8bffa3718cd7c32d7acc4e6092af252c5ae575b81d2c15d330483ce733f6608f1916c645e86cd53e66e72feff234d273212218e5a2d6be5cbe601fdacf653ba7c1f41a36cb00b3eabc1ccb0709aaa18129ba41e8e16d97d077e6704632e8fbeefa6722107865690442f3557ccc8f84eacf2e71f474c49822dd0dfed2b8b843592c5d579c66554f2f8d9b84f21910df29a73756db7dd37a40c91a6c770137db10e3cbe900c4c506dd57fa982b3c05ddce571f95de52aa251507327e079b5d981af1bf2e3041ed14122277e8566b1ff0dc29d89e44ef14c471c0d7baee03f9559307c7f600ff358b842e1dcc150ddafcc4c52dbf17c4556a9f62a8d862d08ed53677bc356565554eccf0dbc725613e87d1243f2345fe945c76289b8acb09f4a12e8808f14903647f5c92684d374bfed60e4a7a555f9b351efe78ef62457410859a7238fdec9a3e5271ea8d881e5811797ec6da43464958763cf9c8561757aa23bfa6f92e92847a01e858cb69faf0a26b77da81bb14ee20f1435d60ee11305ca0bd0750a02a6bbb1b4fb028dd794017d95c35e09eebe487485605cf21f1f6a98c953d3de0e70149b328b69b6ae9af96fd67336a2164315adb543abd0c8eb4a82aaade8f072d954e273a074a839f7aba7aceb41491a204daaf6bc07d060193e03f4e2786d13e7ed5d7267d011d4cc98cfa99970cd71ecaee152ef353f7a18e44035386b776bdcc2b75b281e2ebc64a003e5ff60c9b5bef0f3edd5c199142e49eb6e7a4c21bc5d2dd4ccbd7926866bdb6fb1bc05c5ed38ef2e45cdaa1c8e4d98fdd27d0f014bc2dc78216f9471b3ea2619d2931ecb12f14565a722dbeee9a55459e057e694ccf1d0c86f0084728e8c77cd77ea51bb24bbe994d323194b39df05032848da1c7a481c35f572b8c4fe14602d0c1df203543012a18d9b0d003adde7cbe9b504f1669eb98710573d0d72b9c972bb6507f26c254991a2a0f26e19cd2aa85f7ce557a9ac99b5f1d478f39d91e3992f9d950847cf12e700548051c3b58bd14a62b0bb0f8f753093c0645701f11720ae7857e624f12f916a041ea791e84a49ddd64810d9be4d1cc6d288c7e34a76c125b721c96c968f1417ce400ea8624e21b301e253ddd4904226154446ffc61d47be0c043070ad9974f0ca391806b60134a03e3b65d5e081976137aa6b7d5bfd654a3549008d8119766e5bed2aaebcc779715e66752168563234b4ef4e450d8dd16c345a1af4a637983ae8b931331dd68ab5f869665b5b03df6"}) r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001a40)={0x0, ""/256, 0x0, 0x0}) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000001480), 0x121401, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r7, 0x84009422, &(0x7f0000001c40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r8, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="ae6ad9dc3c14dc244a8a958b19eddf84df5988f83b1cdfec70bdb892ca7099813a49e06d048eca818378a2d298cf1525c7f7d20b82273ebbf0111fda3fa807e70915d2fa0805495ca577c818fed44e06053639fda827dfa2028380e74ef48fdb7098dfb755de09df2a197c8b90f09907ab0a46417ca539386d536422bf674c82", @ANYRESOCT, @ANYRESHEX, @ANYRES32=r6, @ANYRESOCT, @ANYRES64, @ANYRES16=r5], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x200488a5) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000602c0)={0x101, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {0x0, r6}], 0x5, "fea91f7fd2eac8"}) 17:07:29 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x80000000000b, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:29 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 927.048808][T11490] loop4: detected capacity change from 0 to 7 [ 927.075965][T11492] device lo entered promiscuous mode [ 927.081858][T11492] Y­4`Ò˜: renamed from lo [ 927.672998][T12064] serio: Serial port pts2 17:07:30 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f00006d5000/0x1000)=nil, 0x1000, 0xa, 0x13, r0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000000)=0x307a, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:30 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:30 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bind$inet(r1, &(0x7f0000000140)={0x2, 0x4e23, @local}, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, r2, 0x701, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x50, r0, 0x20, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0xc, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "e96ff51518ae6c03e470e57a63"}]}, 0x50}}, 0x4040) syz_mount_image$msdos(&(0x7f0000000200), &(0x7f00000003c0)='./file0\x00', 0x0, 0x2, &(0x7f00000035c0)=[{&(0x7f0000000280)="e6a866af38c233bdbaed7c26a0c1c7", 0xf, 0x2}, {&(0x7f0000000400)="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", 0x171, 0x8f}], 0x8703, &(0x7f0000000100)={[{@fat=@dos1xfloppy}]}) 17:07:30 executing program 5: perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x6749, 0x120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'rdma'}]}, 0x6) preadv2(r0, &(0x7f0000000040), 0x0, 0x246, 0x8, 0xe) 17:07:30 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x80000000000c, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:30 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x1b) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x1) read(r1, 0x0, 0x2000) 17:07:30 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r1}}, 0x40) r2 = socket(0x400000000000010, 0x802, 0x0) write(r2, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f196be0", 0x24) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x30, &(0x7f0000000100)={{{@in=@local, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {0x0, 0x0, 0x100000000000000}}, {{@in=@multicast2}, 0x0, @in6=@private1}}, 0xe8) 17:07:30 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 927.767271][T12078] loop3: detected capacity change from 0 to 1 17:07:30 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x80000000000d, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:30 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x2, &(0x7f0000000180), 0xe69c) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x6c800, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f00000001c0)={0x600, 0x1, 0x1, 0xa39b, 0x8, "019b8a4fe712084b88b4ae3bba810819f989d2"}) ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000080)) r2 = syz_open_pts(r0, 0x22e700) r3 = open(&(0x7f0000000100)='./file0\x00', 0x100, 0x10) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000000140)=0xffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) fcntl$setstatus(r4, 0x4, 0x5800) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:07:30 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:30 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_UIE_OFF(r3, 0x7004) mmap(&(0x7f00000b5000/0x4000)=nil, 0x4000, 0xa, 0x20010, r3, 0x47edf000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6, 0x4, {0x0, 0xea}}]}, 0x1c}}, 0x0) sendfile(r2, r1, 0x0, 0x100000002) [ 927.921624][T12127] FAT-fs (loop4): bogus number of reserved sectors [ 927.928723][T12127] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:31 executing program 5: mknodat$loop(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r0, 0x5608) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000480)) mount(&(0x7f0000000300)=ANY=[@ANYRES64=0x0, @ANYRESOCT, @ANYBLOB="d121177b8a0859e3f1a11fdc4b09702446a6b85805b1a4a03dc06c78c86abee93be4e82c290b75d0937127dc956bbb1258fdba6934244889a7a6abc381064169e0e93d8583c0716ce36b4cdcde567e102deb83a3b107dc0f80b2379073653d093dece7ddfbd53a3d6df2b14abd61111464dc65d8f48a996933b5dc8b6eaf166ccb96006e847573013efdac8d460000000000", @ANYBLOB="14d373da0152223b12a352aebc554e154681593fcbdeba6ff45befb7da34191de381ca948e825a8d7d0fa75fb8f58e13048f1288ab86ed0334bf483d617f3499a186493e8ec8e42c3ba228d0525ea5e44768122d60b399478da420da293945cc6791ce4610b8e6eb540a867a7d4a0cc24da2c1ce939134717d518aafff5f45b44acea7cfd2123c5bd81199c541b3743caea3eae73d0765cd4f70bb5d9edcb0f91b3f90b527114b49f08b2cc8bc59536d7a58ec332683127b3cdef41218f8d5955370"], &(0x7f0000000040)='./file0\x00', 0x0, 0x121b096, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x20, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') 17:07:31 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x6, 0x2, 0x1a, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x2) read(r1, 0x0, 0x2000) 17:07:31 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:31 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r1, r6, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x77359400}, 0x1, 0x1}, 0x81) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r7 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_WRITEV={0x2, 0x1, 0x2004, @fd_index=0x1, 0x5, &(0x7f0000000400)=[{&(0x7f0000000340)="a4f416f641ff5f59acff7f8faa61526d3abc033ad3fc0ae984eba954c66c671b2a5f682eb7f00992ffbddca0f9d210fa4aa1a0b2eaaef84bb03190521569d965cb277a9de861f6343f14cede4aa9db4dcf8c4ce18c69fc3e86c4e3a893ee085b677e1c791d435368cea9d28433c112312db5a8180b39864d019a5fb42b3f0c849b6a9daa9e301f90f008812435df3c709e98e5c22db3bfb8541f4d3d4c801557daa3", 0xa2}, {&(0x7f0000000200)="aeb3f1b840b69e984b373951b7b516cf0776aae3c20b727840c293ef27531ae939aaee704c957579", 0x28}], 0x2, 0x1, 0x0, {0x3, r8}}, 0x9) shutdown(r3, 0x1) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r9, 0x6, &(0x7f0000000040)) setsockopt$inet6_tcp_TLS_RX(r9, 0x6, 0x2, &(0x7f0000000000)=@gcm_128={{0x303}, "af4e6bb1f979b37d", "2b29bd66f0ab37e7839b3aef42f386d1", "d1c92ccc", "d71b3a7f38043f90"}, 0x28) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:31 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 928.796384][T12709] FAT-fs (loop4): bogus number of reserved sectors [ 928.803013][T12709] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:31 executing program 5: r0 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) lseek(0xffffffffffffffff, 0x6, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x1d8000) open(&(0x7f0000000040)='./file0\x00', 0x10040, 0x1f) 17:07:31 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:31 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x2, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 928.930409][T12737] FAT-fs (loop4): bogus number of reserved sectors [ 928.937003][T12737] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:31 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r0, 0x0) finit_module(r0, &(0x7f0000000180)='batadv0\x00', 0x4) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x15e4, 0x0, 0x414, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}]}, @TIPC_NLA_NODE={0xe0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "43d53b6b6ccfddc7043112a8ee20761c01fcb22cd3de9d6157395696fbda861279ef"}}, @TIPC_NLA_NODE_ID={0x72, 0x3, "400b06873b6a45c5e5bb109233ad13bdeec6e9517732b6d8df8f1ba3615a3c16e92e4a72923e3140626c70483ddbae54c6a172df8b37ebcc60cf3a89dd08247f87433173790d50fd84804699cba24bd2bb92e3cd32b7abb2285e394eab3c0ba0d481c516ff29b3cdaf289ef4a113"}, @TIPC_NLA_NODE_ID={0x1a, 0x3, "0eb7e8c2da7ffaa0c78ad2f2a145c1180e2ab260af5d"}]}, @TIPC_NLA_BEARER={0x104, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e24, @local}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'batadv0\x00'}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xffff, @private2, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x2, @private2, 0x1ff}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}]}, @TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'eth', 0x3a, 'batadv_slave_0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffffa}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xb89}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xb06f}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffe000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x31c4}]}, @TIPC_NLA_NODE={0x18c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "2afcbcb8a6537f35d8a5d82c12a88714ad0e8582bff5faa1ef39a1d2b37490b786a339"}}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "a6468dbe6114c4a787d0bfae76642403431795e4a3da2027b8b8"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x23, 0x3, "31a87d5d552a66f9af2a8706d9d3f89fd876a056ab2c99e2997e5616f48db0"}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "59e1a8a490ef9b237af26e84fbd9a164ad15ba27"}}, @TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "2a7c9bef2e2a9d625279d530f2565cbb179dce13e9772e"}}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "83fc9dd928d845daaed79eafa27c322a1927fc0a16a66b042b93b627e67b2f1874c27093"}}]}, @TIPC_NLA_MON={0x54, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5645}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_NODE={0x1054, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "8750c68beefbc3ab3db0dafa9a4deb6292df7088743a1266ccff"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}]}, @TIPC_NLA_LINK={0xd8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffa}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffc}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}]}, 0x15e4}, 0x1, 0x0, 0x0, 0x40000}, 0xc9d82ab61434015c) 17:07:31 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:31 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f000000000000000001000000000000000b0000008000000008000000524700006201", 0x66, 0x400}, {&(0x7f00000000c0)="01000000000005000c", 0x9, 0x560}, {&(0x7f00000005c0)="0300000004", 0x5, 0x640}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000011700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x6800}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}, {&(0x7f0000012f00)="8081000000180000d0f4655fd0f4655fd0f4655f00000000000001000c00000010000800000000000af30100040000000000000000000000030000000d", 0x3d, 0x11100}, {&(0x7f0000013000)="8081000000180000d0f4655fd0f4655fd0f4655f00000000000001", 0x1b, 0x11180}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="eade8d8733c310710661dae67a1dc51fa6"]) 17:07:31 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 929.055993][T12777] FAT-fs (loop4): bogus number of reserved sectors [ 929.062544][T12777] FAT-fs (loop4): Can't find a valid FAT filesystem [ 929.128915][T12799] loop5: detected capacity change from 0 to 512 [ 929.154142][T12799] EXT4-fs (loop5): Unrecognized mount option "êÞ‡3ÃqaÚæzŦ" or missing value [ 929.166823][T12804] FAT-fs (loop4): bogus number of reserved sectors 17:07:31 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xe, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 929.173389][T12804] FAT-fs (loop4): Can't find a valid FAT filesystem [ 929.234065][T12799] loop5: detected capacity change from 0 to 512 [ 929.248781][T12799] EXT4-fs (loop5): Unrecognized mount option "êÞ‡3ÃqaÚæzŦ" or missing value 17:07:32 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x20000, 0x44, 0x19}, 0x18) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000100)={0x3, 0x600, 0x1f, 0x7cb0, 0xe, "884318c9e2de96b29d42f04aacf950a5566a60"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) close_range(r2, r1, 0x0) 17:07:32 executing program 3: sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffff9}, @IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x40010}, 0x90) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0) clone3(&(0x7f0000000080)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0], 0x1, {r0}}, 0x58) [ 929.627325][T13351] serio: Serial port pts2 17:07:32 executing program 5: mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mount(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f0000000200)='tracefs\x00', 0x0, 0x0) open(&(0x7f0000000040)='./bus\x00', 0x90280, 0x8) mount$tmpfs(0x0, &(0x7f0000000000)='./bus\x00', 0x0, 0x1c00a1, &(0x7f0000000240)=ANY=[@ANYBLOB="6d6f64653d30303030040000003030303030303030303030303030302c00"]) open(&(0x7f0000000080)='./bus\x00', 0x80202, 0x184) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000001140)='mountinfo\x00') sendfile(r0, r2, 0x0, 0x800000080004103) 17:07:32 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x10, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:32 executing program 3: r0 = clone3(&(0x7f0000008bc0)={0x40008000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = gettid() tkill(r1, 0x33) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r2, 0x6, &(0x7f0000000040)) clone3(&(0x7f00000001c0)={0x4004000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x30}, &(0x7f00000000c0)=""/34, 0x22, &(0x7f0000000100)=""/99, &(0x7f0000000180)=[r0, 0x0, r0, r1], 0x4, {r2}}, 0x58) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/user\x00') preadv(r3, &(0x7f0000002580)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/110, 0x6e}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/107, 0x6b}, {&(0x7f0000002380)=""/92, 0x5c}, {&(0x7f0000002400)=""/120, 0x78}, {&(0x7f0000002480)=""/41, 0x29}, {&(0x7f00000024c0)=""/169, 0xa9}], 0x8, 0x3, 0x0) 17:07:32 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) syz_io_uring_setup(0x6978, &(0x7f0000000180)={0x0, 0x63a8, 0x4, 0x0, 0x23a, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000200)=0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, {0x8010}, 0x1, {0x0, r4}}, 0x4e) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r6, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x725d21e1d8b9c74e, 0x2810, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r7, r9, &(0x7f0000000340)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x4004, @fd=r6, 0x7, 0x0, 0x160f}, 0xfffffff7) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r5, 0x1) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x5b, &(0x7f0000000380)=0x5, 0x4) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:32 executing program 3: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001600010e"], 0x14}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[], 0xfffffc7b) r2 = socket(0x10, 0x3, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xa) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) write(r4, &(0x7f0000000100)="19b50596ac9baf25dc9a4016bb33f420474934b83797624e2991c773cb9a97184b047ec81541ea3eaf2e87717bac671f3f25934ab5a2c398aff44e81b3fa8c4c18", 0x41) r5 = memfd_create(&(0x7f0000000000)='\x00', 0x0) fcntl$addseals(r5, 0x409, 0x2) splice(r0, 0x0, r2, 0x0, 0x100004ffdc, 0x0) [ 929.762425][T13382] FAT-fs (loop4): bogus number of reserved sectors [ 929.769005][T13382] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:32 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:32 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) setsockopt$inet_tcp_int(r1, 0x6, 0x15, &(0x7f0000000200)=0x8, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) preadv(r0, &(0x7f0000000340)=[{&(0x7f00000004c0)=""/212, 0xd4}, {&(0x7f00000007c0)=""/237, 0xed}, {&(0x7f0000000240)=""/58, 0x3a}], 0x3, 0x80000000, 0x8) writev(r0, &(0x7f0000000780)=[{&(0x7f0000000100)="dff548771d77ce8786aca76dda6fb054ab8ea73799d7293eda90ba41a2db81fab55b5415692300a8e64bca2f60e1717f85f06a6bbca90f392b04f34940db7ffccc33ed6ea82296de9683c9e360cd1c477304bd8f9bd74d44a4c7d1c7e625a86cd54b72c5745f475a772b84977a6b05381dbe6259bc510f0f70c3e9946a78c7b5a19e97447799d930f9", 0x89}, {&(0x7f00000001c0)="96431fb1cb119741590ad657dc5e5ce3e5fe9f1f639e6a18bc7b6c1d0b424eb306f34cf2429c62c0fdefbae36740a7169721af852826d7f14b6cae8af8", 0x3d}], 0x2) sendto$inet(r0, &(0x7f0000000640)="261a86a9a1a3aa8f59b2b9a40fe4f207522d2f9c93287c4f240b954783a5052438b5567156d9d265fd2b837fa75e2fcbb71355b04d6520feb62990312a7fc761c15bea6a7d876baacbdb9789783b9d7b3313f97f6fdb299ec8818a9c1b14aa0fe15b4e3dcc18a6be77", 0x69, 0x80, 0x0, 0x0) connect$inet(r1, &(0x7f0000000380)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10) sendto$inet(r0, &(0x7f00000002c0)="1395527e66d395bcbb0e89fc8927284f6e10667ac33b328ff25025d811d9cbbcebe95a66aa059c3d1b844023599b4d6cc5d1dd61da7854ead7c8b45bfe75be2471894c4085f4da41502d23faac3b3a526d891394698b4c4a990cfad9", 0x5c, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000)="fd93f4d07d04127b989f6cb8eb1a3146f0fdef6e7c63e8415aa4163f62aeeb6563e550a4c114ccebf34dd915433dd0d43041e225a2002e35c30015a9d961d969639b511a0fe49a33e9d6b4a327f07040b3a231bbcb16df20af5ed908e57be2f85e89a286bb0183b06573aafd245cec949d19a19c5ab8e7981d908287", 0x7c, 0x4000194, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10) sendto$inet(r1, &(0x7f00000006c0)="72f5681a5ae4e8c13fe5a286399b4a49db1e213ca6eb9cf97dcdf4c6e11ef81b43ce8a88e422237ffbd70363a5b1db1b94b538da86ada4dc0b3f9cbb9e8987dcf6c3870fe6b6b5a94579e24c1b5ecf318ce61861800e767ab20c5bd539006ecb537a1735e75ec9c868558d99705deb4de33d9239d47b0783b1a43ba2733705817007ed6b7c0a54d83fdbf635af72f4ee53523de041a8bc18a3c0b394f9b064f9f41c7755edbc5959a845eee79547ed2ee81c627a2ec520f07c9e5b9bb45536", 0xbf, 0x408c0, &(0x7f00000003c0)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) write$binfmt_elf64(r0, &(0x7f0000002240)={{0x7f, 0x45, 0x4c, 0x46, 0x40, 0xb6, 0xfc, 0x9, 0x26, 0x3, 0x6, 0x8, 0x216, 0x40, 0x24, 0x7ff, 0x400, 0x38, 0x2, 0xafc, 0x0, 0x3}, [{0x4, 0x68000000, 0x7, 0x1, 0x26d6, 0x7, 0x3}], "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1979) 17:07:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x60, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 929.857190][T13406] loop4: detected capacity change from 0 to 7 [ 929.870536][T13406] FAT-fs (loop4): bogus number of reserved sectors [ 929.877270][T13406] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:32 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 929.951737][T13482] loop4: detected capacity change from 0 to 7 [ 929.960302][T13482] FAT-fs (loop4): bogus number of reserved sectors [ 929.967076][T13482] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:33 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) read(0xffffffffffffffff, &(0x7f0000000100)=""/193, 0xc1) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) syz_open_pts(r0, 0x40040) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) read(r2, 0x0, 0x7) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x1ac7c543ee5fb549, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000000580)={0x2, 0x5, @start={0x0, 0x1, "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", "92c6ae7c14b823cec49e4687f1bff631a82753e3f315e3ebcd66777ed4380df93900136dd11b1fb6bf06fa30af4b891ebd383722ef8271ed687147a2a9a479ff07deb4a4f11624c50a6694b82941420ca2179f01b627238c030fe482da6b044694490df4eb63d07fc627903aefac223333cd9ba1d7566320dc81c81c94f2c39d91dab6e3c451778989a32698811c20363e0f216ba0ec9209607ff1f7ef798bb655d820e337804407e55c782a88570f48f7375b230f296751e72d7224df01aa499cc6fa794fa76b4fa6568d0c6160d720df97857ef078b2a46d506105274ed56d4431bfcf13b5a0acc736827eaffe9319ae05652b08daf901ae9e1b26727409a01d9b49a71a86b10ed0fbc5e504760d17f8f189c0e175222ff541cb577a0505ccfd0053b8291e8da3c05e22c58c3fe60f052aff8ec879250d10df9c8e386c75117145210137e796655524486737b641dea6de67ab6eb839024337bf3ff959ed4b13bbaeb8bd854b440a934f78b6efb1564f1e845d39161fa979a15e4a0147e9fb2e6d53b48d8365c8f768183f69540f82d3ebb21fb7898288772e7e2269f7dc882e0b6fe7f60b8d0c2f41772f10665ff591e2a18fc3b95af7fd3e851862ce0c643d20d32d8ca305828470f3af068a63cf40666974e0edab8f383b6cd0d6160b0aaed1498dc3690f3369249b722b5e5142d0683bbaa0a48efa20db02a2b975e016a71273f80d04bfc3b15bf34be86ac2ff9b7aceb19c808c1d7131f069d96aac06626ca22afb7a14068571a5370b58c8cbe1c368829e3f3a3fb7aa79ed47a0711f428ed7fffc977b160f2b12238fa7e5a3dce218b92281f4efd5869bd85f79f7d3a4555a7b649287fea18abeb0fef08b9573669fa1cea17119aa811223b0c4e8eb57638b567958ccdeb073d10e958b65a733668f4237fe70ce3a3e0ac2e3e35416608890a436db4f8dee0ce7a864ac047fa0ce0c250e1998901b13c4529a15adf33f9ed78cf39439201e8e7975c484014032d9c1ab83f0c3e1034c8d87a2ca28f4a9f7492dc5587634335ed3ededf74c4a19d03de979567270b35b1b8becb614a61bf14b723be4ab735798068bf9c9bdd74d033682217455a7f02480d24c93b35fc595f31e5907cf3274ff3e51cab08b8b9de8ea93a3ae1f8157e776cc85e0c60dfca0937b383fec0275392829ebdab92024a7b9dfd9f5992ab52a5284989948033e258a3240d490c4eb9b6ba04e6d90f0c52d163cf187c27c406ce139b503bd8996c61ec8c05c443178cc469f6297d3ee1556f154cf9e66ddbd4c01097a0b9cd6ec5568c72acd64c6f282a5417924c1fbf5c734ff5d6fdd93c4ad4ce00251f7173a4e87c9aa5a5da2236a8b7a414c6bfd11c4fc10a3123db2c17dd87bbcad7f30ad858d4f2ee9b9bb491c8bf7dcb14cfbe05c1600b748e0ee63b1813de5ca807b55"}, [0x0, 0x4, 0x100, 0x401, 0x100000000, 0x3, 0x3, 0x1000, 0xf1, 0x0, 0xfffffffffffffffd, 0x6, 0x2, 0x5, 0x8, 0x7, 0x2c7ae3b6, 0x0, 0x101, 0x8, 0x5, 0x7f, 0x0, 0x80000001, 0xfff, 0xb070, 0x3a1, 0x6, 0x100000000, 0x332000000000000, 0x4, 0x5, 0x8, 0x0, 0x0, 0x7, 0x3, 0x0, 0x100000000, 0x400, 0x581e6120, 0xf5ff, 0x3f, 0x100000000, 0x5, 0x1, 0x3, 0x40, 0xff, 0x623, 0x9, 0x9, 0x80, 0x3, 0x9, 0x3, 0x2, 0x9, 0x0, 0x9, 0x4, 0x8, 0xd36, 0x8001]}) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x0, 0x9, 0x9, 0x7f, 0x2, "4e5cc569c2d33d0f3ebf3639a48ebe2fdb1811"}) 17:07:33 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xef, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:33 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x180000f, 0x12, r0, 0x0) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa40000ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ioctl$KDFONTOP_SET_DEF(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x12c, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x17) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) r2 = gettid() tkill(r2, 0x34) ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000080)={0x16c, 0xc, &(0x7f0000000280)}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r4 = syz_open_pts(r3, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000200)=0x2) read(r4, 0x0, 0x2000) 17:07:33 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 930.489313][T13998] loop4: detected capacity change from 0 to 7 [ 930.499087][T13998] FAT-fs (loop4): bogus number of reserved sectors [ 930.505649][T13998] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:33 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000040)={0x5, 0x5, 0x1ff, 0xb5, 0x14, "d6b0fcde0f1c2fe25dbd782e63af9eee5dee61"}) read(r1, 0x0, 0x2000) [ 930.563056][T14015] loop4: detected capacity change from 0 to 7 [ 930.582219][T14015] FAT-fs (loop4): bogus number of reserved sectors [ 930.588814][T14015] FAT-fs (loop4): Can't find a valid FAT filesystem [ 930.598396][T14022] serio: Serial port pts2 17:07:33 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) mmap(&(0x7f00006d6000/0x2000)=nil, 0x2000, 0x300000a, 0x100010, r3, 0x936e7000) fcntl$lock(r3, 0x6, &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x2, 0xa4830, r3, 0x8000000) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r3, 0xd0009411, &(0x7f0000000680)={{0x0, 0xfffffffffffffff7, 0x7, 0x3, 0x3, 0xf8, 0x7, 0x40, 0x10000, 0x2, 0xf2f, 0x7b, 0xea, 0x4, 0x3f}}) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd_index, 0x8000000000, &(0x7f0000000380)=[{&(0x7f0000000000)=""/54, 0x36}, {&(0x7f0000000180)=""/237, 0xed}, {&(0x7f0000000340)=""/27, 0x1b}], 0x3, 0x10}, 0x1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r7, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r6, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xe00, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:33 executing program 3: r0 = geteuid() syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0xff400007, 0x2, &(0x7f0000000240)=[{&(0x7f0000000040)="040832090000ff01e66174000404090a0200027400f8", 0x16, 0x6}, {&(0x7f00000004c0)="dbed7d4cac17", 0x4d, 0xe59}], 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f646f4e6d9980a1a7c9ebc638999ccfc25dcb86565d74732c64", @ANYRESDEC=r0, @ANYBLOB=',\x00']) 17:07:33 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) ioctl$sock_ifreq(r1, 0xa0, &(0x7f0000000040)={'macvtap0\x00', @ifru_flags}) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x4}}]}]}, 0x50}}, 0x0) 17:07:33 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:33 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) sendmsg$nl_xfrm(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f00000005c0)=@allocspi={0x1224, 0x16, 0x100, 0x70bd25, 0x25dfdbfc, {{{@in=@dev={0xac, 0x14, 0x14, 0xa}, @in6=@private2, 0x4e22, 0x9, 0x4e23, 0x7fff, 0xa, 0x60, 0xa0, 0x29, 0x0, r2}, {@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x4d5, 0x2b}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {0x62f, 0xffffffff, 0x3, 0x987b, 0x65e3, 0x8, 0x80000000, 0x1}, {0x8, 0xffffffff, 0x81}, {0x0, 0x8}, 0x70bd28, 0x3504, 0x2, 0x2, 0x1f, 0x4}, 0x8, 0x40}, [@algo_auth={0x1048, 0x1, {{'sha3-384\x00'}, 0x8000, "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"}}, @tfcpad={0x8, 0x16, 0x20}, @algo_auth={0xda, 0x1, {{'xcbc-aes-neon\x00'}, 0x490, "511bbaf02098cf33f2faa3b97b695027957678933d269c689de5e952400e71d7d9ea3f8c1176d2dcafce3a2e6823997571aba9c4d5f809a9418921367e0233e41c73038bab78fbe90d93de814a55e25acbb9ab8c631859506af6083ae981c91d6cdffd0365584fff8d0e06c93b6dabbb2e650cf6a727a74a4af593ce2e2a462ba914393d19c566b2ee850c5ec3827a9b7a11"}}]}, 0x1224}, 0x1, 0x0, 0x0, 0x24000094}, 0x20010044) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@loopback, @in=@dev={0xac, 0x14, 0x14, 0x23}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x1f}}}, 0xb8}}, 0x0) r3 = pidfd_getfd(r1, r0, 0x0) sendmsg$DEVLINK_CMD_SB_GET(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0x188, 0x0, 0x800, 0x70bd28, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x1f}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x101}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x800}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xffff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7985}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfb5}}]}, 0x188}, 0x1, 0x0, 0x0, 0x45}, 0x8000) [ 930.715551][T14064] loop3: detected capacity change from 0 to 264192 [ 930.736085][T14064] FAT-fs (loop3): Unrecognized mount option "nodoNm™€¡§ÉëÆ8™œÏÂ]ˆV]ts" or missing value 17:07:33 executing program 5: unshare(0x0) unshare(0xc020000) unshare(0xc020000) unshare(0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000080)='G', 0x1) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000008, 0x50, r2, 0xcc456000) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0xde, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x240500c2, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1e) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000080)='T', 0x1, 0x200028c1, 0x0, 0x0) poll(&(0x7f0000000000)=[{r2}], 0x1, 0xef) [ 930.771678][T14072] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 930.777638][T14074] loop4: detected capacity change from 0 to 7 [ 930.811858][T14074] FAT-fs (loop4): bogus number of reserved sectors 17:07:33 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = accept4$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, &(0x7f00000000c0)=0x10, 0x80000) accept4(r2, &(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, &(0x7f0000000200)=0x80, 0x800) mq_notify(r1, &(0x7f0000000380)={0x0, 0x28, 0x1, @thr={&(0x7f0000000280)="fbabfb1aba66a7c45282aff8984005674b3d350e0cd12fd6e371f89ef27eb654ba0681da69b8944277a989a6d0293afc76eb7a43c083c8dbb1ca000cde3469992983bb94437259b043f53b690a0c9ca12dae6281d4dc5f9cadf65f64b5229acbbf450c4d1758c58f5afe04bbf5b21f7cd38c49428431cc5f13698f3f556bfe6daa7f725ada30a203f508b4b42bb404e26ee82c2a3890b562584d8c94918ea386fa3b25488a9156cb9d4c", &(0x7f0000000340)="d44b95b4bd73eea3d665db57"}}) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0504000000000000000005000000180001801400020073797a5f74756e00000000000000000018000380"], 0x44}}, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000180)=@tipc=@name, &(0x7f0000000000)=0x80, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x7ffff000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x100000000000008d, 0x4, 0x0) 17:07:33 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 930.818560][T14074] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x1040, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:33 executing program 3: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000440)={0x2, 0x0, @start={0x0, 0x0, "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", "97af41bfb9b99534ba7020ff9a99831d111b3171c2dff885637b47e3b99b6d1e22fdd304e96eb60fadea3842245b9b01f47164de42595be2f9ed4130ab0bebc6ed1baea4e1718c90473a60dc55120b2e42c491043804f0f3e85d3674f79e637ad34b9d2be43c8e7fb4c033d79de26f09a4956686f64d25975287b5094ef836402d24ca7e2b1584668937731f0943d2bf3c9bca856b4f2a56a89beffdae74d89713db9a1702d272869e258acabe71f467a550346a87176b9d6cad9a15d12ed85b2fada7a7ba5498cdb19b4db1fddaee127df3b168b57fb444a7a673c84d7527f8fc0eefff68e27db100de4e3a858a6424b8ec7674106e044eb90149f7cea547562f8a0f2160ddf0f2db25dcbb90f9cbac1c48bfbe08c765748ead07074a01c236a467257d079ad54a15b1037cedb1f5339557426396235667fce61fd79a281c9df4b9712b2a0c3a18432d253bda9dc2c722a683a5fbf84bbbbe9fef368aa1a6151a43e0c492cff7156d92dc17351faedc7f029c1022ebafd407822b8f53437f620a180d2282abb6f2b265dcaef12747c176fa887a40cee2efa7afdd049968746535d7b8f2f56ed308fdfb54f4c9c53f063b33e53f67fe3523f763568efa6cc7cf627867e555cd74f0b19d5cc3d681dcccf431f39d30eb044af093a973b3b7631436391a412fffec211543eb22accb8da85cc80af96fe782528349bd158763d457fde8ebce929f36331377e0fe770e91203aa57127b1051e26584cfde95ee660fd06b313c274e92b19942f7e21227b607771dc4124e87b0cba48995f6b1160a8f37cdbeb7dc1f3d25ae2b48edd03c9f555d639f0752fc18ef07551affcafe0545a7663653d5f902c062cdf9e89cf0dbfb7314cb5a3a48b555a91b57695b3a33dd1da5307857fd8fa5dbe3fc54feaee4474d36ef64f7cdd8db0dff39687b9dded35dc249e6aeccd5e2a2a078c3216a496b72ac6dbf1f7e561bb66346f4c922d401251d85fca7cf67de9e42a3af4706a766b64c8ff5d327b65c67867a7abbb0dc20af0bfaf1fb2b5528d8163b3b3b685769faf00be86905a5694bd054099978562a184f6e00dcce26e21770e137c867bcb7aa7315272e5fe3da3e0ae8db22d4f6ac0cde24d2b7b49d3cfc1a5fdfbc34df9def1b81bc942282ed3bf08f7cb964a735c8560dbaa06652c0d9996d4e5f6758460dff24ffbebc5418b5c2cac5d824b2024dfe65b51521fb46a16510d3ff67b8d71a336216e05c505bab433e6e98a9244641f57c9bc3e79d56b0c94316447a8d7d3291db69ea8d640f743dd175f77068c392d4499215bb6f6d1dd052e70247ca40fdb60ca9a6338891dca1a3e17d4bdbab1fa0b8b6ec1eefacf4e424ca56b400abf15eee981b62bca856c0fb98d38f0cc808371eb8109e96d172c541698d202ce38057939efed95a5f93d5f684c1c2bebac77"}, [0x0, 0x10001, 0x1000, 0x101, 0x3, 0x7fffffff, 0xffffffffffffffff, 0x81, 0x401, 0x8, 0x3f, 0xffff, 0x1000, 0x7, 0x0, 0x10000, 0x2, 0x0, 0x1, 0x93d5, 0xfffffffffffffffd, 0x7, 0x59c, 0x2, 0x9, 0x8, 0x7, 0x9, 0x9, 0x20, 0x4, 0x3b7, 0x1, 0x2, 0x7, 0xe4, 0xf9c2, 0x1ff, 0x8, 0x3, 0x3, 0x42, 0x0, 0xa9e3, 0x5, 0xf03, 0x6, 0x6, 0x7ff, 0xea, 0x2, 0x3ff, 0x6, 0x9f, 0x4, 0x7ff, 0x1, 0xffffffffffff0001, 0x800, 0x4, 0x4, 0x2, 0x5, 0x6]}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000e80)={r1, 0x1, 0x7, 0x1}) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xe, 0xffffffffffffffff, 0x9) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000400)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a020002740ef801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1013c1, 0x0) r3 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4b, 0x0, 0x2, 0x7fffffff, 0x1, 0xfffffffffffffe00, 0x1, 0x80000001}, 0x0) write$9p(r2, &(0x7f0000001400)="3b27a4b46ee92b4a59073c369a5e19f9db153c4fdbc76aa2a4bb9f3e5e1aa197a9e97d1016c01813792e50c2692c175aad715d110a892949ccc6e2e54c2d5c8f0b7932b69797f217168b0c1feb128ae34f0daf487a70b5c117acd43725fe17993634f1695dabd7f998cd55e9d5bd911e86aa7a4ad75a574bb96951d6018b25d942a9544bca1ebb0e8d10c092cdcb85797673972099e4041aaf8d636f66cb1103ef2050ad28fabaed33d6927889d97f4b5ce0de71d3fd832980f4f088d0d824e20549b4bbd906ffa51ce9de54d779eb4de462faac20a3ab0ed9934373ca22cea5", 0xe0) sendfile(r2, r3, 0x0, 0x1c500) [ 930.876481][T14130] loop4: detected capacity change from 0 to 7 [ 930.901045][T14130] FAT-fs (loop4): bogus number of reserved sectors [ 930.907634][T14130] FAT-fs (loop4): Can't find a valid FAT filesystem [ 930.957274][T14306] loop3: detected capacity change from 0 to 264192 [ 930.969373][T14306] FAT-fs (loop3): Unrecognized mount option "Uõ£€fݵØù#2Iç¡Ý1fнŸ!ÀÀ½¢ìòåþïãJÂã—lbáÿB]4£ÔŒ›¥×nÖ~}™e@Ýä¶÷œwîë&|¥ŠDÿP¡évâ¡&4zê+Ú}Yši9½²¤%½PHÕË‘ËQV:¤L3~F¼­o M A0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r1, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, 0x0, 0x1) io_uring_enter(r1, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r1, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x13e1, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:34 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 931.658048][T14695] loop4: detected capacity change from 0 to 7 [ 931.668901][T14695] FAT-fs (loop4): bogus number of reserved sectors [ 931.675508][T14695] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:34 executing program 5: timer_settime(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) unshare(0x8000400) unshare(0x8010000) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000002c0)) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xb) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000140)) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, 0x0) timer_settime(0x0, 0x0, 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xb) [ 931.754743][T14713] loop4: detected capacity change from 0 to 7 [ 931.769159][T14713] FAT-fs (loop4): bogus number of reserved sectors [ 931.775747][T14713] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x2000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:34 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 931.800743][T14766] loop3: detected capacity change from 0 to 264192 [ 931.820455][T14766] FAT-fs (loop3): Unrecognized mount option "Uõ£€fݵØù#2Iç¡Ý1fнŸ!ÀÀ½¢ìòåþïãJÂã—lbáÿB]4£ÔŒ›¥×nÖ~}™e@Ýä¶÷œwîë&|¥ŠDÿP¡évâ¡&4zê+Ú}Yši9½²¤%½PHÕË‘ËQV:¤L3~F¼­o M A0x0, 0x0, "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", "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"}, [0x0, 0x10001, 0x1000, 0x101, 0x3, 0x7fffffff, 0xffffffffffffffff, 0x81, 0x401, 0x8, 0x3f, 0xffff, 0x1000, 0x7, 0x0, 0x10000, 0x2, 0x0, 0x1, 0x93d5, 0xfffffffffffffffd, 0x7, 0x59c, 0x2, 0x9, 0x8, 0x7, 0x9, 0x9, 0x20, 0x4, 0x3b7, 0x1, 0x2, 0x7, 0xe4, 0xf9c2, 0x1ff, 0x8, 0x3, 0x3, 0x42, 0x0, 0xa9e3, 0x5, 0xf03, 0x6, 0x6, 0x7ff, 0xea, 0x2, 0x3ff, 0x6, 0x9f, 0x4, 0x7ff, 0x1, 0xffffffffffff0001, 0x800, 0x4, 0x4, 0x2, 0x5, 0x6]}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000e80)={r1, 0x1, 0x7, 0x1}) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xe, 0xffffffffffffffff, 0x9) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000400)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a020002740ef801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1013c1, 0x0) r3 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4b, 0x0, 0x2, 0x7fffffff, 0x1, 0xfffffffffffffe00, 0x1, 0x80000001}, 0x0) write$9p(r2, &(0x7f0000001400)="3b27a4b46ee92b4a59073c369a5e19f9db153c4fdbc76aa2a4bb9f3e5e1aa197a9e97d1016c01813792e50c2692c175aad715d110a892949ccc6e2e54c2d5c8f0b7932b69797f217168b0c1feb128ae34f0daf487a70b5c117acd43725fe17993634f1695dabd7f998cd55e9d5bd911e86aa7a4ad75a574bb96951d6018b25d942a9544bca1ebb0e8d10c092cdcb85797673972099e4041aaf8d636f66cb1103ef2050ad28fabaed33d6927889d97f4b5ce0de71d3fd832980f4f088d0d824e20549b4bbd906ffa51ce9de54d779eb4de462faac20a3ab0ed9934373ca22cea5", 0xe0) sendfile(r2, r3, 0x0, 0x1c500) 17:07:34 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:34 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) mkdir(&(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x73d001, 0x9a) renameat2(r1, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2) [ 931.895894][T14798] loop4: detected capacity change from 0 to 7 [ 931.906013][T14798] FAT-fs (loop4): bogus number of reserved sectors [ 931.912607][T14798] FAT-fs (loop4): Can't find a valid FAT filesystem [ 931.953590][T14825] loop4: detected capacity change from 0 to 7 [ 931.964117][T14825] FAT-fs (loop4): bogus number of reserved sectors [ 931.970365][T14827] loop3: detected capacity change from 0 to 264192 [ 931.970660][T14825] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x4010, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 931.982776][T14827] FAT-fs (loop3): Unrecognized mount option "Uõ£€fݵØù#2Iç¡Ý1fнŸ!ÀÀ½¢ìòåþïãJÂã—lbáÿB]4£ÔŒ›¥×nÖ~}™e@Ýä¶÷œwîë&|¥ŠDÿP¡évâ¡&4zê+Ú}Yši9½²¤%½PHÕË‘ËQV:¤L3~F¼­o M A0xffffffffffffffff}, 0x0) r1 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000000040)=0x1ff) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000100)={&(0x7f00000000c0)=""/9, 0x9}) 17:07:35 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x6000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:35 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:35 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) r3 = syz_io_uring_setup(0x47bf, &(0x7f0000000180)={0x0, 0x99fc, 0x4, 0x2, 0x24d, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000200)=0x0) r5 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r5, 0xc400941b, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r5, 0xd6, 0x0, 0x0, 0x2}, 0xfffffffc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000006, 0x10010, r3, 0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r4, &(0x7f0000000340)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6cb2c660427f58d2, {0x0, r9}}, 0x10000) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r7, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r6, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:35 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 932.584790][T15354] loop4: detected capacity change from 0 to 7 [ 932.594655][T15354] FAT-fs (loop4): bogus number of reserved sectors [ 932.601322][T15354] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:35 executing program 5: perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x10}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000280)=0x27fe, 0x4) perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0xf5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}, 0x0, 0x7, 0x3, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x3654}]}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10) signalfd(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) clone3(&(0x7f0000000680)={0x5000, &(0x7f0000000340)=0xffffffffffffffff, &(0x7f0000000380), &(0x7f0000000440), {0x3}, &(0x7f00000005c0)=""/133, 0x85, &(0x7f0000000480)=""/53, &(0x7f00000004c0)=[0x0, 0x0, 0xffffffffffffffff], 0x3, {r1}}, 0x58) vmsplice(r3, &(0x7f0000000540)=[{&(0x7f0000001740)="51508af4a06dae7f9e60ada67f2cbd060b43b13918e0780f2d329c0fcc651bd0d1e7ec0d743c3bf33abbf9d1181484b7f31c138e71586e195fb52b9e6a5e1091114a3462ef95d878d5ab1d9651e2339defa0345f542f269491b958b889851760ad9bbb53", 0x64}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f00000027c0)="2f8d56ccfc784260c827dd10c6a2c9a729f3bc7577166235af90a1712ef5431fd71ad4c6e5c4a03d52bb24c3be79b04264d754943fcd02f3fde2612df4efbf6f7b1f941b6a03900fbf6346edd237dbf0856c332f46aad0c89b2a71d509fc1c755de4b64966b8ce7da85ea837377e62f3a2bd1ef87f255c90301e3cac8caaee21ef40f3e4b9ec7f2e28a4695c45b477e85ae1ea9c35c9c07eb273196563aa2232ca09f90c8bc4d74b6b1795e16fa081adc2a03db435c490e50e33f369ef4f52923b486e914fc67ae341052f3939095c255d32110b7426e0f344e561f38bc58b553515edf453", 0xe5}], 0x3, 0x3) r4 = gettid() rt_sigqueueinfo(r4, 0xa, &(0x7f00000002c0)) ptrace$setregs(0xf, r4, 0x5, &(0x7f0000000040)="36e04d567f4ce5636060bdcf35f6ac8f5f98a735b20414288fb4a3cc3b94d5f2e4011b02c8f50b20585b6cffcab8f19d9798a67a15d9e948dac407cea5552f54d4d9fcf5a2fc") recvmsg(r0, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x1f4}, 0x700) [ 932.663888][T15362] loop4: detected capacity change from 0 to 7 [ 932.674640][T15362] FAT-fs (loop4): invalid media value (0x00) [ 932.680667][T15362] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:35 executing program 3: r0 = creat(&(0x7f0000000040)='./bus\x00', 0xb0) r1 = dup2(r0, r0) fallocate(r1, 0x38, 0x1, 0x2) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r2, r0) mount$9p_fd(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',dfltgid=', @ANYRESHEX=0x0]) 17:07:35 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:35 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xe113, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:35 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}], 0x809, &(0x7f00000001c0)=ANY=[]) umount2(&(0x7f0000000040)='./file0\x00', 0x1) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x402080, 0x0) recvfrom$unix(r0, &(0x7f0000000140)=""/99, 0x63, 0x40010100, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e) acct(0x0) mkdirat(r0, &(0x7f00000000c0)='./file0\x00', 0x29) [ 932.879286][T15504] loop4: detected capacity change from 0 to 7 [ 932.889321][T15528] loop5: detected capacity change from 0 to 4096 [ 932.896367][T15504] FAT-fs (loop4): invalid media value (0x00) [ 932.902456][T15504] FAT-fs (loop4): Can't find a valid FAT filesystem [ 932.933657][T15528] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 932.943481][T15528] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 932.953713][T15528] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 932.963374][T15528] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (60729!=0) [ 932.979082][T15528] EXT4-fs error (device loop5): ext4_fill_super:4949: inode #2: comm syz-executor.5: iget: root inode unallocated [ 932.991350][T15528] EXT4-fs (loop5): get root inode failed [ 932.997074][T15528] EXT4-fs (loop5): mount failed [ 933.034931][T15528] loop5: detected capacity change from 0 to 4096 [ 933.048589][T15528] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 933.058960][T15528] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 933.068862][T15528] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 933.079256][T15528] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (60729!=0) [ 933.089026][T15528] EXT4-fs error (device loop5): ext4_fill_super:4949: inode #2: comm syz-executor.5: iget: root inode unallocated [ 933.101597][T15528] EXT4-fs (loop5): get root inode failed [ 933.107238][T15528] EXT4-fs (loop5): mount failed 17:07:36 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x4) r1 = syz_open_pts(r0, 0x410040) r2 = syz_open_pts(r0, 0x0) ioctl$KIOCSOUND(r1, 0x4b2f, 0x1334) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000040)={0x8, 0x7fd99c77, 0x7, 0x5, 0x1b, "caa7d2ef29e28d0f18879cbed89a9288f87c10"}) read(r2, 0x0, 0x2000) 17:07:36 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400100101000240040000f801", 0xffffffffffffffbc}, {0x0}], 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]) 17:07:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xefff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:36 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}], 0x809, &(0x7f00000001c0)=ANY=[]) umount2(&(0x7f0000000040)='./file0\x00', 0x1) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x402080, 0x0) recvfrom$unix(r0, &(0x7f0000000140)=""/99, 0x63, 0x40010100, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e) acct(0x0) mkdirat(r0, &(0x7f00000000c0)='./file0\x00', 0x29) [ 933.313382][T16166] loop4: detected capacity change from 0 to 7 [ 933.321834][T16169] serio: Serial port pts2 [ 933.325199][T16168] loop5: detected capacity change from 0 to 4096 [ 933.329340][T16166] FAT-fs (loop4): invalid media value (0x00) [ 933.338833][T16166] FAT-fs (loop4): Can't find a valid FAT filesystem [ 933.344608][T16170] loop3: detected capacity change from 0 to 3480 [ 933.352065][T16168] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 933.362054][T16168] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 933.371850][T16168] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 933.377075][T16170] FAT-fs (loop3): bogus number of directory entries (1088) [ 933.381515][T16168] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (60729!=0) [ 933.388890][T16170] FAT-fs (loop3): Can't find a valid FAT filesystem [ 933.407333][T16168] EXT4-fs error (device loop5): ext4_fill_super:4949: inode #2: comm syz-executor.5: iget: root inode unallocated [ 933.419756][T16168] EXT4-fs (loop5): get root inode failed [ 933.425537][T16168] EXT4-fs (loop5): mount failed 17:07:36 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) sendmmsg(r4, &(0x7f00000005c0)=[{{&(0x7f0000000180)=@isdn={0x22, 0x4e, 0x23, 0xe1, 0x5}, 0x80, &(0x7f0000002780)=[{&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000000)="0accc3bdf1401f2988f2032969528a8733eb2cd2ea281e", 0x17}, {&(0x7f0000000200)="b818c1a9a387380f83c117762e84e7ceca031daeb3bd5ee00fb2ce36d394dfa95384c32d4dccc58757b01962e6831fceb40ce4683af66b622fae683bf6533792fffd8681d61af0b88af9c442deba091690ab7c", 0x53}, {&(0x7f0000000340)="7b61b274", 0x4}, {&(0x7f0000000380)="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", 0xfb}, {&(0x7f0000000480)="25341effbf67898028af06560c5d76249d22581b2d493cc19db9b65fa3f9cf3a1ff2774a20bae4cfc088d0279f6a074b31", 0x31}, {&(0x7f0000001680)="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", 0x1000}, {&(0x7f00000004c0)="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", 0xfe}, {&(0x7f0000002680)="6e8a8e146f0833177799ddc43ca28a9540f5a3770b0b1b0300e97ed228fb76447296ba20f3b8ebecb85cfd286be853260df4bc6bcc92821bd7aae7d93c9f393b623a1f53056f78f20be669738a588069eaee5d22052a1698163659591b6f6d18786c94d7f55df4bda719c858c52a253abd5a65f01772073142e18616466bea8a4c180f5972776c300a3856b415c18ac702958a06cb72df4828c00cd9fc9a23a1845bddb055890708a0f93ff95600ed7094420af08756493e4b2ff23d847df8826a6c13ffb55b4c17a548ac4d967c5e44f2d29a1f9d40967d5e8301e377e72cf9399a8879b802366d550284ddf99e81ab32181b2f30e9", 0xf6}], 0x9, &(0x7f0000002840)=[{0x38, 0x100, 0xae1, "5cb28a854a422c2944c09a2a06fb6048f7002cf019dcd8f0938e92d0ed68a020be"}, {0xe0, 0x110, 0x2, "133c52eed15488f2a91a4a86ffe45f0dc1923157c67313d9f2e76778ba1cb69a40ccbba7bc599cd695e7e2e789dd50d1def9d0bcbf399736674576ce61b7f3fc51226e27772cf64b280a25523fa6800aef9b65e4a5f0f3e4f23af01fc997b6f1edff62e96ed97946afa624345331744343249a647b1136b28380b2c9b9ba75e57db6317fe4857b6658b0ab40af9f684292d5c588fa86480147efd3f73cca38db6ec0f4bd1ab3292dbce6ec476d1e5e38c598b62da1a98a249951be689a78a18bdd78c1e9d72084cc4f9dab809f16"}, {0x28, 0x113, 0x8, "e8b7b3f2de7d0875c0b27898890f24070571a08166"}], 0x140}}], 0x1, 0x4000011) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) r5 = syz_open_dev$vcsa(&(0x7f0000000600), 0x7, 0x40240) sendmsg$nl_netfilter(r5, &(0x7f0000002ac0)={&(0x7f0000002980)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002a80)={&(0x7f00000029c0)={0xbc, 0x1, 0x6, 0x3, 0x70bd29, 0x25dfdbfd, {0x7, 0x0, 0xa}, [@typed={0x8, 0x56, 0x0, 0x0, @ipv4=@local}, @generic="cbcc76905905f9f0114004d16260e560b023317db5bc1c63a1662ac57a14286c0cdd9b2137d132e27a55ac8f73a12c952eb175d666e95dc3a783ed37902cc929885e363fe2c61750ebc8326b294abd628371fbaed13521f3c3cb63280ce9d24b30724d588b3bfcfd688dcd4bf0e0c17e0c48f4ab6e10aa83bbadbd4517a050d407263c31eb60e87489c068d3e5a1b46cb452071ce0abbb97a1678a4edf09"]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x8084) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:36 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xffef, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:36 executing program 3: r0 = syz_mount_image$msdos(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000005c0)="42628a06081010ce45f9333fb439775497e3683447c04312493ecab6c3f2f90c69d3deb49c28e7205bb481a308d08c2204e3f1dbbd2826ef80af4f0eb4beb6df08627d1dbeaaec29fdc6dd9423b7c04889ddeec6af3beecedeab8893d9e8b8613e23885bf4dc61a86c0712ac401d39787dac324cd270af872523100fbb8fa6369739bee66d0828f24df0732f5000a53c9d6fa37e6b8d81c0596a46183e5fbcfaeee6da361c85115ca186e8f8cb0a7fe32beb02c0c657470d4ea46d2b8064f85640cadad6c6843957adfb9962075a11fc79ba67f1696d494368d735cb87a0ef5a4e9dcb5e6ba3bd88ebbfc87c7f54d05281a9ca61571d62c189a30003a7eeb8694c7ca66463cbc9711c8747b6def6ec5af763ece250169e60d5d0cf11cbdb3188e5bd46acad959a3b11e2999a29896f5820e0d632832c1200b6e3f8f4201ed8bdd7b05a5749d8bf9236aef70d1221882e6517484161bf3da33c75f4853ab1c74e022e97f43fc62878ecc307e42e29c88d75c5358727c1d7b4036ce0d368843b4666c956779008fb9ce5f67b0598f5a76513c9c9c9f2ab6f36b5c6f5192dab273bab524f6d8ea7e32a361742487d96da99e30bf561f969d3a3b4bb76de126832f8da87187b59d11dc727defe1facbbdb2da58090f9bb8799c5ad545c07fe812d9cff446f914728918f4825acec32f5a3046feca8aed5f53dc4bad954ff07470a180788a02df6ac774398d8fe77057d85b90f68999b7e7314d4f1536acc35051ddbdb39357ee5de2c0c78978b749ce44d87467678e3b3ac4a1408c58955924c9f529213894714c024c1e20bdf90a9e101edc69cd596aad1c5410dd3ed29682548cb91ef1d5052728e829c6fb4a9bfb1055f326a62dfb583d872b7b77acad728353261547ad1af0fe23369850fe8a3f5a73f2a58a414a0b6f77c4c35042fc44fd5b0c790e78873ded56dfc925a18d1edf4b0199918fea97c76c1d6bfab1c3036f719bc6c66ea3d5b1240abc768b6fb4be1afa50dd4eaeb085842eb38eeb9ae53f272676467fd02e479e6b52183ad08a3becb0ca2c2db1ec9e8ebf98f3deb4ceef091eb4922c533e752de4aa3d22009862b3603094966843dbac5e705037edbfdd3c683e93f5f20b8cac2cf8ab6712747019696432b9feb2e2294e4ae6312158c3e9b2511d4e487703435d4d04108aa639e20fc5d74e0647782ae64e20f867f614a4e6a6d0138617343e1c9548acc1f5480402f7ed26d67f0d264536c817f85f13aea1d7817107450bfe9555051a354468055123786fefec1109816627930067cb27ff084afeeed5f482e2a434317514c7d3bc710d14948b18111e2f11895ca993cf6dfb08e58c5d1f56385dda4da45f9c36ddef2f38eac150f15ac8b9ad03b37924879fc8564f2e6a53e38663e87af56b8053d312d59a9711a2fadaa3ab0582fdf691d5b0f518302f31f033cd7bb812687d49de1ab1c2e078b069ac081e4893b7f05bd1b84a237a105e1a4e525b03ab62b794614e3fae6b97d77162c92b4f355e400da05d573c87dbe6ab9909b9508b890ae88cdbfaad9c434ef0f29cf4950b47ba6a99c8a6b8ddcba1a86625a1404041a5ab7030980ac764834353420c0d13c305c7964fcb74c93fc4bfcdee11d64d2788061955ccabcbf64c7aedea6e4f0f39913699c7e9bbe2282f3a4f6f222120869791bc61b59bfb2a15502186dab3c99170e2ae46024bbd6331e81979bd746cff86e61429044db9e44ad1bffa87b027a2b24c159c3a39e8e48799bbc733dc5e276bca01e10251aea63f1743d9502d684067f9523b9a1377ede17c207c30b9d4de0f903365ab9cdfac4cadeae5808f1793f444003cbe977414736cd02767c306beb2513910570aa90e4f01a929fd4032c2992ddad11e5df60a033999ad99a58b120f0a29de1f43cb069b8faf77be784f84a7cf8aa92f3912ca37f92e149d8d07bea7faff2020fa847a1a22089e13611d7ca9e43f6622938763817bfeba54807d3d3c6a0a504e8e66e28e0f95ff0f6a9a36e9d91367ae33bf1f43997f0e650488e139671dd7de31241d1e7d6b37d72845d57d3e61dfe7ccd02946baa8de48c00bdda468cfd51c8148d3b868a021720c981ba15e6785205949b8899fe6ca3fcc283d03e5c4857c265ae275fdb14ec7aba78626741500cfd8563188e35b754e64f53bfcd8f676d0152b98fc109da9d8da4da43bfaa928e208bc35d49a782889d01b5e61e37349177ff8757f3c168d3b2b3c2b3642198f6f85650cf1d56591a4e2abb3266c40b07ba56fa8f4dded34a32ca381b3e4cb2ee64f630cf6cf4d2b3fd0e0ccce75da3c7c1fa1c323d4013c5d3144f81a89b34943ab0ae294588453a1bed3c5111b226f149e3b6ee4f44519f999decd3adcc7518cc65a4d9e27194f5f8af3a51f66a51e154a86fe0046267393705c334bd33fc480abfcd5b574a30c781779fb70ed7ef9daaf21536c9a0cb4db6c9311954ab88b49e5b11d837656c1f7bf241011cab42420fc4f9623778a45193ef5b9639dadbe416e5e8a1cb56ce36ff8323f17d2d5caaccb027b91aa6a26391806762eab1f08b28d886d81159a4b2e35d9d48a5013ad66abecf70794950fe8b182ddaa878fbd82f064801f2b035a698942a7f548232be11e3ba42435aec5cf0d2303bc8897dac3f3935125155a2dfe87faa311f74a76bbc5ebbfaae1b4ddba4764e510deb288d3e0242520040b790f63fff75943aa1a43fcb949e44d827193d4817cf2ebfc40cd0a984e987ea1debf84abedc764bad69547ccf5cd4d9ec7c7af1fab649a0fd4472804bef72e5ac4009b2f042e4af350bf15261707be12b67d958423dfb053a19d5212b2cf6b4451355899cf8baf9b0709a0c84f1d2975663c91e61de935225267d00b932fa275ef5992103f2071757bef757b6cf777fd341bb5cdaf7d89a2cd977ce449364a78b2f644e5baeeee703b9a0b6140d631370c47b6518b32e1d543f6a0546686fe5ec4cc00ee86b36f1d0bd3dde2da8dd069caf6011f691c0a48f304374fb4878fbaed3ab4392fdcb2ff77ffff9c9f71b2cf22f84c2c36adbb103c7f77fbc04a131a4ebdc595d6d88417da08dc659361469136944b8f264962d3099fb8f9ab1f59df27544f97b7d9339c77f63cb39d1c85b3550b53066fd29293a1160844c3b51a68ce98a87bde213ed67be3f8fb3893086ab8054593499dd194370bba07ca7f8c11b475415aa53f022f683fd8c0f7b714754deb1415d4ac52f117cd63fe66662668d4f1203705749e43379ceede1bd95626196fb5d56c025045f627ec4b20d19a84655b85a13e8cfc837d7cb8c050d332ff541f89568af5a779ca114b18f4b72cf33ecb7bc67345f7160640363687de01337803c1ca4214611d5e6a22580f9feab3d9c32840274bf1d4e5be06b2e16ee1a5e3f5413a67dafbcbb1f5785d1da50c0ded68d220b686c15886d86c6f0354ef22f2f040a3305e5841aada6d5c74be6490facfe6e3847e7c8eb417cb6d2de0be2f9e3487434430711e606b899dd8a266a3a1dd060618671d095f6701b7efb579f813160d8d9cbcd3c7ba6c181e2b3c9e716a1bf54cec8d37ebe833b4f3ec07f1fda58906be4d813b52ec72c817597658f324c296f1ed495729965f9a59cba404fe208400cbabaf84729a6f91add54a241a26a48eca03b705b0f51b5df352eee450f20aefa980eee09e20df8f7b9fbc179424aca948e22a80ae837ae99a261e3c832fc0b189bfa878497de65bc9663a43f09d0a2400eac389dd0cc3e59f5f778d2ecf8f80d7cdb0febf6c52a24ff92be7a49c28eafc19465b2755bd56c9234edc1855a3ba6d53986c154f272cc2f5f1b3b3eef3eec756af6b541578bd47da55283f970bdf500f9ec76f82fb678fe4ad9b9b5a527da720073fe90e5ff8190f9b7199abfe093ca3c3775988c762c20202cfb8a5e8bbd45610d4adc086c1ab7f61ddd515b5ab2b965f60318ba12d601345d72951f520be87812da34919266533df29adfe87c906c48fdcf84f9ea46e1ee61cd396d8ffeeecda860056835aca30dda4dc2f7c47c857d54b3cbcaf131862def0a8d6335584e8930e48cdf9908722a431558f48c27de5352b986be7695ff05c8711745007b70e5dfbbfe65cc46792bc506d5042df80034b098004e91f1660f9fbf28a553c251303232c1b3bb4258f65e1b0c01548a0c65b7050320ae3c17a2da34aae6255856db4a107352bb7b0ce30ebb7bcc9ce47d0bcd7c508f1f2cf5c06ac0163bd2d99be48fed6438f90ab8cd5821bc2e1de86bd05ce1b995ef27e1ebfc3751c0e21e5367616e125b2b8e68bfc22ae627f783dd34669e3f2d894fca92faa02de1459570e5b50d165756dd93864eef89f9e0ec2a6ff179a82db8af48dd16de1993c6f4156841398de2fe994568c9bc092306c7ea17606df5f1ef814c924558fc1337071a30f2064dca631dcf1a31613e5fabb9610f9fd8b975618163abfb74c6eb1f806412503f55ab795852ba36682d0861f87fa99a1b6d68701ef0cd34708fc0eab52ec61f5554afdfd69feb1ae4558655bbb90b2cf4ab04fe85d7e6190726f4380323afc69bce361db955b29d62b942c48a14ec3eef507c235dbb1a8f47594c98da3d7203464f3d881739719b79ab0d01fcfe9a774d67aefb87b97962bdd4318af354fe0549a33eef2bcdb72582f8a6b255eb82c77ca9514b697bde29b9e0277e83585bd9b821389d4645ca8ce6172611fb0d6e2f8ec7ccfc7db80587c1ed1adfe06ebb68a89342ed994313194e53b1203c2035896d35184189568acad606e62b73e1a10d7e4a464c493405f73b5c15cd4ade1c654f79e3e9b528b793443b72f03e1fb44d9273995ede12d0f3f9434ae509c64601b10c8e1808564188dec8327197a523b774692f60349b764b88245b8adce7b5f30f5fe112152eed744bc8e166eec32c356f0a04f98badb53a6bc1acb3af9822b58f0ce67b1d35c5987c1db8a790d08e1704f526815056bc4f40e05a9a29cba481a30577e3db232fbd3fc16ecf532d30cc390122f1537e18956ebf28bc97590c03086a517b06cea8ecd0691dfe083035933ace64cd574c8a9aa5857c0cfb8e25d82a4840649207af8aa221e9fface09c5b94c7c0d6b54a112743f00b024ab1ca9c213d826acf84404a6b0e35d073a482a39cc960a7a94919b5b0fefe6a09a8473f4dabd39616dc2ea6251da2aa3d2f93297ba7cfc17d3c77a71c3d1c5f1bad102ef5c02b49a6bb28af0c8c093ffa72087f8e940b285d7120fd9101cefa5bae0690ac6558b1acc7e0ce489b5c63a50dd9bb41dac2ffe12f5f4eb3aa749bc7fe6304eee56c855c36a8290057e02d18c2e8610b3a853ecdd76c2dc5857eb0273a6baa846d6544721e8a2dde00cb10c9efebf9d552e54d82c73e1312c61629895e5924783e00a8c83a981fbb63f82bdf471fa8d23f870bd1b96b0aa6122ea813f46f24e3b7f1c28972dcd2f4f11e56496e916c2768d0579d04a32836b023e6fd4657eac343c24800000004020000005749b61440602dae3886aac34312c18bbcf66bfe4dee14ca238772d395d87d81c26582006185481adbe16815bd4c2e9db8ac5e22f048a44c7983c33995361cfcced616b8c138adc58cbad57602beac46602ffb75b4a6d5957fe83bf704782d42dbfdbc84daf3b2a2e5b2bf1c2b5e69a641c172293524c3772799c3a38a259ab3bb7c4bf57788434a972d2aa26d4b3ce9f45ec3996e99528e950e604af6f8f715564af1e013b4cd9a", 0xff4, 0x6}, {&(0x7f0000000180)="94fa55963889c7a9555dd90bd67104916df650bc8e819386b2bdbcb274a97e7e1e9706b424fdda52b30f987a5b887a8fcd19be39d1b58dbe34c1bfb9ceef44ef03cd76070b2c9b4f43f324f5a14d24c3e8a32ebf79412226d94f996bf655f431614417684cb5a891ef662a63eebfde2468b544307b0eb492d147", 0x7a, 0x8}], 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5) setuid(r2) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000140)={0x6, &(0x7f0000000100)=[{0x80, 0x20, 0x87}, {0x800, 0x2, 0x8, 0x4}, {0x4, 0x0, 0xff, 0x1}, {0xfff, 0x1, 0x9, 0xecd}, {0x400, 0x0, 0x0, 0x9a}, {0x8, 0x6, 0x1f, 0x8001}]}, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) fchownat(r0, &(0x7f0000000000)='./file0\x00', r2, r3, 0x1000) 17:07:36 executing program 5: set_mempolicy(0x0, &(0x7f0000000140)=0x1, 0x200) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x1de) close(r0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 17:07:36 executing program 5: perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000280)=0x27fe, 0x4) perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x0, 0x7, 0x20, 0x0, 0x0, 0x1, 0x43001, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x7, @perf_bp={0x0}, 0x0, 0x3, 0x5, 0x0, 0x2, 0x0, 0x461, 0x0, 0x9, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1e, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x3654}]}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10) signalfd(r0, 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x2ff9d70e2a6b557c, 0x80, 0x20, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3, 0x3, 0xda79, 0x9, 0xff, 0x0, 0xbd2, 0x0, 0x2}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x1f4}, 0x700) 17:07:36 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000000140)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41001000140000dbf4655fdcf4655fdc0060c8160000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000040)={[{@i_version}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}]}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f0000000280), &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x139, 0x0) [ 933.589375][T16203] loop3: detected capacity change from 0 to 7 [ 933.599861][T16202] loop4: detected capacity change from 0 to 7 [ 933.614996][T16202] FAT-fs (loop4): invalid media value (0x00) [ 933.621015][T16202] FAT-fs (loop4): Can't find a valid FAT filesystem [ 933.724310][T16269] loop3: detected capacity change from 0 to 512 [ 933.755871][T16269] EXT4-fs (loop3): mounted filesystem without journal. Opts: i_version,auto_da_alloc=0x0000000000000006,,errors=continue. Quota mode: none. 17:07:36 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, 0xfd, "00000000100892e10700"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0xfffeffff, 0x5f8333b2, 0x0, 0x9, 0x2, "1a4b4789779f66afdf4ece4f0718b3677030d1"}) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x5, 0xff, 0xfffffff9, 0x80, 0x14, "f82c8d352610c2586cc9d8e2ec0672536ecb19"}) read(r2, 0x0, 0x2000) 17:07:36 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x100000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:36 executing program 3: syz_mount_image$nfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x4, 0x5, &(0x7f00000004c0)=[{&(0x7f0000000180)="43f978bc43ef2b9ec77ae1a8beac4b1e9bb47b62c5952fd05cb0846de1a712c02af4acd7db2055afd6739d708103d6acad211d32ea4e59f1f2d78764c0bcce5c5d94af393a79cc34d872cec0cdc92c66e1921ef3380f88057635f56487bccf77f5de9335a5ff9c54efb50c3cba443a0941dbfe82894cdefa0bf4186325e00598e5bea71a6f8e21c0e7eab2bde9e41af0a94256bd05cd8e43", 0x98, 0x29}, {&(0x7f0000000280)="ad345be8c78e50895e5ab1a76f4daf5930b1f4ab7ca6ea5dbbef5606882f8a216ba0e2c7d2b72dc04e1eb42bd8ef7941feebabc33c988760bf7d2031abc9fb143e945c7cf32e18f6c00c1480e34e12d548af8e1c7a316daa9326cc225e2104667125bfc7a2dfefcd2ce72a037b699cce13a8fb30e2967a240403866cbbb2bc7b055aa91ee12ded584dc40cd8eeb524f49df0ddce7526ec887823c626b4be8f322c0f052041ac910773bdf54352893298b195ce515074a0cb007476c5be53583a33f56c6b3b6a03dbe46d2cde1cb725", 0xcf, 0x8}, {&(0x7f0000000380)="755fc52610ce273a8bc6cf5d92083b099aac7f9e96e143770b4c09bc826d239eba3a42732c4db7fed82a7bf7e47c3a8e4dfcb14324c86c7d6602dadacfab2cbab3462bab7f7590127b6ed372d41b85cb40565410e48868cc46f26d20", 0x5c, 0x4}, {&(0x7f0000000400)="0efcd9948e34aabd0da03e9584d7718b4a55a96a4b748f8d1576901a2c08d71980f0bc6dcf437341b30829edd79b0894c4617fe7a0b0d5c01f86a03152a0ca9b1be39c3da83dd17244d8120d106489da93b10fea0836ea771694b6f9c8718c0391c9dd93ea4030e3e177b3ab1618dac0081c7a33ef7bca72b53f6be79ea2e358e41d0ad2eacd2c106ed9be7cef3c1aaca8322310dcee0cb595bb019a0cc6b460514ed3f1dce119b905437a35aa33", 0xae, 0x4}, {&(0x7f0000000940)="e8ace30247e1622dfc7234e35e53b09fd59ffb43f7fc3958762d090240f6791ddf6b496e2ff3053f0582f215cbe198e3734595107fcf4780a968526865c4af9953576d55fb20f97fd6356eb735c48d00b1059a8890d7957721cd436cf8e1f3853776017b126dcdd8662b5164b30599651a22c3e9fd3e1f6bb66631cb27600a1d297425365f84cfd73556f8eacaeaaf72c11b76a2e659585f13efe94f46bc8cb7ea3cbd1e0815aa95712406fac55cd9e51d757fd49388e412bf32981711ac2ca6c089df71fef2e519c0ab018d2b7a9b3855ecf0317de14ad66bcfca82e899736eb9e0d50b9ebb54f613401e3215edd6cd58f4675fb39c2e876414786c293d8915d17f0997d3b9a02233ac0cc35c5dd2330715bce923898ef3346f2f2927b1dde2378635ca944871d92477a180c8ff49d1581261b5d96b5d081beaf01ef4e799bdf1a0aef0f07a2cbddf6f8e63368dff3b6023b4ff5d372a942b56d30599783c984dbbc21df5b47650b2644070b9b0dfcbafb26de5f74cfc1ad4176f762c20830068f5fc93942af9d2b2e111b140b872868bfce6f951e44f0f2d8a66dc7332b6f5652f3cbf159d923bf0c2fee529db4ac061a7495d5d9d998106fc6e5ca32fa84e74ab8bf565aeb4ede9d8b289d47f7b6f19023ce89bebca8021546f630c131b4c0e150b76d2ae34eaa107eaae1f2542b1402b25ae1eaccbb880eed3cf4200f60cb8d00afb16ad65a01468a5414abd28c946b561814a7fcfb8fcf4b5283d904c4efe79cbfb540a2730d68d544d34f99caa0f48f50e881037adf4d01fd4a3d9db38de0ea71cb6737824bd7c3b3ff2e5c47bd7aba6f26a252560a6dca53677db62e8e74425fce0bf642606603931584918113849feb9192f0cec7dbc67816632cebe37f8219dd9fc8c029dc62d3a57c404f746fe067c62dcaaa33b044a7775f052c6ddf951e21a4b6326449c419ca0013367faffb7cc97ab14b408342ef6c71c60823663225ccb2a7600ad576122623d95c2703894893384196a531ba4dae9de9ca4e43f389c6c6ac3ffd7193f3a4dbb85dd6785b7f2cf2b0d47d98a57316bacdc2ceefd4a2ec3c9413ddc86e8992c1ce6148237a49d84fabf24d2ad7fb6ee7664e95326275f732f988f63fd81e0a3d9c9a13aeeab48dd9fe19300a10f3ce6a868558be55393cadd074bed130335c179a7342c456e5bb9e5fbdc3835e9657c7bfa96fae14279ab0a48580cb29f02934a0f69fda42d49856eb39996368961e3352c4f986e1492018b0830641e3c2f80af0426d198aefa093605a8ec8de52122f182f598f4eef6f78f998a12c9688004752bb2e992f8af1944df8f7c17a1da14dd9a8123bd1dad800dfbc71849a4e7a7a7e81034a4481aa9c8454a181cce8d42e53efeb86dcb28b32d57cb4c65cce5935b6527a0ca388980bc7af1893df5b26d03b1ea0ca344cd8f6266fe09d770800cb66c3ed4375ba7cb5d4b473a4be28cc8d46a5abf0d2d0a4b38e7a8fd8536543569e67eeb900ec24b3db0bae3d3618ef3be25d8b646647ef71189829bea4f2f622959a981b193723f96958739c1e24635b8865f04374184081e851044dd773323a545414b5c628cf87ac2454cc1dbdc92e0980de3c89f8253ad9f8926ea84bd5b7fe03c988d7d9da33938fd0183f2e0095ce8e23579b4646e815bc22427ccd706e76c59a03ee6581c1cf04066b700df5c665d13f60f8fd96f7e6be6efb649f9242ceed2ca217637dc8dfa78837fca0a1a75651f085542211635cae2114657255247dd84fcbeea2e055dd092d096dc42d6e5224220f2ad52d4e3e2be8dcbda96b3a16baceac470dc78a4176e3238ce389c6c38a3a1f79427d2415ef89f9b6e44ca5e97db935497618f65a33bc3a1602033d10ecabd232c7a2d0e3d87d3220dae4a799b8c5d6e3934a90559630cf21bbadb3f5548a7cbdf563b81d3720e225a0e621bcd0997a9d5c57fc74258bdc49365aa878e986773bbd6bc900a2643cea27eb55c81d2fc8e117c2134419f2b36276a65c3d46c21ec20477aab84261004b9b45ab0901528a3d46d4a695e94f80d8d4853017e673ae2b791636475fcf306b994296bd05ab7245915472217011c79172c2f517c8641dfb378c2e5bd5e97c0af4bba1f9c37b7b6504b581bddb66ff7677a17d43c7578ebb4e2be9ee8e25c3817e1b702970cd519a1c697b4735ed62ea6ee744d228e690771f1ea746b2fb7d61f76df847c6d47ea113def178c77156d29b12a085c4f495f7d4a8ee630efa09087f37c98f9af95f5adac36a700c7c5c9d57bb1fb63a730a23cc9970f03623b7d732871487e2a800273abb486c90dbef1ae23e3cd768c17c4b320fe667040ddf418c9cf91057929753506136c4aeef9a45c963cdb343819600c088eabb7dd8a7a668a94bf6c551eb45e60dd1033bde8f34bee6de10f954c6928dd8cd079a3716f41b0ee9942c9c39d6faf0c26aac2becee34c74c178b32357a6adc3e7ac3eeca03672ab108d1413bf7c57b1fae3bee289a0b8a7a302d2b06c1bbecdb4de02de3bce6d61832eddb35e44d0feaedf4f9a5d18734815158e1c64f21144039a62151f28ca1b6220edafe03e4e7ee4ecefaf82e13aeb45a385c38a0c2772b9fa9ebd6c937bf8088c580d338e82a85e7901867dd25dd89eda1aa14248829019668e929f60881c1da74e6ca17eb46dae7d359a0ab51095a9eb2021142946ed127f69a92d3579817aa80ae1ae254286a1a234e13d144c9add5bc29d55ef621551f41e110752a60fd86791a65295b50ee70fc3d0a63541cae9081321fe0b99e2b18341df4301ae0a3aeaa73e212fa7a5cf28366805d5ec377c31a93c7e732b40164ced90614d99a8f694744234d4c8e10487d774130b9c35807dae003407f6023621f3c39c3efa6838b82a7684da66272b48d6106b84216edfea68bf6befa73574abd25553f141de1870cdb2757a3a345c04b7db2c4c571b98e962cc635800333c4383af5ece9c59887c5b3c14d564435070699524e7aa50347d0444c1164c219040d63a9d5e8a5f70aab0334309df3603783cbc388ed5d63fab1155dd926828d9dd350cba8094941117330a3351195e7a8994d7d2de6081ddc9f1695ef9b429b79042c4693090e4938df1b74a02260a1618bae8e68304a173809833e21c2cc5114a4b4143cea68a4814881694a9bf20acbf41328e66e57b81c7016bf1422d0e150f062b80cea47d3cf55a1e728587978b054691ecf78974dd2eaed54e3d627498e21152da9ea05ca2d69b625e95e40635f409e60f8babdc78cd04949e616636a1ceba45511c72bab1a9ad052e1afccddf366aa138a0660257cc932559223d22e09af158129ef768a8acfd2148bb0afb16fa260d5017753f5b5a2cc758d2a31921534ea56492482e7e123163889114fb00e0da335211a7a075fec71526554ee2d1668d5ce503a937f62c5bf1942b114d15c88db8eef56cd93897dbbd165bc4d2581946016b4ed6680e36d625f7e0a212a3b817c097c6092fbfad2f3300cd924070a4aa59496fa02149c1ec3ab29789da4347e556f65363507669369c40db97d29f15686e6807e85f238ba8b09134c8ceb049f1443fcd6982d8ff93b00ed59ad88caa164ee3930762dc6fd4006b044b4a835cb2b7871c688a64b6f79a6df878968977d44ce8bd95e5c61f0b26c34506355fd836c01a3d54efec5ae62c795a5b131accc6cbeed1495c97cb0ec8f9220442a9b80f0564afd478e557ad32283fbd401c0abec24b4a80aef786d0b1a1beface61f863ba2a86002819e6d29c5330c789a6d3352e2593efc01042b13c8f6189aae78942b9a83d1e412158f8be49945f4d909878ec868a4ff45594d3ef937b9e1543c1af6be8169e0be6127a973b4302335379f2b41f222579da6fe1733ddf0496b8ac61e3e81e45dfcc5b17cacc1ac063b87954a0d68ae87567a97369ee5939115c33ec3b4dc989c52815f406aa455e7f5ff30d5a75d0b1fc0fc9b7deb235dfb0f14693fdd2e8357be274a2b71d97ca5d94cf9df6862ea6b19eedcd8c432d182455cbaa62b3cd3816acc88bfd69f1541c446503b78fbfbb91e5477958b100f2e718615eb3c37845268b45a15c065c969d24bb0ae9a3040c774e81b90cc80d46f33426f1cd4df727f87cfc1a6f1308f49c9d1c3db5d79d41b2d2c7ec01b74ffda6bf10746ece8c96468ca4670b5fcc846945d9e15558a0a5c7ee1f79417954907548b7a6c803fcc9ab4f825c2bc13794c068916713fd31441c1d17760329503e02132eac44c5c6c29b77a18408c88bc2d5fd460946e692563c0b284cabf5de67d52c453142954364210c42678ac4b32c912aa3355789233297fcfe3bece74c58023877b3a5207eff70aa3efdb7ab45764f559ba0dd6d72097e3dcfaf554ea6720da47a259449e97e1d1ad48a0e67db00b839be3a126a9b2d5ca255791c3231c0046535a94384f841939078f8882e4cd97e912fb04146cbda229560460c6152a71af9d67392060b8e712e451b270440a3d06b0873da8ae3dced188722deb41a3d5374d4dc58f32b8c2e0cb8f3665b1362187386dc624018e82d129a6c612d630e2d2254de46042d188a1e9c51a2813795ad800679f11384abc0312033fde9bc05f6b8cc4c919afe595d03efb4c933f1dae5d6485cd2d7b586d2dd28dd13695136aa5f3f00b18305d4789404e69640552bf86ea432b8cce538bab6e031fb0563c87053d90e1d6d272e18aa77967730e97fab7b2a2bd2c746f7dae08cb13a97afdb2ffcb67f88fbb251d6d954997b6f0f0a2b86f91afb1e325ee6c68d3e7868a0ec5cec26f987dcf4615571965c236290b120f8738f1f1436f5505d4756aabd0dfdcac4252c82297b47bd97381763a42caf3ce997ccf9c0adbd2d5efbd15e551d65f89c156b27a7c3fa89b6a3858ccf093682b8788c6b17aebc71768611a5674dfa7a7ad13aa0da863e7473b4f773bec40032e92c3e814b11a4660bd8a81aafc72bc9d471d4c7e83a7c27bc4c8f4606de58a312f682232fdbb02b25f0f16b1831979af64ab72b5e6efc127645343de0edbb7b844194585228cdc2970e4660ead0cb73af146d36b59690873c120cf3329a243101baed0b4eb2434c30207ac0c86fec92d9286ff1998ae16f7b64947ac65a85d97506fc651a52ef5dfe26008f5ad6e53671b83bb03f83546b292e18032c953117ff217d82ab0e8b5e54ad83446fba92e997ac19b09d13a79f8f5bfe01ef335d5266640299f433fa848c468d660a173954b60e2b16e23fcad701e80a393a55d59fb6d627d6c3d41f9cdf2fc0b7be900e9cb862bc116359424cea6e0e3ff240cb8ba92a13816cb5a8d4d4b9c158c565dffa095cbe458dd982d2ac2600ad5a529796d2474b5faac52895afdf2a44614331cd77ee4f754fbb0abde419564c7e7b490a20d3adf743479c0eace3a761a0ee1bddd0628799856ab2eb5ee8b1c7987f7e4b7a290680ba6056c2a8700ff6af3890ddfe4e4c8709a810463ce4eaadb1a254c3db36fa47a71f5dbf985978fecbfc04e41876b7806beeca8362e5bc40e485cf53dba3700895773d0a4b5b2a1e66f40584f10d3eebaad92736d5ea25b32eef650e14c37ee1f695ed872c419595b1cb625a08e5edfe4c4609d4d925c1fd751442c04dd00a4a4941269165406172d926b1c1c5af5e03ca252a91333b5322486fb006104882d04758aaa0944019cc4def0b90b1d6ac3dfcb3723f0deb1c668475a1c892d6557ff24a07e0ce7e8555cac04b33ab3e6ff322a44fde38346c", 0x1000, 0x2}], 0x4000, &(0x7f0000000540)={[{@nodots}, {@nodots}, {@dots}], [{@dont_appraise}]}) mknodat$null(r0, &(0x7f0000000580)='./file1\x00', 0x8000, 0x103) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x20, &(0x7f0000000900)={[], [], 0x22}) [ 934.202876][T16790] loop3: detected capacity change from 0 to 8 [ 934.209440][T16780] loop4: detected capacity change from 0 to 7 [ 934.233464][T16780] FAT-fs (loop4): invalid media value (0x00) [ 934.237190][T16790] FAT-fs (loop3): Unrecognized mount option "dont_appraise" or missing value 17:07:36 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x507102, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x1, 0x7, 0x7e3, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 934.239577][T16780] FAT-fs (loop4): Can't find a valid FAT filesystem [ 934.265605][T16790] loop3: detected capacity change from 0 to 8 [ 934.272312][T16790] FAT-fs (loop3): Unrecognized mount option "dont_appraise" or missing value 17:07:37 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:37 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) set_mempolicy(0x2, &(0x7f0000000040)=0x80000000, 0x56) set_mempolicy(0x4000, &(0x7f0000000140)=0x9, 0x53) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x400080, 0x0) ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f00000001c0)={0x6, 0xc406874, 0x1fc, 0xe2d7, 0xc, "50640a631a301509a316d93a4e3f9b328d4d42"}) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) readv(r2, &(0x7f0000000280), 0x0) read(r1, 0x0, 0x2000) set_mempolicy(0x8000, &(0x7f0000000100)=0x8, 0xf7af) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000080)={0x131, @tick=0x8, 0x8, {0x3, 0x9}, 0xc, 0x0, 0x1f}) 17:07:37 executing program 3: ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f0000000000)={'\x00', 0x0, 0x0, 0xfe}) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000040)) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x2, 0x8, 0x201, 0x0, 0x0, {0x6, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8808}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x218e}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x7f}, @CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x4}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40890}, 0x80) ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000080)={{0x0, 0x7}, {0xff, 0x18}, 0xffffe6ea, 0x1}) prctl$PR_MCE_KILL(0x16, 0x0, 0x2) prctl$PR_MCE_KILL(0x21, 0x0, 0x0) 17:07:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x200000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:37 executing program 5: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() clone(0x21000, 0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1fe403284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ioctl$KDFONTOP_SET_DEF(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x155, 0x0}) ptrace$setopts(0x4206, r0, 0x0, 0x0) clone(0x4c000000, &(0x7f0000000140)="6109bf282cee38c0d2e14920efec8b77b38bc773824467561c7f48b18461ea64265e3a98dbc84ca6a2f599692a9dafd6cc84f41b4194a0fbfaddf706590ff6c8fb87553fee0ec162d1e3cdc35ba231476074eaa6f55f4236df0c2828682eb87bc45005dd7e291eba86f74e77674a2826c0a99191ab88b849bdc985278247b8c542efea374241f21578ee52ddc403a163765d53feb719e0b46ee1c6c57ae7349ddc00713377f1cd4332098484babb167bac57a5734a908392519aad4cdfa1b5ea91c362c1150a8da04eedcf53c12cd3f95f4f57bdb6b7f8d3ca", &(0x7f0000000080), &(0x7f0000000240), &(0x7f0000000280)="0a1006ac6a8358ca0d282865977425bcf0c35e9821ed3d80efc298788aee73318e58f51912a53697eba05d5a9c15b91870cac9fbb06e4fb1184737c1346245b258abf2249cfb1553e32b798ac5e55f89a5c2bc63971b8a77070b5cc328668390a9fd9bcd7a72e3a718ca084013d854b08f42ae5fe8b5fdbd44b80e60") tkill(r0, 0x35) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() tkill(r1, 0x24) 17:07:37 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x301000, 0x99) io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r8 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) r11 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12, r8}}, 0x0) syz_io_uring_submit(r1, r7, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x77359400}, 0x1, 0x0, 0x1, {0x0, r12}}, 0x7) 17:07:37 executing program 3: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) sendmmsg(r4, &(0x7f00000005c0)=[{{&(0x7f0000000180)=@isdn={0x22, 0x4e, 0x23, 0xe1, 0x5}, 0x80, &(0x7f0000002780)=[{&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000000)="0accc3bdf1401f2988f2032969528a8733eb2cd2ea281e", 0x17}, {&(0x7f0000000200)="b818c1a9a387380f83c117762e84e7ceca031daeb3bd5ee00fb2ce36d394dfa95384c32d4dccc58757b01962e6831fceb40ce4683af66b622fae683bf6533792fffd8681d61af0b88af9c442deba091690ab7c", 0x53}, {&(0x7f0000000340)="7b61b274", 0x4}, {&(0x7f0000000380)="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", 0xfb}, {&(0x7f0000000480)="25341effbf67898028af06560c5d76249d22581b2d493cc19db9b65fa3f9cf3a1ff2774a20bae4cfc088d0279f6a074b31", 0x31}, {&(0x7f0000001680)="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", 0x1000}, {&(0x7f00000004c0)="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", 0xfe}, {&(0x7f0000002680)="6e8a8e146f0833177799ddc43ca28a9540f5a3770b0b1b0300e97ed228fb76447296ba20f3b8ebecb85cfd286be853260df4bc6bcc92821bd7aae7d93c9f393b623a1f53056f78f20be669738a588069eaee5d22052a1698163659591b6f6d18786c94d7f55df4bda719c858c52a253abd5a65f01772073142e18616466bea8a4c180f5972776c300a3856b415c18ac702958a06cb72df4828c00cd9fc9a23a1845bddb055890708a0f93ff95600ed7094420af08756493e4b2ff23d847df8826a6c13ffb55b4c17a548ac4d967c5e44f2d29a1f9d40967d5e8301e377e72cf9399a8879b802366d550284ddf99e81ab32181b2f30e9", 0xf6}], 0x9, &(0x7f0000002840)=[{0x38, 0x100, 0xae1, "5cb28a854a422c2944c09a2a06fb6048f7002cf019dcd8f0938e92d0ed68a020be"}, {0xe0, 0x110, 0x2, "133c52eed15488f2a91a4a86ffe45f0dc1923157c67313d9f2e76778ba1cb69a40ccbba7bc599cd695e7e2e789dd50d1def9d0bcbf399736674576ce61b7f3fc51226e27772cf64b280a25523fa6800aef9b65e4a5f0f3e4f23af01fc997b6f1edff62e96ed97946afa624345331744343249a647b1136b28380b2c9b9ba75e57db6317fe4857b6658b0ab40af9f684292d5c588fa86480147efd3f73cca38db6ec0f4bd1ab3292dbce6ec476d1e5e38c598b62da1a98a249951be689a78a18bdd78c1e9d72084cc4f9dab809f16"}, {0x28, 0x113, 0x8, "e8b7b3f2de7d0875c0b27898890f24070571a08166"}], 0x140}}], 0x1, 0x4000011) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) r5 = syz_open_dev$vcsa(&(0x7f0000000600), 0x7, 0x40240) sendmsg$nl_netfilter(r5, &(0x7f0000002ac0)={&(0x7f0000002980)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002a80)={&(0x7f00000029c0)={0xbc, 0x1, 0x6, 0x3, 0x70bd29, 0x25dfdbfd, {0x7, 0x0, 0xa}, [@typed={0x8, 0x56, 0x0, 0x0, @ipv4=@local}, @generic="cbcc76905905f9f0114004d16260e560b023317db5bc1c63a1662ac57a14286c0cdd9b2137d132e27a55ac8f73a12c952eb175d666e95dc3a783ed37902cc929885e363fe2c61750ebc8326b294abd628371fbaed13521f3c3cb63280ce9d24b30724d588b3bfcfd688dcd4bf0e0c17e0c48f4ab6e10aa83bbadbd4517a050d407263c31eb60e87489c068d3e5a1b46cb452071ce0abbb97a1678a4edf09"]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x8084) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 934.536392][T16842] loop4: detected capacity change from 0 to 7 [ 934.561447][T16842] FAT-fs (loop4): invalid media value (0x00) [ 934.566093][T16851] serio: Serial port pts2 [ 934.567495][T16842] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:37 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x15}, {0xa4}, {0x6, 0x0, 0x0, 0x7fffffff}]}) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x200, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x8, &(0x7f0000000040)=[{0x2, 0x2, 0x7c, 0x9}, {0x401, 0x84, 0x6, 0x8}, {0x2, 0x2, 0x6, 0x2}, {0x0, 0xff, 0x40, 0x9}, {0x7, 0x78, 0x2, 0x7}, {0xb6, 0x0, 0x1f, 0xfffffffc}, {0x20, 0xff, 0x0, 0x8}, {0x8, 0x4, 0x1f, 0x1ff}]}) creat(&(0x7f0000000080)='./file0\x00', 0x0) 17:07:37 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:37 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x15}, {0xa4}, {0x6, 0x0, 0x0, 0x7fffffff}]}) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x200, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x8, &(0x7f0000000040)=[{0x2, 0x2, 0x7c, 0x9}, {0x401, 0x84, 0x6, 0x8}, {0x2, 0x2, 0x6, 0x2}, {0x0, 0xff, 0x40, 0x9}, {0x7, 0x78, 0x2, 0x7}, {0xb6, 0x0, 0x1f, 0xfffffffc}, {0x20, 0xff, 0x0, 0x8}, {0x8, 0x4, 0x1f, 0x1ff}]}) creat(&(0x7f0000000080)='./file0\x00', 0x0) 17:07:37 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 934.679825][T16883] loop4: detected capacity change from 0 to 7 [ 934.691323][T16883] FAT-fs (loop4): bogus number of FAT sectors [ 934.697500][T16883] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:37 executing program 2: ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000200)={0x31, 0xffffffff, 0x8001, 0x4, 0x7, "5afed0e77b0567a0ccdf29ec46adbebdb2ade1"}) r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f00006d5000/0x1000)=nil, 0x1000, 0x2, 0x100010, r0, 0x8000000) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000180)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000006, 0x100010, 0xffffffffffffffff, 0x10000000) r7 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) r10 = syz_io_uring_setup(0x15b4, &(0x7f0000000340)={0x0, 0xffffffff, 0x0, 0x1, 0xa35}, &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000240)) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11, r7}}, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x6, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x10, 0x1, {0x0, r11}}, 0x40) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:37 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)={0x50, 0x1, 0x2, 0x101, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x4, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) sendmsg$IPSET_CMD_RENAME(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x5, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8080}, 0x4) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x4, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000004}, 0x2000c001) [ 934.778302][T16900] loop4: detected capacity change from 0 to 7 [ 934.789650][T16904] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 934.803847][T16900] FAT-fs (loop4): bogus number of FAT sectors [ 934.809952][T16900] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:38 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x1, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:38 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x56b000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:38 executing program 5: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) dup3(r1, r0, 0x0) fcntl$setstatus(r0, 0x4, 0x44000) io_setup(0x40000000008, &(0x7f0000000240)=0x0) set_mempolicy(0x1, &(0x7f00000002c0)=0x3, 0x8) r3 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) write$binfmt_misc(r3, &(0x7f00000045c0)=ANY=[], 0x4) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r4, 0x7003) ioctl$RTC_UIE_OFF(r4, 0x7004) ioctl$BTRFS_IOC_QGROUP_CREATE(r4, 0x4010942a, &(0x7f0000000000)={0x0, 0xd6}) io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000000), 0x40000}]) 17:07:38 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}, {@rodir}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 935.425809][T18016] loop4: detected capacity change from 0 to 7 [ 935.429447][T18018] serio: Serial port pts2 [ 935.436512][T18016] FAT-fs (loop4): bogus number of FAT sectors [ 935.442629][T18016] FAT-fs (loop4): Can't find a valid FAT filesystem 17:07:38 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x103, "ed105400000000003eac3e200000001d00"}) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r1, &(0x7f0000000540)={{0x1b, 0x23, 0x7, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) 17:07:38 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:38 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:38 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xb05600, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x10000001000}], 0x3014014, &(0x7f0000000180)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x8800000) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600) signalfd(r2, &(0x7f0000000200)={[0x1f]}, 0x8) [ 935.557189][T18042] loop4: detected capacity change from 0 to 7 17:07:38 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 935.623686][T18065] loop5: detected capacity change from 0 to 262160 17:07:38 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) ioctl$sock_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000000)) 17:07:38 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 935.752268][T18088] loop4: detected capacity change from 0 to 7 17:07:38 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:38 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:38 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xca9a3b, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:38 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x10000001000}], 0x3014014, &(0x7f0000000180)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x8800000) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600) signalfd(r2, &(0x7f0000000200)={[0x1f]}, 0x8) 17:07:39 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000040)=0x8, 0x5) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$PIO_FONT(r2, 0x4b61, &(0x7f0000000100)="dcb3df54ad6104e680f64ce6005193ca452a08e7a5e2182fcc987f") 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 936.310500][T18653] loop5: detected capacity change from 0 to 262160 [ 936.315270][T18654] loop4: detected capacity change from 0 to 7 17:07:39 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) [ 936.352101][T18662] serio: Serial port pts2 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 936.445886][T18685] loop4: detected capacity change from 0 to 7 17:07:39 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) syz_io_uring_setup(0xadc, &(0x7f0000000180)={0x0, 0xeb15, 0x3d, 0x1, 0x66, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00006d6000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000200)=0x0) syz_io_uring_submit(r1, r5, &(0x7f00000003c0)=@IORING_OP_WRITEV={0x2, 0x3, 0x2000, @fd_index=0x200000, 0xb211, &(0x7f0000000240)=[{&(0x7f0000000340)="d76bfe49449f13d9612fa2b987b0ea938d6b09583b6625c0b2e0be197f052b5c25dd98a0e9a120da9fdbe9ab23b7a877de194afd2c3f49ae32440983c03f6a0fcf22384e895fd3d206", 0x49}], 0x1, 0x4, 0x0, {0x2}}, 0x10000) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:39 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:39 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x1000000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:39 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:39 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 936.709129][T18723] loop5: detected capacity change from 0 to 7 [ 936.713933][T18725] loop4: detected capacity change from 0 to 7 [ 936.802436][T18809] loop5: detected capacity change from 0 to 7 17:07:39 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) fcntl$setlease(r0, 0x400, 0x1) read(r1, 0x0, 0x2000) 17:07:39 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, 0x0, &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:39 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:39 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='\x00', &(0x7f00000001c0)='./file1\x00', 0xffffffffffffffff) 17:07:39 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x2000000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 937.205159][T19303] loop4: detected capacity change from 0 to 7 [ 937.235545][T19313] serio: Serial port pts2 [ 937.236221][T19312] loop5: detected capacity change from 0 to 7 17:07:40 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, 0x0, 0x0, 0xffffffffffffffff) 17:07:40 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) set_mempolicy(0x8000, &(0x7f0000000000)=0x1, 0x3) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:40 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:40 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xe000000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:40 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_setup(0x7d59, &(0x7f0000000180)={0x0, 0x7, 0x20, 0x1, 0x2f9, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000003c0), &(0x7f0000000200)=0x0) r4 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) r7 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8, r4}}, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4007, @fd=r0, 0xfffffffffffffffd, 0x7, 0x2, 0x14, 0x0, {0x2, r8}}, 0x7f) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r10, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r9, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:40 executing program 3: set_mempolicy(0x1, &(0x7f0000000140)=0x7, 0x7) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 937.619304][T19355] loop5: detected capacity change from 0 to 7 [ 937.627984][T19354] loop4: detected capacity change from 0 to 7 [ 937.742030][T19375] loop5: detected capacity change from 0 to 7 [ 938.063134][T19313] serio: Serial port pts2 17:07:40 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x7fffffff) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000040)={0x4, 0x9, 0x8000, 0x9551, 0x14, 0x93d6}) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r0, 0x0, 0x2000) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000080)=0x530) 17:07:40 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:40 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:40 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000000)='./file0\x00', 0x110, 0x0, 0x12345}, 0x3f) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r6, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) lsetxattr$security_ima(&(0x7f00000001c0)='.\x00', &(0x7f0000000200), &(0x7f0000000340)=ANY=[@ANYBLOB="05000d0000040000079675353758714d"], 0x10, 0x1) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r5, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:40 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x10000000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:40 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x0, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:40 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x2c082) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:40 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 938.174944][T19398] loop5: detected capacity change from 0 to 7 17:07:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:40 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:40 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x0, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:41 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000080)={0xa, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:41 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x0, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:41 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) read(r1, 0x0, 0x2000) [ 938.307829][T19441] loop5: detected capacity change from 0 to 7 [ 938.369847][T19464] serio: Serial port pts2 17:07:41 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) read(r1, 0x0, 0x2000) 17:07:41 executing program 5: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:41 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x10400000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:41 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, 0x0, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:41 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f0000000180)={0x0, 0x0, 0x8, 0x0, 0x3c4}, &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d6000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) r8 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9, r5}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x1aa6, 0x0, &(0x7f0000000080)={[0x3]}, 0x8) 17:07:41 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, 0x0, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:41 executing program 2: r0 = syz_io_uring_setup(0x49fa, &(0x7f00000002c0)={0x0, 0x5, 0x1, 0x3, 0x2e1}, &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r3, &(0x7f0000000580)=[{&(0x7f0000000340)="de3a94b4cda67605af0f270fb626c4b512773706b5e6c651f8ebdd5bffd4a64265a08b7643d2665bec056ed87c1130b6b392e216aca7aae2221d5f5b67a6992e5d2ae8086661bf94763f1db1c29a9ed5dc3d997eef8bd04cffda5f7aede75062f2ba0bfff1f03ec479c22d3070d53e8b313a2a4ee495064330cba8516133b21cd3573b2bf241948e51c5a2ad0d60d426ae4b7d121acb74cf50acb5397d0a10bce59355172fb8252391f3d551cc9f26a0", 0xb0}, {&(0x7f0000000200)="5c78bb9b48c31f45aee1cb895670421b57fee8848e892a8a1f2ef5d2c51ba51483503c025ca99eb13fa7e7d0224175201ac91b003286ad664e25976d5c0bcc04039913ae76fde99fa2003b12cbf914feba7339f324c40cc5b4a10d9717ea2e96be84459a634ba484267ff759adbf3fb0020cafe8c7cd5b34574310ab1abce040", 0x80}, {&(0x7f0000000400)="0d71d5e473bd360f55aa98fa9fc44ddacfa7c4910cccf06de0ebc675a384f279c2ce20acd7172e4e2299d1d845c1a52eb25736adbc9c626334a0eb9f015040053dc91b9237714d279bf1d4762abe847f4a2910fdbebe4b04e4539fafcb75db90897824c5a20f742b14945773cde6b69404ef684eabd01d26b575c5ea94f595b93f4ce507d782a7423413f8b9dde97bfb3c625f54a578118d4a4ec8379d04c036c804a1ef93c4fb9a5da39dc2ec03a1892264b4d4516b6155238a53753ff460df8ee7b32a9c087254d68e201adc644fc11c6f2249", 0xd4}, {&(0x7f0000000500)="a694285c347d74ce13025717f5466fb2e0f8938eb08124acafaf83976c7a27e4af897ca3dccc4491689ca2f6c4610817927dc05cf5d4f56dfe209818a478488b7fe1aadbf19d17e173cd4e11371b8715991dbf265a2a702a68", 0x59}, {&(0x7f0000000680)="47bc8d3ef304351009defba76b7fab421409bc7109a69a4076154522a66029ce896bb4827edd4e84b68cd7652e616c466f582664e533427e87b731d69b25ffb7417664aa1301f0d2f0f1bd7187e104cac7c898b76d89a72fd1ea85e5d47db90f12374757e5ce654e2308c27e813f6c2d07a606acc4aa1da603628f4555c419ca439ca124d0c10bee1bd506cf16587311690ecf757212081da98c6fad850320db897c69a898f4e854a077541fea09df8e68f8806fe2fc056a778b7c5c53a18c81a215756584a51338a334d260af0c582148ab210eb5d1cbf2c3f6965f92", 0xdd}], 0x5) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = syz_io_uring_complete(0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) socketpair(0x1, 0x1, 0x9, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r6, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:41 executing program 5: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:41 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x240000) read(r1, 0x0, 0x2000) [ 939.084627][T20023] loop5: detected capacity change from 0 to 7 [ 939.183713][T20039] loop5: detected capacity change from 0 to 7 [ 939.198739][T20049] serio: Serial port pts2 17:07:41 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:41 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, 0x0, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:41 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000080)=0x8) ioctl$TCFLSH(r1, 0x540b, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:41 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x3b9aca00, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:41 executing program 5: set_mempolicy(0x0, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:41 executing program 2: ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000180)={{}, 0x7ffffffe, 0x0, 0x7}) r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r7, 0x6, &(0x7f0000000040)) r8 = syz_io_uring_setup(0x89, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10}, &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000200)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) r11 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12, r7}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x8) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:42 executing program 5: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:42 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080), 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:42 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000080)={0x6, 0x3, 0x80000001, 0x1b4, 0x17, "b0de68ca2c6567f661fabeba3bb9be7aa6c3c8"}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 939.296340][T20067] loop5: detected capacity change from 0 to 7 [ 939.318360][T20069] serio: Serial port pts2 17:07:42 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080), 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:42 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 939.357820][T20078] loop5: detected capacity change from 0 to 7 17:07:42 executing program 5: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:42 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080), 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:42 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:42 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x60000000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 939.478228][T20128] loop5: detected capacity change from 0 to 7 [ 940.131927][T20679] serio: Serial port pts2 17:07:42 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x7, 0x0, 0x1, 0x8, 0x0, "cad9aa5b9363cff2"}) 17:07:42 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 940.202302][T20691] serio: Serial port pts2 17:07:42 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:42 executing program 5: set_mempolicy(0x3, 0x0, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:42 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xe1130000, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:42 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:42 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) r6 = perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x9, 0x1e, 0xf9, 0x7f, 0x0, 0x1, 0x8000, 0x43d062047deb7262, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000180)}, 0x5a000, 0x6, 0x6ef, 0x5, 0x10001, 0x1, 0x6, 0x0, 0x8, 0x0, 0x9}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, r5, &(0x7f0000000000)={0x2009}, r6, 0x1, 0x0, 0x1}, 0x3) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) preadv(r0, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/104, 0x68}, {&(0x7f0000000440)=""/36, 0x24}, {&(0x7f0000000480)=""/226, 0xe2}, {&(0x7f0000000580)=""/27, 0x1b}, {&(0x7f0000000680)=""/179, 0xb3}], 0x5, 0x107f, 0x7ff) r7 = openat$cgroup_ro(r5, &(0x7f0000000340)='cpuset.memory_pressure\x00', 0x0, 0x0) openat$cgroup_ro(r7, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r7, 0x8010671f, &(0x7f00000007c0)={&(0x7f0000000740)=""/91, 0x5b}) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r8, 0x6, &(0x7f0000000040)) ioctl$SNAPSHOT_UNFREEZE(r8, 0x3302) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:43 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:43 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:43 executing program 5: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 940.300529][T20707] loop5: detected capacity change from 0 to 7 17:07:43 executing program 3: socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:43 executing program 3: socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 940.396267][T20732] loop5: detected capacity change from 0 to 7 17:07:43 executing program 5: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:43 executing program 3: socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:43 executing program 1: r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x99) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f0000000080)) 17:07:43 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xefffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:43 executing program 5: set_mempolicy(0x3, &(0x7f0000000000), 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:43 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) [ 941.067481][T21299] loop5: detected capacity change from 0 to 7 [ 941.155557][T21326] loop5: detected capacity change from 0 to 7 17:07:43 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) 17:07:43 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = signalfd4(r0, &(0x7f0000000040)={[0x1]}, 0x8, 0x800) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000080)={0xd0fa, 0x7, 0x6, 0x101, 0xc, "a0fd35ccd57006065884f240c2ac90cf9d58a2"}) syz_io_uring_setup(0x4625, &(0x7f0000000100)={0x0, 0xe6d6, 0x1, 0x2, 0x56, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:43 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:43 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:43 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0) io_uring_enter(r5, 0x4f96, 0x0, 0x1, 0x0, 0x0) shutdown(r3, 0x1) lseek(r5, 0x5, 0x4) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:43 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xf0ffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) 17:07:44 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) [ 941.282535][T21345] loop5: detected capacity change from 0 to 7 [ 941.297824][T21350] serio: Serial port pts3 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) 17:07:44 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) [ 941.389334][T21373] loop5: detected capacity change from 0 to 7 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) [ 941.455053][T21382] loop5: detected capacity change from 0 to 7 [ 942.140655][T21435] serio: Serial port pts2 17:07:44 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:44 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xf2ffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) 17:07:44 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:44 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:44 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_enter(r5, 0x6c4, 0x92cd, 0x3, &(0x7f0000000000)={[0x5]}, 0x8) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) [ 942.234589][T21451] serio: Serial port pts3 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x0, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:44 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x0, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:45 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x0, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:45 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 942.254945][T21454] loop5: detected capacity change from 0 to 7 17:07:45 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 942.404233][T21484] loop5: detected capacity change from 0 to 7 17:07:45 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0xe29db64d85af3e66, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x80, 0x3, 0x7f, 0x7, 0x0, 0x2, 0x46010, 0xf, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7fff, 0x1, @perf_bp={&(0x7f0000000100), 0x1}, 0x18580, 0x6, 0x48e, 0x4, 0x4, 0x8, 0xc, 0x0, 0xff, 0x0, 0xedca}, 0x0, 0x7, 0xffffffffffffffff, 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0xa0480, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x4) r3 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000001c0)) read(r3, 0x0, 0x2000) 17:07:45 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xf5ffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:45 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:45 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:45 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:45 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) syz_io_uring_setup(0x2afa, &(0x7f0000000180)={0x0, 0x8bef, 0x4, 0x0, 0x200}, &(0x7f00006d5000/0x1000)=nil, &(0x7f0000ff6000/0x8000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000200)) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r3, r5, &(0x7f0000000240)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x366) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r7, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r6, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:45 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) 17:07:45 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:45 executing program 1: set_mempolicy(0x3, &(0x7f0000000040)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) set_mempolicy(0x1, &(0x7f0000000000)=0x5a, 0x499) read(r1, 0x0, 0x2000) [ 943.143460][T22056] loop5: detected capacity change from 0 to 7 17:07:45 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) 17:07:45 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:45 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfcffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:45 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 943.252953][T22078] serio: Serial port pts2 17:07:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 943.285377][T22091] loop5: detected capacity change from 0 to 7 17:07:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:46 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) [ 944.074092][T22678] serio: Serial port pts2 17:07:46 executing program 1: set_mempolicy(0x8000, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x1, 0x3, 0xb, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:46 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfeffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:46 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = socket$nl_audit(0x10, 0x3, 0x9) r6 = perf_event_open(&(0x7f0000002a40)={0x5, 0x80, 0x8, 0x55, 0x1, 0x3, 0x0, 0x10000, 0xaa000, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x1, 0x2}, 0x5200, 0x4, 0x5, 0x6, 0x3, 0x1, 0x40, 0x0, 0x8, 0x0, 0x5}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x3) r7 = inotify_init1(0x100000) r8 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r8, 0x5608) r9 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r9, 0x5608) r10 = accept$inet6(0xffffffffffffffff, &(0x7f0000002ac0)={0xa, 0x0, 0x0, @private2}, &(0x7f0000002b00)=0x1c) r11 = gettid() rt_sigqueueinfo(r11, 0xa, &(0x7f00000002c0)) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004d00)=[{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000340)="108f68c7a57ec7556bd1d0a7531dfb1003f5cab1807ca959f7af6efbdf9d773861fad54493fa4ac260b3721de18253598d2be84cb470cb6264e500c63250d02449a21e2d5809bbccfe66782ecafb70b01580e6b8ffa13e9af987e7fcee48b3f8055d1430cb05b9fe50b033b543476486fd9ae445101b7c1917af5d07c9cb6627af88ae9e174e0c990c68c89757acc588c4655457b3659902015bd4315b7594cda79a11c6a22ecdce5cc2edd399f788d97a41f7722ece9e", 0xb7}, {&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000200)="93324ee67582e91aa709cf06ea367bb2e12f3e7bc5d6ef830b1dfe529a6e64410e89dcc686a15b43bdcfb37cbc55af63f952432386bbd93b3269f83a7e749f13270afc49b31c45f900af447b7ae9e26446b7", 0x52}, {&(0x7f0000000400)="da6704eb9f48e701f7b699ff00f115e3c6ef1cba987cbb2a182df83cfb17d46d9e1085de4271773c932db807d138b82c4a31e26edb22992152653fcf7b3567d34817b16c0e862ede0a1fd573b359e5f125c3792da3bc57427afba610bf87f9d326d840f392ef02511e25f30d33e5b56d0ca2461164ef7f7fceda6b35f53b4099752a3f478b0a50a6ab051f2518fa541aa4bba6946b92c12fb3d24d150bda0133cc61faab4a9647440f1707c980", 0xad}, {&(0x7f0000000000)="5e89e4fb5761f558c1b41bb0150c4db067137eee896d03e39aa719489e7917bc88d8241e84c0a1b4fefa276a1b93d4b354", 0x31}, {&(0x7f00000004c0)="9dcef454f266d7df7c4a8a9c6f6eef6dc23e6b4fee8593a1ab67ebcd912b876233b2e3e6255fb08a71141af990cd16f78bb3d622043f832c86bb174fed3eaed64590f521db18c547b48b64b48dd02059d63fc3f47cd6665b2c557f100af4b8b5e5d7a7534d36004f021b5cb0b96b69f1ba0ba7d31dce58a22805b735d77fead8b29cc5d09f9767d594df22b10a84d7bf6a4abb13aa98a75b94b8871522910cba21b6f118309050c27fcb09ba92416f78acef8b4486f5458b1745cd898ce0aa1c6d1fa84aed0f85be9b3567829d18e6959a5675", 0xd3}], 0x6, &(0x7f0000001680)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYBLOB="a1a34c7288544c8230a98bd6"], 0xa8, 0x4004000}, {&(0x7f0000001800)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000002a00)=[{&(0x7f0000001880)="4f5fd68012e5204f11bd289d1adfac7c99d264dc4ab62d6989649cb6b262b2c259bc1d2bb4b370576dd5eba0c0e9251b58b5350ac0d8138e25945792baaf3ae41cce70aa6e2c1cb1ae701ed5868f0e5792ab36761bdaf58abf12ba27f60dcf9bee346e60498b790b21fd3ff3f42ed86ffaa46de2d965a90ca266b577e5e9158e9337b4587e04049515736a9bf3f4597a7b5af047ba1ccb36120832b797e6aaff2e4388bab3539692e4a848b2f734e927de0879c90b75f9ceabcef0b39171d8adde0924975623cf6ec4cb40", 0xcb}, {&(0x7f0000001980)="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", 0x1000}, {&(0x7f0000002980)="9ea384ca1e60c5cf0f2446395587c519147b2d14f9172a1de03c81e4ed1cac0990308cffaf71de2b7bdfdee045766bdb8cf205a9129e4d9ea356aa16e035263067a3c2ad78bfde8ffc9eb705191f7ee83b803ccd0bac7a70d72ca6dca94249df8ea86f9b042cc1457e813ef51b4f70a3b7", 0x71}], 0x3, &(0x7f0000002b40)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r5, r6, r4]}}, @rights={{0x38, 0x1, 0x1, [r4, r0, r7, r8, r3, r4, r4, r0, r9, r10]}}, @cred={{0x1c, 0x1, 0x2, {r11, 0x0, 0xee00}}}], 0x78, 0x90}, {&(0x7f0000002bc0)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000004cc0)=[{&(0x7f0000002c40)="c375c96a1e39bea5dcca180eacdf4337a109dd4e6b5ecaeabe", 0x19}, {&(0x7f0000002c80)="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", 0x1000}, {&(0x7f0000003c80)="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", 0x1000}, {&(0x7f0000004c80)}], 0x4, 0x0, 0x0, 0x4000000}], 0x3, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 944.139074][T22688] loop5: detected capacity change from 0 to 7 17:07:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r0, 0x0, 0x2000) 17:07:46 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 944.189198][T22691] serio: Serial port pts2 17:07:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) 17:07:46 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r0, 0x0, 0x2000) 17:07:47 executing program 3: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_enter(r5, 0x6c4, 0x92cd, 0x3, &(0x7f0000000000)={[0x5]}, 0x8) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:47 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0xfffffffd}, &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x118, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x80000e, 0x1010, r0, 0x10000000) syz_io_uring_submit(0x0, r3, &(0x7f0000000180)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x2004, @fd_index=0x5, 0x80000001, 0x9, 0x1ff, 0x0, 0x0, {0x3}}, 0x1) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r2, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 944.260273][T22710] loop5: detected capacity change from 0 to 7 17:07:47 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:47 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:47 executing program 4: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r0, 0x0, 0x2000) 17:07:47 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xffffffef, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:47 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) read(r2, 0x0, 0x0) 17:07:47 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f0000000000), 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) io_setup(0x6, &(0x7f0000000240)=0x0) r7 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r7, 0x0) r8 = socket$nl_audit(0x10, 0x3, 0x9) io_submit(r6, 0x2, &(0x7f0000000100)=[&(0x7f0000001680)={0x0, 0x0, 0x0, 0x1, 0x0, r7, &(0x7f0000000000)='r', 0x1}, &(0x7f00000005c0)={0x0, 0x0, 0x2, 0x3, 0x0, r8, 0x0, 0x0, 0x1}]) io_pgetevents(r6, 0x0, 0x2, &(0x7f0000000180)=[{}, {}], &(0x7f00000001c0), &(0x7f0000000240)={&(0x7f0000000200)={[0x1]}, 0x8}) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:47 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:47 executing program 1: mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xc) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:47 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:47 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 945.091338][T23361] serio: Serial port pts2 [ 945.130685][T23371] FAT-fs (loop5): bogus number of reserved sectors [ 945.137366][T23371] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:47 executing program 3 (fault-call:2 fault-nth:0): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:47 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:47 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:47 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfffffff0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:48 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 945.272510][T23535] FAT-fs (loop5): bogus number of reserved sectors [ 945.279364][T23535] FAT-fs (loop5): Can't find a valid FAT filesystem [ 945.284362][T23540] FAULT_INJECTION: forcing a failure. [ 945.284362][T23540] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 945.300065][T23540] CPU: 1 PID: 23540 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 945.310542][T23540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 945.320661][T23540] Call Trace: [ 945.323926][T23540] dump_stack_lvl+0xb7/0x103 [ 945.328686][T23540] dump_stack+0x11/0x1a [ 945.332934][T23540] should_fail+0x23c/0x250 [ 945.337594][T23540] should_fail_usercopy+0x16/0x20 [ 945.342759][T23540] _copy_from_user+0x1c/0xd0 [ 945.347332][T23540] __copy_msghdr_from_user+0x44/0x350 [ 945.352773][T23540] ? __fget_light+0x21b/0x260 [ 945.357569][T23540] __sys_sendmsg+0x135/0x270 [ 945.362143][T23540] ? kstrtouint_from_user+0x104/0x130 [ 945.367670][T23540] ? fsnotify_perm+0x59/0x2e0 [ 945.372343][T23540] ? __fsnotify_parent+0x32f/0x430 [ 945.377674][T23540] ? get_pid_task+0x8b/0xc0 [ 945.382379][T23540] ? vfs_write+0x50c/0x770 [ 945.387094][T23540] ? __fget_light+0x21b/0x260 [ 945.392397][T23540] ? __cond_resched+0x11/0x40 [ 945.397054][T23540] ? perf_trace_sys_exit+0x4d/0x160 [ 945.402981][T23540] ? fput+0x2d/0x130 [ 945.407089][T23540] ? syscall_trace_enter+0x153/0x290 [ 945.412660][T23540] __x64_sys_sendmsg+0x42/0x50 [ 945.417440][T23540] do_syscall_64+0x3d/0x90 [ 945.421905][T23540] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 945.427803][T23540] RIP: 0033:0x4665d9 [ 945.431687][T23540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 945.451403][T23540] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 945.459833][T23540] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:48 executing program 3 (fault-call:2 fault-nth:1): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 945.467946][T23540] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 945.475909][T23540] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 945.484530][T23540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 945.492722][T23540] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 945.543257][T23571] FAULT_INJECTION: forcing a failure. [ 945.543257][T23571] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 945.556715][T23571] CPU: 0 PID: 23571 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 945.566655][T23571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 945.576804][T23571] Call Trace: [ 945.581107][T23571] dump_stack_lvl+0xb7/0x103 [ 945.585775][T23571] dump_stack+0x11/0x1a [ 945.590103][T23571] should_fail+0x23c/0x250 [ 945.594658][T23571] should_fail_usercopy+0x16/0x20 [ 945.599712][T23571] _copy_from_user+0x1c/0xd0 [ 945.604310][T23571] iovec_from_user+0xc4/0x2d0 [ 945.608992][T23571] ? should_fail+0xd6/0x250 [ 945.613659][T23571] __import_iovec+0x49/0x270 [ 945.618252][T23571] ? __copy_msghdr_from_user+0x232/0x350 [ 945.623990][T23571] import_iovec+0x69/0x80 [ 945.628382][T23571] __sys_sendmsg+0x1ab/0x270 [ 945.633144][T23571] ? fsnotify_perm+0x59/0x2e0 [ 945.637822][T23571] ? __fsnotify_parent+0x32f/0x430 [ 945.643016][T23571] ? get_pid_task+0x8b/0xc0 [ 945.647786][T23571] ? vfs_write+0x50c/0x770 [ 945.652408][T23571] ? __fget_light+0x21b/0x260 [ 945.657350][T23571] ? __cond_resched+0x11/0x40 [ 945.663044][T23571] ? perf_trace_sys_exit+0x4d/0x160 [ 945.668543][T23571] ? fput+0x2d/0x130 [ 945.672434][T23571] ? syscall_trace_enter+0x153/0x290 [ 945.678254][T23571] __x64_sys_sendmsg+0x42/0x50 [ 945.683640][T23571] do_syscall_64+0x3d/0x90 [ 945.688082][T23571] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 945.694043][T23571] RIP: 0033:0x4665d9 [ 945.697922][T23571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 945.718028][T23571] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 945.726425][T23571] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 945.735182][T23571] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 945.743512][T23571] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 945.751749][T23571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 945.759821][T23571] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 945.777813][T23551] FAT-fs (loop5): bogus number of reserved sectors [ 945.784470][T23551] FAT-fs (loop5): Can't find a valid FAT filesystem [ 945.926054][T23954] serio: Serial port pts2 17:07:48 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfffffff2, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:48 executing program 3 (fault-call:2 fault-nth:2): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:48 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:48 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_setup(0x593e, &(0x7f0000000180)={0x0, 0x4eeb, 0x8, 0xfffffffe, 0x59, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000240)=0x0) syz_io_uring_submit(r5, r7, &(0x7f0000000380)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x1, 0x1}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0xffffffd0) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:48 executing program 1: set_mempolicy(0x3, &(0x7f0000000040)=0x8100000001, 0x802) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000000)) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x260082) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x80010, r0, 0x1ab36000) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 946.028691][T23966] FAULT_INJECTION: forcing a failure. [ 946.028691][T23966] name failslab, interval 1, probability 0, space 0, times 0 [ 946.028710][T23966] CPU: 0 PID: 23966 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 946.028726][T23966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 946.028736][T23966] Call Trace: [ 946.028744][T23966] dump_stack_lvl+0xb7/0x103 [ 946.028807][T23966] dump_stack+0x11/0x1a [ 946.028827][T23966] should_fail+0x23c/0x250 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:48 executing program 3 (fault-call:2 fault-nth:3): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 946.028845][T23966] __should_failslab+0x81/0x90 [ 946.028864][T23966] should_failslab+0x5/0x20 [ 946.028961][T23966] kmem_cache_alloc_node+0x58/0x2b0 [ 946.028982][T23966] ? __alloc_skb+0xed/0x420 [ 946.028996][T23966] __alloc_skb+0xed/0x420 [ 946.029008][T23966] netlink_sendmsg+0x4c7/0x7c0 [ 946.029057][T23966] ? netlink_getsockopt+0x720/0x720 [ 946.029078][T23966] ____sys_sendmsg+0x360/0x4d0 [ 946.029170][T23966] ? import_iovec+0x69/0x80 [ 946.029186][T23966] __sys_sendmsg+0x1ed/0x270 [ 946.029202][T23966] ? __fsnotify_parent+0x32f/0x430 [ 946.029226][T23966] ? get_pid_task+0x8b/0xc0 [ 946.029243][T23966] ? vfs_write+0x50c/0x770 [ 946.029257][T23966] ? __fget_light+0x21b/0x260 [ 946.029301][T23966] ? __cond_resched+0x11/0x40 [ 946.029317][T23966] ? perf_trace_sys_exit+0x4d/0x160 [ 946.029409][T23966] ? fput+0x2d/0x130 [ 946.029426][T23966] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 946.029450][T23966] __x64_sys_sendmsg+0x42/0x50 [ 946.029469][T23966] do_syscall_64+0x3d/0x90 [ 946.029526][T23966] entry_SYSCALL_64_after_hwframe+0x44/0xae 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 946.029545][T23966] RIP: 0033:0x4665d9 [ 946.029554][T23966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 946.029571][T23966] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.029590][T23966] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 946.029622][T23966] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 17:07:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 946.029632][T23966] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 946.029641][T23966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 946.029649][T23966] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 946.043954][T23970] FAT-fs (loop5): bogus number of reserved sectors [ 946.089515][T23979] serio: Serial port pts2 [ 946.091841][T23970] FAT-fs (loop5): Can't find a valid FAT filesystem [ 946.179674][T23989] FAULT_INJECTION: forcing a failure. 17:07:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 946.179674][T23989] name failslab, interval 1, probability 0, space 0, times 0 [ 946.295226][T23989] CPU: 1 PID: 23989 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 946.305133][T23989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 946.315532][T23989] Call Trace: [ 946.318811][T23989] dump_stack_lvl+0xb7/0x103 [ 946.323421][T23989] dump_stack+0x11/0x1a [ 946.327653][T23989] should_fail+0x23c/0x250 [ 946.332078][T23989] __should_failslab+0x81/0x90 [ 946.336890][T23989] should_failslab+0x5/0x20 [ 946.341410][T23989] kmem_cache_alloc_node_trace+0x58/0x2e0 [ 946.347168][T23989] ? __kmalloc_node_track_caller+0x30/0x40 [ 946.353029][T23989] ? kmem_cache_alloc_node+0x1d4/0x2b0 [ 946.358811][T23989] __kmalloc_node_track_caller+0x30/0x40 [ 946.364456][T23989] ? netlink_sendmsg+0x4c7/0x7c0 [ 946.369420][T23989] __alloc_skb+0x187/0x420 [ 946.373892][T23989] netlink_sendmsg+0x4c7/0x7c0 [ 946.378692][T23989] ? netlink_getsockopt+0x720/0x720 [ 946.384272][T23989] ____sys_sendmsg+0x360/0x4d0 [ 946.389283][T23989] ? import_iovec+0x69/0x80 [ 946.393787][T23989] __sys_sendmsg+0x1ed/0x270 [ 946.398376][T23989] ? __fsnotify_parent+0x32f/0x430 [ 946.403476][T23989] ? get_pid_task+0x8b/0xc0 [ 946.408298][T23989] ? vfs_write+0x50c/0x770 [ 946.412785][T23989] ? __fget_light+0x21b/0x260 [ 946.417540][T23989] ? __cond_resched+0x11/0x40 [ 946.422205][T23989] ? perf_trace_sys_exit+0x4d/0x160 [ 946.427460][T23989] ? fput+0x2d/0x130 [ 946.431493][T23989] ? syscall_trace_enter+0x153/0x290 [ 946.436945][T23989] __x64_sys_sendmsg+0x42/0x50 [ 946.441718][T23989] do_syscall_64+0x3d/0x90 [ 946.446350][T23989] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 946.452490][T23989] RIP: 0033:0x4665d9 [ 946.457127][T23989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 946.477352][T23989] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.485896][T23989] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 946.494344][T23989] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 946.502480][T23989] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 946.510943][T23989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 946.519033][T23989] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 17:07:49 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfffffff5, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:49 executing program 3 (fault-call:2 fault-nth:4): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:49 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:49 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000100)={0xffff, 0x0, 0xc5, 0x5, 0x6, "2b3107cc5e8a1e33ab5248b3242e27668ac7dc"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x3, 0x6, 0x81, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0xffffffff, 0x8, 0xeb4, 0xffff0001, 0x1b, "4305f606a4722b8b2200ed2cc33e11071abbb6"}) set_mempolicy(0x8000, &(0x7f0000000140), 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x2, 0x1, 0x634f, 0xdd4, 0xc, "df2b853f421da31fea83329b5b56690a7ee9a0"}) ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000040)={0x80, 0x8, 0x5, 0x6, 0x10, "c77a1f803c44413f8069958a3beb05f78c7144"}) ioctl$TCXONC(r1, 0x540a, 0x2) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x18) read(r1, 0x0, 0x2000) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) close(0xffffffffffffffff) ioctl$VT_DISALLOCATE(r4, 0x5608) ioctl$GIO_FONT(r4, 0x4b60, &(0x7f0000000280)=""/106) 17:07:49 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_register$IORING_REGISTER_EVENTFD(r5, 0x4, &(0x7f0000000000), 0x1) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:49 executing program 3 (fault-call:2 fault-nth:5): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 946.959699][T24574] FAT-fs (loop5): bogus number of reserved sectors [ 946.966267][T24574] FAT-fs (loop5): Can't find a valid FAT filesystem [ 946.966568][T24579] FAULT_INJECTION: forcing a failure. [ 946.966568][T24579] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 946.986202][T24579] CPU: 0 PID: 24579 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 946.986266][T24579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:07:49 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 946.986277][T24579] Call Trace: [ 946.986285][T24579] dump_stack_lvl+0xb7/0x103 [ 946.986312][T24579] dump_stack+0x11/0x1a [ 946.986372][T24579] should_fail+0x23c/0x250 [ 946.986426][T24579] should_fail_usercopy+0x16/0x20 17:07:49 executing program 3 (fault-call:2 fault-nth:6): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:49 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfffffffc, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 946.986445][T24579] _copy_from_iter_full+0x148/0xa10 [ 946.986468][T24579] ? check_stack_object+0x61/0x70 [ 946.986488][T24579] ? __virt_addr_valid+0x15a/0x1a0 [ 946.986521][T24579] ? __check_object_size+0x253/0x310 [ 946.986555][T24579] netlink_sendmsg+0x579/0x7c0 17:07:49 executing program 3 (fault-call:2 fault-nth:7): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:49 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 946.986577][T24579] ? netlink_getsockopt+0x720/0x720 [ 946.986594][T24579] ____sys_sendmsg+0x360/0x4d0 [ 946.986613][T24579] ? import_iovec+0x69/0x80 [ 946.986632][T24579] __sys_sendmsg+0x1ed/0x270 [ 946.986648][T24579] ? __fsnotify_parent+0x32f/0x430 [ 946.986768][T24579] ? get_pid_task+0x8b/0xc0 [ 946.986786][T24579] ? vfs_write+0x50c/0x770 [ 946.986813][T24579] ? __fget_light+0x21b/0x260 [ 946.986835][T24579] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 946.986858][T24579] ? fput+0x2d/0x130 [ 946.986871][T24579] ? syscall_trace_enter+0x153/0x290 [ 946.986962][T24579] __x64_sys_sendmsg+0x42/0x50 [ 946.986981][T24579] do_syscall_64+0x3d/0x90 [ 946.987042][T24579] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 946.987117][T24579] RIP: 0033:0x4665d9 17:07:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 946.987131][T24579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 946.987157][T24579] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.987176][T24579] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 946.987189][T24579] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 17:07:49 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xfffffffe, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 946.987199][T24579] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 946.987208][T24579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 946.987217][T24579] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 947.027967][T24587] FAULT_INJECTION: forcing a failure. [ 947.027967][T24587] name failslab, interval 1, probability 0, space 0, times 0 [ 947.027991][T24587] CPU: 0 PID: 24587 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 17:07:50 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 947.028009][T24587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 947.028054][T24587] Call Trace: [ 947.028062][T24587] dump_stack_lvl+0xb7/0x103 [ 947.028090][T24587] dump_stack+0x11/0x1a [ 947.028107][T24587] should_fail+0x23c/0x250 [ 947.028125][T24587] ? xfrm_state_alloc+0x28/0x170 [ 947.028155][T24587] __should_failslab+0x81/0x90 [ 947.028212][T24587] should_failslab+0x5/0x20 [ 947.028229][T24587] kmem_cache_alloc+0x46/0x2e0 [ 947.028297][T24587] xfrm_state_alloc+0x28/0x170 [ 947.028317][T24587] xfrm_add_sa+0xb09/0x1bc0 [ 947.028332][T24587] ? __nla_parse+0x3c/0x50 [ 947.028352][T24587] xfrm_user_rcv_msg+0x2f7/0x390 [ 947.028369][T24587] netlink_rcv_skb+0x13e/0x240 [ 947.028417][T24587] ? xfrm_netlink_rcv+0x60/0x60 [ 947.028430][T24587] xfrm_netlink_rcv+0x43/0x60 [ 947.028469][T24587] netlink_unicast+0x5ec/0x6b0 [ 947.028490][T24587] netlink_sendmsg+0x6f8/0x7c0 [ 947.028514][T24587] ? netlink_getsockopt+0x720/0x720 [ 947.028603][T24587] ____sys_sendmsg+0x360/0x4d0 [ 947.028618][T24587] ? import_iovec+0x69/0x80 [ 947.028633][T24587] __sys_sendmsg+0x1ed/0x270 [ 947.028650][T24587] ? __fsnotify_parent+0x32f/0x430 [ 947.028667][T24587] ? get_pid_task+0x8b/0xc0 [ 947.028683][T24587] ? vfs_write+0x50c/0x770 [ 947.028700][T24587] ? __fget_light+0x21b/0x260 [ 947.028780][T24587] ? __cond_resched+0x11/0x40 [ 947.028868][T24587] ? perf_trace_sys_exit+0x4d/0x160 [ 947.028891][T24587] ? fput+0x2d/0x130 [ 947.028910][T24587] ? syscall_trace_enter+0x153/0x290 [ 947.028933][T24587] __x64_sys_sendmsg+0x42/0x50 [ 947.028949][T24587] do_syscall_64+0x3d/0x90 [ 947.029063][T24587] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 947.029101][T24587] RIP: 0033:0x4665d9 [ 947.029115][T24587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 947.029132][T24587] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 947.029156][T24587] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 947.029167][T24587] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 947.029176][T24587] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 947.029212][T24587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 947.029221][T24587] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 947.089316][T24593] FAT-fs (loop5): bogus number of reserved sectors [ 947.089331][T24593] FAT-fs (loop5): Can't find a valid FAT filesystem [ 947.095218][T24599] FAULT_INJECTION: forcing a failure. [ 947.095218][T24599] name failslab, interval 1, probability 0, space 0, times 0 [ 947.095243][T24599] CPU: 0 PID: 24599 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 947.095262][T24599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 947.095272][T24599] Call Trace: [ 947.095281][T24599] dump_stack_lvl+0xb7/0x103 [ 947.095323][T24599] dump_stack+0x11/0x1a [ 947.095341][T24599] should_fail+0x23c/0x250 [ 947.095363][T24599] ? xfrm_add_sa+0xff2/0x1bc0 [ 947.095483][T24599] __should_failslab+0x81/0x90 [ 947.095508][T24599] should_failslab+0x5/0x20 [ 947.095525][T24599] __kmalloc_track_caller+0x64/0x340 [ 947.095545][T24599] ? kmem_cache_alloc+0x1fb/0x2e0 [ 947.095590][T24599] ? xfrm_state_alloc+0x28/0x170 [ 947.095609][T24599] ? strcmp+0x23/0x50 [ 947.095627][T24599] kmemdup+0x21/0x50 [ 947.095654][T24599] xfrm_add_sa+0xff2/0x1bc0 [ 947.095671][T24599] ? __nla_parse+0x3c/0x50 [ 947.095696][T24599] xfrm_user_rcv_msg+0x2f7/0x390 [ 947.095722][T24599] netlink_rcv_skb+0x13e/0x240 [ 947.095779][T24599] ? xfrm_netlink_rcv+0x60/0x60 [ 947.095797][T24599] xfrm_netlink_rcv+0x43/0x60 [ 947.095814][T24599] netlink_unicast+0x5ec/0x6b0 [ 947.095836][T24599] netlink_sendmsg+0x6f8/0x7c0 [ 947.095853][T24599] ? netlink_getsockopt+0x720/0x720 [ 947.095923][T24599] ____sys_sendmsg+0x360/0x4d0 [ 947.095942][T24599] ? import_iovec+0x69/0x80 [ 947.096027][T24599] __sys_sendmsg+0x1ed/0x270 [ 947.096046][T24599] ? __fsnotify_parent+0x32f/0x430 [ 947.096062][T24599] ? get_pid_task+0x8b/0xc0 [ 947.096089][T24599] ? vfs_write+0x50c/0x770 [ 947.096101][T24599] ? __fget_light+0x21b/0x260 [ 947.096117][T24599] ? __cond_resched+0x11/0x40 [ 947.096135][T24599] ? perf_trace_sys_exit+0x4d/0x160 [ 947.096186][T24599] ? fput+0x2d/0x130 [ 947.096213][T24599] ? syscall_trace_enter+0x153/0x290 [ 947.096235][T24599] __x64_sys_sendmsg+0x42/0x50 [ 947.096254][T24599] do_syscall_64+0x3d/0x90 [ 947.096272][T24599] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 947.096300][T24599] RIP: 0033:0x4665d9 [ 947.096318][T24599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 947.096336][T24599] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 947.096355][T24599] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 947.096368][T24599] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 947.096381][T24599] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 947.096393][T24599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 947.096457][T24599] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 947.158353][T24622] loop5: detected capacity change from 0 to 7 [ 947.162839][T24626] FAULT_INJECTION: forcing a failure. [ 947.162839][T24626] name failslab, interval 1, probability 0, space 0, times 0 [ 947.180355][T24622] FAT-fs (loop5): bogus number of reserved sectors [ 947.181703][T24626] CPU: 1 PID: 24626 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 947.181725][T24626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 947.187380][T24622] FAT-fs (loop5): Can't find a valid FAT filesystem [ 947.191238][T24626] Call Trace: [ 947.191248][T24626] dump_stack_lvl+0xb7/0x103 [ 947.890786][T24626] dump_stack+0x11/0x1a [ 947.890808][T24626] should_fail+0x23c/0x250 [ 947.890821][T24626] ? xfrm_add_sa+0xff2/0x1bc0 [ 947.890906][T24626] __should_failslab+0x81/0x90 [ 947.891001][T24626] should_failslab+0x5/0x20 [ 947.891012][T24626] __kmalloc_track_caller+0x64/0x340 [ 947.891031][T24626] ? kmem_cache_alloc+0x1fb/0x2e0 [ 947.891052][T24626] ? xfrm_state_alloc+0x28/0x170 [ 947.891070][T24626] ? strcmp+0x23/0x50 [ 947.891120][T24626] kmemdup+0x21/0x50 [ 947.891131][T24626] xfrm_add_sa+0xff2/0x1bc0 [ 947.891146][T24626] ? __nla_parse+0x3c/0x50 [ 947.891158][T24626] xfrm_user_rcv_msg+0x2f7/0x390 [ 947.891245][T24626] netlink_rcv_skb+0x13e/0x240 [ 947.891308][T24626] ? xfrm_netlink_rcv+0x60/0x60 [ 947.891317][T24626] xfrm_netlink_rcv+0x43/0x60 [ 947.891327][T24626] netlink_unicast+0x5ec/0x6b0 [ 947.891429][T24626] netlink_sendmsg+0x6f8/0x7c0 [ 947.891443][T24626] ? netlink_getsockopt+0x720/0x720 [ 947.891455][T24626] ____sys_sendmsg+0x360/0x4d0 [ 947.891518][T24626] ? import_iovec+0x69/0x80 [ 947.891531][T24626] __sys_sendmsg+0x1ed/0x270 [ 947.891600][T24626] ? __fsnotify_parent+0x32f/0x430 [ 947.891617][T24626] ? get_pid_task+0x8b/0xc0 [ 947.891633][T24626] ? vfs_write+0x50c/0x770 [ 947.891646][T24626] ? __fget_light+0x21b/0x260 [ 947.891660][T24626] ? __cond_resched+0x11/0x40 [ 947.891703][T24626] ? perf_trace_sys_exit+0x4d/0x160 [ 947.891791][T24626] ? fput+0x2d/0x130 [ 947.891805][T24626] ? syscall_trace_enter+0x153/0x290 [ 947.891832][T24626] __x64_sys_sendmsg+0x42/0x50 [ 947.891850][T24626] do_syscall_64+0x3d/0x90 [ 947.891871][T24626] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 947.891936][T24626] RIP: 0033:0x4665d9 [ 947.891946][T24626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 947.891956][T24626] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 947.891967][T24626] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 947.891974][T24626] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 17:07:50 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) bind(r1, &(0x7f0000000040)=@nfc={0x27, 0x0, 0x0, 0x3}, 0x80) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) write$P9_RREADLINK(r1, 0x0, 0x0) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:07:50 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:50 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0xffffffff, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:50 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 947.891981][T24626] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 947.891987][T24626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 947.891994][T24626] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 17:07:50 executing program 3 (fault-call:2 fault-nth:8): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:50 executing program 2: r0 = mmap$IORING_OFF_SQES(&(0x7f00006d2000/0x4000)=nil, 0x4000, 0x2000004, 0x8010, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000fee000/0x12000)=nil, 0x12000, 0x14, 0x1}, 0x1) r1 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r1, 0x2a6e, 0x0, 0x0, 0x0, 0x0) lstat(&(0x7f0000001900)='./file0\x00', &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000019c0)='./file0\x00', &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r8 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r8, 0x5608) r9 = socket$nl_xfrm(0x10, 0x3, 0x6) r10 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r10, 0x7003) ioctl$RTC_UIE_OFF(r10, 0x7004) sendmmsg$unix(r5, &(0x7f0000001b80)=[{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000200)="a73463d8b76b83107b8fdcbd5afa824583cd3a4c48c4e65ce10b0bae622defb10fb12cf5df5e92b7d4aa409e80cf70d3f838358015f2a0471cf8fabb333f5a0691d1ff0ded5d6d4828e4a7029062f9141b6a4c41c4d8b28142ae3eb815801faa4c14ff1ebee390e6", 0x68}, {&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000340)="d9706a01af6d6a5d82d76023371ba12a293a981d02b34b92dd4ff1b3b989e934621b27552b87a90f8cb8f9af57e783fc159a59ceea46248a09ef957d2036cff6dc87082789ead48e3fac7878a12487fd", 0x50}], 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000140000000000000f0100000001000000f9ecff5f48a8d27e792581b1", @ANYRES32=r4, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r5, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32=r4, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00', @ANYRESHEX=r1], 0xc0, 0x20}, {&(0x7f0000000540)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000001740)=[{&(0x7f0000001680)="de4d951e2f89a3c0a96a23b44386d48a343cf2fe822e9656e050cb825d1eac742098a28321a8f22372de72ac26255aac339dcf282fe206ae55769d37c2d4daa9db70ea616c57c2365f0c93abc7d85618898431eb806b6cf5cb6dffe37a469b5a2abbc5ed8524094e76ca64d6df02aa49d90c016dec1db78a272ee0783e97deaf70cf8cf02c43eafba13cfa4f22a7caa6ddebd86c60087e4e660215facc01dc9489759931d47274523abcd3f29f964d871d01b59d134acc18e1fd4bf18d", 0xbd}, {&(0x7f00000005c0)="8114680e0fbb9b9721bf84166d0d8b847b5499ee0fe31d7a14d69439338f3feeed90e49ec34a647528dea29672c3bf482f6daa3a5f9e7d0c514f71611752068c6b1f70e8be01ee20ae425052bf2bb75df74cf9361b04d859cbcda32828", 0x5d}], 0x2, &(0x7f0000001780)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, r7}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x38, 0x1, 0x1, [r1, r4, r8, r1, r9, 0xffffffffffffffff, r10, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0, 0x40}], 0x2, 0x40000) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, 0x0, 0x1) io_uring_enter(r1, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r1, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:51 executing program 3 (fault-call:2 fault-nth:9): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 948.319078][T25178] serio: Serial port pts3 [ 948.324102][T25177] loop5: detected capacity change from 0 to 7 [ 948.332874][T25181] FAULT_INJECTION: forcing a failure. [ 948.332874][T25181] name failslab, interval 1, probability 0, space 0, times 0 17:07:51 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:51 executing program 3 (fault-call:2 fault-nth:10): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 948.332893][T25181] CPU: 0 PID: 25181 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 948.332909][T25181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:07:51 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 948.332917][T25181] Call Trace: [ 948.332924][T25181] dump_stack_lvl+0xb7/0x103 [ 948.332952][T25181] dump_stack+0x11/0x1a [ 948.332973][T25181] should_fail+0x23c/0x250 [ 948.333026][T25181] __should_failslab+0x81/0x90 [ 948.333044][T25181] should_failslab+0x5/0x20 [ 948.333058][T25181] kmem_cache_alloc_node_trace+0x58/0x2e0 17:07:51 executing program 3 (fault-call:2 fault-nth:11): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:51 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 948.333079][T25181] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 948.333156][T25181] ? __kmalloc_node+0x30/0x40 [ 948.333176][T25181] __kmalloc_node+0x30/0x40 [ 948.333224][T25181] crypto_create_tfm_node+0x4a/0x1f0 [ 948.333241][T25181] ? crypto_alg_mod_lookup+0x397/0x4e0 [ 948.333258][T25181] crypto_alloc_tfm_node+0x100/0x290 [ 948.333275][T25181] crypto_alloc_ahash+0x2b/0x30 [ 948.333296][T25181] ah6_init_state+0x93/0x290 [ 948.333315][T25181] __xfrm_init_state+0x523/0x810 [ 948.333346][T25181] xfrm_add_sa+0x15be/0x1bc0 [ 948.333361][T25181] ? __nla_parse+0x3c/0x50 [ 948.333380][T25181] xfrm_user_rcv_msg+0x2f7/0x390 [ 948.333397][T25181] netlink_rcv_skb+0x13e/0x240 [ 948.333473][T25181] ? xfrm_netlink_rcv+0x60/0x60 [ 948.333511][T25181] xfrm_netlink_rcv+0x43/0x60 [ 948.333526][T25181] netlink_unicast+0x5ec/0x6b0 [ 948.333545][T25181] netlink_sendmsg+0x6f8/0x7c0 [ 948.333565][T25181] ? netlink_getsockopt+0x720/0x720 [ 948.333606][T25181] ____sys_sendmsg+0x360/0x4d0 [ 948.333623][T25181] ? import_iovec+0x69/0x80 [ 948.333642][T25181] __sys_sendmsg+0x1ed/0x270 [ 948.333659][T25181] ? __fsnotify_parent+0x32f/0x430 [ 948.333674][T25181] ? get_pid_task+0x8b/0xc0 [ 948.333740][T25181] ? vfs_write+0x50c/0x770 [ 948.333755][T25181] ? __fget_light+0x21b/0x260 [ 948.333775][T25181] ? __cond_resched+0x11/0x40 [ 948.333792][T25181] ? perf_trace_sys_exit+0x4d/0x160 [ 948.333811][T25181] ? fput+0x2d/0x130 [ 948.333907][T25181] ? syscall_trace_enter+0x153/0x290 [ 948.333926][T25181] __x64_sys_sendmsg+0x42/0x50 [ 948.333943][T25181] do_syscall_64+0x3d/0x90 [ 948.333963][T25181] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 948.334049][T25181] RIP: 0033:0x4665d9 [ 948.334060][T25181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 948.334121][T25181] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 948.334182][T25181] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 948.334192][T25181] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 948.334225][T25181] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 948.334235][T25181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 948.334301][T25181] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 948.362058][T25177] FAT-fs (loop5): bogus number of reserved sectors [ 948.362070][T25177] FAT-fs (loop5): Can't find a valid FAT filesystem [ 948.406330][T25197] FAULT_INJECTION: forcing a failure. [ 948.406330][T25197] name failslab, interval 1, probability 0, space 0, times 0 [ 948.406352][T25197] CPU: 0 PID: 25197 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 948.406372][T25197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 948.406382][T25197] Call Trace: [ 948.406390][T25197] dump_stack_lvl+0xb7/0x103 [ 948.406413][T25197] dump_stack+0x11/0x1a [ 948.406431][T25197] should_fail+0x23c/0x250 [ 948.406485][T25197] __should_failslab+0x81/0x90 [ 948.406506][T25197] should_failslab+0x5/0x20 [ 948.406530][T25197] kmem_cache_alloc_node_trace+0x58/0x2e0 [ 948.406569][T25197] ? __kmalloc_node+0x30/0x40 [ 948.406589][T25197] __kmalloc_node+0x30/0x40 [ 948.406641][T25197] crypto_create_tfm_node+0x4a/0x1f0 [ 948.406660][T25197] crypto_init_shash_ops_async+0x3e/0x190 [ 948.406772][T25197] crypto_ahash_init_tfm+0x5e/0x230 [ 948.406815][T25197] crypto_create_tfm_node+0x93/0x1f0 [ 948.406830][T25197] crypto_alloc_tfm_node+0x100/0x290 [ 948.406844][T25197] crypto_alloc_ahash+0x2b/0x30 [ 948.406864][T25197] ah6_init_state+0x93/0x290 [ 948.406884][T25197] __xfrm_init_state+0x523/0x810 [ 948.406903][T25197] xfrm_add_sa+0x15be/0x1bc0 [ 948.406923][T25197] ? __nla_parse+0x3c/0x50 [ 948.406938][T25197] xfrm_user_rcv_msg+0x2f7/0x390 [ 948.406953][T25197] netlink_rcv_skb+0x13e/0x240 [ 948.406978][T25197] ? xfrm_netlink_rcv+0x60/0x60 [ 948.406991][T25197] xfrm_netlink_rcv+0x43/0x60 [ 948.407005][T25197] netlink_unicast+0x5ec/0x6b0 [ 948.407029][T25197] netlink_sendmsg+0x6f8/0x7c0 [ 948.407117][T25197] ? netlink_getsockopt+0x720/0x720 [ 948.407134][T25197] ____sys_sendmsg+0x360/0x4d0 [ 948.407148][T25197] ? import_iovec+0x69/0x80 [ 948.407163][T25197] __sys_sendmsg+0x1ed/0x270 [ 948.407181][T25197] ? __fsnotify_parent+0x32f/0x430 [ 948.407197][T25197] ? get_pid_task+0x8b/0xc0 [ 948.407229][T25197] ? vfs_write+0x50c/0x770 [ 948.407245][T25197] ? __fget_light+0x21b/0x260 [ 948.407261][T25197] ? __cond_resched+0x11/0x40 [ 948.407275][T25197] ? perf_trace_sys_exit+0x4d/0x160 [ 948.407373][T25197] ? fput+0x2d/0x130 [ 948.407389][T25197] ? syscall_trace_enter+0x153/0x290 [ 948.407406][T25197] __x64_sys_sendmsg+0x42/0x50 [ 948.407498][T25197] do_syscall_64+0x3d/0x90 [ 948.407525][T25197] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 948.407625][T25197] RIP: 0033:0x4665d9 [ 948.407637][T25197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 948.407653][T25197] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 948.407669][T25197] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 948.407721][T25197] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 948.407755][T25197] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 948.407765][T25197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 948.407776][T25197] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 948.466588][T25203] loop5: detected capacity change from 0 to 7 [ 948.474547][T25203] FAT-fs (loop5): bogus number of reserved sectors [ 948.474561][T25203] FAT-fs (loop5): Can't find a valid FAT filesystem [ 948.486634][T25209] FAULT_INJECTION: forcing a failure. [ 948.486634][T25209] name failslab, interval 1, probability 0, space 0, times 0 [ 948.486654][T25209] CPU: 1 PID: 25209 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 948.486690][T25209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 948.486701][T25209] Call Trace: [ 948.486709][T25209] dump_stack_lvl+0xb7/0x103 [ 948.486736][T25209] dump_stack+0x11/0x1a [ 948.486755][T25209] should_fail+0x23c/0x250 [ 948.486772][T25209] ? __crypto_alloc_tfm+0xc6/0x290 [ 948.486785][T25209] __should_failslab+0x81/0x90 [ 948.486845][T25209] should_failslab+0x5/0x20 [ 948.486859][T25209] __kmalloc+0x66/0x340 [ 948.486925][T25209] __crypto_alloc_tfm+0xc6/0x290 [ 948.486938][T25209] crypto_spawn_tfm+0x62/0xa0 [ 948.486951][T25209] cmac_init_tfm+0x2c/0x60 [ 948.486964][T25209] crypto_create_tfm_node+0x16b/0x1f0 [ 948.486982][T25209] crypto_init_shash_ops_async+0x3e/0x190 [ 948.487005][T25209] crypto_ahash_init_tfm+0x5e/0x230 [ 948.487072][T25209] crypto_create_tfm_node+0x93/0x1f0 [ 948.487091][T25209] crypto_alloc_tfm_node+0x100/0x290 [ 948.487184][T25209] crypto_alloc_ahash+0x2b/0x30 [ 948.487204][T25209] ah6_init_state+0x93/0x290 [ 948.487225][T25209] __xfrm_init_state+0x523/0x810 [ 948.487265][T25209] xfrm_add_sa+0x15be/0x1bc0 [ 948.487282][T25209] ? __nla_parse+0x3c/0x50 [ 948.487354][T25209] xfrm_user_rcv_msg+0x2f7/0x390 [ 948.487368][T25209] netlink_rcv_skb+0x13e/0x240 [ 948.487435][T25209] ? xfrm_netlink_rcv+0x60/0x60 [ 948.487502][T25209] xfrm_netlink_rcv+0x43/0x60 [ 948.487516][T25209] netlink_unicast+0x5ec/0x6b0 [ 948.487538][T25209] netlink_sendmsg+0x6f8/0x7c0 [ 948.487581][T25209] ? netlink_getsockopt+0x720/0x720 [ 948.487598][T25209] ____sys_sendmsg+0x360/0x4d0 [ 948.487612][T25209] ? import_iovec+0x69/0x80 [ 948.487661][T25209] __sys_sendmsg+0x1ed/0x270 [ 948.487748][T25209] ? __fsnotify_parent+0x32f/0x430 [ 948.487765][T25209] ? get_pid_task+0x8b/0xc0 [ 948.487783][T25209] ? vfs_write+0x50c/0x770 [ 948.487800][T25209] ? __fget_light+0x21b/0x260 [ 948.487878][T25209] ? __cond_resched+0x11/0x40 [ 948.487948][T25209] ? perf_trace_sys_exit+0x4d/0x160 [ 948.487967][T25209] ? fput+0x2d/0x130 [ 948.487984][T25209] ? syscall_trace_enter+0x153/0x290 [ 948.488005][T25209] __x64_sys_sendmsg+0x42/0x50 [ 948.488029][T25209] do_syscall_64+0x3d/0x90 [ 948.488112][T25209] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 948.488131][T25209] RIP: 0033:0x4665d9 [ 948.488145][T25209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 948.488161][T25209] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 948.488182][T25209] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 948.488194][T25209] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 948.488206][T25209] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 948.488222][T25209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 948.488232][T25209] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 948.576876][T25252] FAULT_INJECTION: forcing a failure. [ 948.576876][T25252] name failslab, interval 1, probability 0, space 0, times 0 [ 948.584899][T25256] loop5: detected capacity change from 0 to 7 [ 948.585875][T25252] CPU: 0 PID: 25252 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 948.591593][T25256] FAT-fs (loop5): bogus number of reserved sectors [ 948.595426][T25252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 948.595439][T25252] Call Trace: [ 948.595447][T25252] dump_stack_lvl+0xb7/0x103 [ 948.595474][T25252] dump_stack+0x11/0x1a [ 948.600214][T25256] FAT-fs (loop5): Can't find a valid FAT filesystem [ 948.605047][T25252] should_fail+0x23c/0x250 [ 948.605074][T25252] __should_failslab+0x81/0x90 [ 949.475861][T25252] should_failslab+0x5/0x20 [ 949.475883][T25252] kmem_cache_alloc_node+0x58/0x2b0 [ 949.475919][T25252] ? __alloc_skb+0xed/0x420 [ 949.490116][T25252] __alloc_skb+0xed/0x420 [ 949.494561][T25252] netlink_ack+0x292/0x680 [ 949.499077][T25252] netlink_rcv_skb+0x1b7/0x240 [ 949.503879][T25252] ? xfrm_netlink_rcv+0x60/0x60 [ 949.508713][T25252] xfrm_netlink_rcv+0x43/0x60 [ 949.513372][T25252] netlink_unicast+0x5ec/0x6b0 [ 949.518127][T25252] netlink_sendmsg+0x6f8/0x7c0 [ 949.523020][T25252] ? netlink_getsockopt+0x720/0x720 [ 949.528231][T25252] ____sys_sendmsg+0x360/0x4d0 [ 949.532994][T25252] ? import_iovec+0x69/0x80 [ 949.537568][T25252] __sys_sendmsg+0x1ed/0x270 [ 949.542161][T25252] ? __fsnotify_parent+0x32f/0x430 [ 949.547422][T25252] ? get_pid_task+0x8b/0xc0 [ 949.551927][T25252] ? vfs_write+0x50c/0x770 [ 949.556355][T25252] ? __fget_light+0x21b/0x260 [ 949.561048][T25252] ? __cond_resched+0x11/0x40 [ 949.565786][T25252] ? perf_trace_sys_exit+0x4d/0x160 [ 949.571126][T25252] ? fput+0x2d/0x130 [ 949.575072][T25252] ? syscall_trace_enter+0x153/0x290 [ 949.580357][T25252] __x64_sys_sendmsg+0x42/0x50 [ 949.585169][T25252] do_syscall_64+0x3d/0x90 [ 949.589588][T25252] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 949.595517][T25252] RIP: 0033:0x4665d9 [ 949.599431][T25252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.619054][T25252] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.627495][T25252] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 949.635470][T25252] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 949.643425][T25252] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.651390][T25252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 949.659355][T25252] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 17:07:52 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x8e03f4863b6def69, 0x0) set_mempolicy(0x1, &(0x7f0000000040)=0x5, 0x7f) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000100)={0x1ff, 0xfffffff9, 0x5, 0x9, 0x7, "e16fe959e3c6a3639f512d1a0b4fc2011d33ea"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:07:52 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:52 executing program 3 (fault-call:2 fault-nth:12): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:52 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_enter(r5, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:52 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:52 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x2) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 949.734048][T25984] loop5: detected capacity change from 0 to 7 [ 949.741936][T25984] FAT-fs (loop5): bogus number of reserved sectors [ 949.748694][T25984] FAT-fs (loop5): Can't find a valid FAT filesystem [ 949.764612][T25990] FAULT_INJECTION: forcing a failure. [ 949.764612][T25990] name failslab, interval 1, probability 0, space 0, times 0 [ 949.777374][T25990] CPU: 0 PID: 25990 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 949.787173][T25990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 949.797313][T25990] Call Trace: [ 949.800776][T25990] dump_stack_lvl+0xb7/0x103 [ 949.805370][T25990] dump_stack+0x11/0x1a [ 949.809600][T25990] should_fail+0x23c/0x250 [ 949.814074][T25990] __should_failslab+0x81/0x90 [ 949.819079][T25990] should_failslab+0x5/0x20 [ 949.823637][T25990] kmem_cache_alloc_node_trace+0x58/0x2e0 [ 949.829469][T25990] ? __kmalloc_node_track_caller+0x30/0x40 [ 949.835361][T25990] ? kmem_cache_alloc_node+0x1d4/0x2b0 [ 949.840909][T25990] __kmalloc_node_track_caller+0x30/0x40 [ 949.846597][T25990] ? netlink_ack+0x292/0x680 [ 949.851191][T25990] __alloc_skb+0x187/0x420 [ 949.855605][T25990] netlink_ack+0x292/0x680 [ 949.860018][T25990] netlink_rcv_skb+0x1b7/0x240 [ 949.864787][T25990] ? xfrm_netlink_rcv+0x60/0x60 [ 949.869769][T25990] xfrm_netlink_rcv+0x43/0x60 [ 949.874451][T25990] netlink_unicast+0x5ec/0x6b0 [ 949.879330][T25990] netlink_sendmsg+0x6f8/0x7c0 [ 949.884088][T25990] ? netlink_getsockopt+0x720/0x720 [ 949.889278][T25990] ____sys_sendmsg+0x360/0x4d0 [ 949.894027][T25990] ? import_iovec+0x69/0x80 [ 949.898595][T25990] __sys_sendmsg+0x1ed/0x270 [ 949.903186][T25990] ? __fsnotify_parent+0x32f/0x430 [ 949.908276][T25990] ? get_pid_task+0x8b/0xc0 [ 949.912762][T25990] ? vfs_write+0x50c/0x770 [ 949.917495][T25990] ? __fget_light+0x21b/0x260 [ 949.922179][T25990] ? __cond_resched+0x11/0x40 [ 949.927003][T25990] ? perf_trace_sys_exit+0x4d/0x160 17:07:52 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:52 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/igmp6\x00') ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000100)={0x5, 0x1, 0x862, 0xa1, 0x4, "641118fe28f8ce7d5267a4febf064b345677c5"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) set_mempolicy(0x1, &(0x7f0000000140)=0x1f, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$KDGKBDIACR(r3, 0x4b4a, &(0x7f0000000040)=""/29) 17:07:52 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xe) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 949.932588][T25990] ? fput+0x2d/0x130 [ 949.936506][T25990] ? syscall_trace_enter+0x153/0x290 [ 949.941789][T25990] __x64_sys_sendmsg+0x42/0x50 [ 949.946635][T25990] do_syscall_64+0x3d/0x90 [ 949.951060][T25990] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 949.953525][T26000] serio: Serial port pts3 [ 949.956976][T25990] RIP: 0033:0x4665d9 17:07:52 executing program 3 (fault-call:2 fault-nth:13): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 949.956994][T25990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.985529][T25990] RSP: 002b:00007f182dc84188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.994048][T25990] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9 [ 950.002430][T25990] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 950.010769][T25990] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 [ 950.010792][T25990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 17:07:52 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 950.027465][T25990] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 950.042674][T26008] loop5: detected capacity change from 0 to 7 [ 950.045989][T26008] FAT-fs (loop5): bogus number of reserved sectors [ 950.046004][T26008] FAT-fs (loop5): Can't find a valid FAT filesystem [ 950.059907][T26013] FAULT_INJECTION: forcing a failure. [ 950.059907][T26013] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 950.097248][T26013] CPU: 0 PID: 26013 Comm: syz-executor.3 Tainted: G W 5.13.0-syzkaller #0 [ 950.107178][T26013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 950.117485][T26013] Call Trace: [ 950.120777][T26013] dump_stack_lvl+0xb7/0x103 [ 950.125805][T26013] dump_stack+0x11/0x1a [ 950.129956][T26013] should_fail+0x23c/0x250 [ 950.134598][T26013] should_fail_usercopy+0x16/0x20 [ 950.139852][T26013] _copy_to_user+0x1c/0x90 [ 950.144273][T26013] simple_read_from_buffer+0xab/0x120 [ 950.149690][T26013] proc_fail_nth_read+0xf6/0x140 [ 950.154706][T26013] ? rw_verify_area+0x136/0x250 [ 950.159714][T26013] ? proc_fault_inject_write+0x200/0x200 [ 950.165450][T26013] vfs_read+0x154/0x5d0 [ 950.169617][T26013] ? __fget_light+0x21b/0x260 [ 950.174432][T26013] ? __cond_resched+0x11/0x40 [ 950.179204][T26013] ksys_read+0xce/0x180 [ 950.183382][T26013] __x64_sys_read+0x3e/0x50 [ 950.187899][T26013] do_syscall_64+0x3d/0x90 [ 950.192362][T26013] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 950.198285][T26013] RIP: 0033:0x41935c [ 950.202158][T26013] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 950.222285][T26013] RSP: 002b:00007f182dc84170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 950.230683][T26013] RAX: ffffffffffffffda RBX: 000000000000013c RCX: 000000000041935c [ 950.238661][T26013] RDX: 000000000000000f RSI: 00007f182dc841e0 RDI: 0000000000000004 [ 950.246703][T26013] RBP: 00007f182dc841d0 R08: 0000000000000000 R09: 0000000000000000 17:07:52 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x10) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 950.254730][T26013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 950.262944][T26013] R13: 00007ffc4d5f7cdf R14: 00007f182dc84300 R15: 0000000000022000 [ 950.287755][T26022] loop5: detected capacity change from 0 to 7 [ 950.299658][T26022] FAT-fs (loop5): bogus number of reserved sectors 17:07:53 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x240002, 0x100) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 950.306356][T26022] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:53 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:53 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:53 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:53 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x60) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:53 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:53 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 950.578920][T26572] loop5: detected capacity change from 0 to 7 [ 950.589016][T26572] FAT-fs (loop5): bogus number of reserved sectors [ 950.595780][T26572] FAT-fs (loop5): Can't find a valid FAT filesystem [ 950.658741][T26593] loop5: detected capacity change from 0 to 7 [ 950.669224][T26593] FAT-fs (loop5): bogus number of reserved sectors [ 950.675861][T26593] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:53 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:53 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xef) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:53 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x1b) ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000040)={0x10001, 0x0, 0x319, 0x400, 0x9, "891b8ad602fe16349afa065f393b087f2240c6", 0x7, 0x80000001}) 17:07:53 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:53 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x3, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 950.811016][T26620] loop5: detected capacity change from 0 to 7 [ 950.819700][T26620] FAT-fs (loop5): bogus number of reserved sectors [ 950.826269][T26620] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:53 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) [ 951.242193][T26655] loop5: detected capacity change from 0 to 7 [ 951.250095][T26655] FAT-fs (loop5): bogus number of reserved sectors [ 951.256724][T26655] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:54 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:54 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:54 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x100, 0x2002}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYBLOB="c599d617e32e449fa70192a5c38ea59432cd70b5e51f05fc67e17855c635b64b6a258176255999bf326150f854a61ad06e61bd832d203f8531761b870b446a90ba87a8dd0ed5b10b2f8cb8d4f7c2454291ab2484ae5d212e435ac38790bd829afc86b8b15693dcaf5c41fa11b1f0367f414d350d862e0358fcd21f0a0ea88050387fd88d33f16b65acc6b51c6f5d497cd488373f551367d993c08108c87081524d5c070501dd6bf273e44d232bbdb4f018a63454a3f19c93283db56cfa5f12af9da9e45613f8ffdd8f403f538f4f5842583ecec9ce919e0321e013cffce8ba3ae45c2e7c241ed77baef66a738fb315d2a5368a8b6aa0ae1fe6b71e68c67d0ffd64691cc3cf38bcc1c6b07940a9ae48954f8e05427de7f12eb2ce70b8925e126ffb80f352db933fcff24e1fe5922d88398b33cef1689b1fff078fc61c7b705516d36d4d0b47b89886e03714ec1c53d6971600ae43a321a1214b2cc9adc9c9b067a2d0f86b7faed68f13ba3a5c09e7e216771580ffaae1467d7aaf16f0e2aec9fa2781d9427cdf41df69b0e4c1b6"], 0xe8}}, 0x0) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000340)="4b2e6ab7406147bce35baf70503e3d9ade04d1acac96265b38c1b5d5c74b37f52f6c96bcd0040bbee8e0cc2f288d2f59ce4ca007221504ea7b5efdce294544a6abb8f979", 0xffffffffffffffb8}], 0x1, 0x0) ptrace$setopts(0x4206, r4, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102385, 0xfff7}], 0x3, 0x0, 0x0, 0x0) tkill(r4, 0x40) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080)) exit_group(0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, {0x4}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1}, 0x3) 17:07:54 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xe00) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:54 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:54 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x4, &(0x7f0000000000)={0x0, 0x989680}, 0x1, 0x1, 0x1}, 0x2) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_register$IORING_UNREGISTER_FILES(r5, 0x3, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r6, 0x5608) fcntl$F_GET_FILE_RW_HINT(r6, 0x40d, &(0x7f00000001c0)) 17:07:54 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 951.446684][T26672] loop5: detected capacity change from 0 to 7 [ 951.458029][T26672] FAT-fs (loop5): bogus number of reserved sectors [ 951.464609][T26672] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:54 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x6, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:54 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:54 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x7, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:54 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x1040) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:54 executing program 1: ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=""/236}) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) set_mempolicy(0x8000, &(0x7f0000000280)=0x7f, 0x800) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x3, 0x0, 0x0, 0x0, "00702861c9b0b500777b1000800000a01400"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$KDGETMODE(r2, 0x4b3b, &(0x7f0000000300)) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, &(0x7f00000002c0)=0x1) r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KDGKBTYPE(r1, 0x4b33, &(0x7f00000003c0)) ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000000380)={0x7fffffff, 0x8, '\x00', 0x1, &(0x7f0000000340)=[0x0]}) [ 951.672724][T26869] serio: Serial port pts3 [ 951.682974][T26875] loop5: detected capacity change from 0 to 7 [ 951.693890][T26875] FAT-fs (loop5): invalid media value (0x00) [ 951.699884][T26875] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:54 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:54 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x8, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:54 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:54 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x13e1) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x9, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 952.282378][T27286] loop5: detected capacity change from 0 to 7 [ 952.293638][T27286] FAT-fs (loop5): invalid media value (0x00) [ 952.299841][T27286] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:55 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240", 0x12}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xa, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:55 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000040)) r1 = syz_io_uring_setup(0x188, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x382, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r1, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(0x0, r8, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd=r6}, 0x1f) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, 0x0, 0x1) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r11 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r11, 0x6, &(0x7f0000000040)) syz_io_uring_submit(r9, r3, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r11, &(0x7f0000000180), 0x0, 0x0, 0x800}, 0x4f3) io_uring_enter(r1, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r1, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:55 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x2000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:55 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xb, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 952.417731][T27312] loop5: detected capacity change from 0 to 7 [ 952.425899][T27312] FAT-fs (loop5): invalid media value (0x00) [ 952.431927][T27312] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:55 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x442000) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 952.491347][T27327] loop5: detected capacity change from 0 to 7 [ 952.507903][T27327] FAT-fs (loop5): invalid media value (0x00) [ 952.514022][T27327] FAT-fs (loop5): Can't find a valid FAT filesystem [ 952.520968][T26869] serio: Serial port pts3 17:07:55 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x10, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:55 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x33) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000080)=r2) read(r1, 0x0, 0x2000) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x1) 17:07:55 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:55 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x4010) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:55 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x24, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x5) read(r1, 0x0, 0x2000) 17:07:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x11, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 953.179275][T27917] loop5: detected capacity change from 0 to 7 [ 953.187875][T27917] FAT-fs (loop5): invalid media value (0x00) [ 953.193948][T27917] FAT-fs (loop5): Can't find a valid FAT filesystem [ 953.226100][T27928] serio: Serial port pts3 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x14, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:56 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000", 0x15}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:56 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) r5 = dup(0xffffffffffffffff) io_uring_enter(r5, 0x45e, 0x6159, 0x2, &(0x7f0000000340), 0x8) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r7, 0x6, &(0x7f0000000040)) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r7, 0x8982, &(0x7f0000000240)) fcntl$lock(r6, 0x6, &(0x7f0000000040)) syz_io_uring_setup(0x606, &(0x7f0000000180)={0x0, 0x68e8, 0x4, 0x0, 0x5d, 0x0, r6}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00006d5000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000200)) 17:07:56 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x6000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x17, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 953.411307][T27955] loop5: detected capacity change from 0 to 7 [ 953.420101][T27955] FAT-fs (loop5): invalid media value (0x00) [ 953.426142][T27955] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:56 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x300, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:56 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:56 executing program 2: rseq(&(0x7f0000000000)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x1, 0x0) r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:56 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xe113) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:56 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40, 0x20) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x6, 0x1, 0x6, 0x1, 0xb, "bca522aaa1782d17f40655fbdb5ccbd1e2c751"}) 17:07:56 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x500, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 954.049754][T27984] loop5: detected capacity change from 0 to 7 [ 954.059242][T27984] FAT-fs (loop5): bogus number of FAT sectors [ 954.061008][T27989] serio: Serial port pts2 [ 954.065375][T27984] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:56 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xefff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x600, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:56 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f8", 0x16}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)={[{@fat=@check_strict}]}) 17:07:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x700, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 954.142960][T28007] loop5: detected capacity change from 0 to 7 [ 954.150210][T28012] serio: Serial port pts2 [ 954.157504][T28007] FAT-fs (loop5): bogus number of FAT sectors [ 954.163738][T28007] FAT-fs (loop5): Can't find a valid FAT filesystem [ 954.223866][T28046] loop5: detected capacity change from 0 to 7 [ 954.242707][T28046] FAT-fs (loop5): bogus number of FAT sectors [ 954.248874][T28046] FAT-fs (loop5): Can't find a valid FAT filesystem 17:07:57 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x900, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:57 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) [ 954.927920][T28604] loop5: detected capacity change from 0 to 7 17:07:57 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xffef) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:57 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) vmsplice(r3, &(0x7f00000007c0)=[{&(0x7f0000000180)="92413f638d84fdcc7620723398a9e3127724a819d1212b3a22b40317a6168d667bf7f14f264794b7e64c93a0377bef78a4c7cd488edba6d2e3ad10670f085100c41f742f70c75dc68d8cbdb4a61b74135cc55942d330056451753c90dbe2c15dc621b34bddaf6f980c452254eb3e649569ac51df6a49b4e57cb22f4b6efc651b7313b389e97fd4714da083031511a4d10bfd0f059dd8", 0x96}, {&(0x7f0000000340)="1e59abbf8fb9d70401bf4c42b15615465514404c78baedd21a8bae35b0243799e830fae6307d8957d49c37264d3e085dd75520fcdca52d01420ae668fc3bce627e1f85a562ab0e2008ba1f57b7923e65c171efa553c6b233d2e94fa317c483248c0718fbacc9e961103c2dad549994b69c4af603645c1c2c47a24f4ff175136bca674762eb9123a4066c783ea901d928bd", 0x91}, {&(0x7f0000000400)="fba1797be5419967250f7ffa03feff38c6741d8e089193c39d3fc258e3b1a10ea7447e9f7027f62ed248a71a544131aee11f55b05cac0397ec9e81b0c4390d99c23fd43ecb837ff485404e4a2ee85fc25beb268c5079e9b72bdb241e4a7c5d4820fb09cb3d0d11180eed6625a906f1af7d3217bab1d04ba4c6f309bea9ae6b68e87098d6fb42f9b84897895fb186c156b008205f8302c29c06a414f565f8da67a8", 0xa1}, {&(0x7f00000004c0)="22300a862f1f9270323a5d4e925acb63735ac170ed93d4340e5aab50f04134043027bf6ed65c5ad26e89a08d3bb30b7fa255e99e2a09fdbe5f7f246f7b09c2bf5e774effe1d1a15d0bbf2b4d720322dee22e7f5cc3050cc63a6fe4f6a5370b0173c866a58f9e3c6c27e272981df99955449bbcbc7d808538683fc13ab6c8e6dbc0bcb0c70b54e464214ebf94e83dd7bfdfd3b57a2b9fbec78c88dadb92f3977a58757e25c227c036b4dce0242628bacb2f1baac6893c279adece1fdbb2d490ed599807c55efebfd22eb18b659921c0293f6d7dd876d57af2e25eac0d23908edc13", 0xe1}, {&(0x7f00000005c0)="aa2a457efa3a894e294536b98a4720a928e1a4cf810672ffba4671ccb1636d0b50ec21c724b067d6ccc4eb1095ab198a5aa16d32f335506ff26366c87279f899a4c825f28db91a3a0ac84536c37c6a70c4eba2b0e6afd518482885250a518a99c362a2e6ef596655ed0560965b969d9b3ee92e79b22bbb07f3a00564", 0x7c}, {&(0x7f0000000680)="7b9791688be6c01447a2b45814bc931f1e38ce03fdde1787c65ecf2d6b3f943ed48000a51140803b6e03a029f717ee6a04619f0b81ae185123f004691e612f23a6f03f0a892fd3ebc56cb6979de6d0b427269b507e47837ddcc5a0a49f0dc983cfd508372a99de06e54fcf62987eed5ca5042056a283cfbf33aa17c13051369b50201defcf34140c8d2d7840ea89178b901b2bdb09b7", 0x96}, {&(0x7f0000000740)="8dfd83023d093ca5e9772bd2b7e1c8ceebe1d2c2469a1a98e6750a6b4381f888d1d68f281ea6c42777c0c61739e5e5cda10a1d1799be1ebe8cad87cea1f92202aaa29e4179bd35b2084e4b54", 0x4c}, {&(0x7f0000000000)="8620688809", 0x5}], 0x8, 0x9) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xa00, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:57 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:57 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xb00, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x1100, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 955.028382][T28621] serio: Serial port pts2 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x1400, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x1700, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 955.108568][T28641] loop5: detected capacity change from 0 to 7 17:07:58 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:58 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, 0x0) 17:07:58 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x1fbc, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:58 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x100000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 955.804647][T29215] loop5: detected capacity change from 0 to 7 17:07:58 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) accept4(r3, &(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000000)=0x80, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r6, 0x6, &(0x7f0000000040)) r7 = socket$nl_generic(0x10, 0x3, 0x10) shutdown(r7, 0x0) connect$unix(r6, &(0x7f0000000200)=@abs={0x1, 0x0, 0x4e20}, 0x6e) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:58 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x2000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:58 executing program 5: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:07:58 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/stat\x00') ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x80, 0xffffffff, 0x0, 0x5, 0x1a, "da3f8ea3db1e26ed933a95c61c7eb2620a3fae"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:07:58 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x200000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:58 executing program 5: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x240002, 0x100) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:58 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x3f00, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:58 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xbc1f, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 955.942066][T29244] serio: Serial port pts2 [ 955.947579][T29245] loop5: detected capacity change from 0 to 7 17:07:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:59 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x34000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:59 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x56b000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:59 executing program 2: r0 = syz_io_uring_setup(0x185, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:59 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x400300, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:07:59 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TCXONC(r0, 0x540a, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) read(r2, 0x0, 0xfffffffffffffe5f) 17:07:59 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xb05600) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:07:59 executing program 5: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x240002, 0x100) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:07:59 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x1000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:59 executing program 1: fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x80002, 0x0) writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001000090468fe07002b00000001000a0026000000450001070300001419001a00150002000e0001000a0003feffffff000000000000", 0x39}], 0x1) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r3 = syz_open_pts(r2, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) read(r3, 0x0, 0x2000) 17:07:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, 0x0) read(r1, 0x0, 0x2000) 17:07:59 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x2000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:07:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, 0x0) read(r1, 0x0, 0x2000) 17:07:59 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xca9a3b) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 956.971812][T29874] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'. [ 956.982409][T29874] serio: Serial port pts2 17:08:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, 0x0) read(r1, 0x0, 0x2000) 17:08:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x3000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x1000000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:00 executing program 5 (fault-call:1 fault-nth:0): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 957.816190][T31011] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'. [ 957.848308][T31011] serio: Serial port pts2 17:08:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x4000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:00 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = getpid() r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0xee00, 0x0, r8) sendmsg$netlink(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r6, 0x0, r8}}}], 0x20}, 0x0) r9 = getpgrp(0xffffffffffffffff) r10 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5) setuid(r11) sendmsg$unix(r4, &(0x7f0000000540)={&(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000000)="77b5f32ffaea2f26ccbab8da566ecfd287b3e8547159340aa9de8243151a416977f9d8780f8778a3f3bca130799699522208", 0x32}, {&(0x7f0000000200)="52ded31646c3d4bbf7e48a59308c2ad6197e08968015b154847f7cb8af226e950d2593e975a4a93dca28e43d2bc8281032df1eebad881033112cd7f96c95d33f829503b292ea1ed6bd7b385bd512aa008eaffa2fab4af8dbd7bab4a2567e2082c9742bb69f1bf0cd80f2405305be42a0c5456e1dba230ee33a642086d16cf0", 0x7f}, {&(0x7f0000000340)="39a7", 0x2}], 0x3, &(0x7f0000000480)=[@rights={{0x1c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x2c, 0x1, 0x1, [r0, r3, r0, r3, r4, r0, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r8}}}, @cred={{0x1c, 0x1, 0x2, {r9, r11, 0xee01}}}], 0xb0, 0x4004080}, 0x40) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 957.870167][T31024] FAULT_INJECTION: forcing a failure. [ 957.870167][T31024] name failslab, interval 1, probability 0, space 0, times 0 [ 957.882908][T31024] CPU: 0 PID: 31024 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 957.892790][T31024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 957.902850][T31024] Call Trace: [ 957.906127][T31024] dump_stack_lvl+0xb7/0x103 [ 957.912519][T31024] dump_stack+0x11/0x1a 17:08:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)) read(r1, 0x0, 0x2000) [ 957.916696][T31024] should_fail+0x23c/0x250 [ 957.921143][T31024] ? __se_sys_memfd_create+0xfb/0x390 [ 957.926560][T31024] __should_failslab+0x81/0x90 [ 957.931535][T31024] should_failslab+0x5/0x20 [ 957.936131][T31024] __kmalloc+0x66/0x340 [ 957.940408][T31024] ? strnlen_user+0x137/0x1c0 [ 957.945141][T31024] __se_sys_memfd_create+0xfb/0x390 [ 957.950353][T31024] ? syscall_trace_enter+0x153/0x290 [ 957.955660][T31024] __x64_sys_memfd_create+0x2d/0x40 [ 957.960873][T31024] do_syscall_64+0x3d/0x90 [ 957.965351][T31024] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 957.971357][T31024] RIP: 0033:0x4665d9 [ 957.975446][T31024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 957.995583][T31024] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 958.004004][T31024] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 958.012296][T31024] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 17:08:00 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x776dddc7, 0x1f, 0x4, 0x6, 0x5, "cd733ff0f1d3ed30bbcb8cb00443e72618ff24"}) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000040)={0x13b, 0x5, &(0x7f0000000280)="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"}) 17:08:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x5000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)) read(r1, 0x0, 0x2000) 17:08:00 executing program 5 (fault-call:1 fault-nth:1): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 958.020269][T31024] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 958.028435][T31024] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 958.036979][T31024] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 [ 958.096010][T31057] FAULT_INJECTION: forcing a failure. [ 958.096010][T31057] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 958.109317][T31057] CPU: 1 PID: 31057 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 958.118082][T31056] serio: Serial port pts2 [ 958.119219][T31057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 958.119232][T31057] Call Trace: [ 958.119239][T31057] dump_stack_lvl+0xb7/0x103 [ 958.141480][T31057] dump_stack+0x11/0x1a 17:08:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x2000000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x6000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)) read(r1, 0x0, 0x2000) [ 958.145712][T31057] should_fail+0x23c/0x250 [ 958.150135][T31057] should_fail_usercopy+0x16/0x20 [ 958.155168][T31057] _copy_from_user+0x1c/0xd0 [ 958.159762][T31057] __se_sys_memfd_create+0x137/0x390 [ 958.165139][T31057] ? syscall_trace_enter+0x153/0x290 [ 958.170653][T31057] __x64_sys_memfd_create+0x2d/0x40 [ 958.175987][T31057] do_syscall_64+0x3d/0x90 [ 958.180544][T31057] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 958.186486][T31057] RIP: 0033:0x4665d9 17:08:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x7000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 958.190382][T31057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.210172][T31057] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 958.218688][T31057] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 958.226667][T31057] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 17:08:00 executing program 5 (fault-call:1 fault-nth:2): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) [ 958.234729][T31057] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 958.234747][T31057] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 958.234759][T31057] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 [ 958.301398][T31102] FAULT_INJECTION: forcing a failure. [ 958.301398][T31102] name failslab, interval 1, probability 0, space 0, times 0 [ 958.314178][T31102] CPU: 0 PID: 31102 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 958.324171][T31102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 958.334219][T31102] Call Trace: [ 958.337500][T31102] dump_stack_lvl+0xb7/0x103 [ 958.342103][T31102] dump_stack+0x11/0x1a [ 958.346357][T31102] should_fail+0x23c/0x250 [ 958.350786][T31102] ? shmem_alloc_inode+0x22/0x30 [ 958.355738][T31102] __should_failslab+0x81/0x90 [ 958.360578][T31102] ? shmem_match+0xa0/0xa0 [ 958.364997][T31102] should_failslab+0x5/0x20 [ 958.369595][T31102] kmem_cache_alloc+0x46/0x2e0 [ 958.374747][T31102] ? fsnotify_perm+0x59/0x2e0 [ 958.379434][T31102] ? shmem_match+0xa0/0xa0 [ 958.383847][T31102] shmem_alloc_inode+0x22/0x30 [ 958.388637][T31102] new_inode_pseudo+0x38/0x1c0 [ 958.393425][T31102] new_inode+0x21/0x120 [ 958.397586][T31102] shmem_get_inode+0xa1/0x480 [ 958.402284][T31102] __shmem_file_setup+0xf1/0x1d0 [ 958.407217][T31102] shmem_file_setup+0x37/0x40 [ 958.412006][T31102] __se_sys_memfd_create+0x1eb/0x390 [ 958.417275][T31102] ? syscall_trace_enter+0x153/0x290 [ 958.422632][T31102] __x64_sys_memfd_create+0x2d/0x40 [ 958.427820][T31102] do_syscall_64+0x3d/0x90 [ 958.432232][T31102] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 958.438121][T31102] RIP: 0033:0x4665d9 [ 958.442014][T31102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.462796][T31102] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 958.471198][T31102] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 958.479285][T31102] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 [ 958.487633][T31102] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 958.495865][T31102] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 958.503949][T31102] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 17:08:01 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) 17:08:01 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x8000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:01 executing program 1: fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x3}) ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, &(0x7f0000000040)='vlan0\x00') set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f0000000080)={0x1, 0x0, 0x1c, 0x13, 0x1d4, &(0x7f0000000680)}) read(r1, 0x0, 0x2000) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0xd) 17:08:01 executing program 5 (fault-call:1 fault-nth:3): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:01 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r4 = dup(r0) io_uring_enter(r4, 0x5bf7, 0x5a96, 0x3, &(0x7f0000000000)={[0xb35]}, 0x8) socket$inet_tcp(0x2, 0x1, 0x0) io_uring_enter(r0, 0x4cc3, 0x3687, 0x1, &(0x7f0000000180)={[0x10000]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_enter(r5, 0x4727, 0xea6c, 0x1, &(0x7f00000001c0)={[0x5]}, 0x4) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:01 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xe000000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:01 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x9000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:01 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) [ 958.965570][T31644] FAULT_INJECTION: forcing a failure. [ 958.965570][T31644] name failslab, interval 1, probability 0, space 0, times 0 [ 958.966871][T31645] serio: Serial port pts2 [ 958.978655][T31644] CPU: 1 PID: 31644 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 958.993159][T31644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 959.003387][T31644] Call Trace: [ 959.006760][T31644] dump_stack_lvl+0xb7/0x103 [ 959.011480][T31644] dump_stack+0x11/0x1a 17:08:01 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xa000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 959.015703][T31644] should_fail+0x23c/0x250 [ 959.020212][T31644] ? security_inode_alloc+0x30/0x180 [ 959.025523][T31644] __should_failslab+0x81/0x90 [ 959.030302][T31644] should_failslab+0x5/0x20 [ 959.034808][T31644] kmem_cache_alloc+0x46/0x2e0 [ 959.039569][T31644] security_inode_alloc+0x30/0x180 [ 959.044795][T31644] inode_init_always+0x20b/0x420 [ 959.049889][T31644] ? shmem_match+0xa0/0xa0 [ 959.054324][T31644] new_inode_pseudo+0x73/0x1c0 [ 959.059123][T31644] new_inode+0x21/0x120 17:08:01 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xb000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 959.063386][T31644] shmem_get_inode+0xa1/0x480 [ 959.068080][T31644] __shmem_file_setup+0xf1/0x1d0 [ 959.073180][T31644] shmem_file_setup+0x37/0x40 [ 959.077866][T31644] __se_sys_memfd_create+0x1eb/0x390 [ 959.083164][T31644] ? syscall_trace_enter+0x153/0x290 [ 959.088601][T31644] __x64_sys_memfd_create+0x2d/0x40 [ 959.093812][T31644] do_syscall_64+0x3d/0x90 [ 959.098682][T31644] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.104587][T31644] RIP: 0033:0x4665d9 17:08:01 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x10000000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 959.108611][T31644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.128688][T31644] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 959.137102][T31644] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 959.145252][T31644] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 [ 959.153455][T31644] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff 17:08:01 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x10000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:01 executing program 4 (fault-call:5 fault-nth:0): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:01 executing program 5 (fault-call:1 fault-nth:4): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 959.161425][T31644] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 959.169420][T31644] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 [ 959.207269][T31677] FAULT_INJECTION: forcing a failure. [ 959.207269][T31677] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 959.220648][T31677] CPU: 0 PID: 31677 Comm: syz-executor.4 Tainted: G W 5.13.0-syzkaller #0 [ 959.228582][T31680] FAULT_INJECTION: forcing a failure. [ 959.228582][T31680] name failslab, interval 1, probability 0, space 0, times 0 [ 959.230484][T31677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 959.230500][T31677] Call Trace: [ 959.230507][T31677] dump_stack_lvl+0xb7/0x103 [ 959.261748][T31677] dump_stack+0x11/0x1a [ 959.266009][T31677] should_fail+0x23c/0x250 [ 959.270432][T31677] should_fail_usercopy+0x16/0x20 [ 959.275549][T31677] _copy_to_user+0x1c/0x90 [ 959.280343][T31677] simple_read_from_buffer+0xab/0x120 [ 959.285721][T31677] proc_fail_nth_read+0xf6/0x140 [ 959.290685][T31677] ? rw_verify_area+0x136/0x250 [ 959.295538][T31677] ? proc_fault_inject_write+0x200/0x200 [ 959.301374][T31677] vfs_read+0x154/0x5d0 [ 959.305530][T31677] ? __fget_light+0x21b/0x260 [ 959.310234][T31677] ? __cond_resched+0x11/0x40 [ 959.314953][T31677] ksys_read+0xce/0x180 [ 959.319120][T31677] __x64_sys_read+0x3e/0x50 [ 959.323622][T31677] do_syscall_64+0x3d/0x90 [ 959.328050][T31677] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.334549][T31677] RIP: 0033:0x41935c [ 959.338432][T31677] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 959.358035][T31677] RSP: 002b:00007f4c46031170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 959.366433][T31677] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041935c [ 959.374478][T31677] RDX: 000000000000000f RSI: 00007f4c460311e0 RDI: 0000000000000005 [ 959.382437][T31677] RBP: 00007f4c460311d0 R08: 0000000000000000 R09: 0000000000000000 [ 959.391220][T31677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 959.399370][T31677] R13: 00007ffd47208bdf R14: 00007f4c46031300 R15: 0000000000022000 [ 959.407542][T31680] CPU: 1 PID: 31680 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 959.417996][T31680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 959.428395][T31680] Call Trace: [ 959.431790][T31680] dump_stack_lvl+0xb7/0x103 [ 959.436548][T31680] dump_stack+0x11/0x1a [ 959.440717][T31680] should_fail+0x23c/0x250 [ 959.445357][T31680] ? __d_alloc+0x36/0x370 [ 959.449730][T31680] __should_failslab+0x81/0x90 [ 959.454766][T31680] should_failslab+0x5/0x20 [ 959.459460][T31680] kmem_cache_alloc+0x46/0x2e0 [ 959.464332][T31680] ? __init_rwsem+0x59/0x70 [ 959.468830][T31680] __d_alloc+0x36/0x370 [ 959.473218][T31680] ? current_time+0xdb/0x190 [ 959.477810][T31680] d_alloc_pseudo+0x1a/0x50 [ 959.482324][T31680] alloc_file_pseudo+0x63/0x130 [ 959.487160][T31680] __shmem_file_setup+0x14c/0x1d0 [ 959.492431][T31680] shmem_file_setup+0x37/0x40 [ 959.497436][T31680] __se_sys_memfd_create+0x1eb/0x390 [ 959.502717][T31680] ? syscall_trace_enter+0x153/0x290 [ 959.508106][T31680] __x64_sys_memfd_create+0x2d/0x40 [ 959.513303][T31680] do_syscall_64+0x3d/0x90 [ 959.517832][T31680] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 959.524404][T31680] RIP: 0033:0x4665d9 [ 959.528915][T31680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 959.548959][T31680] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 959.557522][T31680] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 959.565696][T31680] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 [ 959.573754][T31680] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 959.582055][T31680] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 959.590245][T31680] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 [ 959.805561][T31645] serio: Serial port pts2 17:08:02 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x11000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x10400000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:02 executing program 5 (fault-call:1 fault-nth:5): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:02 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000040)={0x14, 0x1, 0x4, 0x1, 0xd, "1d917f18f542c46dccc5f8aa6b8e1676bf354a"}) 17:08:02 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) getsockopt$IP_SET_OP_GET_BYINDEX(r4, 0x1, 0x53, &(0x7f0000000180)={0x7, 0x7, 0x3}, &(0x7f00000001c0)=0x28) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd_index=0x7, 0x8, 0x0, 0x5}, 0x5) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r7 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) r10 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11, r7}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000200)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x7f) 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x4000) [ 959.925297][T31709] FAULT_INJECTION: forcing a failure. [ 959.925297][T31709] name failslab, interval 1, probability 0, space 0, times 0 [ 959.937968][T31709] CPU: 0 PID: 31709 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 959.947931][T31709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 959.958438][T31709] Call Trace: [ 959.961823][T31709] dump_stack_lvl+0xb7/0x103 [ 959.966440][T31709] dump_stack+0x11/0x1a [ 959.970715][T31709] should_fail+0x23c/0x250 17:08:02 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x14000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x7ffff000) 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x7ffffffff000) [ 959.975176][T31709] ? __alloc_file+0x2e/0x1a0 [ 959.979811][T31709] __should_failslab+0x81/0x90 [ 959.984631][T31709] should_failslab+0x5/0x20 [ 959.989242][T31709] kmem_cache_alloc+0x46/0x2e0 [ 959.994013][T31709] ? inode_doinit_with_dentry+0x382/0x950 [ 959.999915][T31709] __alloc_file+0x2e/0x1a0 [ 960.004429][T31709] alloc_empty_file+0xcd/0x1c0 [ 960.009237][T31709] alloc_file+0x3a/0x280 [ 960.013535][T31709] alloc_file_pseudo+0xe2/0x130 [ 960.018639][T31709] __shmem_file_setup+0x14c/0x1d0 [ 960.023840][T31709] shmem_file_setup+0x37/0x40 [ 960.028522][T31709] __se_sys_memfd_create+0x1eb/0x390 [ 960.033974][T31709] ? syscall_trace_enter+0x153/0x290 [ 960.039301][T31709] __x64_sys_memfd_create+0x2d/0x40 [ 960.041993][T31710] serio: Serial port pts2 [ 960.044537][T31709] do_syscall_64+0x3d/0x90 [ 960.044564][T31709] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 960.059230][T31709] RIP: 0033:0x4665d9 17:08:02 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x17000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0xffffffffffffffff) [ 960.063126][T31709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.083928][T31709] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 960.092631][T31709] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 960.100819][T31709] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 [ 960.108791][T31709] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 960.116905][T31709] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 17:08:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x3b9aca00) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:02 executing program 5 (fault-call:1 fault-nth:6): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:02 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x20000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 960.124911][T31709] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 17:08:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0, 0x19, "00000000000000000000008000"}) syz_open_pts(r0, 0x82201) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xb) r2 = syz_open_dev$ttys(0xc, 0x2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40000, 0x10) ioctl$TCXONC(r0, 0x540a, 0x0) r4 = signalfd4(r1, &(0x7f0000000100)={[0xf57]}, 0x8, 0x80800) ioctl$TCSETS(r4, 0x5402, &(0x7f0000000140)={0xb4, 0x2, 0x20000, 0x0, 0x1a, "63db18f76b7e963bd2ef01025709c2b3d0f303"}) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x2, 0xffffffff, 0x3, 0x0, 0x9, "e189d646ecf9fc0bb151f12f936351ec464621"}) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r5, 0x7003) ioctl$RTC_UIE_OFF(r5, 0x7004) r6 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, 0x0) read(r6, 0x0, 0x0) ioctl$KDSETMODE(r3, 0x4b3a, 0x0) [ 960.194366][T31760] FAULT_INJECTION: forcing a failure. [ 960.194366][T31760] name failslab, interval 1, probability 0, space 0, times 0 [ 960.207120][T31760] CPU: 1 PID: 31760 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 960.216992][T31760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 960.227044][T31760] Call Trace: [ 960.230323][T31760] dump_stack_lvl+0xb7/0x103 [ 960.234938][T31760] dump_stack+0x11/0x1a [ 960.239238][T31760] should_fail+0x23c/0x250 [ 960.243720][T31760] ? security_file_alloc+0x30/0x190 [ 960.248927][T31760] __should_failslab+0x81/0x90 [ 960.253700][T31760] should_failslab+0x5/0x20 [ 960.258221][T31760] kmem_cache_alloc+0x46/0x2e0 [ 960.262998][T31760] security_file_alloc+0x30/0x190 [ 960.268025][T31760] __alloc_file+0x83/0x1a0 [ 960.272634][T31760] alloc_empty_file+0xcd/0x1c0 [ 960.277453][T31760] alloc_file+0x3a/0x280 [ 960.281702][T31760] alloc_file_pseudo+0xe2/0x130 [ 960.286583][T31760] __shmem_file_setup+0x14c/0x1d0 [ 960.291653][T31760] shmem_file_setup+0x37/0x40 [ 960.296443][T31760] __se_sys_memfd_create+0x1eb/0x390 [ 960.301742][T31760] ? syscall_trace_enter+0x153/0x290 [ 960.307201][T31760] __x64_sys_memfd_create+0x2d/0x40 [ 960.312586][T31760] do_syscall_64+0x3d/0x90 [ 960.317105][T31760] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 960.323063][T31760] RIP: 0033:0x4665d9 [ 960.327025][T31760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.346958][T31760] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 960.355488][T31760] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665d9 [ 960.363464][T31760] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 00000000004bee66 [ 960.371456][T31760] RBP: 0000000000000002 R08: 00000000000007ff R09: ffffffffffffffff [ 960.379437][T31760] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 960.387761][T31760] R13: 0000000020000100 R14: 0000000000000ffe R15: 0000000020000140 17:08:03 executing program 1: set_mempolicy(0x3, &(0x7f0000000040)=0x3, 0x26) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:03 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x3f000000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:03 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x1, 0x0, 0x2, 0x0, 0x17, "000000f6ff0000000000f2ffffff00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:03 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x60000000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:03 executing program 5 (fault-call:1 fault-nth:7): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 960.812956][T32344] serio: Serial port pts2 17:08:03 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0xee00, 0x0, r5) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r5}}}], 0x20}, 0x14) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = getpid() r8 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0xee00, 0x0, r9) sendmsg$netlink(r6, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r7, 0x0, r9}}}], 0x20}, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000200)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000340)="2be134ef503c91412befc44a036d766655fa64cb8f019587052bbbf9c8f9e444cf619115b313fd6d0f0305f2d9d4160197379a08cdfdddff69abe5b1988f8ecb4ea3ddea0bf8cebeeb6f6c9fc2bb3b1624d26fb28b5724191c698e39335c2fc86d04464ace148d677c207462a42c92cd61dba06481e1ef306adb719e182a82b99b8b3748661bee07da2148e89b966b94d1c28d6442b69e5373fa95d61bd9974ad51a2ee8446628fae5f1a7e8b2aaaed0ce85edffc838a7", 0xb7}, {&(0x7f0000000000)="a0f3340aee8e3e59e3c643444805fadc5a40180925218291085976e20139786fb29c11ee0e640fd722a1029b357b416627800ba970973d5688130d67919500", 0x3f}], 0x2, &(0x7f0000000680)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r5}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, r9}}}], 0x40, 0x40800}, 0x40d5) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e22}, 0x6e) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 960.866556][T32352] FAULT_INJECTION: forcing a failure. [ 960.866556][T32352] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 960.879845][T32352] CPU: 1 PID: 32352 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 960.889709][T32352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 960.899938][T32352] Call Trace: [ 960.903300][T32352] dump_stack_lvl+0xb7/0x103 [ 960.907901][T32352] dump_stack+0x11/0x1a [ 960.912414][T32352] should_fail+0x23c/0x250 17:08:03 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x462040, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x2, 0x400, 0x9, 0x3, 0xf, "d41dc10596bc37b5345b139792f100988e70c0"}) read(r1, 0x0, 0x2000) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x20a00, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000100)={0x0, 0x200, 0x8, 0x80, 0x17, "766b209f5f4271bfcd363253068252cf1ec9e0"}) 17:08:03 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x9effffff, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 960.916854][T32352] __alloc_pages+0x102/0x320 [ 960.921456][T32352] alloc_page_interleave+0x1e/0xf0 [ 960.927035][T32352] alloc_pages_vma+0x56e/0x660 [ 960.931813][T32352] ? __vm_enough_memory+0xdb/0x250 [ 960.937019][T32352] shmem_getpage_gfp+0x954/0x13d0 [ 960.942135][T32352] ? sidtab_context_to_sid+0x5a/0x740 [ 960.947567][T32352] shmem_write_begin+0x7e/0x100 [ 960.952560][T32352] generic_perform_write+0x196/0x3a0 [ 960.957850][T32352] ? file_update_time+0x1bd/0x3e0 17:08:03 executing program 4: r0 = fsmount(0xffffffffffffffff, 0x0, 0x184) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) r2 = msgget(0x1, 0x0) msgrcv(r2, &(0x7f0000000100)={0x0, ""/198}, 0xce, 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r4 = syz_open_pts(r3, 0x0) ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) read(r4, 0x0, 0x2000) 17:08:03 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xbc1f0000, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 960.962993][T32352] __generic_file_write_iter+0x161/0x300 [ 960.968720][T32352] ? generic_write_checks+0x250/0x290 [ 960.974188][T32352] generic_file_write_iter+0x75/0x130 [ 960.979607][T32352] vfs_write+0x69d/0x770 [ 960.983884][T32352] __x64_sys_pwrite64+0xf5/0x150 [ 960.988838][T32352] do_syscall_64+0x3d/0x90 [ 960.993271][T32352] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 960.999534][T32352] RIP: 0033:0x419777 [ 961.003602][T32352] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 961.023324][T32352] RSP: 002b:00007fdf8e1c9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 961.031941][T32352] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419777 [ 961.040017][T32352] RDX: 0000000000000017 RSI: 0000000020000040 RDI: 0000000000000004 [ 961.048140][T32352] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 961.056111][T32352] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 17:08:03 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xeaffffff, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:03 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)={0x7fffffff, 0x9, 0x1ff, 0x7, 0x1, "cc85268d2fd38f4ddde48f1c5b4aca15f7e3c5"}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) r2 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$KDFONTOP_SET_DEF(r2, 0x4b72, &(0x7f0000000080)={0x2, 0x1, 0x5, 0x1e, 0x13d, &(0x7f0000000280)="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"}) read(r1, 0x0, 0x2000) [ 961.064096][T32352] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 961.079111][T32352] loop5: detected capacity change from 0 to 7 [ 961.088077][T32352] FAT-fs (loop5): bogus number of reserved sectors [ 961.094722][T32352] FAT-fs (loop5): Can't find a valid FAT filesystem 17:08:04 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xefffffff, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:04 executing program 1: set_mempolicy(0x3, &(0x7f0000000040)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) set_mempolicy(0x8000, &(0x7f0000000000)=0x8, 0x1) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:04 executing program 5 (fault-call:1 fault-nth:8): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:04 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000280)={0x1, {{0xa, 0x80, 0x0, @remote}}, {{0xa, 0x0, 0x0, @private2, 0xfffffffc}}}, 0x108) setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, &(0x7f0000000440)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @dev}}}, 0x108) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0xcd) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) syz_open_dev$tty20(0xc, 0x4, 0x1) read(r1, 0x0, 0x2000) 17:08:04 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xe1130000) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 961.678075][ T493] serio: Serial port pts2 [ 961.686917][ T491] FAULT_INJECTION: forcing a failure. [ 961.686917][ T491] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 961.700288][ T491] CPU: 1 PID: 491 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 961.700311][ T491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 961.700319][ T491] Call Trace: [ 961.700327][ T491] dump_stack_lvl+0xb7/0x103 [ 961.700354][ T491] dump_stack+0x11/0x1a [ 961.700379][ T491] should_fail+0x23c/0x250 [ 961.700399][ T491] should_fail_usercopy+0x16/0x20 [ 961.700415][ T491] iov_iter_copy_from_user_atomic+0x281/0xb60 [ 961.700475][ T491] ? shmem_write_begin+0x7e/0x100 [ 961.700492][ T491] generic_perform_write+0x1e4/0x3a0 [ 961.700533][ T491] ? file_update_time+0x1bd/0x3e0 [ 961.700554][ T491] __generic_file_write_iter+0x161/0x300 17:08:04 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x3, &(0x7f0000000180)={0x0, 0x16d2, 0x10, 0x0, 0x37d}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000200)) r6 = syz_io_uring_setup(0x3498, &(0x7f0000000340)={0x0, 0xc497, 0x20, 0x0, 0x274}, &(0x7f00006d4000/0x3000)=nil, &(0x7f00006d4000/0x1000)=nil, &(0x7f0000000240)=0x0, &(0x7f00000003c0)=0x0) r9 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000400), 0x440100, 0x0) syz_io_uring_submit(r5, r8, &(0x7f0000000580)=@IORING_OP_STATX={0x15, 0x0, 0x0, r9, &(0x7f0000000440), &(0x7f0000000540)='./file0\x00', 0x80, 0x100, 0x1}, 0x10001) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, r2, &(0x7f0000000600)=@IORING_OP_STATX={0x15, 0x1, 0x0, r9, &(0x7f0000000680), &(0x7f00000005c0)='./file0\x00', 0x400, 0x4000, 0x1, {0x0, r10}}, 0x9) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:04 executing program 5 (fault-call:1 fault-nth:9): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:04 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xf0ffffff, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:04 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xefffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 961.700571][ T491] ? generic_write_checks+0x250/0x290 [ 961.700587][ T491] generic_file_write_iter+0x75/0x130 [ 961.700624][ T491] vfs_write+0x69d/0x770 [ 961.700641][ T491] __x64_sys_pwrite64+0xf5/0x150 [ 961.700660][ T491] do_syscall_64+0x3d/0x90 [ 961.700684][ T491] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 961.700707][ T491] RIP: 0033:0x419777 [ 961.700791][ T491] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 961.700840][ T491] RSP: 002b:00007fdf8e1c9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 961.700935][ T491] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419777 [ 961.700957][ T491] RDX: 0000000000000017 RSI: 0000000020000040 RDI: 0000000000000004 [ 961.700967][ T491] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff 17:08:04 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xfeffffff, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:04 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xffffff7f, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 961.700977][ T491] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 [ 961.700986][ T491] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 961.701671][ T491] loop5: detected capacity change from 0 to 7 [ 961.890793][ T532] FAULT_INJECTION: forcing a failure. [ 961.890793][ T532] name failslab, interval 1, probability 0, space 0, times 0 [ 961.961193][ T532] CPU: 1 PID: 532 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 17:08:04 executing program 5 (fault-call:1 fault-nth:10): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:04 executing program 5 (fault-call:1 fault-nth:11): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 961.961216][ T532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 961.961224][ T532] Call Trace: [ 961.961231][ T532] dump_stack_lvl+0xb7/0x103 [ 961.961322][ T532] dump_stack+0x11/0x1a [ 961.961344][ T532] should_fail+0x23c/0x250 [ 961.961367][ T532] ? getname_flags+0x84/0x3d0 [ 961.961384][ T532] __should_failslab+0x81/0x90 [ 961.961421][ T532] should_failslab+0x5/0x20 [ 961.961434][ T532] kmem_cache_alloc+0x46/0x2e0 [ 961.961456][ T532] getname_flags+0x84/0x3d0 [ 961.961516][ T532] ? vfs_write+0x50c/0x770 [ 961.961533][ T532] getname+0x15/0x20 [ 961.961551][ T532] do_sys_openat2+0x5b/0x250 [ 961.961630][ T532] ? perf_trace_sys_exit+0x4d/0x160 [ 961.961648][ T532] __x64_sys_openat+0xef/0x110 [ 961.961663][ T532] do_syscall_64+0x3d/0x90 [ 961.961688][ T532] ? irqentry_exit+0xe/0x30 [ 961.961705][ T532] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 961.961732][ T532] RIP: 0033:0x4196c4 [ 961.961746][ T532] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 961.961813][ T532] RSP: 002b:00007fdf8e1c9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 961.961828][ T532] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4 [ 961.961837][ T532] RDX: 0000000000000002 RSI: 00007fdf8e1ca000 RDI: 00000000ffffff9c [ 961.961849][ T532] RBP: 00007fdf8e1ca000 R08: 0000000000000000 R09: ffffffffffffffff [ 961.961862][ T532] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 961.961873][ T532] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 962.008050][ T551] FAULT_INJECTION: forcing a failure. [ 962.008050][ T551] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 962.008070][ T551] CPU: 0 PID: 551 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 962.008088][ T551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 962.008098][ T551] Call Trace: [ 962.008105][ T551] dump_stack_lvl+0xb7/0x103 [ 962.008184][ T551] dump_stack+0x11/0x1a [ 962.008206][ T551] should_fail+0x23c/0x250 [ 962.008275][ T551] should_fail_usercopy+0x16/0x20 [ 962.008291][ T551] strncpy_from_user+0x21/0x250 [ 962.008306][ T551] getname_flags+0xb8/0x3d0 [ 962.008322][ T551] ? vfs_write+0x50c/0x770 [ 962.008384][ T551] getname+0x15/0x20 [ 962.008401][ T551] do_sys_openat2+0x5b/0x250 [ 962.008416][ T551] ? perf_trace_sys_exit+0x4d/0x160 [ 962.008478][ T551] __x64_sys_openat+0xef/0x110 [ 962.008492][ T551] do_syscall_64+0x3d/0x90 [ 962.008587][ T551] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 962.008614][ T551] RIP: 0033:0x4196c4 [ 962.008624][ T551] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 962.008639][ T551] RSP: 002b:00007fdf8e1c9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 962.008709][ T551] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4 [ 962.008722][ T551] RDX: 0000000000000002 RSI: 00007fdf8e1ca000 RDI: 00000000ffffff9c [ 962.008735][ T551] RBP: 00007fdf8e1ca000 R08: 0000000000000000 R09: ffffffffffffffff [ 962.008751][ T551] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 962.008766][ T551] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 962.057377][ T562] FAULT_INJECTION: forcing a failure. [ 962.057377][ T562] name failslab, interval 1, probability 0, space 0, times 0 [ 962.057444][ T562] CPU: 1 PID: 562 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 962.057464][ T562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 962.057473][ T562] Call Trace: [ 962.057479][ T562] dump_stack_lvl+0xb7/0x103 [ 962.057512][ T562] dump_stack+0x11/0x1a [ 962.057583][ T562] should_fail+0x23c/0x250 [ 962.057603][ T562] ? __alloc_file+0x2e/0x1a0 [ 962.057620][ T562] __should_failslab+0x81/0x90 [ 962.057682][ T562] should_failslab+0x5/0x20 [ 962.057701][ T562] kmem_cache_alloc+0x46/0x2e0 [ 962.057736][ T562] __alloc_file+0x2e/0x1a0 [ 962.057750][ T562] alloc_empty_file+0xcd/0x1c0 [ 962.057764][ T562] path_openat+0x6a/0x20b0 [ 962.057778][ T562] ? avc_has_perm_noaudit+0x19a/0x240 [ 962.057797][ T562] ? avc_has_perm+0x59/0x150 [ 962.057872][ T562] ? avc_has_perm+0xc8/0x150 [ 962.057894][ T562] do_filp_open+0xd9/0x1f0 [ 962.057913][ T562] ? __virt_addr_valid+0x15a/0x1a0 [ 962.057932][ T562] ? __check_object_size+0x253/0x310 [ 962.057952][ T562] ? _find_next_bit+0x16a/0x190 [ 962.058082][ T562] ? alloc_fd+0x388/0x3e0 [ 962.058103][ T562] do_sys_openat2+0xa3/0x250 [ 962.058119][ T562] ? perf_trace_sys_exit+0x4d/0x160 [ 962.058140][ T562] __x64_sys_openat+0xef/0x110 [ 962.058156][ T562] do_syscall_64+0x3d/0x90 [ 962.058236][ T562] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 962.058261][ T562] RIP: 0033:0x4196c4 [ 962.058273][ T562] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 962.058291][ T562] RSP: 002b:00007fdf8e1c9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 962.058310][ T562] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4 [ 962.058320][ T562] RDX: 0000000000000002 RSI: 00007fdf8e1ca000 RDI: 00000000ffffff9c [ 962.058331][ T562] RBP: 00007fdf8e1ca000 R08: 0000000000000000 R09: ffffffffffffffff [ 962.058343][ T562] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 962.058354][ T562] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 962.606078][ T1120] serio: Serial port pts3 17:08:05 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x16800, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x401, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:05 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xffffff9e, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:05 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xf0ffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:05 executing program 5 (fault-call:1 fault-nth:12): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 962.691608][ T1137] FAULT_INJECTION: forcing a failure. [ 962.691608][ T1137] name failslab, interval 1, probability 0, space 0, times 0 [ 962.704257][ T1137] CPU: 1 PID: 1137 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 962.714033][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 962.724108][ T1137] Call Trace: [ 962.727492][ T1137] dump_stack_lvl+0xb7/0x103 [ 962.732230][ T1137] dump_stack+0x11/0x1a [ 962.736662][ T1137] should_fail+0x23c/0x250 [ 962.741286][ T1137] ? security_file_alloc+0x30/0x190 [ 962.746663][ T1137] __should_failslab+0x81/0x90 [ 962.751445][ T1137] should_failslab+0x5/0x20 [ 962.755945][ T1137] kmem_cache_alloc+0x46/0x2e0 [ 962.760726][ T1137] security_file_alloc+0x30/0x190 [ 962.765801][ T1137] __alloc_file+0x83/0x1a0 [ 962.770360][ T1137] alloc_empty_file+0xcd/0x1c0 [ 962.775484][ T1137] path_openat+0x6a/0x20b0 [ 962.779914][ T1137] ? avc_has_perm_noaudit+0x19a/0x240 [ 962.785303][ T1137] ? avc_has_perm+0x59/0x150 [ 962.789923][ T1137] ? avc_has_perm+0xc8/0x150 [ 962.794557][ T1137] do_filp_open+0xd9/0x1f0 [ 962.798981][ T1137] ? __virt_addr_valid+0x15a/0x1a0 [ 962.804180][ T1137] ? __check_object_size+0x253/0x310 [ 962.809546][ T1137] ? _find_next_bit+0x16a/0x190 [ 962.814397][ T1137] ? alloc_fd+0x388/0x3e0 [ 962.818986][ T1137] do_sys_openat2+0xa3/0x250 [ 962.823570][ T1137] ? perf_trace_sys_exit+0x4d/0x160 [ 962.829001][ T1137] __x64_sys_openat+0xef/0x110 [ 962.833878][ T1137] do_syscall_64+0x3d/0x90 [ 962.838349][ T1137] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 962.844397][ T1137] RIP: 0033:0x4196c4 [ 962.848272][ T1137] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 962.868064][ T1137] RSP: 002b:00007fdf8e1c9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 962.876460][ T1137] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4 [ 962.884421][ T1137] RDX: 0000000000000002 RSI: 00007fdf8e1ca000 RDI: 00000000ffffff9c [ 962.892381][ T1137] RBP: 00007fdf8e1ca000 R08: 0000000000000000 R09: ffffffffffffffff [ 962.900423][ T1137] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 962.908655][ T1137] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:05 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f0000000180), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:05 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x629, 0x12000) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0xd0, 0x2, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0xa}, [@CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x50}]}, @CTA_NAT_DST={0xc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast2}]}, @CTA_NAT_DST={0x14, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}]}, @CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x101}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0xfff}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x80000000}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @CTA_SEQ_ADJ_ORIG={0x54, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x8}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x6382}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x63c}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7fffffff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x2}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4005) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r1, 0x1b1400) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:08:05 executing program 1: r0 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000258f88)) msgsnd(r0, &(0x7f0000000340)={0x3}, 0x0, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000258f88)={{0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8}) statx(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x400, 0x100, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x33) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000280)={{0x1, 0x0, r1, 0x0, 0xee01, 0x0, 0x3}, 0x0, 0x0, 0x3, 0x8001, 0x3, 0x9, 0x5, 0x3, 0xe000, 0x70, 0x0, r2}) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x410800, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000002000000000000008000"}) r4 = syz_open_pts(r3, 0x0) syz_open_pts(r3, 0x400000) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000200)=0x2) read(r4, 0x0, 0x2000) 17:08:05 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xffffffea, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:05 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xf2ffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:05 executing program 5 (fault-call:1 fault-nth:13): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 962.988965][ T1158] FAULT_INJECTION: forcing a failure. [ 962.988965][ T1158] name failslab, interval 1, probability 0, space 0, times 0 [ 963.001723][ T1158] CPU: 0 PID: 1158 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 963.011484][ T1158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 963.021892][ T1158] Call Trace: [ 963.025355][ T1158] dump_stack_lvl+0xb7/0x103 [ 963.030157][ T1158] dump_stack+0x11/0x1a [ 963.034332][ T1158] should_fail+0x23c/0x250 [ 963.038756][ T1158] ? kzalloc+0x16/0x20 [ 963.042941][ T1158] __should_failslab+0x81/0x90 [ 963.047987][ T1158] should_failslab+0x5/0x20 [ 963.053009][ T1158] __kmalloc+0x66/0x340 [ 963.057313][ T1158] ? __d_lookup_rcu+0x39e/0x3e0 [ 963.062963][ T1158] kzalloc+0x16/0x20 [ 963.066885][ T1158] alloc_workqueue+0x11e/0xaf0 [ 963.071703][ T1158] ? bd_prepare_to_claim+0x1e5/0x270 [ 963.077005][ T1158] loop_configure+0x54c/0xd10 [ 963.081694][ T1158] ? mntput+0x45/0x70 [ 963.085677][ T1158] lo_ioctl+0x558/0x1210 [ 963.089945][ T1158] ? path_openat+0x19ab/0x20b0 [ 963.094815][ T1158] ? putname+0xa5/0xc0 [ 963.098948][ T1158] ? ___cache_free+0x3c/0x300 [ 963.103644][ T1158] ? blkdev_common_ioctl+0x9c3/0x1040 [ 963.109172][ T1158] ? selinux_file_ioctl+0x8e0/0x970 [ 963.114376][ T1158] ? lo_release+0x120/0x120 [ 963.118884][ T1158] blkdev_ioctl+0x1d0/0x3c0 [ 963.122021][ T1177] serio: Serial port pts2 [ 963.123396][ T1158] block_ioctl+0x6d/0x80 [ 963.123420][ T1158] ? blkdev_iopoll+0x70/0x70 17:08:05 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x8, 0x400, 0x4, 0x81, 0x7, "215b1941236b951b7b79da06e12cef3b348e6e"}) 17:08:05 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xffffffef, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:05 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) select(0x0, 0x0, 0xfffffffffffffffe, 0x0, &(0x7f00000000c0)) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:05 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff}) statx(r0, &(0x7f0000000080)='./file0\x00', 0x2000, 0x400, &(0x7f0000000100)) set_mempolicy(0x8000, &(0x7f0000000000)=0x100000001, 0x25) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:08:05 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xf5ffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 963.136789][ T1158] __se_sys_ioctl+0xcb/0x140 [ 963.141385][ T1158] __x64_sys_ioctl+0x3f/0x50 [ 963.146021][ T1158] do_syscall_64+0x3d/0x90 [ 963.150486][ T1158] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 963.156523][ T1158] RIP: 0033:0x466397 [ 963.160414][ T1158] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.180108][ T1158] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 17:08:05 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) signalfd(r1, &(0x7f0000000000)={[0x4]}, 0x8) r2 = open(&(0x7f0000000080)='./file0\x00', 0x141003, 0x2) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x1a) read(r1, 0x0, 0x2000) 17:08:05 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xfffffff0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:05 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000000)={0x5, 0x6, 0x3, 0x2, 0x1, [0x2, 0x9, 0x5e9, 0x6]}) read(r1, 0x0, 0x2000) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000080)={0x4, 0x5, 0x80000000, 0x0, 0x0, "832ffb63bf72105a56f2a347c5b1929fae9fc0", 0x1f, 0x8}) [ 963.188537][ T1158] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 963.196511][ T1158] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 963.204496][ T1158] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 963.212465][ T1158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 963.220524][ T1158] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0xfffffffe, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:06 executing program 5 (fault-call:1 fault-nth:14): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:06 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfcffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xf, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x10, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 963.322574][ T1231] FAULT_INJECTION: forcing a failure. [ 963.322574][ T1231] name failslab, interval 1, probability 0, space 0, times 0 [ 963.335333][ T1231] CPU: 0 PID: 1231 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 963.335355][ T1231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:08:06 executing program 5 (fault-call:1 fault-nth:15): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 963.335366][ T1231] Call Trace: [ 963.335378][ T1231] dump_stack_lvl+0xb7/0x103 [ 963.335408][ T1231] dump_stack+0x11/0x1a [ 963.335440][ T1231] should_fail+0x23c/0x250 [ 963.335459][ T1231] __should_failslab+0x81/0x90 [ 963.335478][ T1231] ? alloc_workqueue+0x14c/0xaf0 [ 963.335499][ T1231] should_failslab+0x5/0x20 [ 963.335529][ T1231] kmem_cache_alloc_trace+0x49/0x310 [ 963.335608][ T1231] alloc_workqueue+0x14c/0xaf0 [ 963.335625][ T1231] ? bd_prepare_to_claim+0x1e5/0x270 [ 963.335641][ T1231] loop_configure+0x54c/0xd10 [ 963.335657][ T1231] ? mntput+0x45/0x70 [ 963.335673][ T1231] lo_ioctl+0x558/0x1210 [ 963.335763][ T1231] ? path_openat+0x19ab/0x20b0 [ 963.335779][ T1231] ? putname+0xa5/0xc0 [ 963.335791][ T1231] ? ___cache_free+0x3c/0x300 [ 963.335806][ T1231] ? blkdev_common_ioctl+0x9c3/0x1040 [ 963.335823][ T1231] ? selinux_file_ioctl+0x8e0/0x970 [ 963.335839][ T1231] ? lo_release+0x120/0x120 [ 963.335911][ T1231] blkdev_ioctl+0x1d0/0x3c0 [ 963.335930][ T1231] block_ioctl+0x6d/0x80 [ 963.335945][ T1231] ? blkdev_iopoll+0x70/0x70 [ 963.335997][ T1231] __se_sys_ioctl+0xcb/0x140 [ 963.336015][ T1231] __x64_sys_ioctl+0x3f/0x50 [ 963.336035][ T1231] do_syscall_64+0x3d/0x90 [ 963.336053][ T1231] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 963.336113][ T1231] RIP: 0033:0x466397 [ 963.336126][ T1231] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.336175][ T1231] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 963.336192][ T1231] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 963.336205][ T1231] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 963.336217][ T1231] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 963.336229][ T1231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 963.336237][ T1231] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 963.443584][ T1296] FAULT_INJECTION: forcing a failure. [ 963.443584][ T1296] name failslab, interval 1, probability 0, space 0, times 0 [ 963.443678][ T1296] CPU: 0 PID: 1296 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 963.443699][ T1296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 963.443711][ T1296] Call Trace: [ 963.443719][ T1296] dump_stack_lvl+0xb7/0x103 [ 963.443744][ T1296] dump_stack+0x11/0x1a [ 963.443760][ T1296] should_fail+0x23c/0x250 [ 963.443819][ T1296] ? kzalloc+0x16/0x20 [ 963.443839][ T1296] __should_failslab+0x81/0x90 [ 963.443857][ T1296] should_failslab+0x5/0x20 [ 963.443874][ T1296] __kmalloc+0x66/0x340 [ 963.443890][ T1296] ? number+0xa03/0xb50 [ 963.443911][ T1296] kzalloc+0x16/0x20 [ 963.443993][ T1296] apply_wqattrs_prepare+0x3a/0x630 [ 963.444011][ T1296] ? vsnprintf+0xe8f/0xed0 [ 963.444083][ T1296] apply_workqueue_attrs+0x9e/0x100 [ 963.444107][ T1296] alloc_workqueue+0x77d/0xaf0 [ 963.444201][ T1296] ? bd_prepare_to_claim+0x1e5/0x270 [ 963.444291][ T1296] loop_configure+0x54c/0xd10 [ 963.444311][ T1296] ? mntput+0x45/0x70 [ 963.444399][ T1296] lo_ioctl+0x558/0x1210 [ 963.444415][ T1296] ? path_openat+0x19ab/0x20b0 [ 963.444498][ T1296] ? putname+0xa5/0xc0 [ 963.444515][ T1296] ? ___cache_free+0x3c/0x300 [ 963.444532][ T1296] ? blkdev_common_ioctl+0x9c3/0x1040 [ 963.444549][ T1296] ? selinux_file_ioctl+0x8e0/0x970 [ 963.444564][ T1296] ? lo_release+0x120/0x120 [ 963.444580][ T1296] blkdev_ioctl+0x1d0/0x3c0 [ 963.444600][ T1296] block_ioctl+0x6d/0x80 [ 963.444623][ T1296] ? blkdev_iopoll+0x70/0x70 [ 963.444718][ T1296] __se_sys_ioctl+0xcb/0x140 [ 963.444741][ T1296] __x64_sys_ioctl+0x3f/0x50 [ 963.444791][ T1296] do_syscall_64+0x3d/0x90 [ 963.444879][ T1296] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 963.444902][ T1296] RIP: 0033:0x466397 [ 963.444913][ T1296] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.444927][ T1296] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 963.444947][ T1296] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 963.444959][ T1296] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 963.444971][ T1296] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 963.444984][ T1296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 963.444996][ T1296] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:06 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:06 executing program 5 (fault-call:1 fault-nth:16): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:06 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfeffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:06 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x10) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$BTRFS_IOC_QGROUP_CREATE(r3, 0x4010942a, &(0x7f0000000080)={0x0, 0x5}) ioctl$TCFLSH(r2, 0x540b, 0x0) read(r1, 0x0, 0x2000) set_mempolicy(0x1, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000000)={0x30000004}) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r6, 0x5608) r7 = getuid() sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)=@delpolicy={0x144, 0x14, 0x0, 0x70bd29, 0x25dfdbfb, {{@in6=@private2, @in=@rand_addr=0x64010102, 0x4e22, 0x5, 0x4e21, 0x0, 0x2, 0x0, 0xa0, 0x32, 0x0, r7}, 0x6e6bb2}, [@sec_ctx={0xcf, 0x8, {0xcb, 0x8, 0x0, 0xa4, 0xc3, "bb610848c6ad036e6718fda656576b8883fd374e4f938f889e54af8bd1175e522012badf29d8b434516199bdf5f7855acb68a4ee9152ab1b4894dbf7cfdbb4960f7c244938d2c0697be810d943f62842432ab4c6ff89580934878626f44bc18a03ec8592809b0dfaafe85a3c3d5c9c9d030c1cefa272ea660ece175945aef4467ef9b4fa6ba7117c3148f97d66c993e8a75eb7c9d2e80694c69bebec745fe3ff3782397fb188639e6282716a99d67cfff90e80a1e52d6007054f4e751aebcdca4abd55"}}, @etimer_thresh={0x8, 0xc, 0x5}, @proto={0x5, 0x19, 0x3c}, @coaddr={0x14, 0xe, @in=@multicast1}]}, 0x144}, 0x1, 0x0, 0x0, 0x4008800}, 0x0) r8 = syz_open_dev$ttys(0xc, 0x2, 0x1) syz_open_pts(r8, 0x0) 17:08:06 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0xb, 0x4, 0x8, 0x5, 0x11, "d0a41e47cc4894a79799cbf78638faad80c29d"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 964.111926][ T1850] serio: Serial port pts2 [ 964.119084][ T1851] FAULT_INJECTION: forcing a failure. [ 964.119084][ T1851] name failslab, interval 1, probability 0, space 0, times 0 [ 964.131872][ T1851] CPU: 1 PID: 1851 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 964.141933][ T1851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 964.152261][ T1851] Call Trace: [ 964.155542][ T1851] dump_stack_lvl+0xb7/0x103 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x2c0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xec0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 964.160159][ T1851] dump_stack+0x11/0x1a [ 964.164413][ T1851] should_fail+0x23c/0x250 [ 964.168892][ T1851] __should_failslab+0x81/0x90 [ 964.173756][ T1851] ? apply_wqattrs_prepare+0x5f/0x630 [ 964.179174][ T1851] should_failslab+0x5/0x20 [ 964.183688][ T1851] kmem_cache_alloc_trace+0x49/0x310 [ 964.183719][ T1851] apply_wqattrs_prepare+0x5f/0x630 17:08:06 executing program 5 (fault-call:1 fault-nth:17): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x33fe0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 964.183749][ T1851] ? vsnprintf+0xe8f/0xed0 [ 964.183770][ T1851] apply_workqueue_attrs+0x9e/0x100 [ 964.183790][ T1851] alloc_workqueue+0x77d/0xaf0 [ 964.183871][ T1851] ? bd_prepare_to_claim+0x1e5/0x270 [ 964.183888][ T1851] loop_configure+0x54c/0xd10 [ 964.183908][ T1851] ? mntput+0x45/0x70 [ 964.183988][ T1851] lo_ioctl+0x558/0x1210 [ 964.184010][ T1851] ? path_openat+0x19ab/0x20b0 [ 964.184030][ T1851] ? putname+0xa5/0xc0 17:08:07 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x200005bc, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 964.184107][ T1851] ? ___cache_free+0x3c/0x300 [ 964.184122][ T1851] ? blkdev_common_ioctl+0x9c3/0x1040 [ 964.184143][ T1851] ? selinux_file_ioctl+0x8e0/0x970 [ 964.184163][ T1851] ? lo_release+0x120/0x120 [ 964.184248][ T1851] blkdev_ioctl+0x1d0/0x3c0 [ 964.184263][ T1851] block_ioctl+0x6d/0x80 [ 964.184284][ T1851] ? blkdev_iopoll+0x70/0x70 [ 964.184309][ T1851] __se_sys_ioctl+0xcb/0x140 [ 964.184389][ T1851] __x64_sys_ioctl+0x3f/0x50 [ 964.184412][ T1851] do_syscall_64+0x3d/0x90 17:08:07 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xffffffef) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 964.184432][ T1851] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 964.184454][ T1851] RIP: 0033:0x466397 [ 964.184492][ T1851] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 964.184539][ T1851] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 964.184557][ T1851] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 964.184567][ T1851] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 964.184576][ T1851] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 964.184585][ T1851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 964.184594][ T1851] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 964.253686][ T1893] FAULT_INJECTION: forcing a failure. [ 964.253686][ T1893] name failslab, interval 1, probability 0, space 0, times 0 [ 964.414190][ T1893] CPU: 0 PID: 1893 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 964.424609][ T1893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 964.434928][ T1893] Call Trace: [ 964.438248][ T1893] dump_stack_lvl+0xb7/0x103 [ 964.442946][ T1893] dump_stack+0x11/0x1a [ 964.447183][ T1893] should_fail+0x23c/0x250 [ 964.451635][ T1893] __should_failslab+0x81/0x90 [ 964.456834][ T1893] ? apply_wqattrs_prepare+0xbe/0x630 [ 964.462291][ T1893] should_failslab+0x5/0x20 [ 964.466971][ T1893] kmem_cache_alloc_trace+0x49/0x310 [ 964.472275][ T1893] ? apply_wqattrs_prepare+0x5f/0x630 [ 964.477742][ T1893] apply_wqattrs_prepare+0xbe/0x630 [ 964.483085][ T1893] ? vsnprintf+0xe8f/0xed0 [ 964.487595][ T1893] apply_workqueue_attrs+0x9e/0x100 [ 964.493119][ T1893] alloc_workqueue+0x77d/0xaf0 [ 964.497914][ T1893] ? bd_prepare_to_claim+0x1e5/0x270 [ 964.503434][ T1893] loop_configure+0x54c/0xd10 [ 964.508118][ T1893] ? mntput+0x45/0x70 [ 964.512182][ T1893] lo_ioctl+0x558/0x1210 [ 964.516439][ T1893] ? path_openat+0x19ab/0x20b0 [ 964.521218][ T1893] ? putname+0xa5/0xc0 [ 964.525271][ T1893] ? ___cache_free+0x3c/0x300 [ 964.530119][ T1893] ? blkdev_common_ioctl+0x9c3/0x1040 [ 964.536072][ T1893] ? selinux_file_ioctl+0x8e0/0x970 [ 964.541372][ T1893] ? lo_release+0x120/0x120 [ 964.545858][ T1893] blkdev_ioctl+0x1d0/0x3c0 [ 964.550355][ T1893] block_ioctl+0x6d/0x80 [ 964.554604][ T1893] ? blkdev_iopoll+0x70/0x70 [ 964.559279][ T1893] __se_sys_ioctl+0xcb/0x140 [ 964.563862][ T1893] __x64_sys_ioctl+0x3f/0x50 [ 964.568456][ T1893] do_syscall_64+0x3d/0x90 [ 964.572880][ T1893] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 964.578772][ T1893] RIP: 0033:0x466397 [ 964.582838][ T1893] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 964.602968][ T1893] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 964.611493][ T1893] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 964.619733][ T1893] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 964.627724][ T1893] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 964.635964][ T1893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 964.643942][ T1893] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 964.936248][ T2432] serio: Serial port pts2 17:08:07 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfffffff0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:07 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x7ffff000, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:07 executing program 5 (fault-call:1 fault-nth:18): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:07 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_UIE_OFF(r2, 0x7004) pwritev2(r2, &(0x7f0000000000), 0x0, 0xb50, 0x0, 0x10) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:07 executing program 2: r0 = syz_io_uring_setup(0xab3, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x1}, &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d5000/0x2000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) io_uring_enter(r5, 0x2a6e, 0x3, 0x2, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:07 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x464, 0x3f3, 0x200, 0x2, 0x25dfdbfc, {0x3, 0x0, 0x28, [0x4, 0x5, 0x3, 0xffffff00, 0x4, 0xffffffff, 0xffffff81, 0x6, 0x4, 0x0, 0x40, 0x35875c05, 0x353e, 0x1, 0x9b67, 0x8000, 0xfffff59e, 0x5, 0x8, 0x4, 0x8, 0x2, 0x3, 0xfffffffa, 0x400, 0xc0000000, 0x6, 0x0, 0xffff, 0x7, 0x7386, 0x400, 0xea, 0xc101, 0x0, 0x100, 0x1ae6, 0x4, 0x8, 0x2f, 0x602a, 0x7, 0x20, 0xed09, 0x6, 0x5, 0x400, 0x5, 0x1f, 0x5, 0x8, 0xffff, 0x6f, 0x80000000, 0x40, 0xfffffffb, 0x4, 0x7ff, 0x400, 0x4, 0x0, 0x4, 0xd55, 0x8], [0x3, 0x3, 0x0, 0xfffffffd, 0x1ff, 0x206, 0x7, 0x234, 0xa40d, 0x15, 0x3f, 0x5, 0xb4, 0x0, 0xf4, 0x10001, 0x4372, 0x4, 0x8bc9, 0x200, 0x81, 0x0, 0x2, 0x1, 0xffff, 0xfffffffe, 0x7, 0x477, 0x4, 0xfffffff7, 0xff, 0x32f, 0x8, 0x10000, 0x5, 0x401, 0x56, 0x9, 0xfdd, 0x81, 0x6, 0x1f, 0x0, 0x1000, 0x5, 0x3ff, 0x9, 0xb1, 0x3, 0x4, 0x0, 0x41, 0x1, 0xffff, 0x8, 0x3, 0x5, 0x64, 0x401, 0xff, 0x10000, 0x6, 0x1, 0x3], [0x1, 0x5, 0x0, 0x10000, 0x38, 0x5, 0x81, 0x3, 0x0, 0x2, 0x10001, 0x45e, 0x5, 0xff, 0xa59, 0x0, 0x4, 0xfffffffc, 0x6, 0x3, 0xfff, 0x9, 0x3ff, 0x80, 0x0, 0x20, 0x4, 0x6, 0xb0, 0x7, 0xef04, 0x10000, 0x200, 0xfffffffa, 0x5, 0x265d, 0x6, 0x3, 0x8000, 0x3e5c, 0x9, 0x101, 0x7fffffff, 0x40, 0x10001, 0x5b75, 0x6, 0xffffffc0, 0x4dda, 0x81, 0x0, 0x1ff, 0x0, 0x2, 0x101, 0x9, 0x80, 0x5e, 0x3ff, 0x0, 0x4, 0x40, 0x5, 0x3], [0xee, 0x6, 0x80, 0x6, 0x80, 0x7fffffff, 0x1, 0x7, 0xfffffffe, 0x469, 0x1000, 0x8, 0x6, 0x9, 0x8, 0x700000, 0x80000000, 0x2, 0x24310000, 0x4, 0x9, 0x97, 0x857, 0xfffffff8, 0x7, 0x3, 0x7fff, 0x1f, 0x100, 0x0, 0xfffffff9, 0x9, 0x5, 0x6b0, 0x6, 0x0, 0x8, 0x7, 0x3ff, 0x80, 0x7, 0x2, 0xfffffffd, 0x8, 0x6, 0x2c, 0x9, 0x18, 0x2, 0xf32, 0x80, 0x800, 0xffffff46, 0x20, 0x8, 0x20, 0x2, 0x89d7, 0x5, 0x5, 0x6e, 0x8a0, 0x401, 0x4], 0x43, ['&-\x00', '/dev/ptmx\x00', '\x04', '/dev/ptmx\x00', '\x00', '-\x00', '/dev/ptmx\x00', '/dev/ptmx\x00', '/dev/ptmx\x00', '/dev/ptmx\x00']}, ["", "", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10064044}, 0x14) 17:08:07 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0xfffffdef, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 965.059191][ T2459] serio: Serial port pts2 [ 965.062719][ T2460] FAULT_INJECTION: forcing a failure. [ 965.062719][ T2460] name failslab, interval 1, probability 0, space 0, times 0 [ 965.076298][ T2460] CPU: 1 PID: 2460 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 965.086075][ T2460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 965.096400][ T2460] Call Trace: [ 965.099683][ T2460] dump_stack_lvl+0xb7/0x103 [ 965.104349][ T2460] dump_stack+0x11/0x1a 17:08:07 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) flistxattr(r1, &(0x7f0000000100)=""/172, 0xac) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 965.108507][ T2460] should_fail+0x23c/0x250 [ 965.112930][ T2460] __should_failslab+0x81/0x90 [ 965.117832][ T2460] should_failslab+0x5/0x20 [ 965.122453][ T2460] kmem_cache_alloc_node+0x58/0x2b0 [ 965.127878][ T2460] ? __next_node_in+0xad/0xe0 [ 965.132562][ T2460] ? alloc_unbound_pwq+0x3e6/0x770 [ 965.137782][ T2460] alloc_unbound_pwq+0x3e6/0x770 [ 965.142735][ T2460] apply_wqattrs_prepare+0x1ed/0x630 [ 965.148116][ T2460] ? vsnprintf+0xe8f/0xed0 [ 965.152619][ T2460] apply_workqueue_attrs+0x9e/0x100 17:08:07 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x2, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:07 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000000)={0x0, 0x3}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 965.157829][ T2460] alloc_workqueue+0x77d/0xaf0 [ 965.162610][ T2460] ? bd_prepare_to_claim+0x1e5/0x270 [ 965.168001][ T2460] loop_configure+0x54c/0xd10 [ 965.172775][ T2460] ? mntput+0x45/0x70 [ 965.176935][ T2460] lo_ioctl+0x558/0x1210 [ 965.181221][ T2460] ? path_openat+0x19ab/0x20b0 [ 965.186042][ T2460] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 965.191632][ T2460] ? putname+0xa5/0xc0 [ 965.195739][ T2460] ? ___cache_free+0x3c/0x300 [ 965.200484][ T2460] ? blkdev_common_ioctl+0x9c3/0x1040 [ 965.205896][ T2460] ? selinux_file_ioctl+0x8e0/0x970 [ 965.211111][ T2460] ? lo_release+0x120/0x120 [ 965.215623][ T2460] blkdev_ioctl+0x1d0/0x3c0 [ 965.220135][ T2460] block_ioctl+0x6d/0x80 [ 965.224404][ T2460] ? blkdev_iopoll+0x70/0x70 [ 965.229069][ T2460] __se_sys_ioctl+0xcb/0x140 [ 965.231141][ T2488] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2 sclass=netlink_xfrm_socket pid=2488 comm=syz-executor.3 [ 965.233733][ T2460] __x64_sys_ioctl+0x3f/0x50 [ 965.233786][ T2460] do_syscall_64+0x3d/0x90 17:08:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_UIE_OFF(r2, 0x7004) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) fcntl$setpipe(r4, 0x407, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) close(r5) clone3(&(0x7f0000000380)={0x201083200, &(0x7f0000000140), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r5}}, 0x58) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r6, 0x5608) read(0xffffffffffffffff, 0x0, 0x0) [ 965.255422][ T2460] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 965.261345][ T2460] RIP: 0033:0x466397 [ 965.265231][ T2460] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 965.285132][ T2460] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 965.293624][ T2460] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 17:08:08 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0xa, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 965.295500][ T2489] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2 sclass=netlink_xfrm_socket pid=2489 comm=syz-executor.3 [ 965.301592][ T2460] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 965.301608][ T2460] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 965.301619][ T2460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 965.338176][ T2460] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 965.357822][ T2499] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=10 sclass=netlink_xfrm_socket pid=2499 comm=syz-executor.3 [ 965.374415][ T2502] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=10 sclass=netlink_xfrm_socket pid=2502 comm=syz-executor.3 17:08:08 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfffffff2) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:08 executing program 5 (fault-call:1 fault-nth:19): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:08 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x12, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:08 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x7}, 0xa1e) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x74b7, 0x0, 0x0, 0x0, 0x11, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 965.479511][ T2519] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 965.489549][ T2522] FAULT_INJECTION: forcing a failure. [ 965.489549][ T2522] name failslab, interval 1, probability 0, space 0, times 0 [ 965.502550][ T2522] CPU: 0 PID: 2522 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 965.512342][ T2522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 965.522524][ T2522] Call Trace: [ 965.524210][ T2527] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 965.525919][ T2522] dump_stack_lvl+0xb7/0x103 [ 965.539879][ T2522] dump_stack+0x11/0x1a [ 965.544054][ T2522] should_fail+0x23c/0x250 [ 965.548478][ T2522] ? __kernfs_new_node+0x6a/0x330 [ 965.553506][ T2522] __should_failslab+0x81/0x90 [ 965.558277][ T2522] should_failslab+0x5/0x20 [ 965.562782][ T2522] kmem_cache_alloc+0x46/0x2e0 [ 965.567558][ T2522] __kernfs_new_node+0x6a/0x330 [ 965.572418][ T2522] ? _raw_spin_lock_irqsave+0x25/0x80 [ 965.577831][ T2522] ? _raw_spin_unlock_irqrestore+0x27/0x40 [ 965.583724][ T2522] ? pwq_adjust_max_active+0x491/0x4b0 [ 965.589260][ T2522] kernfs_create_dir_ns+0x5e/0x140 [ 965.594372][ T2522] internal_create_group+0x138/0x850 [ 965.599736][ T2522] ? bd_prepare_to_claim+0x1e5/0x270 [ 965.605007][ T2522] sysfs_create_group+0x1b/0x20 [ 965.610127][ T2522] loop_configure+0xa77/0xd10 [ 965.614991][ T2522] lo_ioctl+0x558/0x1210 [ 965.619219][ T2522] ? path_openat+0x19ab/0x20b0 [ 965.624995][ T2522] ? putname+0xa5/0xc0 [ 965.629059][ T2522] ? ___cache_free+0x3c/0x300 [ 965.634012][ T2522] ? blkdev_common_ioctl+0x9c3/0x1040 [ 965.639780][ T2522] ? selinux_file_ioctl+0x8e0/0x970 [ 965.645049][ T2522] ? lo_release+0x120/0x120 [ 965.649550][ T2522] blkdev_ioctl+0x1d0/0x3c0 [ 965.654034][ T2522] block_ioctl+0x6d/0x80 [ 965.658287][ T2522] ? blkdev_iopoll+0x70/0x70 [ 965.662861][ T2522] __se_sys_ioctl+0xcb/0x140 [ 965.667705][ T2522] __x64_sys_ioctl+0x3f/0x50 [ 965.672307][ T2522] do_syscall_64+0x3d/0x90 [ 965.676724][ T2522] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 965.682723][ T2522] RIP: 0033:0x466397 [ 965.686602][ T2522] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 965.706626][ T2522] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 965.715231][ T2522] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 965.723193][ T2522] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 965.731382][ T2522] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 965.739526][ T2522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 965.747910][ T2522] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 965.755961][ T2522] loop5: detected capacity change from 0 to 7 17:08:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000000000)) read(r1, 0x0, 0x2000) 17:08:08 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x15, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:08 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x2, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8240, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_open_pts(r1, 0x40) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000040)={0x6, 0x4, 0x7ff, 0x8, 0x17, "7af820c260a3db4e682639b5b089806215b8ec"}) read(r1, 0x0, 0x2000) 17:08:08 executing program 5 (fault-call:1 fault-nth:20): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 965.918915][ T3077] serio: Serial port pts2 [ 965.926883][ T3078] FAULT_INJECTION: forcing a failure. [ 965.926883][ T3078] name failslab, interval 1, probability 0, space 0, times 0 [ 965.940107][ T3078] CPU: 0 PID: 3078 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 965.949825][ T3078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 965.960061][ T3078] Call Trace: [ 965.963344][ T3078] dump_stack_lvl+0xb7/0x103 17:08:08 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x26, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x488980, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x7ff) ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x42480, 0x0) ioctl$KDFONTOP_SET_DEF(r3, 0x4b72, &(0x7f00000000c0)={0x2, 0x1, 0x1a, 0x18, 0x1e9, &(0x7f0000000280)="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"}) sendfile(r2, r2, &(0x7f0000000100)=0xdae7, 0x6a7) r4 = syz_io_uring_setup(0x2f7f, &(0x7f0000000140)={0x0, 0xb476, 0x8, 0x0, 0x298, 0x0, r3}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000680)) write$binfmt_elf64(r4, &(0x7f00000006c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x6, 0x9, 0x7f, 0x4, 0x2, 0x3, 0x6, 0x41, 0x40, 0x2a, 0x8, 0x9, 0x38, 0x2, 0xd0, 0x7fff, 0x3000}, [{0x2, 0x9, 0xffffffff, 0x2, 0xf09, 0x134, 0x2, 0xde}], "93fe7b7a64e5a225a107543ebb71d9f7ffa158fd6b591af1170bda615bc621f8a4116826b79209ae1bd8f29a31009ab8cc48b34d5b673a60b77c03b56d0a8b078c66095ae66fce62b51dc642d6759ccff6783edb8afae5f9daa148a4edc1dc2717a3ba456ab6965737b59d0cfbe8a8cf3531d7d96674cd407147abbcb19380597f9510c9c1b4b5d6b62d4a6fd7a3523d4136d412886ee4f384b62f056c5e5d46024642e7b0ded9be1429cffc7eded770c5174650bcdd410f9c66d14dc0660dc9a5adb5a20049e20640c4e1a86563ec3eee68", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x74a) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 965.967965][ T3078] dump_stack+0x11/0x1a [ 965.972121][ T3078] should_fail+0x23c/0x250 [ 965.976603][ T3078] ? __kernfs_new_node+0x6a/0x330 [ 965.981650][ T3078] __should_failslab+0x81/0x90 [ 965.986459][ T3078] should_failslab+0x5/0x20 [ 965.990969][ T3078] kmem_cache_alloc+0x46/0x2e0 [ 965.995806][ T3078] ? __cond_resched+0x11/0x40 [ 965.999545][ T3090] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 966.000579][ T3078] __kernfs_new_node+0x6a/0x330 [ 966.000608][ T3078] ? idr_alloc_cyclic+0x249/0x2d0 [ 966.020140][ T3078] ? rb_insert_color+0x7e/0x310 [ 966.021345][ T3091] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 966.024994][ T3078] kernfs_new_node+0x5b/0xd0 [ 966.025022][ T3078] __kernfs_create_file+0x45/0x1a0 [ 966.044240][ T3078] sysfs_add_file_mode_ns+0x1c1/0x250 [ 966.044274][ T3078] internal_create_group+0x2e4/0x850 [ 966.044294][ T3078] sysfs_create_group+0x1b/0x20 [ 966.044308][ T3078] loop_configure+0xa77/0xd10 17:08:08 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 966.044325][ T3078] lo_ioctl+0x558/0x1210 [ 966.044399][ T3078] ? path_openat+0x19ab/0x20b0 [ 966.044421][ T3078] ? putname+0xa5/0xc0 [ 966.044439][ T3078] ? ___cache_free+0x3c/0x300 [ 966.044461][ T3078] ? blkdev_common_ioctl+0x9c3/0x1040 [ 966.044534][ T3078] ? selinux_file_ioctl+0x8e0/0x970 [ 966.044549][ T3078] ? lo_release+0x120/0x120 [ 966.044562][ T3078] blkdev_ioctl+0x1d0/0x3c0 [ 966.044583][ T3078] block_ioctl+0x6d/0x80 [ 966.044604][ T3078] ? blkdev_iopoll+0x70/0x70 [ 966.044625][ T3078] __se_sys_ioctl+0xcb/0x140 [ 966.044662][ T3078] __x64_sys_ioctl+0x3f/0x50 [ 966.044678][ T3078] do_syscall_64+0x3d/0x90 [ 966.044737][ T3078] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 966.044764][ T3078] RIP: 0033:0x466397 [ 966.044778][ T3078] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 966.044796][ T3078] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 966.044814][ T3078] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 966.044826][ T3078] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 966.044838][ T3078] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 966.044850][ T3078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 966.044862][ T3078] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 966.049011][ T3078] loop5: detected capacity change from 0 to 7 17:08:09 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfffffff5) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x2, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:09 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x9) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$tty1(0xc, 0x4, 0x4) syz_open_pts(r2, 0x10102) read(r1, 0x0, 0x2000) 17:08:09 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_SENDMSG={0x9, 0x6, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e21, 0x0, @local, 0x6}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000340)="c4797324fc6f206b9e597b8fa09f344d02c85ae3d68049ed334e9877c633d96238542eb167db750c41f961f299027b12a5ebf7f18b19772740dfc7abb5fa820c3ed1a0e170c82d80cd85c18ccc9e824ac1776ab12c88947bcd23e48a0341515b311bef592b6ed3e4398b8e20d917432be1782a6c7c82d9a3240242d8312ee9894319aa0e3c", 0x85}, {&(0x7f0000000000)="8895809bd1191e0c72cc7c8208e40f4266fd6632a6d1ca1b68d274b8883265fc210b5ad805d9d566", 0x28}], 0x2, &(0x7f0000000400)=[{0xc0, 0x10b, 0x8001, "6d76e548e78f5e91f1c4a43bb9bda392768b9d98c32f918009dbc7c7191ce8564052fac25166c426dcc3bd219a92dd2e3ab7eecb2bf5d53686f1d115b21ad4ab333d06f9e2e73b7cbc118360be9eade39028dce15eeee8587ba1cbc26faf22000f26cd8e0a63b610b3f4fb0530f144d95a32edd2f87974840ca78f16a4795bbeb84cce546071de107ffc0548ddb948f25bba1a011deb036546d91e6ae7585c66c281bdd849a3b530eaeb51ece31fa760"}], 0xc0}, 0x0, 0x24004090, 0x0, {0x0, r3}}, 0xfffffffa) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r0, 0x2022, 0x90, 0x3, &(0x7f0000000080)={[0x8001]}, 0x8) 17:08:09 executing program 5 (fault-call:1 fault-nth:21): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x3, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 966.444559][ T3133] FAULT_INJECTION: forcing a failure. [ 966.444559][ T3133] name failslab, interval 1, probability 0, space 0, times 0 [ 966.457493][ T3133] CPU: 0 PID: 3133 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 966.467343][ T3133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 966.477395][ T3133] Call Trace: [ 966.480670][ T3133] dump_stack_lvl+0xb7/0x103 [ 966.485266][ T3133] dump_stack+0x11/0x1a [ 966.489465][ T3133] should_fail+0x23c/0x250 [ 966.494039][ T3133] ? __kernfs_new_node+0x6a/0x330 [ 966.499529][ T3133] __should_failslab+0x81/0x90 [ 966.504648][ T3133] should_failslab+0x5/0x20 [ 966.509173][ T3133] kmem_cache_alloc+0x46/0x2e0 [ 966.513931][ T3133] __kernfs_new_node+0x6a/0x330 [ 966.518844][ T3133] ? __cond_resched+0x11/0x40 [ 966.523554][ T3133] ? mutex_lock+0x9/0x30 [ 966.527820][ T3133] kernfs_new_node+0x5b/0xd0 [ 966.532649][ T3133] __kernfs_create_file+0x45/0x1a0 [ 966.537815][ T3133] sysfs_add_file_mode_ns+0x1c1/0x250 [ 966.543241][ T3133] internal_create_group+0x2e4/0x850 [ 966.549140][ T3133] sysfs_create_group+0x1b/0x20 [ 966.553979][ T3133] loop_configure+0xa77/0xd10 [ 966.558673][ T3133] lo_ioctl+0x558/0x1210 [ 966.562902][ T3133] ? path_openat+0x19ab/0x20b0 [ 966.567670][ T3133] ? putname+0xa5/0xc0 [ 966.571797][ T3133] ? ___cache_free+0x3c/0x300 [ 966.577166][ T3133] ? blkdev_common_ioctl+0x9c3/0x1040 [ 966.582792][ T3133] ? selinux_file_ioctl+0x8e0/0x970 [ 966.588110][ T3133] ? lo_release+0x120/0x120 [ 966.592646][ T3133] blkdev_ioctl+0x1d0/0x3c0 [ 966.597148][ T3133] block_ioctl+0x6d/0x80 [ 966.601379][ T3133] ? blkdev_iopoll+0x70/0x70 [ 966.605992][ T3133] __se_sys_ioctl+0xcb/0x140 [ 966.611350][ T3133] __x64_sys_ioctl+0x3f/0x50 [ 966.616032][ T3133] do_syscall_64+0x3d/0x90 [ 966.620703][ T3133] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 966.626593][ T3133] RIP: 0033:0x466397 [ 966.630506][ T3133] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 966.650315][ T3133] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 966.658873][ T3133] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 966.666863][ T3133] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 966.675161][ T3133] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 966.683306][ T3133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 966.691455][ T3133] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 966.699681][ T3133] loop5: detected capacity change from 0 to 7 17:08:09 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000040)={{0x3, 0xd0}, 0x0, 0x2, 0x8, {0x5, 0x25}, 0x2, 0x7ff}) 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x4, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:09 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfffffffc) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:09 executing program 5 (fault-call:1 fault-nth:22): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x5, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 966.795982][ T3384] serio: Serial port pts2 [ 966.797351][ T3382] FAULT_INJECTION: forcing a failure. [ 966.797351][ T3382] name failslab, interval 1, probability 0, space 0, times 0 [ 966.813645][ T3382] CPU: 1 PID: 3382 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 966.823684][ T3382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 966.833821][ T3382] Call Trace: [ 966.837100][ T3382] dump_stack_lvl+0xb7/0x103 [ 966.841694][ T3382] dump_stack+0x11/0x1a 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x6, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 966.845860][ T3382] should_fail+0x23c/0x250 [ 966.850397][ T3382] ? __kernfs_new_node+0x6a/0x330 [ 966.855514][ T3382] __should_failslab+0x81/0x90 [ 966.860352][ T3382] should_failslab+0x5/0x20 [ 966.865127][ T3382] kmem_cache_alloc+0x46/0x2e0 [ 966.870061][ T3382] __kernfs_new_node+0x6a/0x330 [ 966.875017][ T3382] ? __cond_resched+0x11/0x40 [ 966.879805][ T3382] ? mutex_lock+0x9/0x30 [ 966.884054][ T3382] kernfs_new_node+0x5b/0xd0 [ 966.888798][ T3382] __kernfs_create_file+0x45/0x1a0 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x7, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:09 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x8, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 966.894177][ T3382] sysfs_add_file_mode_ns+0x1c1/0x250 [ 966.899558][ T3382] internal_create_group+0x2e4/0x850 [ 966.904937][ T3382] sysfs_create_group+0x1b/0x20 [ 966.909797][ T3382] loop_configure+0xa77/0xd10 [ 966.914488][ T3382] lo_ioctl+0x558/0x1210 [ 966.918735][ T3382] ? path_openat+0x19ab/0x20b0 [ 966.923508][ T3382] ? putname+0xa5/0xc0 [ 966.927630][ T3382] ? ___cache_free+0x3c/0x300 [ 966.932319][ T3382] ? blkdev_common_ioctl+0x9c3/0x1040 [ 966.937699][ T3382] ? selinux_file_ioctl+0x8e0/0x970 [ 966.942896][ T3382] ? lo_release+0x120/0x120 [ 966.947453][ T3382] blkdev_ioctl+0x1d0/0x3c0 [ 966.952832][ T3382] block_ioctl+0x6d/0x80 [ 966.957161][ T3382] ? blkdev_iopoll+0x70/0x70 [ 966.961771][ T3382] __se_sys_ioctl+0xcb/0x140 [ 966.966544][ T3382] __x64_sys_ioctl+0x3f/0x50 [ 966.971223][ T3382] do_syscall_64+0x3d/0x90 [ 966.975730][ T3382] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 966.981921][ T3382] RIP: 0033:0x466397 [ 966.985889][ T3382] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 967.005591][ T3382] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 967.014312][ T3382] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 967.022531][ T3382] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 967.030717][ T3382] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 967.038688][ T3382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 967.047106][ T3382] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 967.062554][ T3382] loop5: detected capacity change from 0 to 7 17:08:09 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000000)) read(r1, 0x0, 0x2000) 17:08:10 executing program 5 (fault-call:1 fault-nth:23): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x9, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:10 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xfffffffe) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 967.390589][ T3972] FAULT_INJECTION: forcing a failure. [ 967.390589][ T3972] name failslab, interval 1, probability 0, space 0, times 0 [ 967.403436][ T3972] CPU: 1 PID: 3972 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 967.413412][ T3972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 967.423912][ T3972] Call Trace: [ 967.427180][ T3972] dump_stack_lvl+0xb7/0x103 [ 967.431842][ T3972] dump_stack+0x11/0x1a [ 967.436337][ T3972] should_fail+0x23c/0x250 [ 967.440750][ T3972] ? __kernfs_new_node+0x6a/0x330 [ 967.445767][ T3972] __should_failslab+0x81/0x90 [ 967.450587][ T3972] should_failslab+0x5/0x20 [ 967.455331][ T3972] kmem_cache_alloc+0x46/0x2e0 [ 967.460095][ T3972] __kernfs_new_node+0x6a/0x330 [ 967.464947][ T3972] ? __cond_resched+0x11/0x40 [ 967.469739][ T3972] ? mutex_lock+0x9/0x30 [ 967.474230][ T3972] kernfs_new_node+0x5b/0xd0 [ 967.479649][ T3972] __kernfs_create_file+0x45/0x1a0 [ 967.485102][ T3972] sysfs_add_file_mode_ns+0x1c1/0x250 [ 967.490460][ T3972] internal_create_group+0x2e4/0x850 [ 967.495811][ T3972] sysfs_create_group+0x1b/0x20 [ 967.500800][ T3972] loop_configure+0xa77/0xd10 [ 967.505481][ T3972] lo_ioctl+0x558/0x1210 [ 967.509854][ T3972] ? path_openat+0x19ab/0x20b0 [ 967.514733][ T3972] ? putname+0xa5/0xc0 [ 967.518790][ T3972] ? ___cache_free+0x3c/0x300 [ 967.523450][ T3972] ? blkdev_common_ioctl+0x9c3/0x1040 [ 967.528905][ T3972] ? selinux_file_ioctl+0x8e0/0x970 [ 967.534219][ T3972] ? lo_release+0x120/0x120 [ 967.538905][ T3972] blkdev_ioctl+0x1d0/0x3c0 [ 967.543410][ T3972] block_ioctl+0x6d/0x80 [ 967.547656][ T3972] ? blkdev_iopoll+0x70/0x70 [ 967.552227][ T3972] __se_sys_ioctl+0xcb/0x140 [ 967.556815][ T3972] __x64_sys_ioctl+0x3f/0x50 [ 967.561668][ T3972] do_syscall_64+0x3d/0x90 [ 967.566132][ T3972] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 967.572117][ T3972] RIP: 0033:0x466397 17:08:10 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xa) read(r1, 0x0, 0x2000) 17:08:10 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = dup2(r0, r0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x35) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:08:10 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) recvfrom$unix(r5, &(0x7f0000000180)=""/126, 0x7e, 0x2, 0x0, 0x0) syz_io_uring_setup(0x3edd, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f00006d5000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r8, 0x7003) ioctl$RTC_UIE_OFF(r8, 0x7004) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r2, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5, 0x6000, @fd=r8, 0x101, 0x0, 0x0, 0x1, 0x1, {0x2, r9}}, 0x4) mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x80010, 0xffffffffffffffff, 0x10000000) io_uring_enter(r0, 0x2a6e, 0x2, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xa, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 967.576021][ T3972] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 967.596005][ T3972] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 967.604724][ T3972] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 967.612875][ T3972] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 967.620874][ T3972] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 967.628839][ T3972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 967.636799][ T3972] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:10 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x4) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x11) read(r1, 0x0, 0x2000) 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xb, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:10 executing program 5 (fault-call:1 fault-nth:24): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 967.674989][ T3972] loop5: detected capacity change from 0 to 7 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x10, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:10 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0xffffffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) [ 967.756446][ T4004] FAULT_INJECTION: forcing a failure. [ 967.756446][ T4004] name failslab, interval 1, probability 0, space 0, times 0 [ 967.769441][ T4004] CPU: 1 PID: 4004 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 967.779322][ T4004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 967.789516][ T4004] Call Trace: 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x11, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x14, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 967.789526][ T4004] dump_stack_lvl+0xb7/0x103 [ 967.789552][ T4004] dump_stack+0x11/0x1a [ 967.789587][ T4004] should_fail+0x23c/0x250 [ 967.789611][ T4004] ? __kernfs_new_node+0x6a/0x330 [ 967.789634][ T4004] __should_failslab+0x81/0x90 [ 967.789706][ T4004] should_failslab+0x5/0x20 [ 967.789724][ T4004] kmem_cache_alloc+0x46/0x2e0 [ 967.789746][ T4004] __kernfs_new_node+0x6a/0x330 [ 967.789823][ T4004] ? __cond_resched+0x11/0x40 [ 967.789838][ T4004] ? mutex_lock+0x9/0x30 [ 967.789853][ T4004] kernfs_new_node+0x5b/0xd0 17:08:10 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x17, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 967.789921][ T4004] __kernfs_create_file+0x45/0x1a0 [ 967.789981][ T4004] sysfs_add_file_mode_ns+0x1c1/0x250 [ 967.790061][ T4004] internal_create_group+0x2e4/0x850 [ 967.790074][ T4004] sysfs_create_group+0x1b/0x20 [ 967.790090][ T4004] loop_configure+0xa77/0xd10 [ 967.790110][ T4004] lo_ioctl+0x558/0x1210 [ 967.790128][ T4004] ? path_openat+0x19ab/0x20b0 [ 967.790149][ T4004] ? putname+0xa5/0xc0 [ 967.790166][ T4004] ? ___cache_free+0x3c/0x300 [ 967.790187][ T4004] ? blkdev_common_ioctl+0x9c3/0x1040 [ 967.790259][ T4004] ? selinux_file_ioctl+0x8e0/0x970 [ 967.790273][ T4004] ? lo_release+0x120/0x120 [ 967.790325][ T4004] blkdev_ioctl+0x1d0/0x3c0 [ 967.790354][ T4004] block_ioctl+0x6d/0x80 [ 967.790374][ T4004] ? blkdev_iopoll+0x70/0x70 [ 967.790394][ T4004] __se_sys_ioctl+0xcb/0x140 [ 967.790415][ T4004] __x64_sys_ioctl+0x3f/0x50 [ 967.790436][ T4004] do_syscall_64+0x3d/0x90 [ 967.790472][ T4004] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 967.790542][ T4004] RIP: 0033:0x466397 [ 967.790556][ T4004] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 967.790573][ T4004] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 967.790591][ T4004] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 967.790604][ T4004] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 967.790616][ T4004] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 967.790628][ T4004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 967.790640][ T4004] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 967.829706][ T4004] loop5: detected capacity change from 0 to 7 17:08:11 executing program 1: setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000040)={@loopback, @multicast2}, 0xc) set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000080)=""/4) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:11 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x300, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 968.533695][ T4592] serio: Serial port pts2 17:08:11 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0002, 0x0) r1 = socket$netlink(0x10, 0x3, 0xe) dup(r1) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0xeffffffd, 0x0, 0x0, 0xfffffffe, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r0, 0x0) ioctl$TCXONC(r2, 0x540a, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x17) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) ioctl$VT_ACTIVATE(r3, 0x5606, 0x40e1) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x200, 0x20, 0x200, 0x0, 0x12, "9419cc2b66c9cbc8e12ac442118dcbe6657f62"}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:08:11 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) write$P9_RSETATTR(r0, &(0x7f0000000080)={0x7, 0x1b, 0x1}, 0x7) ftruncate(r0, 0x7) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) futex(&(0x7f00000001c0)=0x1, 0x3, 0x2, &(0x7f0000000200), &(0x7f0000000240)=0x2, 0x1) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x64, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, @perf_config_ext={0x7, 0x2}, 0x0, 0xee3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) futex(&(0x7f00000000c0), 0x80, 0x0, &(0x7f0000000140)={0x0, 0x989680}, &(0x7f0000000180)=0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:11 executing program 5 (fault-call:1 fault-nth:25): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:11 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x500, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:11 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) getpeername$unix(r5, &(0x7f0000000180), &(0x7f0000000000)=0x6e) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 968.639466][ T4638] FAULT_INJECTION: forcing a failure. [ 968.639466][ T4638] name failslab, interval 1, probability 0, space 0, times 0 [ 968.652258][ T4638] CPU: 1 PID: 4638 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 968.662463][ T4638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 968.672722][ T4638] Call Trace: [ 968.676035][ T4638] dump_stack_lvl+0xb7/0x103 [ 968.680680][ T4638] dump_stack+0x11/0x1a [ 968.684945][ T4638] should_fail+0x23c/0x250 17:08:11 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x600, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:11 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x1000c0, 0x0) ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000080)) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) [ 968.689383][ T4638] ? __kernfs_new_node+0x6a/0x330 [ 968.694633][ T4638] __should_failslab+0x81/0x90 [ 968.699676][ T4638] should_failslab+0x5/0x20 [ 968.704184][ T4638] kmem_cache_alloc+0x46/0x2e0 [ 968.709012][ T4638] __kernfs_new_node+0x6a/0x330 [ 968.714118][ T4638] ? __cond_resched+0x11/0x40 [ 968.718797][ T4638] ? mutex_lock+0x9/0x30 [ 968.723030][ T4638] kernfs_new_node+0x5b/0xd0 [ 968.727816][ T4638] __kernfs_create_file+0x45/0x1a0 [ 968.733197][ T4638] sysfs_add_file_mode_ns+0x1c1/0x250 [ 968.738687][ T4638] internal_create_group+0x2e4/0x850 [ 968.744053][ T4638] sysfs_create_group+0x1b/0x20 [ 968.748905][ T4638] loop_configure+0xa77/0xd10 [ 968.753884][ T4638] lo_ioctl+0x558/0x1210 [ 968.758272][ T4638] ? path_openat+0x19ab/0x20b0 [ 968.763066][ T4638] ? putname+0xa5/0xc0 [ 968.767232][ T4638] ? ___cache_free+0x3c/0x300 [ 968.771951][ T4638] ? blkdev_common_ioctl+0x9c3/0x1040 [ 968.777528][ T4638] ? selinux_file_ioctl+0x8e0/0x970 [ 968.782923][ T4638] ? lo_release+0x120/0x120 17:08:11 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = dup3(0xffffffffffffffff, r0, 0x0) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) 17:08:11 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x700, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 968.787491][ T4638] blkdev_ioctl+0x1d0/0x3c0 [ 968.792006][ T4638] block_ioctl+0x6d/0x80 [ 968.796435][ T4638] ? blkdev_iopoll+0x70/0x70 [ 968.801122][ T4638] __se_sys_ioctl+0xcb/0x140 [ 968.805729][ T4638] __x64_sys_ioctl+0x3f/0x50 [ 968.810474][ T4638] do_syscall_64+0x3d/0x90 [ 968.814912][ T4638] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 968.820861][ T4638] RIP: 0033:0x466397 17:08:11 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x900, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 968.824755][ T4638] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 968.844451][ T4638] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 968.852963][ T4638] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 968.862243][ T4638] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 968.870219][ T4638] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 968.878189][ T4638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 968.886181][ T4638] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 968.911217][ T4638] loop5: detected capacity change from 0 to 7 17:08:12 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x1a) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r2 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) r3 = syz_open_dev$ttys(0xc, 0x2, 0x0) dup3(r2, r3, 0x0) read(r2, 0x0, 0x2000) 17:08:12 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x40, "00000010fa7ca7500000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:12 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xa00, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 969.396401][ T4714] serio: Serial port pts2 17:08:12 executing program 5 (fault-call:1 fault-nth:26): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:12 executing program 4: r0 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000440)='dns_resolver\x00', 0x0, &(0x7f00000001c0)="8bf4cb405751e358a4b122fe2082884e804a86d2ba4981548f411ffbc13b190d0b464132163d5d4c23c85932115fdc5f01e6537374d396c07f2a1f33a2f3df60d815fbe2b8d6c968866d9d8ff133fc3607006b430524f3091c4cf9b1a969481f7ce3731636c97a1a4a24e7c14301efd994f710713a7ecf0af5bd7f80620000000006000d0b3155293d47f882b4b1a632d072c8ffeccebe11d003264658db06adf6ac28fb1c549cb35ed28c54a9fdc99335aa192ea22342d3a45bc49b56923549343167fc02f739c6fd1e187096e7a5a443872a5ac6efc2e064348d1d187edf3f568b73452e6db99898aab14c2eaac9390a8a4d04fafc5800", 0xf8, r0) r1 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000100)="2d16e16a31380f8eb8044f69e9", 0xd, 0xfffffffffffffff8) keyctl$reject(0x13, r0, 0x400, 0x4, r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r3 = syz_open_pts(r2, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) read(r3, 0x0, 0x2000) 17:08:12 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/ata_port', 0xc01, 0x20) r1 = syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r1, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, 0x0, 0x1) io_uring_enter(r1, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r1, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xbca671f8cda49e64, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r6, 0x4, &(0x7f0000000180), 0x1) 17:08:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) r1 = gettid() clone3(&(0x7f00000002c0)={0x11220000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)=0x0, {0x39}, &(0x7f0000000180)=""/158, 0x9e, &(0x7f0000000240), &(0x7f0000000280)=[r1], 0x1, {r0}}, 0x58) wait4(r2, &(0x7f0000000340), 0x40000000, &(0x7f0000000380)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x100000001}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r3, 0x0) tkill(r1, 0x1000000000016) 17:08:12 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xb00, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 969.546308][ T4737] loop5: detected capacity change from 0 to 7 [ 969.550834][ T4738] Invalid option length (140) for dns_resolver key [ 969.574492][ T4737] FAULT_INJECTION: forcing a failure. [ 969.574492][ T4737] name failslab, interval 1, probability 0, space 0, times 0 [ 969.587130][ T4738] Invalid option length (140) for dns_resolver key 17:08:12 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x1100, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:12 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x90002, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 969.593662][ T4737] CPU: 1 PID: 4737 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 969.603383][ T4737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 969.613436][ T4737] Call Trace: [ 969.616906][ T4737] dump_stack_lvl+0xb7/0x103 [ 969.621947][ T4737] dump_stack+0x11/0x1a [ 969.626115][ T4737] should_fail+0x23c/0x250 [ 969.630605][ T4737] __should_failslab+0x81/0x90 [ 969.635387][ T4737] ? kobject_uevent_env+0x1a7/0xc40 [ 969.640642][ T4737] should_failslab+0x5/0x20 [ 969.645151][ T4737] kmem_cache_alloc_trace+0x49/0x310 [ 969.650450][ T4737] ? dev_uevent_filter+0x70/0x70 [ 969.655447][ T4737] kobject_uevent_env+0x1a7/0xc40 [ 969.662391][ T4737] kobject_uevent+0x18/0x20 [ 969.666889][ T4737] loop_configure+0xb94/0xd10 [ 969.671570][ T4737] lo_ioctl+0x558/0x1210 [ 969.675841][ T4737] ? path_openat+0x19ab/0x20b0 [ 969.680682][ T4737] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 969.686324][ T4737] ? putname+0xa5/0xc0 [ 969.690742][ T4737] ? ___cache_free+0x3c/0x300 17:08:12 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000000)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:12 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x1400, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 969.695514][ T4737] ? blkdev_common_ioctl+0x9c3/0x1040 [ 969.700885][ T4737] ? selinux_file_ioctl+0x8e0/0x970 [ 969.706083][ T4737] ? lo_release+0x120/0x120 [ 969.710627][ T4737] blkdev_ioctl+0x1d0/0x3c0 [ 969.715133][ T4737] block_ioctl+0x6d/0x80 [ 969.719457][ T4737] ? blkdev_iopoll+0x70/0x70 [ 969.724232][ T4737] __se_sys_ioctl+0xcb/0x140 [ 969.729029][ T4737] __x64_sys_ioctl+0x3f/0x50 [ 969.733722][ T4737] do_syscall_64+0x3d/0x90 [ 969.738153][ T4737] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 969.744183][ T4737] RIP: 0033:0x466397 [ 969.748118][ T4737] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 969.767971][ T4737] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 969.776419][ T4737] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 969.784404][ T4737] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 969.792817][ T4737] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 969.801090][ T4737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 969.809145][ T4737] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:12 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x1700, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:12 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000080)=0x1e7) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) ioctl$FICLONE(r4, 0x40049409, r2) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000280)) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x1000000b) read(r1, 0x0, 0x2000) 17:08:12 executing program 5 (fault-call:1 fault-nth:27): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:12 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f0000000180), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:12 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x8000, &(0x7f0000000040)=0x4, 0x9) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_setup(0x5446, &(0x7f0000000100)={0x0, 0x8552, 0x8, 0x0, 0x8f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000180)=0x0) syz_io_uring_submit(r2, r4, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2}, 0x3) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 970.224256][ T4714] serio: Serial port pts2 [ 970.270581][ T4789] serio: Serial port pts2 [ 970.272276][ T4790] loop5: detected capacity change from 0 to 7 [ 970.285002][ T4790] FAULT_INJECTION: forcing a failure. [ 970.285002][ T4790] name failslab, interval 1, probability 0, space 0, times 0 [ 970.297664][ T4790] CPU: 1 PID: 4790 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 970.307465][ T4790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 970.317528][ T4790] Call Trace: 17:08:13 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x1fbc, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 970.320810][ T4790] dump_stack_lvl+0xb7/0x103 [ 970.325540][ T4790] dump_stack+0x11/0x1a [ 970.329717][ T4790] should_fail+0x23c/0x250 [ 970.334199][ T4790] __should_failslab+0x81/0x90 [ 970.338967][ T4790] ? kobject_uevent_env+0x1a7/0xc40 [ 970.344222][ T4790] should_failslab+0x5/0x20 [ 970.348804][ T4790] kmem_cache_alloc_trace+0x49/0x310 [ 970.354114][ T4790] ? dev_uevent_filter+0x70/0x70 [ 970.359057][ T4790] kobject_uevent_env+0x1a7/0xc40 [ 970.364086][ T4790] kobject_uevent+0x18/0x20 [ 970.368657][ T4790] loop_configure+0xb94/0xd10 [ 970.373343][ T4790] lo_ioctl+0x558/0x1210 [ 970.377594][ T4790] ? path_openat+0x19ab/0x20b0 [ 970.382400][ T4790] ? putname+0xa5/0xc0 [ 970.387084][ T4790] ? ___cache_free+0x3c/0x300 [ 970.391753][ T4790] ? blkdev_common_ioctl+0x9c3/0x1040 [ 970.397236][ T4790] ? selinux_file_ioctl+0x8e0/0x970 [ 970.402625][ T4790] ? lo_release+0x120/0x120 [ 970.407148][ T4790] blkdev_ioctl+0x1d0/0x3c0 [ 970.411902][ T4790] block_ioctl+0x6d/0x80 [ 970.416158][ T4790] ? blkdev_iopoll+0x70/0x70 [ 970.420957][ T4790] __se_sys_ioctl+0xcb/0x140 [ 970.425587][ T4790] __x64_sys_ioctl+0x3f/0x50 [ 970.430626][ T4790] do_syscall_64+0x3d/0x90 [ 970.435292][ T4790] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 970.441247][ T4790] RIP: 0033:0x466397 [ 970.445136][ T4790] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 970.465469][ T4790] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 970.474089][ T4790] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 970.482177][ T4790] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 970.490576][ T4790] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 970.498536][ T4790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 970.506707][ T4790] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 971.101609][ T5373] serio: Serial port pts2 17:08:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat2(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x80000, 0x100, 0x2}, 0x18) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='mountstats\x00') ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000180)={0x0, 0x0, r2, 0x8964, 0x80000}) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x3, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r3 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(r0, &(0x7f00000001c0)='./file0\x00', 0x42000, 0x160) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x4000010, r4, 0x0) tkill(r3, 0x1000000000016) 17:08:15 executing program 4: pause() r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0xa8000) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xd) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x12a6, 0x8, 0x1, 0x4}) read(r1, 0x0, 0x2000) 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x2000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:15 executing program 5 (fault-call:1 fault-nth:28): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:15 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) getpeername(r3, &(0x7f0000000340)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f00000003c0)=0x80) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r6, &(0x7f0000000400)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r7}, 0x5) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r8, 0x6, &(0x7f0000000040)) r9 = syz_io_uring_setup(0x64c, &(0x7f0000000180)={0x0, 0x40025ad, 0x4, 0x5, 0x351, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00006d7000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000200)) ioctl$int_in(r9, 0x5452, &(0x7f0000000240)=0x8) 17:08:15 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, 0x0) r3 = dup3(r1, r2, 0x80000) r4 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000080)) setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000580)={'filter\x00', 0x7, 0x4, 0x418, 0x0, 0x220, 0x110, 0x330, 0x330, 0x330, 0x4, &(0x7f0000000040), {[{{@arp={@multicast2, @private=0xa010101, 0xff, 0xff000000, 0x7, 0x0, {@mac, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xff]}}, {@empty, {[0xff, 0xff, 0xff, 0xff, 0xff]}}, 0x400, 0x0, 0x20, 0x7, 0xad47, 0x8001, 'virt_wifi0\x00', 'caif0\x00', {0xff}, {0x7f}, 0x0, 0x8}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @multicast2, @dev={0xac, 0x14, 0x14, 0x19}, 0xf, 0xffffffff}}}, {{@arp={@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff, 0xffffff00, 0x8, 0x5, {@empty, {[0x0, 0xff, 0xff, 0xff, 0xff, 0xff]}}, {@mac=@multicast, {[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}}, 0x0, 0xda5, 0x1498, 0x6, 0x7fff, 0x101, 'tunl0\x00', 'team_slave_0\x00', {0xff}, {}, 0x0, 0x200}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @loopback, @multicast1, 0x1}}}, {{@arp={@multicast2, @empty, 0xff000000, 0x0, 0x10, 0xe, {@mac=@random="18657de3c22b", {[0xff, 0x0, 0xff, 0xff, 0xff, 0xff]}}, {@mac, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}}, 0x0, 0x4, 0x7, 0x8, 0x20, 0x6, 'bridge_slave_1\x00', 'virt_wifi0\x00', {0xff}, {0xff}, 0x0, 0x4}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}, @dev={0xac, 0x14, 0x14, 0x29}, @multicast2, 0x2}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x468) read(r1, 0x0, 0x2000) 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x3f00, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 972.608945][ T5387] loop5: detected capacity change from 0 to 7 [ 972.616136][ T5391] serio: Serial port pts2 [ 972.626725][ T5387] FAULT_INJECTION: forcing a failure. [ 972.626725][ T5387] name failslab, interval 1, probability 0, space 0, times 0 [ 972.639417][ T5387] CPU: 0 PID: 5387 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 972.649175][ T5387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xbc1f, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 972.659236][ T5387] Call Trace: [ 972.662680][ T5387] dump_stack_lvl+0xb7/0x103 [ 972.667330][ T5387] dump_stack+0x11/0x1a [ 972.671554][ T5387] should_fail+0x23c/0x250 [ 972.676012][ T5387] __should_failslab+0x81/0x90 [ 972.680791][ T5387] should_failslab+0x5/0x20 [ 972.685321][ T5387] kmem_cache_alloc_node+0x58/0x2b0 [ 972.690729][ T5387] ? __alloc_skb+0xed/0x420 [ 972.695239][ T5387] __alloc_skb+0xed/0x420 [ 972.699765][ T5387] alloc_uevent_skb+0x5b/0x120 [ 972.704542][ T5387] kobject_uevent_env+0x863/0xc40 17:08:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x4000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x34000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 972.709567][ T5387] kobject_uevent+0x18/0x20 [ 972.714073][ T5387] loop_configure+0xb94/0xd10 [ 972.718830][ T5387] lo_ioctl+0x558/0x1210 [ 972.723303][ T5387] ? path_openat+0x19ab/0x20b0 [ 972.728071][ T5387] ? putname+0xa5/0xc0 [ 972.732753][ T5387] ? ___cache_free+0x3c/0x300 [ 972.737461][ T5387] ? blkdev_common_ioctl+0x9c3/0x1040 [ 972.743038][ T5387] ? selinux_file_ioctl+0x8e0/0x970 [ 972.748258][ T5387] ? lo_release+0x120/0x120 [ 972.752812][ T5387] blkdev_ioctl+0x1d0/0x3c0 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x400300, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x1000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 972.757380][ T5387] block_ioctl+0x6d/0x80 [ 972.761657][ T5387] ? blkdev_iopoll+0x70/0x70 [ 972.766310][ T5387] __se_sys_ioctl+0xcb/0x140 [ 972.770911][ T5387] __x64_sys_ioctl+0x3f/0x50 [ 972.775512][ T5387] do_syscall_64+0x3d/0x90 [ 972.779982][ T5387] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 972.785891][ T5387] RIP: 0033:0x466397 [ 972.789807][ T5387] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 17:08:15 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x2000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 972.809572][ T5387] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 972.817989][ T5387] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 972.825967][ T5387] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 972.833932][ T5387] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 972.842258][ T5387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 972.850235][ T5387] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x129100, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:16 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x3000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:16 executing program 5 (fault-call:1 fault-nth:29): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:16 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x1, &(0x7f0000000040)=0x8, 0xfffffffffffffff9) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:16 executing program 2: r0 = syz_io_uring_setup(0x3095, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000240)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x1, 0x2, 0x0, 0x0) r5 = syz_io_uring_setup(0x89, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) r8 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)=0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10, r5}}, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x7, 0x0, &(0x7f0000000180)="63b95f314fd62c26ffe750555d92a70e8c26b50c58792112af2622186569f8b5f2f7dd9f7974d09ad7ed88f3cc0c8e58191fb310707e05ec05ec4630211d23cc5a27369eac8638df6a89b122064463b85129acfb0932740085b8d5ee18c97989c5a46a33ac2dca1b6a453a7b71cfc39b63b0609f79769ce4eaadb97f946c5d", 0x5, 0x0, 0x1, {0x1, r10}}, 0x8) syz_io_uring_submit(r1, r9, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2004, @fd_index=0x2, 0x8, 0x8, 0xb29, 0x1e, 0x0, {0x2}}, 0x8) r11 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0) syz_io_uring_submit(0x0, r9, &(0x7f0000000480)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd, 0x3, {}, 0x7, 0xa, 0x1, {0x0, r12, r3}}, 0x15ff) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x1, &(0x7f0000000080)={[0x1000000]}, 0x8) 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x4000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 973.555989][ T5997] serio: Serial port pts3 [ 973.568899][ T5999] loop5: detected capacity change from 0 to 7 [ 973.594716][ T5999] FAULT_INJECTION: forcing a failure. [ 973.594716][ T5999] name failslab, interval 1, probability 0, space 0, times 0 [ 973.607668][ T5999] CPU: 0 PID: 5999 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 973.617555][ T5999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 973.627789][ T5999] Call Trace: [ 973.631073][ T5999] dump_stack_lvl+0xb7/0x103 [ 973.635660][ T5999] dump_stack+0x11/0x1a [ 973.639815][ T5999] should_fail+0x23c/0x250 [ 973.644255][ T5999] __should_failslab+0x81/0x90 [ 973.649101][ T5999] should_failslab+0x5/0x20 17:08:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000000)={0x1, 0x0, 0x5, 0x1, 0x0, "ee012a511149d059073860ce95d812a16cfe2d"}) [ 973.653609][ T5999] kmem_cache_alloc_node_trace+0x58/0x2e0 [ 973.659325][ T5999] ? __kmalloc_node_track_caller+0x30/0x40 [ 973.665131][ T5999] ? kmem_cache_alloc_node+0x1d4/0x2b0 [ 973.670588][ T5999] __kmalloc_node_track_caller+0x30/0x40 [ 973.676233][ T5999] ? alloc_uevent_skb+0x5b/0x120 [ 973.681258][ T5999] __alloc_skb+0x187/0x420 [ 973.685672][ T5999] alloc_uevent_skb+0x5b/0x120 [ 973.690435][ T5999] kobject_uevent_env+0x863/0xc40 [ 973.695456][ T5999] kobject_uevent+0x18/0x20 [ 973.699953][ T5999] loop_configure+0xb94/0xd10 [ 973.704803][ T5999] lo_ioctl+0x558/0x1210 [ 973.709054][ T5999] ? path_openat+0x19ab/0x20b0 [ 973.713833][ T5999] ? putname+0xa5/0xc0 [ 973.717938][ T5999] ? ___cache_free+0x3c/0x300 [ 973.722641][ T5999] ? blkdev_common_ioctl+0x9c3/0x1040 [ 973.728025][ T5999] ? selinux_file_ioctl+0x8e0/0x970 [ 973.733229][ T5999] ? lo_release+0x120/0x120 [ 973.737827][ T5999] blkdev_ioctl+0x1d0/0x3c0 [ 973.742453][ T5999] block_ioctl+0x6d/0x80 [ 973.746794][ T5999] ? blkdev_iopoll+0x70/0x70 [ 973.751479][ T5999] __se_sys_ioctl+0xcb/0x140 [ 973.756102][ T5999] __x64_sys_ioctl+0x3f/0x50 [ 973.760739][ T5999] do_syscall_64+0x3d/0x90 [ 973.765273][ T5999] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 973.771183][ T5999] RIP: 0033:0x466397 [ 973.775110][ T5999] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 973.794947][ T5999] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x5000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) read(r1, 0x0, 0x2000) [ 973.803418][ T5999] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 973.811488][ T5999] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 973.819480][ T5999] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 973.827583][ T5999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 973.827600][ T5999] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 17:08:16 executing program 5 (fault-call:1 fault-nth:30): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x6000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:16 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000300)="91d3b9cfd902991a36596e9eb48cc3ff25f2a3229b9a06a0edb0c2df6b3fd1048ada5a4616049a4d32bb20e800881cefb9ee64b6b41aa807867a2216d9c12a224322adb220532ad2931e074d99dafdf4b7d5445891c1cc6ef1f0b580c6805f2e589a07fd92e0c4917773beae24980907ffd65baafa0d2f7d6212124e2a6c5344f6d9be4f68855a1d86cb52c654bd7ea5d6519e523c2442af9597dc346c8b3cfe896d8bf7458d056eeb208d8aa7c140dae32f8d", 0xb3}, {&(0x7f00000003c0)="8bf27c436b504f5902039eeec0223be0cd81c030b312d3252e672cd910b9cf8649fdcfe4ada4c68f76f34494a1dc269bc02bbdd29e518e23575f4d71cbe62ebd233918557a61c1", 0x47}], 0x2, &(0x7f0000000480)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x2e}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8001}}], 0x30}, 0x4040000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{r2, r3+60000000}, {0x77359400}}, &(0x7f0000000140)) r4 = gettid() ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000280)={0x5, 0x18, [0x40, 0x8, 0x8, 0xfffffffffffffffc], &(0x7f0000000240)=[0x0, 0x0, 0x0]}) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r5, 0x0) tkill(r4, 0x1000000000016) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=0x0) timer_settime(r6, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) timer_settime(r6, 0x1, &(0x7f00000001c0)={{r7, r8+60000000}}, &(0x7f0000000200)) 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x7000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x4, 0x8, 0x7fffffff, 0x9, 0x1, "63017aad01000000000000004b78838c3874c2"}) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x5) r3 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r1) 17:08:16 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x8000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 973.955185][ T6079] loop5: detected capacity change from 0 to 7 [ 973.987280][ T6079] FAULT_INJECTION: forcing a failure. [ 973.987280][ T6079] name failslab, interval 1, probability 0, space 0, times 0 [ 974.000123][ T6079] CPU: 0 PID: 6079 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 974.009932][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 974.009945][ T6079] Call Trace: [ 974.009952][ T6079] dump_stack_lvl+0xb7/0x103 [ 974.009976][ T6079] dump_stack+0x11/0x1a [ 974.009992][ T6079] should_fail+0x23c/0x250 [ 974.036687][ T6079] ? skb_clone+0x12c/0x1f0 [ 974.036709][ T6079] __should_failslab+0x81/0x90 [ 974.045928][ T6079] should_failslab+0x5/0x20 [ 974.045953][ T6079] kmem_cache_alloc+0x46/0x2e0 [ 974.045978][ T6079] skb_clone+0x12c/0x1f0 [ 974.060331][ T6079] netlink_broadcast_filtered+0x4fd/0xb60 [ 974.060362][ T6079] ? skb_put+0xb9/0xf0 [ 974.060378][ T6079] netlink_broadcast+0x35/0x50 [ 974.060449][ T6079] kobject_uevent_env+0x8c9/0xc40 [ 974.060466][ T6079] kobject_uevent+0x18/0x20 [ 974.060480][ T6079] loop_configure+0xb94/0xd10 [ 974.060512][ T6079] lo_ioctl+0x558/0x1210 [ 974.060531][ T6079] ? path_openat+0x19ab/0x20b0 [ 974.060551][ T6079] ? putname+0xa5/0xc0 [ 974.060564][ T6079] ? ___cache_free+0x3c/0x300 [ 974.060609][ T6079] ? blkdev_common_ioctl+0x9c3/0x1040 [ 974.060627][ T6079] ? selinux_file_ioctl+0x8e0/0x970 [ 974.060647][ T6079] ? lo_release+0x120/0x120 [ 974.060665][ T6079] blkdev_ioctl+0x1d0/0x3c0 [ 974.060683][ T6079] block_ioctl+0x6d/0x80 [ 974.132245][ T6079] ? blkdev_iopoll+0x70/0x70 [ 974.132273][ T6079] __se_sys_ioctl+0xcb/0x140 [ 974.132325][ T6079] __x64_sys_ioctl+0x3f/0x50 [ 974.132354][ T6079] do_syscall_64+0x3d/0x90 [ 974.132377][ T6079] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 974.132442][ T6079] RIP: 0033:0x466397 [ 974.132456][ T6079] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 974.132474][ T6079] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 974.132494][ T6079] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 974.132507][ T6079] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 974.132516][ T6079] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 974.132525][ T6079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 974.132536][ T6079] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 974.385664][ T7898] serio: Serial port pts2 [ 974.438567][ T7178] ================================================================== [ 974.446679][ T7178] BUG: KCSAN: data-race in __io_cqring_fill_event / io_wake_function [ 974.455368][ T7178] [ 974.457695][ T7178] write to 0xffff88814de40400 of 4 bytes by task 8023 on cpu 0: [ 974.465437][ T7178] __io_cqring_fill_event+0xfb/0x350 [ 974.471001][ T7178] io_req_complete_post+0x54/0x6a0 [ 974.476317][ T7178] io_issue_sqe+0x41b8/0x69f0 [ 974.480984][ T7178] io_wq_submit_work+0x113/0x270 [ 974.485901][ T7178] io_worker_handle_work+0x8cb/0xaf0 [ 974.491214][ T7178] io_wqe_worker+0x184/0x4b0 [ 974.495785][ T7178] ret_from_fork+0x1f/0x30 [ 974.500444][ T7178] [ 974.502899][ T7178] read to 0xffff88814de40400 of 4 bytes by task 7178 on cpu 1: [ 974.510425][ T7178] io_wake_function+0x40/0x130 [ 974.515175][ T7178] __wake_up_common+0xbc/0x130 [ 974.519983][ T7178] __wake_up+0x80/0xc0 [ 974.524044][ T7178] io_cqring_ev_posted+0x4c/0x220 [ 974.529043][ T7178] io_req_complete_post+0x405/0x6a0 [ 974.534218][ T7178] io_issue_sqe+0x41b8/0x69f0 [ 974.538868][ T7178] io_wq_submit_work+0x113/0x270 [ 974.543789][ T7178] io_worker_handle_work+0x8cb/0xaf0 [ 974.549054][ T7178] io_wqe_worker+0x184/0x4b0 [ 974.553620][ T7178] ret_from_fork+0x1f/0x30 [ 974.558065][ T7178] [ 974.560364][ T7178] value changed: 0x00000b79 -> 0x00000b7a [ 974.566141][ T7178] [ 974.568438][ T7178] Reported by Kernel Concurrency Sanitizer on: [ 974.574560][ T7178] CPU: 1 PID: 7178 Comm: iou-wrk-6006 Tainted: G W 5.13.0-syzkaller #0 [ 974.584161][ T7178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 974.594195][ T7178] ================================================================== 17:08:17 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00~\x00'}) ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x8000) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 974.674602][ T8107] serio: Serial port pts2 17:08:17 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) syz_io_uring_setup(0x2222, &(0x7f0000000180)={0x0, 0x4628, 0x2, 0x2, 0xa0, 0x0, r5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000200)) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:17 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x9000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:17 executing program 5 (fault-call:1 fault-nth:31): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:17 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000240)={@desc={0x1, 0x0, @desc4}, 0x10, 0x0, '\x00', @d}) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r2 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r3, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=0x0) timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timer_settime(r4, 0x1, &(0x7f00000000c0)={{r5, r6+10000000}}, &(0x7f0000000140)) tkill(r2, 0x1000000000016) 17:08:17 executing program 4: r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x2ac, r0, 0x400, 0x70bd26, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x44050}, 0x20040010) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCXONC(r2, 0x540a, 0x1) read(0xffffffffffffffff, 0x0, 0x2000) 17:08:17 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xa000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 974.969930][ T8123] loop5: detected capacity change from 0 to 7 [ 974.976278][ T8123] FAULT_INJECTION: forcing a failure. [ 974.976278][ T8123] name failslab, interval 1, probability 0, space 0, times 0 [ 974.989106][ T8123] CPU: 1 PID: 8123 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 974.998881][ T8123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:08:17 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xb000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:17 executing program 5 (fault-call:1 fault-nth:32): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 974.998896][ T8123] Call Trace: [ 974.998904][ T8123] dump_stack_lvl+0xb7/0x103 [ 974.998935][ T8123] dump_stack+0x11/0x1a [ 974.998957][ T8123] should_fail+0x23c/0x250 [ 974.998976][ T8123] __should_failslab+0x81/0x90 [ 974.999070][ T8123] ? call_usermodehelper_setup+0x71/0x190 17:08:17 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x10000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:17 executing program 5 (fault-call:1 fault-nth:33): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 974.999093][ T8123] should_failslab+0x5/0x20 [ 974.999109][ T8123] kmem_cache_alloc_trace+0x49/0x310 [ 974.999130][ T8123] ? __kfree_skb+0xfe/0x150 [ 974.999225][ T8123] call_usermodehelper_setup+0x71/0x190 [ 974.999301][ T8123] ? add_uevent_var+0x1c0/0x1c0 17:08:17 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) socket$inet_udp(0x2, 0x2, 0x0) timer_create(0x2, &(0x7f0000000080)={0x0, 0x20, 0x4, @thr={&(0x7f0000000140)="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", &(0x7f0000001140)="6d71c6520e02166428b96fc9573f750b5741d2db06f4a8b13adecd18737dc3fbc758197dfd900a2a12121a7e600c762178c73f40faf14bc936a4ec68f40c98d02510f89c9b5902a94a18b01310b10c7ae399d827854922cf194c8806a6270930cc4cde9061a560a1de0ec76d09936c275c1f242558301edac1b8ea35e97fb16ddfce7051aa72d6b9a33bee00a5eb1177235551d829d487212dda067570bfe93579ae3a583d4beaee263b0a9bab07ce4d84619040fcb9ff76f5"}}, &(0x7f00000000c0)=0x0) timer_settime(r1, 0x1, &(0x7f0000001200)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f0000001240)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r2 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r3, 0x0) tkill(r2, 0x1000000000016) [ 974.999316][ T8123] kobject_uevent_env+0xb29/0xc40 [ 974.999330][ T8123] kobject_uevent+0x18/0x20 [ 974.999347][ T8123] loop_configure+0xb94/0xd10 [ 974.999376][ T8123] lo_ioctl+0x558/0x1210 [ 974.999421][ T8123] ? path_openat+0x19ab/0x20b0 [ 974.999438][ T8123] ? putname+0xa5/0xc0 [ 974.999451][ T8123] ? ___cache_free+0x3c/0x300 [ 974.999503][ T8123] ? blkdev_common_ioctl+0x9c3/0x1040 [ 974.999583][ T8123] ? selinux_file_ioctl+0x8e0/0x970 [ 974.999645][ T8123] ? lo_release+0x120/0x120 [ 974.999658][ T8123] blkdev_ioctl+0x1d0/0x3c0 [ 974.999677][ T8123] block_ioctl+0x6d/0x80 [ 974.999698][ T8123] ? blkdev_iopoll+0x70/0x70 [ 974.999770][ T8123] __se_sys_ioctl+0xcb/0x140 [ 974.999788][ T8123] __x64_sys_ioctl+0x3f/0x50 [ 974.999835][ T8123] do_syscall_64+0x3d/0x90 [ 974.999905][ T8123] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 974.999983][ T8123] RIP: 0033:0x466397 [ 974.999993][ T8123] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 975.000007][ T8123] RSP: 002b:00007fdf8e1c9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 975.000066][ T8123] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397 [ 975.000079][ T8123] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 975.000091][ T8123] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 975.000104][ T8123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 975.000115][ T8123] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 [ 975.095433][ T8158] loop5: detected capacity change from 0 to 7 [ 975.095516][ T8158] FAULT_INJECTION: forcing a failure. [ 975.095516][ T8158] name failslab, interval 1, probability 0, space 0, times 0 [ 975.095537][ T8158] CPU: 0 PID: 8158 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 975.095557][ T8158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.095567][ T8158] Call Trace: [ 975.095574][ T8158] dump_stack_lvl+0xb7/0x103 [ 975.095601][ T8158] dump_stack+0x11/0x1a [ 975.095624][ T8158] should_fail+0x23c/0x250 [ 975.095706][ T8158] ? getname_flags+0x84/0x3d0 [ 975.095721][ T8158] __should_failslab+0x81/0x90 [ 975.095743][ T8158] should_failslab+0x5/0x20 [ 975.095759][ T8158] kmem_cache_alloc+0x46/0x2e0 [ 975.095781][ T8158] getname_flags+0x84/0x3d0 [ 975.095798][ T8158] do_mkdirat+0x3b/0x200 [ 975.095953][ T8158] ? syscall_trace_enter+0x153/0x290 [ 975.095975][ T8158] __x64_sys_mkdir+0x32/0x40 [ 975.095992][ T8158] do_syscall_64+0x3d/0x90 [ 975.096071][ T8158] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 975.096093][ T8158] RIP: 0033:0x4656e7 [ 975.096176][ T8158] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 975.096192][ T8158] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 975.096209][ T8158] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 975.096222][ T8158] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 975.096233][ T8158] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 975.096265][ T8158] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 975.096277][ T8158] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 975.172609][ T8189] loop5: detected capacity change from 0 to 7 [ 975.491068][ T8189] FAULT_INJECTION: forcing a failure. [ 975.491068][ T8189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 975.504117][ T8189] CPU: 0 PID: 8189 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 975.514015][ T8189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.524203][ T8189] Call Trace: [ 975.527546][ T8189] dump_stack_lvl+0xb7/0x103 [ 975.532150][ T8189] dump_stack+0x11/0x1a [ 975.536291][ T8189] should_fail+0x23c/0x250 [ 975.540710][ T8189] should_fail_usercopy+0x16/0x20 [ 975.545765][ T8189] strncpy_from_user+0x21/0x250 [ 975.550604][ T8189] getname_flags+0xb8/0x3d0 [ 975.550745][ T8713] serio: Serial port pts2 [ 975.555115][ T8189] do_mkdirat+0x3b/0x200 [ 975.555138][ T8189] ? syscall_trace_enter+0x153/0x290 [ 975.569047][ T8189] __x64_sys_mkdir+0x32/0x40 [ 975.574278][ T8189] do_syscall_64+0x3d/0x90 [ 975.578698][ T8189] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 975.584573][ T8189] RIP: 0033:0x4656e7 [ 975.588497][ T8189] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 975.608088][ T8189] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 975.616519][ T8189] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 975.624496][ T8189] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 17:08:18 executing program 1: set_mempolicy(0x2, &(0x7f0000000000)=0x100000001, 0x3) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x381040) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x80) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) read(r3, 0x0, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000000040)=0x200) r5 = fcntl$dupfd(r3, 0x0, r1) ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x16) [ 975.632594][ T8189] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 975.640604][ T8189] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 975.648635][ T8189] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 17:08:18 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0x1}, &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000340)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x114, &(0x7f0000000140)=0x6, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) syz_io_uring_setup(0x62b3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r7, 0xc400941b, 0x0) r8 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_enter(0xffffffffffffffff, 0x5a96, 0xc71a, 0x0, &(0x7f0000000380)={[0x8]}, 0x8) ioctl$VT_DISALLOCATE(r8, 0x5608) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x1, 0x0, 0x975, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r10, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x989680}, 0x1, 0x1, 0x1, {0x0, r11}}, 0x3) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:18 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x11000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:18 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)=0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r1, 0x1, &(0x7f0000000180)={{}, {r2, r3+10000000}}, &(0x7f00000001c0)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r4 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, r0, 0x0) r6 = perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, 0x0) splice(r0, &(0x7f0000000080)=0x4, r6, &(0x7f00000000c0)=0x400, 0x9, 0xb) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r5, 0x0) tkill(r4, 0x1000000000016) 17:08:18 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) syz_open_pts(r2, 0x8001) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:18 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) ioctl$TIOCGICOUNT(r1, 0x545d, 0x0) 17:08:18 executing program 5 (fault-call:1 fault-nth:34): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 975.916782][ T8760] loop5: detected capacity change from 0 to 7 [ 975.925656][ T8760] FAULT_INJECTION: forcing a failure. [ 975.925656][ T8760] name failslab, interval 1, probability 0, space 0, times 0 [ 975.938296][ T8760] CPU: 0 PID: 8760 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 975.948197][ T8760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.958257][ T8760] Call Trace: [ 975.961534][ T8760] dump_stack_lvl+0xb7/0x103 17:08:18 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x14000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:18 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000100)={0x0, 0x80000001, 0x6, 0x6, 0x1, "67bddb16ba5f6e1e92415bf96a426f2113a21a"}) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) r1 = syz_open_pts(r0, 0x4400) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x541c, &(0x7f0000000000)) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x5) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000080)={0x9, 0xa1a, 0x4a3b, 0xfffffff7, 0x9, "ced377ac8a0252ea932de434291ebe584ef6d4", 0x6}) 17:08:18 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x17000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 975.966198][ T8760] dump_stack+0x11/0x1a [ 975.970522][ T8760] should_fail+0x23c/0x250 [ 975.975036][ T8760] ? __d_alloc+0x36/0x370 [ 975.979369][ T8760] __should_failslab+0x81/0x90 [ 975.984147][ T8760] should_failslab+0x5/0x20 [ 975.984170][ T8760] kmem_cache_alloc+0x46/0x2e0 17:08:18 executing program 5 (fault-call:1 fault-nth:35): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:18 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x20000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 975.984253][ T8760] __d_alloc+0x36/0x370 [ 975.984266][ T8760] ? putname+0xa5/0xc0 [ 975.984279][ T8760] d_alloc+0x2a/0x130 [ 975.984294][ T8760] __lookup_hash+0x8f/0x180 [ 975.984313][ T8760] filename_create+0xdb/0x3c0 [ 975.984329][ T8760] do_mkdirat+0x59/0x200 [ 975.984394][ T8760] __x64_sys_mkdir+0x32/0x40 [ 975.984408][ T8760] do_syscall_64+0x3d/0x90 [ 975.984426][ T8760] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 975.984471][ T8760] RIP: 0033:0x4656e7 [ 975.984484][ T8760] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 975.984518][ T8760] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 975.984533][ T8760] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 17:08:18 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x3f000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 975.984542][ T8760] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 975.984554][ T8760] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 975.984566][ T8760] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 975.984578][ T8760] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 976.097070][ T8795] loop5: detected capacity change from 0 to 7 [ 976.185208][ T8795] FAULT_INJECTION: forcing a failure. [ 976.185208][ T8795] name failslab, interval 1, probability 0, space 0, times 0 [ 976.197966][ T8795] CPU: 0 PID: 8795 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 976.207681][ T8795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 976.217825][ T8795] Call Trace: [ 976.221106][ T8795] dump_stack_lvl+0xb7/0x103 [ 976.225722][ T8795] dump_stack+0x11/0x1a [ 976.229970][ T8795] should_fail+0x23c/0x250 [ 976.234435][ T8795] ? ext4_alloc_inode+0x27/0x300 [ 976.239392][ T8795] __should_failslab+0x81/0x90 [ 976.244246][ T8795] ? set_qf_name+0x230/0x230 [ 976.248819][ T8795] should_failslab+0x5/0x20 [ 976.253303][ T8795] kmem_cache_alloc+0x46/0x2e0 [ 976.258048][ T8795] ? ebitmap_destroy+0x91/0xa0 [ 976.262796][ T8795] ? set_qf_name+0x230/0x230 [ 976.267376][ T8795] ext4_alloc_inode+0x27/0x300 [ 976.272213][ T8795] ? set_qf_name+0x230/0x230 [ 976.277100][ T8795] new_inode_pseudo+0x38/0x1c0 [ 976.281881][ T8795] new_inode+0x21/0x120 [ 976.286024][ T8795] __ext4_new_inode+0x126/0x2f70 [ 976.290984][ T8795] ? __dquot_initialize+0x131/0x7e0 [ 976.296315][ T8795] ext4_mkdir+0x28a/0x760 [ 976.300635][ T8795] vfs_mkdir+0x2a4/0x370 [ 976.305126][ T8795] do_mkdirat+0x11d/0x200 [ 976.309491][ T8795] __x64_sys_mkdir+0x32/0x40 [ 976.314078][ T8795] do_syscall_64+0x3d/0x90 [ 976.318589][ T8795] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 976.324561][ T8795] RIP: 0033:0x4656e7 [ 976.328439][ T8795] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 976.348237][ T8795] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 976.356633][ T8795] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 976.364673][ T8795] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 976.372698][ T8795] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x9effffff, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:19 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280)) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(0xffffffffffffffff, 0x0, 0x2000) r1 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000080)=0x1c, 0x400) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000180)={&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)="cb996dce3b07fcfcc72920ef6b9917f870f29fb403cd73a81ea6d31dc3e1a24c15f379905331089de65ed8a21d616e7da1e2885f34548fff09e11f6c4b9da8c7e87a92c59410eb3700ce", 0x4a, r1}, 0x68) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$RTC_UIE_OFF(r2, 0x7004) preadv(r2, &(0x7f00000023c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/155, 0x9b}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x3, 0x0, 0xea) sendfile(0xffffffffffffffff, r0, &(0x7f00000002c0)=0xff, 0x8001) [ 976.380664][ T8795] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 976.388713][ T8795] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 17:08:19 executing program 5 (fault-call:1 fault-nth:36): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:19 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r5 = syz_io_uring_setup(0x89, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2}, &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000100)) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r4, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)=@ipx, 0x80, &(0x7f0000000400)=[{&(0x7f0000000340)=""/168, 0xa8}], 0x1, &(0x7f0000000440)=""/120, 0x78}, 0x0, 0x40002120, 0x0, {0x0, r7}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x40000002, 0x0, {0x3, r10}}, 0x0) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) r11 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_QGROUP_LIMIT(r11, 0x8030942b, &(0x7f0000000180)={0x1f, {0x31, 0x2, 0x4, 0x7fffffff, 0x7}}) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:19 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x2, 0x10001, 0xfffffffe, 0xc, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000180)) read(r1, 0x0, 0x2000) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0) ioctl$VT_DISALLOCATE(r3, 0x5608) r4 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$TCSETSF(r4, 0x5404, &(0x7f0000000240)={0xcb2, 0x6, 0x20, 0x1, 0xc, "79242834ec68dacc088e8a1c63f56ce2b70119"}) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETSF(r2, 0x5404, &(0x7f00000001c0)={0x3, 0x6, 0x80000000, 0x9, 0x13, "74aec34f995c205d084374348af2b74d3a1508"}) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.log\x00', 0x400, 0x5) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r5, 0x6, &(0x7f0000000040)) openat(r5, &(0x7f0000000080)='./file0\x00', 0x501000, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r6, 0x5608) flistxattr(r6, &(0x7f00000002c0)=""/170, 0xaa) 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xbc1f0000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:19 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = open(&(0x7f0000000000)='./bus\x00', 0x149842, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x2812, r3, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000140)={0x20}) pwrite64(r4, &(0x7f00000002c0)='_', 0x1, 0x0) write$cgroup_int(r4, &(0x7f0000000000), 0xffffff6a) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r1) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r5, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x6}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000800}, 0x400c0) gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 17:08:19 executing program 1: set_mempolicy(0x4000, &(0x7f0000000000)=0x2, 0x3) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) [ 976.871684][ T8863] serio: Serial port pts2 [ 976.874184][ T8866] loop5: detected capacity change from 0 to 7 [ 976.886558][ T8866] FAULT_INJECTION: forcing a failure. [ 976.886558][ T8866] name failslab, interval 1, probability 0, space 0, times 0 [ 976.899211][ T8866] CPU: 1 PID: 8866 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 976.909006][ T8866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xeaffffff, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xefffffff, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 976.919064][ T8866] Call Trace: [ 976.922340][ T8866] dump_stack_lvl+0xb7/0x103 [ 976.926932][ T8866] dump_stack+0x11/0x1a [ 976.931186][ T8866] should_fail+0x23c/0x250 [ 976.935685][ T8866] ? security_inode_alloc+0x30/0x180 [ 976.940980][ T8866] __should_failslab+0x81/0x90 [ 976.941007][ T8866] should_failslab+0x5/0x20 [ 976.941022][ T8866] kmem_cache_alloc+0x46/0x2e0 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xf0ffffff, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 976.941119][ T8866] security_inode_alloc+0x30/0x180 [ 976.941139][ T8866] inode_init_always+0x20b/0x420 [ 976.941155][ T8866] ? set_qf_name+0x230/0x230 [ 976.941168][ T8866] new_inode_pseudo+0x73/0x1c0 [ 976.941182][ T8866] new_inode+0x21/0x120 [ 976.941199][ T8866] __ext4_new_inode+0x126/0x2f70 [ 976.941217][ T8866] ? __dquot_initialize+0x131/0x7e0 [ 976.941318][ T8866] ext4_mkdir+0x28a/0x760 [ 976.941336][ T8866] vfs_mkdir+0x2a4/0x370 [ 976.941405][ T8866] do_mkdirat+0x11d/0x200 [ 976.941521][ T8866] __x64_sys_mkdir+0x32/0x40 17:08:19 executing program 5 (fault-call:1 fault-nth:37): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 976.941602][ T8866] do_syscall_64+0x3d/0x90 [ 976.941621][ T8866] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 976.941716][ T8866] RIP: 0033:0x4656e7 [ 976.941733][ T8866] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 976.941747][ T8866] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xfeffffff, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xffffff7f, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 976.941764][ T8866] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 976.941854][ T8866] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 976.941867][ T8866] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 976.941877][ T8866] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 976.941889][ T8866] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 977.080467][ T8906] loop5: detected capacity change from 0 to 7 [ 977.146016][ T8906] FAULT_INJECTION: forcing a failure. 17:08:19 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xffffff9e, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 977.146016][ T8906] name failslab, interval 1, probability 0, space 0, times 0 [ 977.158833][ T8906] CPU: 0 PID: 8906 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 977.168552][ T8906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 977.178607][ T8906] Call Trace: [ 977.181899][ T8906] dump_stack_lvl+0xb7/0x103 [ 977.186503][ T8906] dump_stack+0x11/0x1a [ 977.195355][ T8906] should_fail+0x23c/0x250 [ 977.199779][ T8906] ? sidtab_sid2str_get+0x9c/0x130 [ 977.204901][ T8906] __should_failslab+0x81/0x90 [ 977.209762][ T8906] should_failslab+0x5/0x20 [ 977.214704][ T8906] __kmalloc_track_caller+0x64/0x340 [ 977.220006][ T8906] kmemdup+0x21/0x50 [ 977.223895][ T8906] sidtab_sid2str_get+0x9c/0x130 [ 977.228828][ T8906] security_sid_to_context_core+0x1cb/0x2d0 [ 977.234863][ T8906] security_sid_to_context_force+0x2f/0x40 [ 977.240787][ T8906] selinux_inode_init_security+0x49e/0x550 [ 977.246695][ T8906] security_inode_init_security+0xd7/0x260 [ 977.252553][ T8906] ? ext4_init_security+0x40/0x40 [ 977.257582][ T8906] ext4_init_security+0x30/0x40 [ 977.262452][ T8906] __ext4_new_inode+0x29a1/0x2f70 [ 977.267475][ T8906] ext4_mkdir+0x28a/0x760 [ 977.271877][ T8906] vfs_mkdir+0x2a4/0x370 [ 977.276197][ T8906] do_mkdirat+0x11d/0x200 [ 977.280582][ T8906] __x64_sys_mkdir+0x32/0x40 [ 977.285316][ T8906] do_syscall_64+0x3d/0x90 [ 977.289857][ T8906] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 977.295925][ T8906] RIP: 0033:0x4656e7 [ 977.299917][ T8906] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.319624][ T8906] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 977.328028][ T8906] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 977.336007][ T8906] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 977.343975][ T8906] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 977.351929][ T8906] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 977.360056][ T8906] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 977.695649][ T8863] serio: Serial port pts2 17:08:20 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0x0, 0x20, 0x0, 0xfffffffd}, &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a68, 0x2, 0x2, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x8957, 0x1, 0x0, 0x0) r5 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r5, 0x5608) ioctl$int_out(r5, 0x2, &(0x7f0000000000)) shutdown(r3, 0x1) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x8103, 0x100) ioctl$KDGKBLED(r5, 0x4b64, &(0x7f00000001c0)) r6 = fcntl$dupfd(0xffffffffffffffff, 0x406, r4) io_uring_enter(r6, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xffffffea, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:20 executing program 5 (fault-call:1 fault-nth:38): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:20 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$TCGETS(r1, 0x5401, &(0x7f0000000040)) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "030000010000000000000000004000"}) r3 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x2, 0x7, 0x401, 0x2, 0xc, "1256aa0bba21acb1d6238f031286971489ab71"}) read(r3, 0x0, 0x2000) 17:08:20 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x20) read(r1, 0x0, 0x2000) 17:08:20 executing program 0: mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)=0x0) clock_gettime(0x0, &(0x7f00000004c0)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000880)={{0x77359400}, {r1, r2+60000000}}, &(0x7f00000008c0)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_UIE_OFF(r3, 0x7004) preadv(r3, &(0x7f0000000780)=[{&(0x7f0000000380)=""/145, 0xfffffffffffffd66}, {&(0x7f0000000440)=""/36, 0x19}, {&(0x7f00000005c0)=""/102, 0x67}, {&(0x7f0000000500)=""/135, 0x87}, {&(0x7f0000000640)=""/127, 0x7f}, {&(0x7f0000000800)=""/111, 0x73}, {&(0x7f0000000980)=""/203, 0xbd}], 0x7, 0x1, 0x10001) recvmmsg(0xffffffffffffffff, &(0x7f0000002600)=[{{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000900)=""/94, 0x5e}, {&(0x7f0000000a80)=""/141, 0x8d}, {&(0x7f0000000b40)=""/8, 0x8}, {&(0x7f0000000b80)=""/61, 0x3d}, {&(0x7f0000000bc0)=""/38, 0x26}, {&(0x7f0000000c00)=""/63, 0x3f}, {&(0x7f0000000c40)=""/4096, 0x1000}], 0x7, &(0x7f0000001cc0)=""/64, 0x40}, 0x1}, {{&(0x7f0000001d00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000002000)=[{&(0x7f0000001d80)=""/101, 0x65}, {&(0x7f0000001e00)=""/45, 0x2d}, {&(0x7f0000001e40)=""/27, 0x1b}, {&(0x7f0000001e80)=""/127, 0x7f}, {&(0x7f0000001f00)=""/177, 0xb1}, {&(0x7f0000001fc0)=""/28, 0x1c}], 0x6, &(0x7f0000002080)=""/74, 0x4a}, 0x8}, {{&(0x7f0000002100)=@pppoe, 0x80, &(0x7f0000002380)=[{&(0x7f0000002180)=""/181, 0xb5}, {&(0x7f0000002240)=""/76, 0x4c}, {&(0x7f00000022c0)=""/47, 0x2f}, {&(0x7f0000002300)=""/90, 0x5a}], 0x4, &(0x7f00000023c0)=""/131, 0x83}, 0x200}, {{&(0x7f0000002480)=@generic, 0x80, &(0x7f00000025c0)=[{&(0x7f0000002500)=""/169, 0xa9}], 0x1}, 0xfffffffe}], 0x4, 0x2020, &(0x7f0000002740)) r4 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x1, &(0x7f0000000080)={0x0, 0xa, 0x4, @thr={&(0x7f0000000140)="9a9987c01e774336079e86b66af1151343e77be285e17f32365b618d463ca7a995eeab268af5d04176375ba31b5d502a05263c6c7ba42642d613c5abaaf2cae7f28aac436cb1d7c6fde8d9ef59b1869b62f4fe0abf0d7d94a56ef5801b7273c7c8dea34191f9088d57000000d228effb6c3594df2631005f10af7d936e40d867c1325fa645455d601421b3d37e86cd38ca34", &(0x7f0000000200)="cd2ecfc040d891cdbeeaa59d36768571007658fa6fcf2a9e1450900e065d4dce26c36d6a1c3d6b4a2386af844e99b43dc8f90e2be8c86b1283a20fd89321cb99e8128321be41c9304d56047b544fb2dda44a99d76b2961be04ca8959d89977bf65ef96cf975210859ef080b6fda54cadfce99daaa56059707c4ee27e9f691c326e79f7e8287a660a224e671de4139d0131422d90cd9496a7c3bc7e73646b1c38a31fff52930dd81a94ad0a389620e683cae52ad5720ac05a5378ac0800e56b4bb42e6b1e567e94af77144f0fd637d90f4c2baf081b96ce07cf00000000000000"}}, &(0x7f00000000c0)=0x0) r7 = gettid() wait4(r7, &(0x7f0000000480), 0x1000000, &(0x7f00000006c0)) timer_settime(r6, 0x0, &(0x7f0000000300)={{0x77359400}}, &(0x7f0000000340)) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r5, 0x0) tkill(r4, 0x1000000000016) [ 977.838271][ T8954] loop5: detected capacity change from 0 to 7 [ 977.858149][ T8954] FAULT_INJECTION: forcing a failure. [ 977.858149][ T8954] name failslab, interval 1, probability 0, space 0, times 0 [ 977.858188][ T8954] CPU: 1 PID: 8954 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xffffffef, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 977.858207][ T8954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 977.858217][ T8954] Call Trace: [ 977.858223][ T8954] dump_stack_lvl+0xb7/0x103 [ 977.858265][ T8954] dump_stack+0x11/0x1a [ 977.858344][ T8954] should_fail+0x23c/0x250 [ 977.858364][ T8954] ? kcalloc+0x32/0x50 [ 977.858383][ T8954] __should_failslab+0x81/0x90 [ 977.858401][ T8954] should_failslab+0x5/0x20 [ 977.858418][ T8954] __kmalloc+0x66/0x340 [ 977.924797][ T8954] ? chksum_update+0x39/0x50 17:08:20 executing program 5 (fault-call:1 fault-nth:39): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 977.924827][ T8954] kcalloc+0x32/0x50 [ 977.924910][ T8954] ext4_find_extent+0x21c/0x7f0 [ 977.924923][ T8954] ext4_ext_map_blocks+0xd9/0x1f00 [ 977.924937][ T8954] ? __down_read_common+0x16d/0x530 [ 977.924948][ T8954] ? percpu_counter_add_batch+0x69/0xd0 [ 977.924962][ T8954] ? ext4_es_lookup_extent+0x206/0x490 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xfffffff0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 977.925045][ T8954] ext4_map_blocks+0x1be/0xef0 [ 977.925056][ T8954] ext4_getblk+0xb1/0x3d0 [ 977.925066][ T8954] ? __ext4_new_inode+0x2aed/0x2f70 [ 977.925077][ T8954] ext4_bread+0x28/0x100 [ 977.925087][ T8954] ext4_append+0xd1/0x1c0 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0xfffffffe, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 977.925115][ T8954] ext4_init_new_dir+0x177/0x500 [ 977.925124][ T8954] ext4_mkdir+0x329/0x760 [ 977.925134][ T8954] vfs_mkdir+0x2a4/0x370 [ 977.925178][ T8954] do_mkdirat+0x11d/0x200 [ 977.925191][ T8954] __x64_sys_mkdir+0x32/0x40 [ 977.925248][ T8954] do_syscall_64+0x3d/0x90 [ 977.925262][ T8954] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 977.925290][ T8954] RIP: 0033:0x4656e7 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x2, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 977.925299][ T8954] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.925309][ T8954] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 977.925320][ T8954] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 977.925327][ T8954] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 977.925334][ T8954] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 977.925341][ T8954] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 17:08:20 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_WRITEV={0x2, 0x5, 0x6000, @fd, 0xfffffffffffffffc, &(0x7f0000000500)=[{&(0x7f0000000180)="724318d63666ad0bee6f723576e2fdac81d113fa08c1e0be003876d6e243be182762591362a93a62a155ca084717265abf6d823a17de90877a56276c3945e4858e8ae220a4f9ac4a6348f42b220957134881a9d63a5a066275d9dfbacae88014a5458f98b636c5473e9a483840c811f5b6f634fb657283df0d0ca38befb33b716e5aabeec7341133dd", 0x89}, {&(0x7f0000000340)="a26f0f1d229316db9ffb6694b4df2d8916f9ea32344c54507afd9832d7e1590a01729c1237403612095eb7ddbdd92a077fa46df62bf8962dc879b4518a10bebdbe94a08ad3b880638b6e6cc221", 0x4d}, {&(0x7f0000000680)="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", 0x1000}, {&(0x7f00000003c0)="ce18cb45842cdf867d24d7a09e516cb0c7dc0ef90d645a1c1a2882dceb58d4cfae19a0c68030044076d264bbe624615ce1dc43defe98023600356f4efe719bc102f3d70c8905083ac560fddc99dbf96d9ad9d135a6eb", 0x56}, {&(0x7f0000000000)="22b3cfc6ca62cb1412", 0x9}, {&(0x7f0000000440)="c6e7cd55b1152e0d51879dac9b96db25d0aeec15136aa55f4e1bd51b5f89b75cea5803d88cd2a08af511473503c79c0cfc974f1589fc7d470eb987b42f5799e9489ac1b97e31287e8f8b38db4102b820c0cce424dc44c637929a06867ee4b659f15fc272a956ad50561ea76569e09f7453afabcc3cfb8cfa0b63094d8621bc235b53e5c55e3d803acc", 0x89}], 0x6, 0x26, 0x0, {0x0, r4}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x6004, @fd=r3, 0x1a, 0x20, 0x629, 0x1, 0x0, {0x0, r5}}, 0x9) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) [ 977.925347][ T8954] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 978.031241][ T9001] loop5: detected capacity change from 0 to 7 17:08:20 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x3, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:20 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r2, 0x0, 0x2000) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r3, 0x6, &(0x7f0000000040)) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000000)={0x114, @time={0x5, 0xfffffe01}, 0x0, {0x0, 0x9}, 0x0, 0x1}) 17:08:20 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0xffffffff, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) set_mempolicy(0x8003, &(0x7f0000001380)=0x1, 0x3ff) ioctl$RTC_UIE_OFF(r1, 0x7004) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0) preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/187, 0xbb}, {&(0x7f0000000040)=""/91, 0x5b}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/252, 0xfc}], 0x4, 0x1ff, 0x0) r3 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2) read(r3, 0x0, 0x2000) [ 978.194192][ T9001] FAULT_INJECTION: forcing a failure. [ 978.194192][ T9001] name failslab, interval 1, probability 0, space 0, times 0 [ 978.206858][ T9001] CPU: 0 PID: 9001 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 978.216643][ T9001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 978.226696][ T9001] Call Trace: [ 978.229975][ T9001] dump_stack_lvl+0xb7/0x103 [ 978.234585][ T9001] dump_stack+0x11/0x1a [ 978.238776][ T9001] should_fail+0x23c/0x250 17:08:21 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x4, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 978.243201][ T9001] ? __es_insert_extent+0x51f/0xe70 [ 978.248427][ T9001] __should_failslab+0x81/0x90 [ 978.253199][ T9001] should_failslab+0x5/0x20 [ 978.253217][ T9001] kmem_cache_alloc+0x46/0x2e0 [ 978.253239][ T9001] ? iput+0x1bf/0x580 [ 978.253257][ T9001] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 978.253292][ T9001] __es_insert_extent+0x51f/0xe70 [ 978.253310][ T9001] ? kcalloc+0x32/0x50 [ 978.253324][ T9001] ? __kmalloc+0x32c/0x340 [ 978.253389][ T9001] ? kcalloc+0x32/0x50 [ 978.253403][ T9001] ext4_es_insert_extent+0x1bb/0x19d0 [ 978.253424][ T9001] ? ext4_ext_convert_to_initialized+0xf50/0xf50 [ 978.253449][ T9001] ext4_ext_map_blocks+0xf79/0x1f00 [ 978.253493][ T9001] ? __down_read_common+0x16d/0x530 [ 978.253511][ T9001] ? percpu_counter_add_batch+0x69/0xd0 [ 978.253534][ T9001] ? ext4_es_lookup_extent+0x206/0x490 [ 978.253555][ T9001] ext4_map_blocks+0x1be/0xef0 [ 978.253577][ T9001] ext4_getblk+0xb1/0x3d0 [ 978.253598][ T9001] ? __ext4_new_inode+0x2aed/0x2f70 [ 978.253613][ T9001] ext4_bread+0x28/0x100 [ 978.253626][ T9001] ext4_append+0xd1/0x1c0 [ 978.253689][ T9001] ext4_init_new_dir+0x177/0x500 [ 978.253706][ T9001] ext4_mkdir+0x329/0x760 [ 978.253721][ T9001] vfs_mkdir+0x2a4/0x370 [ 978.253736][ T9001] do_mkdirat+0x11d/0x200 [ 978.253751][ T9001] __x64_sys_mkdir+0x32/0x40 [ 978.253834][ T9001] do_syscall_64+0x3d/0x90 [ 978.253857][ T9001] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 978.253879][ T9001] RIP: 0033:0x4656e7 [ 978.253889][ T9001] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 978.253948][ T9001] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 978.253965][ T9001] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 978.253977][ T9001] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 978.253988][ T9001] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 978.253999][ T9001] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 978.254008][ T9001] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 17:08:23 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) futex(&(0x7f0000000080)=0x1, 0x8b, 0x1, &(0x7f0000000140)={r3, r4+60000000}, &(0x7f0000000180), 0x2) 17:08:23 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x5, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:23 executing program 5 (fault-call:1 fault-nth:40): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:23 executing program 2: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) r1 = syz_io_uring_setup(0x187, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x23, 0x0, r0}, &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r1, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, 0x0, 0x1) io_uring_enter(r1, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r4, 0x1) io_uring_enter(r1, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:23 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x2aa802) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000080)={0x4, 0x9, 0xffffff01, 0x5, 0x12, "29246bac0e314e09e9aef5ac3f69b9e3cce2a2"}) read(r1, 0x0, 0x2000) 17:08:23 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000480)={0x536e, 0x1, 0x0, 0x2, 0x6, "5fcdbee95006d11b"}) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000040)) openat$incfs(r1, &(0x7f0000000080)='.pending_reads\x00', 0x480401, 0x107) r2 = syz_open_pts(r0, 0x7fc630f6062bb26a) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000000180)={{'\x00', 0x3}, {0x8}, 0x152, 0x0, 0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)="6f62d9601e325ef6081e16ff21c14aa1bf7013f6057cd666ed4c1b64de603b7367a2eb370d1589502169f203167171022781fee22cf5fac969ea4dd268c893242f62a4db84cbea3fbad9fd40c787f839146abb40423b5fd975fb58e94aad8578e49d37b66faf21300d6917b72a999ca3f16c40458b438eb33594717cb0d8ddf6803f5ac2211772e7ee98ddda95202131a5aa", 0x92, 0x0, &(0x7f0000000340)={0x2, 0xe0, {0x0, 0xc, 0x68, "70481003cf220bdbe2d3f0ceffd0866cdd908b7fed8344b3b45f7394e4fec66329a7286318723d071d3c3f65259ccd76b48c1cef7d3cbea7c087042dae94a9344cb41ea19e271b0992e4d225818c548717513baaf278411597446fbb5982775e77238477b0d6b446", 0x6b, "052b9e955b9eceb4549fa55906617c4ffb146aef1bee6634906ca51877abd567827faf2d971b3e7b94e4366499079e46fd55458c4ff1ac610fc41794681b7f104fb8e3442a0cc23d00d3c314504f3deaa52f473bdabf3ff2add9d1bb5be94a02b8a546b9c0d605f7d4b757"}, 0x1f, "54918470e55638aac99ab4d7ac516b725d69618268b1737d10a55283fe4ada"}, 0x10b}) read(r2, 0x0, 0x2000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x5afbecd161e81d1b, r4, 0xda916000) 17:08:23 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x6) 17:08:23 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x6, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:23 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r2, 0x6, &(0x7f0000000040)) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/zoneinfo\x00', 0x0, 0x0) fcntl$lock(r4, 0x6, &(0x7f0000000040)) write$cgroup_type(r4, &(0x7f0000000080), 0x9) ioctl$RTC_UIE_OFF(r3, 0x7004) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x60004001}) [ 980.857617][ T9113] loop5: detected capacity change from 0 to 7 [ 980.889250][ T9113] FAULT_INJECTION: forcing a failure. [ 980.889250][ T9113] name failslab, interval 1, probability 0, space 0, times 0 [ 980.901924][ T9113] CPU: 0 PID: 9113 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 980.911642][ T9113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 980.912574][ T9125] serio: Serial port pts2 [ 980.921757][ T9113] Call Trace: [ 980.921769][ T9113] dump_stack_lvl+0xb7/0x103 [ 980.921798][ T9113] dump_stack+0x11/0x1a [ 980.938783][ T9113] should_fail+0x23c/0x250 [ 980.943236][ T9113] ? __es_insert_extent+0x51f/0xe70 [ 980.948436][ T9113] __should_failslab+0x81/0x90 [ 980.953640][ T9113] should_failslab+0x5/0x20 17:08:23 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x2, "00060020000000000600000000000000000400"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) r2 = socket$netlink(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r2, &(0x7f0000003e80)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000003e40)={&(0x7f0000001280)={0x2b8c, 0x0, 0xb00, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, [@fils_params=[@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x2}, @NL80211_ATTR_FILS_ERP_REALM={0x1f, 0xfa, "305092e146cf43f7d9110311588ba826534669f0b48556b635077d"}, @NL80211_ATTR_FILS_ERP_RRK={0x1004, 0xfc, "f3e40d77a4106cb660f6b9c83ea823d7449a78f3622a7b9d04be03cfe558b8c7aa6d81e04ade10f94d56ba4eef4f5b25e80ec5e9b99d2d1ea345aad9477518a4e53bd48a5ad91d2ba2fc9c4df1f2c841f3da51ec09bc77cd65879078b568fe5d88397c1a4765f56c3627ebc965b2fdf430bcd0bef12ab3db6ebee6ec8a33d9f90eb81b7c11bc9728b670ba7696b3e2385e697cf5edb2d4e31d3623f55e8f85f38ed7f0fbbe5c0e5736c356a9a6d0a184d23cfca38e3e6f3e260d748645bf45144869290c886a1b0c891cff11a46e934816159ced595a96412b25763bc8ed3a4985d29399bb36f87861a164a06dfb06b9e87abae2ad8b005a68d7340a26fd76e92f9382c12de18fa94ab086b73d593a13845ff4a695e9d48abfd8415b0b24d109c37cf424f8fb126e875dba74be803ec5206d2b1d1351b627851305123c1e3274be019933e55068de3cd93b59879f3a747fcdf95ae202e6ab6de951be47478711d5df5b03466c146f2ada2c78256ccebea0d6afd3a22f5ef1196760a2128055295004837018ced7278ab425bc2faa2c673b2948cc8058d6d70bc67e310e8067d629458dfc4a190c11df28fddb4831799bc8d35058d703a72ba58620d36057437b65bbdb7f135c48f512b2df6cf46e65b0d439808a6ab20f64f2ec617dd4b1b2831d1c210e48fb0936228bc6e204319746f2c484139b8facbc7e42c8d38ae120ab82fdc5821f85c723c7a07d26b1e18c0167465a8be468d61d0d7f994ecf24e6c69a523ea6aa498c1bd5b71fd6a86a87ae396dc657bd2e7d3c7b94ee2cbddab08e5702b4fa600a2ac72b966b90ba627179ddafb61f8a9b85705b48deca1495002e598c449d6b4fb847a127b18f676a1ecbab4ed3be2ec109192d2eaa11d0dd33792b21b7fab2b329ac48d3b54ff26da53d3815ed3c0d46ec7b6d348e6c31484e12a30fb3a2a59e8378d4a7137023d6c15bb17b3296b8c1e771986fa0b244468f02d544ed98bdcc6fde52905085865e4c7438357acdaac738b6b4f99f699fcd677369f0b6914701dac5d4ad63f830b7ea11ed99120ec01dde276d458024728a24251ee2bf436faae7e380d5eb6ea42c65f3e87fa154c18ec4ed313c26c2e5f7f6d46a9152e3f6ff745f3a0d903ebc626cfcdb363f9801418bb7404cf3e8c4e3b30d80cd07828db5a6dedee0355c27c494980911e561866165939e5fa1918e314ca10c6071e3001a44d021e2001c234fa9848d4e33d9873fda771fe382bdb43874e1489f73ccb941309177e8a269910ea354e6563fca4b69dbaebf4ee5f16e25e2643fd149d38c76252954a98e160b6cbdcddf9d6a96a58c49f16125665ab7aae8973b0c7e7803cd31114cc4e7c51f13052fd9841890c81cbe8845b2336205db879c78bba5939b82efc26bd9b5cf14cc35a39db1bc36e91dd9e68b53de7178988d14577a965c27cc2ebd4f6b21c956ec25ecf96f3a964617d58c6aa0a94cc5e7a8cbafc3feb5b00984d7a010a81a304ba7ca0deb1cbd960664674c9b8b65ef6ee68a19fd4588930a77ad42072ef7195c29a5d105e0a2113a722520a6b3c03d48701796ce9404e74d852d331c8653731b32b4e867eb554bd738524fba30cf400a1543d7ccf4dd23145ab02f3fba2b273ce7ae4f0ef730fa367eab2665156044429dfa569b519fd5763006452adfa054e09ec013f5f1d46e12e781723373a3ab0c9b165a233bd5e65dd3eb1913b5cdc5d67693e50ecbad3a0ce65f3ff7d6b8a3538c3051907ecb44f1c8065cfa0225d0ab19bfb266f8b3da87fd5cf7f946e71762ded9b2515462d56d96ad8e9ec302483af43e8f89114f1e0f3ec72df01e6610e5eefa31e707f862b6f5281dba262faa125be1002990a97ce8c039d0407a47e798be10bac37c63bf71cb3815af94bc1cd980d3242c0b06a57132e5f3c32ba1823e8248889148504df81df2fb0c1557eda33c589638225593ab3bb66959df6b4a69f09d453b4be255c037725fe0f8ed32ad06f17a1664f61eaecb9bfc22287f0edb4a677b569084e6a0155d8b5cc23d25d9dba60c3bfcd8013a09cf66e6bc6ed1a182aa2085d8f2eeb3e30864724f97f2549029648dfdc215c0d5f2cf9cd06a0639b8be3358da85ee6a9e5d48e26067c747a77387905ac9341fa0875542ec714ab30f5891fc39852affb1520585105254d530bd761de7f9ee1f5ff7d3f4f97bac30d12f4b0e02141c50208a8c14b63d791514c87f4a77cf14213e3adb501d2b0b32afd49da6bd2c2b6bab2b12860f8e131d3b5cc277fa66819857568bf3210d54aaedd74eba8833d2d42e8251158d828da72b7bb7c3278f6723858793a459db3e966eeb1b95edd35f1783dbc7117310b6f233fe8861f8e1e9ba28830eea45e85c183720eebf9ff700965c0ea22b1a41db38811b6d5cf9a2be58c536043f1dff8595f07275a140e32586673cecec3a2f8904556a120cdb24c9260533c395418fa1089768f5596b21d77070053289c7f8a7ede708cd2a89d4bc6c15c5c35d43a4aa6441fe0ed9302f3f6525e5b234e24152e973234d83d0a898118123857828bb5eefeb8be0b1f3ce57c20b780b89c2be5223c4b73d17bb3c2102af608162cd599106466558fd15bbc1dd279b35de76eed724f2613a955997b429c7a325596d27f1f1f6eead16dad0d41745e5f54ff5694849e97d605f09a742109c5b726f7b9d677ca25c62bfbb8a455c4ba242b9d404ed99776f15ac3f6abc1f50541c42585ba97502eec205c5b753b4f23d33a2a661c1dceb5b4cf9c54468337c50d2cecc9c7f5d8109adb5ac479bdc4bc14219960ba3c2ed87aa98f7d38f603dd095cb57849879a19aa55eee30e501996513bc82733da8f9127e5a4f8ad0a30b6d275a08d6d3f155635f5eaf6f75d1c9a121859a697e860b4e3a0bb1316a49358bcc6ea2b4e2d49493a92675bf5c7b1ae595d40f1b10ef185018de74098e2db5da15dcf4c8f70ae2f710179caaa6c060f743e2ca95a03979cef6b2c74ada61657ddd214fc1a1e67c845d741b8396657bcd2935abc2fc21ae6c0c9510c8f0340f19daeecba29a1978358b627425f7629b287028adf4b27c4422a7da8fd0ab849627f35fe5df369c6e1515d2d96bd5684b63da2bd16c78e4d1c566bd6c4650aa0b7e3054affb0cafb33a16d52d981997b5cd655f505944aad839cdd445136a2064de659cf4d5a111ad091d986b56ea133c04e209dc0e77cc772afc9d40d8ea0d84a75058a4de8c75c8e7d11e5150212cb1ae98429ce30f540dc2bf58006ec73b07cde03f8520fe6ef880ef7aefd6b8d1852177069e2bb8373ea69f844a3fe661aedd7ad764b023a7570eaa84ff4b79ff32e764ddd49bb5df12af2299ec5816bc852355868775f9e23788a726e207af004717b1bf62a1aa140aca072e1db3951888014552f109b1e7ac8f1d0063688bfbad1aa29cac1dc55ed1b54c479f9528a7c31d8b3e823efbf9e29c1fbd9550add31fcc05694dbc0328fea8ab6e6a8d949d0c71bc4852c25d6fd37edb408d415d959000ce26bef744f52c14991f7d6fa9b5f3273de0fdb8d6e7073af8885f8a70b6c2a69839a0e16f1981c3b65c0228763b6758463a65858379bb3930c155938cdd4bb749f7ba65ba78d015e19762ba839d7d847c64df1c41915eba776ba09c4a12fc4ae6774a28e2ecf5a319e74d7f37f5a21bedcf8a36a55ad2e4058eb530407fc7c19afc4ba2591cbad668f90ecfee846c5a426db4a78c0a42720ed108612ae05ea7a9f0f005fb0531719459584c50e48b1386537444763ea8b3f07ded792fb0fd1dd6556e01f8ca38c56d9209f29540d6c2f79664a428a856e1cde8f14555889f060055d3227774c7d94fe60770b21250fcee552beea380ad5c1dc6f201f2106a35a6670a4ee40cdbe014ec097e756daf6bef99c85811bc2ab8760d4575d245dd634fead5b0351a09af1588590b0f07deb5057d18d67edd2e96968fc7d890c19e428317a7de6a553e21f69c08a53e975c7b0cf9f2c6156db2e7eb0e307c52386ae2e4cdbe23c619ca2b8ebd7f0bbcaef161e7db4cec3a90f6123b853d389273f98425c9dd02031d85ce814566a03dc526171a3edbd71722048cf4ba4a2ffca033049cde51c3fc99cc02ca0e3fcf9c32ae3fe62e10ef73f38621ec8430101ed5050319247f2d7cb4e547373bbdd3dbdd8e77f53b0591a950d9e2496ddd82f1c7273b9fcb311a843a57787bb9410802daacf58d87cacd05affd6fff32eeb671f92a02bc50f7d503ae4ab48b3a7988197a12b0889771bc36919cf9e07754947a228851079cb78eb6e372760016a36d1c966269a2d128d0a918b6296caad906de2ed3e41f533a1cff7d85da05001c5c769d325a8ad6da054d3dd41a6284dd653bcf982aa2caf137bc41824c06687eda314560a7c3e186940bce54c3b4ee47efc17f558a9b87bdbb05bb54ad6f3dadb473facc40bf8a4e617bbe56b590d7d8f27d887d700ed4a3954fe837e6235675cdcd7924af697bfa92555a53446d6bab8ae2987d94b63056f3dc69969f083a036705c0f1f2d2a45b24884e99ead5ed6bfd52a29f287440dd5fae632642dc583dcc075d216aa85373be25c7ac654a831b6be8618255e57d8cc6d2372092c8577e3e9bfc0db05531956d14ab613a3278b3a8381698e805f6996a866e560a8be969e9d450e57fe86c41df360dc5405ff25cf9f6bc9c62be75f4a04571f10510741b8b192f2bc1394a42dd9caddaa3a0f7020f6de1d3d9c29525be11291de8066b0253d3ea3a87c46b2203f4e6faf95a4bdd501f0fa9b0929991bbaf147e694c0df956f6a0355a07b35e3c983452ea3c36163e75123c50586668b8b6bae04d52987c178ad9048969019bb90302cf22f454d3c706375c097d289fc1ac1f85e201ec766739d4fa6470021c9183d27cd224467296dbff4516bcb0a65e410d1d1a2f3c8da8c379b9b9664f18f481b2ef1afc2687396c3a62be48f9176f57f2c977748a53b79d96a06883f66c00ba58580d16f9689d14a00026d5d45e1222f9f39975ef4c8e86c78e8d230b8842ba6050a077696c5ab1fc8b854a1a87c51a8e8540faa0fa5ed4a3b12aea8942fa4f43e0f137fe2b8c854331e8123120458be76265dd1a801b897f915b7133515b50ae22fe5f5b007d755b3c41247bf9d9e6665dfa0ffeb9fae681784c81bb6a3bd3653dea142514d885c98455ad42d05eb91e0e57eb59938cdba86cc726326bb6f68ad543d230feb7e62304a6535b3858fa854ed58a722e040d67df1fea03bcaa8f00e33ad049dc38e68e5e95eb2dbe224cd77feb10d1fae690a73f04a10a11221d98c3adf1082f0a3140e9c88e0ae568dcb898137172f454b391eacb3a428c6dc9ab3736e31f1436501a2b5699dae9496a51f761471a606d5e0693d2cb30f9e660bbe4c886e1ed9f3126ef02ce006a36a5e0a22cf8b53573b8d36634d9bed8ac8cc7f4d0c3150be3bf56f896a87650153170d6a948b63cc68992f48719a89f34f1ed2194de91c3b932226796520a9ed8caa6b8aee7c945d5cd5bda24ae655a30e6aba6bcec6bf7b0b683e437c1765bb0acc56b4d5f30b02d07b18bbe9fef1f6d0b94c2af4fed68006dae822f5d4cf17ddf1473dcaed583d1a220abc811755e2c3ef57ea92168c34d14b71772b97bbe6cbf0d6a2f47c9a0d2d81ce96649496957579ec2bc22261070f8cdf8976a0ac3c7ddfee615466e1fb9e436c953c92ac3e86aabdb8d674439fb8c109a67f3d904388c4f8e392359874e0a4a7e9c58b56b6d1be6231c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "5082718f3bf4"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xd, 0xf9, "18ebe05552e7f5ebe9"}, @NL80211_ATTR_FILS_ERP_RRK={0xf3, 0xfc, "a2ad1a92af2ef02d309f553f695a17cda97a60be7c8c15770a6e897eeca2b154516789b9c95c78bac22ee48797842a204980c0b08ba1da4d58381b4730185324f6d259e0253f352a74bf6ceca05de7c9cb5367adcec10470abf38db6a34b8abc367039999defc035ab546df99fc9cf09f27fff0af362aea7412b0212d337af52f92dde62cf430b4f45929cef8da7db62aacf8d03992d23b692d1fdf87f545ba2269c5c7196a819a7237566f5ae16b5b3eb1865941fcad6c0b952b341b945442506dde9dd1cae0182be6eb9816600964947626c30856ab084943970895e8200916edc68e06ac917d8b8459bd233eda1"}, @NL80211_ATTR_FILS_ERP_RRK={0xc2, 0xfc, "5a9494acd4b72cc81c331ebbf102b36e60374fd1a482a86c1147d5a23497e5ccf2ba5df7dcd68c22896f4d1dc3a6b65757765ee15b66ebc506031eb357fb5c84fa565e1b7e12ad0e7871c951706fc37f8c0c11f339db483fe54ec7dcca388eb9e318e2b63bb33db0b668ca89214cfe56451119a21cc937ff5a885146c965c1b2458ff526997501d7318d883b14e7955cfe008772e8e4b0f99c7c842054080310349d3c35f13959dcf89e8b182eb4c4c40f89d363583d4b58af0589a9d727"}], @fils_params=[@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xfe00}], @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0x1004, 0xfc, "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"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x13, 0xf9, "dfd96957478507b8350969342718f7"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x6}, @NL80211_ATTR_FILS_ERP_RRK={0x77, 0xfc, "6c209e934147aa0a837598685e70eaa5ab2b5d69a1557545a1bb5425fda740840b27cd3b9a62417fe3eeda27f09efb657d132687e1512cde7b4777ee8da863d954e0305991f1c4196abbba2433b66cc59b441ce6b45fabdd5a89df697fb531f366280ad0c7a8802f115a719eef08f1125c5c97"}, @NL80211_ATTR_FILS_ERP_REALM={0x102, 0xfa, "768fd389c6a2a8e0399ee5afb7fc63422594308cd7fb75ba14e029a99a06be704ba00fa55505e10c77577ffb97d7253e14b1b716cb080d09eca3e32225780d776bce2bef76e452c384c23c7b27ae200c4a3ca812469f66f1a85f17b74d67da55e0fd9ea55b04004ac8efb88cb5aa5689ce51cf196a60f6ae817959bb05eca869c35f19be110c0cbf1fb38d6200cc7e878169614cb0f91f03b78aee712e8b7fec62598105b93f04327605380fba5ecf0df86b88806465e8284138db58969d2d83c405a56277f31163c73d9f58d3e45afe42f5554438b4e87f4773bfde2746d085e20ff63a6fce97da597b8a4f8ae9b69eea21bd4cb3697eb5ea3af0eaa1f7"}, @NL80211_ATTR_FILS_ERP_REALM={0x8a, 0xfa, "a5668c3b1321db48d35b1f686a087fe5da4919d1b6fa1bb6426303e1279110deaede30d6169cad1721752825d30babe0db2b330e8c5b25323257fa03e96321246f749731a5f464318fd2bd775e7c1b88071606bd5e31393a49e9bb597d85fc70459e00bc0ef6b432665986140eda42e7850cf520a2864603b7c30977efa0f0ad810dce9d3e54"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x5}, @NL80211_ATTR_FILS_ERP_USERNAME={0x13, 0xf9, "90d93e9b938252626ba2575f5bcd57"}, @NL80211_ATTR_FILS_ERP_REALM={0x101, 0xfa, "da31cfb1d2f037206ca361d9ff44495fc1346861d79228c03925d0201144afdd22353bf90f0e969f0c0863bfdf7a472933b28f546741d1ac20091edab4078931c9451e4a6d6624147ac237c31ce0c5cf8a71f3101f658c3774a58226d5522c20da1620134ead820ae3a0619b022c75b1d667df59962748b49dfa010f8b0d7b5bcebe9c4bc5c64a747a75f3fd510dc2ffd0b1053c8b6012ce915b185d23ceb26269547587522a1581d1f4c8e301d66714d034073105e12aaff73f5b44e1f137ad2ce0eead12d46cba58149d389f4f3824cad2b41e8098ec67186d782281dddadd021e29a7b6bcb68e17bb412177d942180d9b53d6cf86bf38b88cba9a0c"}], @NL80211_ATTR_IE={0x63, 0x2a, [@preq={0x82, 0x3b, @not_ext={{0x1, 0x1}, 0x1, 0x4, 0x8, @device_a, 0x100, "", 0x2, 0x9, 0x3, [{{}, @device_a, 0x9}, {{0x0, 0x0, 0x1}, @device_b, 0x1}, {{}, @device_a, 0x9}]}}, @rann={0x7e, 0x15, {{0x1, 0x4}, 0xe9, 0x5, @device_a, 0x6, 0x5, 0x5}}, @gcr_ga={0xbd, 0x6, @broadcast}, @dsss={0x3, 0x1, 0xacfe44316816b007}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0xe5, 0xfc, "b0ce92863495e14ed3f07e4cdbf6799ebad3c2893ec990847c960848c4c5daa955b2840ef790a2bce415a42cd532877c3b3c8616e02a4481ad3976fa23553a8e5472fe8bc1b39d916fb14a4fc1c461499ddd5fff5bc32075a5c99d54b435d4e0eb814bcb26314dbfbcb0a55306abff906c176e5ed69dc5f516bef4d555eba8151d528b7bc387f7835b6c6bd19c55e78861957255dc3aeb590dbad91d1e78f816d93076e6fc4fc1bcae0f52f4e8ae5fdcf1c6a4309e15239abcbc962ebe74c9171320be470074084837564106e6e06d3aeddd7191884811cda8cac7b51b37ffc945"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xf, 0xf9, "30d6f0a12e49128edf982c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x8, 0xf9, "bd7c3bfe"}, @NL80211_ATTR_FILS_ERP_REALM={0x7a, 0xfa, "6e7afc3b52bf22c877e41d91fffb3bf9ab4910a386970c5e11ab80ea91caf32816763e3606a26b5a74e5a0f1ca680031910274431e7f17d0a28609ee5c94d2ae5f95c83e82bdc484767f23f92aa037c5d6352d12846c035711c095124ed969bf112a557b8d02ec6b06179e295573d375e1a8024288a0"}], @NL80211_ATTR_IE={0xe9, 0x2a, [@prep={0x83, 0x1f, @not_ext={{}, 0x9, 0xc, @broadcast, 0x2, "", 0xe2000000, 0xffff8000, @broadcast, 0x9}}, @random={0x5, 0x5a, "8a667cfdcf862b3601bcfa30c7962af0d6ceb05557c8971b791497a61e9fa73ec6c17effd68d3d665b3328695b349f87c0b34660c3317ca5ba208f4f7e5ff600d7b4be395ab308d28690f92235514defafc4d859c28d9ec301af"}, @measure_req={0x26, 0x66, {0x0, 0x16, 0x0, "9ed490006cf669e49ca58803c80d5b77f38bd5f4156421d74ace883f0e90dec5d1257120212073ede27237224c9232a18a90c9adac44ab77d7c160d3c7bd266b5ab783000202b9de4d8a5e4fe61162a789a2aed112954bb131e1c0f3dbd981cb068464"}}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0x9b, 0xfc, "b8701db4fd7ace07423ec856c33a47916cfb02572613850e50bd6ae3cd806b0abc979c7e71ce62b8f8226e83f0ebccdc67988b4c0d64ea4a222ca3238dd7369128129e266cc8b5cce46e492c1e82c38f31ea329a622f364a1ceb6ba72a924ee394bedbb110da7319c10139e04ff59ed1fabfc6645c45c19362ce8b4f9bb6316382bfc665f062134a8194eff14b128d18c21b5d780e51ba"}, @NL80211_ATTR_FILS_ERP_REALM={0xf7, 0xfa, "e6c8baef28a231d3abb0a139cb33ac851b9b6fcee77d1b14bcf62606cb06064f205d5d68d73a64eb2b7ec2438bdf9dafec27f5768f1108a11c86cb1b6cce0c235bf5535fce03b6d1b56a5b09970f60cb8ace75ef1ada39791dc8d9b5747df0bf96d1d38a5cdc0a12ce7ac783676ffd6f0db830f44c43cb1493420d8900024ccc425d40bc0c32c82d5b409793bdc1c2f48d157e5996005b8f9b23dd46fa0eda8a088af632da6c012db5662cd3c3de1fdea8546928c62feeaff25dba1d400e2f3a219a4c93fc4f9283e010426ab0f626b1ebb1082013d3e6f3532cccebf03defd84a71b5117aa6f900e6ab3e903255b7859c732c"}, @NL80211_ATTR_FILS_ERP_REALM={0xca, 0xfa, "30c3a0d85d870cc52624bfe1ba05b7d51239a838b84ecb4e19f0234b5c42b8945ff701fcfcb0513f3c2bbe4c47731beb70b55f617e0ed8d6b0577f9d2987549aef561c05197d60b09c2294a79defba01475b9b7979d367a35c4083001a6655a5456bc70001f3fd7113d13efc75522c04f3bcee1995543b8e1f10e11a3aa2dc383f9be8a4db5de0e244da7d867fe456a55cefb9ceac7a248ea3310879329e23e4df419a9576a0107feb64646af9a8e53149f5efdc46bf0c6bc87dd20b5c3707b11a4e84009065"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "2d697efaa0f8e5"}, @NL80211_ATTR_FILS_ERP_REALM={0xb, 0xfa, "48965375a508ef"}], @NL80211_ATTR_IE={0xe3, 0x2a, [@link_id={0x65, 0x12, {@random="bc9245b4550c"}}, @supported_rates={0x1, 0x4, [{0x12, 0x1}, {0x1}, {0x2, 0x1}, {0x3}]}, @challenge={0x10, 0x1, 0x3e}, @peer_mgmt={0x75, 0x8, {0x1, 0x1b3, @val=0x1, @val=0x3f, @void}}, @erp={0x2a, 0x1, {0x0, 0x0, 0x1}}, @rann={0x7e, 0x15, {{0x1, 0x6}, 0x8, 0xff, @broadcast, 0x8, 0x80000001, 0x101}}, @measure_req={0x26, 0x9c, {0x7, 0x7, 0x3c, "eb87e81b7f25cd5bfb8226c7428a4a07d8bb6a8e8f2001dd71775c87dbcfd519e103000b2f03538e40e8d9a9f6412adef5db7f3fa472c6ad0afe696dcd0656de3e52daae166f0682789eb5f4feff72875035591d118fc0ab8b84a0fa316215c7c26e137b5f80d1e5a0821dc1978851bb9b4f04a01822e0d733531ffd34fe36659b58b3b99ef468c41704924953338ae32556626e2020b517c5"}}]}]}, 0x2b8c}, 0x1, 0x0, 0x0, 0x40040}, 0x4) dup3(r2, r0, 0x80000) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000000000)=""/62, 0x3e}], 0x2, 0x3, 0x60) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r4, 0x5608) ioctl$KDGETLED(r4, 0x4b31, &(0x7f0000000180)) open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000140)={0x7, 0x6, 0x80000001, 0x4, 0xa3, "f0d878440067ca62a08970bc210f2d6d788f75", 0x7, 0x4}) ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000003ec0)=""/4096) [ 980.958137][ T9113] kmem_cache_alloc+0x46/0x2e0 [ 980.962905][ T9113] __es_insert_extent+0x51f/0xe70 [ 980.967934][ T9113] ? kcalloc+0x32/0x50 [ 980.972086][ T9113] ? __kmalloc+0x32c/0x340 [ 980.976597][ T9113] ? kcalloc+0x32/0x50 [ 980.976623][ T9113] ext4_es_insert_extent+0x1bb/0x19d0 [ 980.976678][ T9113] ? ext4_ext_convert_to_initialized+0xf50/0xf50 17:08:23 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x7, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:23 executing program 5 (fault-call:1 fault-nth:41): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) [ 980.976702][ T9113] ext4_ext_map_blocks+0xf79/0x1f00 [ 980.976794][ T9113] ? __down_read_common+0x16d/0x530 [ 980.976814][ T9113] ? percpu_counter_add_batch+0x69/0xd0 [ 980.976839][ T9113] ? ext4_es_lookup_extent+0x206/0x490 [ 980.976864][ T9113] ext4_map_blocks+0x1be/0xef0 [ 980.976882][ T9113] ext4_getblk+0xb1/0x3d0 [ 980.976928][ T9113] ? __ext4_new_inode+0x2aed/0x2f70 [ 980.976946][ T9113] ext4_bread+0x28/0x100 [ 980.977025][ T9113] ext4_append+0xd1/0x1c0 [ 980.977042][ T9113] ext4_init_new_dir+0x177/0x500 [ 980.977059][ T9113] ext4_mkdir+0x329/0x760 [ 980.977076][ T9113] vfs_mkdir+0x2a4/0x370 [ 980.977095][ T9113] do_mkdirat+0x11d/0x200 [ 980.977139][ T9113] __x64_sys_mkdir+0x32/0x40 [ 980.977170][ T9113] do_syscall_64+0x3d/0x90 [ 980.977253][ T9113] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 980.977275][ T9113] RIP: 0033:0x4656e7 [ 980.977286][ T9113] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 980.977300][ T9113] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 980.977315][ T9113] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 980.977324][ T9113] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 980.977336][ T9113] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 980.977348][ T9113] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 980.977406][ T9113] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 [ 981.099186][ T9254] loop5: detected capacity change from 0 to 7 [ 981.099641][ T9254] FAULT_INJECTION: forcing a failure. [ 981.099641][ T9254] name failslab, interval 1, probability 0, space 0, times 0 [ 981.099663][ T9254] CPU: 1 PID: 9254 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 [ 981.099679][ T9254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 981.099687][ T9254] Call Trace: [ 981.099693][ T9254] dump_stack_lvl+0xb7/0x103 [ 981.099765][ T9254] dump_stack+0x11/0x1a [ 981.099790][ T9254] should_fail+0x23c/0x250 [ 981.099811][ T9254] ? kcalloc+0x32/0x50 [ 981.099833][ T9254] __should_failslab+0x81/0x90 [ 981.099854][ T9254] should_failslab+0x5/0x20 [ 981.099942][ T9254] __kmalloc+0x66/0x340 [ 981.099963][ T9254] ? kcalloc+0x32/0x50 [ 981.100052][ T9254] kcalloc+0x32/0x50 [ 981.100135][ T9254] ext4_find_extent+0x21c/0x7f0 [ 981.100156][ T9254] ? kfree+0xf0/0x1d0 [ 981.100176][ T9254] ext4_ext_map_blocks+0xd9/0x1f00 [ 981.100275][ T9254] ? __down_write_common+0x42/0x810 [ 981.100293][ T9254] ? __down_read_common+0x16d/0x530 [ 981.100307][ T9254] ? percpu_counter_add_batch+0x69/0xd0 [ 981.100323][ T9254] ? ext4_es_lookup_extent+0x206/0x490 [ 981.100412][ T9254] ext4_map_blocks+0x70d/0xef0 [ 981.100435][ T9254] ext4_getblk+0xb1/0x3d0 [ 981.100452][ T9254] ext4_bread+0x28/0x100 [ 981.100470][ T9254] ext4_append+0xd1/0x1c0 [ 981.100487][ T9254] ext4_init_new_dir+0x177/0x500 [ 981.100504][ T9254] ext4_mkdir+0x329/0x760 [ 981.100520][ T9254] vfs_mkdir+0x2a4/0x370 [ 981.100539][ T9254] do_mkdirat+0x11d/0x200 [ 981.100582][ T9254] __x64_sys_mkdir+0x32/0x40 [ 981.100596][ T9254] do_syscall_64+0x3d/0x90 [ 981.100636][ T9254] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 981.100657][ T9254] RIP: 0033:0x4656e7 [ 981.100671][ T9254] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 981.100688][ T9254] RSP: 002b:00007fdf8e1c9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 981.100707][ T9254] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004656e7 [ 981.100719][ T9254] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 981.100731][ T9254] RBP: 00007fdf8e1ca040 R08: 0000000000000000 R09: ffffffffffffffff [ 981.100746][ T9254] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 981.100756][ T9254] R13: 0000000020000100 R14: 00007fdf8e1ca000 R15: 0000000020000140 17:08:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) pipe(&(0x7f0000000080)) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) lseek(r0, 0x6, 0x4) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r2, 0x0) tkill(r1, 0x1000000000016) 17:08:24 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x8, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:24 executing program 5 (fault-call:1 fault-nth:42): set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000140)) 17:08:24 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x220280, 0x0) r1 = signalfd(r0, &(0x7f0000000080), 0x8) r2 = syz_open_pts(r1, 0x226282) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) write(r2, &(0x7f0000000100)="a5305e72dfe1afc401c21054c89a45cd6ee6f38564065abdeff3c07844da9cbb3387445bbb31f2e3d47500ec2ff26473305d7050c39cd4800e217abb142bc4a082d266c222dcc4ee81d081933185163093f684597e52eed781af22dea4e812f5525d750c1fc902f65807b1282c8e3aa62e9d227fa4d5900445675e82b3bebfcaf1bfb9cf421573d07ec28b3509858af01830039661ab8d931f69f0f07fa0f5a2b3f1ee37e537a27ffcd83bec3a1d4ea2c84329851a9ce6ba72cb5c4bf80245a694f8cc2d1b4a6fd1bbf9d617496d11a699ffe40fd68c86fe17a03f5e700fac5e283791fc6c121fa951be1b7b7e", 0xed) 17:08:24 executing program 1: set_mempolicy(0x3, &(0x7f0000000000)=0x100000001, 0x25) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) set_mempolicy(0x1, &(0x7f0000000040)=0x40, 0x7c2) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) r2 = syz_open_pts(r0, 0x2a102) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_DISALLOCATE(r3, 0x5608) ioctl$TCSETA(r3, 0x5406, &(0x7f0000000140)={0x1, 0x800, 0xff, 0xff, 0x18, "cb8f16ad017ed314"}) read(r2, 0x0, 0x2000) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x2) r4 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x280001, 0x0) ioctl$TCSETSW(r4, 0x5403, &(0x7f0000000100)={0x7, 0x77, 0x7, 0x7, 0xb, "8eed05f73a4f2f53e97ae56fd7337324abf43d"}) 17:08:24 executing program 2: r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000180)=0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x0, @fd=r0, 0x40, 0x10000, 0x260, 0x0, 0x1, {0x3}}, 0x4481) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_setup(0x3ede, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xc411}}, 0x0) syz_io_uring_submit(r5, r8, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x4}, 0x8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r10, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r0, 0x2a6e, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x4f96, 0x0, 0x0, 0x0, 0x0) shutdown(r9, 0x1) io_uring_enter(r0, 0x0, 0x4d30, 0x0, &(0x7f0000000080), 0x8) 17:08:24 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x9, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 981.824467][ T9763] loop5: detected capacity change from 0 to 7 [ 981.836926][ T9765] serio: Serial port pts3 [ 981.848704][ T9763] FAULT_INJECTION: forcing a failure. [ 981.848704][ T9763] name failslab, interval 1, probability 0, space 0, times 0 [ 981.861932][ T9763] CPU: 0 PID: 9763 Comm: syz-executor.5 Tainted: G W 5.13.0-syzkaller #0 17:08:24 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000008000"}) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x1ff, 0x8, 0x3, 0x9, 0xa, "a87278208ee32784"}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000080)=0xffffffff) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)=0x2) read(r1, 0x0, 0x2000) 17:08:24 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0xa, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 981.871642][ T9763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 981.881706][ T9763] Call Trace: [ 981.884986][ T9763] dump_stack_lvl+0xb7/0x103 [ 981.889600][ T9763] dump_stack+0x11/0x1a [ 981.893853][ T9763] should_fail+0x23c/0x250 [ 981.898297][ T9763] ? ext4_mb_new_blocks+0x2e7/0x1f90 [ 981.903591][ T9763] __should_failslab+0x81/0x90 [ 981.908359][ T9763] should_failslab+0x5/0x20 [ 981.912862][ T9763] kmem_cache_alloc+0x46/0x2e0 [ 981.917955][ T9763] ext4_mb_new_blocks+0x2e7/0x1f90 17:08:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) futex(&(0x7f0000000100)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, 0x0, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = accept$inet(r0, &(0x7f0000000080), &(0x7f00000000c0)=0x10) mmap(&(0x7f0000197000/0x1000)=nil, 0x1000, 0x8, 0x13, r2, 0x8e6a8000) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r3, 0x0) tkill(r1, 0x1000000000016) [ 981.923159][ T9763] ? ext4_find_extent+0x6cf/0x7f0 [ 981.928197][ T9763] ? ext4_ext_search_right+0x300/0x540 [ 981.933730][ T9763] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 981.939464][ T9763] ext4_ext_map_blocks+0x1569/0x1f00 [ 981.945054][ T9763] ? __down_write_common+0x42/0x810 [ 981.950255][ T9763] ? __down_read_common+0x16d/0x530 [ 981.955516][ T9763] ? percpu_counter_add_batch+0x69/0xd0 [ 981.961150][ T9763] ? ext4_es_lookup_extent+0x206/0x490 [ 981.966750][ T9763] ext4_map_blocks+0x70d/0xef0 17:08:24 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0xb, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 17:08:24 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) set_mempolicy(0x2, &(0x7f0000000080)=0xfffffffffffeffff, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x10, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@remote}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) [ 981.971526][ T9763] ext4_getblk+0xb1/0x3d0 [ 981.975860][ T9763] ext4_bread+0x28/0x100 [ 981.980104][ T9763] ext4_append+0xd1/0x1c0 [ 981.984439][ T9763] ext4_init_new_dir+0x177/0x500 [ 981.989381][ T9763] ext4_mkdir+0x329/0x760 [ 981.993775][ T9763] vfs_mkdir+0x2a4/0x370 [ 981.998021][ T9763] do_mkdirat+0x11d/0x200 [ 982.002425][ T9763] __x64_sys_mkdir+0x32/0x40 [ 982.007031][ T9763] do_syscall_64+0x3d/0x90 [ 982.011462][ T9763] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 982.017431][ T9763] RIP: 0033:0x4656e7 17:08:24 exe