803, 0xffffffffffffffc0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 334.506804][T28482] should_fail+0x555/0x770 [ 334.511230][T28482] __should_failslab+0x11a/0x160 [ 334.516166][T28482] ? ptlock_alloc+0x20/0x70 [ 334.520671][T28482] should_failslab+0x9/0x20 [ 334.525173][T28482] kmem_cache_alloc+0x56/0x2e0 [ 334.529936][T28482] ? alloc_pages_current+0x2db/0x500 [ 334.535218][T28482] ptlock_alloc+0x20/0x70 [ 334.539543][T28482] pte_alloc_one+0x6e/0x180 [ 334.544051][T28482] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 334.549856][T28482] ? count_memcg_event_mm+0x214/0x300 16:47:05 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3f, 0x214000) syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x1, 0x6ef5fdbe0b787e27) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x10800, 0x4) fcntl$dupfd(r0, 0x406, r0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x2000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xa86) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 334.555229][T28482] handle_mm_fault+0x26fc/0x6010 [ 334.560172][T28482] __get_user_pages+0x1002/0x1610 [ 334.565206][T28482] get_user_pages_unlocked+0x120/0x530 [ 334.570665][T28482] get_user_pages_fast+0x2e4/0x4f0 [ 334.575776][T28482] iov_iter_get_pages+0x243/0xac0 [ 334.580797][T28482] bio_iov_iter_get_pages+0x1d4/0xc90 [ 334.586174][T28482] __blkdev_direct_IO+0x6d1/0x1340 [ 334.591288][T28482] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 334.591303][T28482] ? aio_prep_rw+0x900/0x900 [ 334.591318][T28482] ? iov_iter_npages+0x1ee/0x9a0 16:47:05 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x400, 0x8) ioctl$VIDIOC_QUERYMENU(r3, 0xc02c5625, &(0x7f0000000040)={0x401, 0x8000, @value=0xe}) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 334.606515][T28482] blkdev_direct_IO+0xbe/0xd0 [ 334.606529][T28482] generic_file_read_iter+0x1ad3/0x21b0 [ 334.606537][T28482] ? fsnotify+0x12d1/0x13d0 [ 334.606558][T28482] ? __kasan_check_read+0x11/0x20 [ 334.626236][T28482] blkdev_read_iter+0x12e/0x140 [ 334.631084][T28482] aio_read+0x31f/0x400 [ 334.635251][T28482] io_submit_one+0x6eb/0x1970 [ 334.639931][T28482] ? __might_fault+0xf9/0x160 [ 334.644598][T28482] ? __might_fault+0xf9/0x160 [ 334.649288][T28482] __se_sys_io_submit+0x12f/0x240 [ 334.654311][T28482] __x64_sys_io_submit+0x7b/0x90 [ 334.654325][T28482] do_syscall_64+0xfe/0x140 [ 334.654341][T28482] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.669637][T28482] RIP: 0033:0x459829 [ 334.669649][T28482] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 334.669654][T28482] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 334.669664][T28482] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 334.669669][T28482] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 334.669675][T28482] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 334.669680][T28482] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 334.669686][T28482] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:06 executing program 2 (fault-call:2 fault-nth:9): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT=r0], 0x4}}, 0x0) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x44002}, 0xc, &(0x7f0000000080)={&(0x7f0000000380)={0x240, r4, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0xc0, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1e00000000000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1930}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffff9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x253}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}]}, @TIPC_NLA_NODE={0x28, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x97fc}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xf0}]}, @TIPC_NLA_MEDIA={0xa4, 0x5, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x28}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x30c0}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}, @TIPC_NLA_LINK={0x4c, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa1b7}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_NET={0x44, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xe8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x401}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x962}]}, @TIPC_NLA_LINK={0x10, 0x4, [@TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x240}, 0x1, 0x0, 0x0, 0x8000}, 0x4) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:06 executing program 1: r0 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x1, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f0000000040)) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000440)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) name_to_handle_at(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0xac, 0x5, "c8f53fde4cb674498c9529e0146af65acc941646056957333948883cb75701c1b969d22e7b3ecefaeaeef33d83421bb22f4a9cdb8ef6676c9b7d81040ed59708a583769cc55760bebe702ec14bd541dae47c439631414866041d63797731d1dce814e23310e55a7a0fc7bd868d9e35a54bd975eb294ed6997257008a4b3fb5207aaddd17fd2bad4700c25823fe77112258f26a62579e4ded8569550264835fd0f45703dc"}, &(0x7f00000001c0), 0x400) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:06 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x1, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, 0x0}]) 16:47:06 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 334.896592][T28524] FAULT_INJECTION: forcing a failure. [ 334.896592][T28524] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 334.917921][T28524] CPU: 0 PID: 28524 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 334.925914][T28524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.935955][T28524] Call Trace: [ 334.939240][T28524] dump_stack+0x1d8/0x2f8 [ 334.943570][T28524] should_fail+0x555/0x770 [ 334.947983][T28524] should_fail_alloc_page+0x55/0x60 [ 334.947994][T28524] prepare_alloc_pages+0x283/0x470 [ 334.948008][T28524] __alloc_pages_nodemask+0xb2/0x5d0 [ 334.963545][T28524] ? trace_lock_release+0x135/0x1a0 [ 334.963556][T28524] ? check_preemption_disabled+0xb7/0x2a0 [ 334.963571][T28524] alloc_pages_vma+0x947/0xca0 [ 334.979192][T28524] ? trace_lock_release+0x135/0x1a0 [ 334.984389][T28524] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 334.990192][T28524] ? count_memcg_event_mm+0x214/0x300 [ 334.995567][T28524] handle_mm_fault+0x26fc/0x6010 [ 335.000509][T28524] __get_user_pages+0x1002/0x1610 [ 335.005545][T28524] get_user_pages_unlocked+0x120/0x530 [ 335.011005][T28524] get_user_pages_fast+0x2e4/0x4f0 [ 335.016121][T28524] iov_iter_get_pages+0x243/0xac0 [ 335.021142][T28524] bio_iov_iter_get_pages+0x1d4/0xc90 [ 335.021166][T28524] __blkdev_direct_IO+0x6d1/0x1340 [ 335.021176][T28524] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 335.021192][T28524] ? aio_prep_rw+0x900/0x900 [ 335.031639][T28524] ? iov_iter_npages+0x1ee/0x9a0 16:47:06 executing program 0: r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x3f, 0x200880) getsockopt$inet_dccp_buf(r0, 0x21, 0xf, &(0x7f0000000140)=""/65, &(0x7f00000000c0)=0x41) socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x10400, 0x0) socket$alg(0x26, 0x5, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='highspeed\x00', 0xa) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = socket(0x10, 0x400000000080803, 0x0) write(r3, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r3, &(0x7f0000002580)=""/4096, 0x1000) 16:47:06 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x408800}, 0xc, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="ac010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1ac}, 0x1, 0x0, 0x0, 0x62df60d619957aab}, 0xc051) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 335.031652][T28524] blkdev_direct_IO+0xbe/0xd0 [ 335.031664][T28524] generic_file_read_iter+0x1ad3/0x21b0 [ 335.031672][T28524] ? fsnotify+0x12d1/0x13d0 [ 335.031685][T28524] ? __kasan_check_read+0x11/0x20 [ 335.031702][T28524] blkdev_read_iter+0x12e/0x140 [ 335.031716][T28524] aio_read+0x31f/0x400 [ 335.075720][T28524] io_submit_one+0x6eb/0x1970 [ 335.080397][T28524] ? __might_fault+0xf9/0x160 [ 335.085070][T28524] ? __might_fault+0xf9/0x160 [ 335.089761][T28524] __se_sys_io_submit+0x12f/0x240 16:47:06 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000040)={'security\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 335.094786][T28524] __x64_sys_io_submit+0x7b/0x90 [ 335.099718][T28524] do_syscall_64+0xfe/0x140 [ 335.104221][T28524] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.110109][T28524] RIP: 0033:0x459829 [ 335.113993][T28524] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 335.133582][T28524] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:06 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:06 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 335.133592][T28524] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 335.133597][T28524] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 335.133603][T28524] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 335.133608][T28524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 335.133613][T28524] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:06 executing program 2 (fault-call:2 fault-nth:10): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80800010}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x12c, r2, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x5c, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xeb03}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffc}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_NET={0x30, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_MEDIA={0x8c, 0x5, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffffe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbcce}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x10}, 0x40000) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000480)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r0, &(0x7f0000002580)=""/4096, 0xec0) 16:47:06 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x1, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, 0x0}]) 16:47:06 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:06 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:06 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) [ 335.350749][T28563] FAULT_INJECTION: forcing a failure. [ 335.350749][T28563] name fail_page_alloc, interval 1, probability 0, space 0, times 0 16:47:06 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:06 executing program 4 (fault-call:2 fault-nth:0): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 335.410266][T28563] CPU: 1 PID: 28563 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 335.418280][T28563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.428328][T28563] Call Trace: [ 335.431628][T28563] dump_stack+0x1d8/0x2f8 [ 335.435963][T28563] should_fail+0x555/0x770 [ 335.440381][T28563] should_fail_alloc_page+0x55/0x60 [ 335.443685][T28573] FAULT_INJECTION: forcing a failure. [ 335.443685][T28573] name failslab, interval 1, probability 0, space 0, times 0 [ 335.445574][T28563] prepare_alloc_pages+0x283/0x470 [ 335.445588][T28563] __alloc_pages_nodemask+0xb2/0x5d0 [ 335.445613][T28563] alloc_pages_current+0x2db/0x500 [ 335.445628][T28563] pte_alloc_one+0x1f/0x180 [ 335.478198][T28563] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 335.483997][T28563] ? count_memcg_event_mm+0x214/0x300 [ 335.489362][T28563] handle_mm_fault+0x26fc/0x6010 [ 335.494333][T28563] __get_user_pages+0x1002/0x1610 [ 335.499364][T28563] get_user_pages_unlocked+0x120/0x530 [ 335.504818][T28563] get_user_pages_fast+0x2e4/0x4f0 [ 335.509932][T28563] iov_iter_get_pages+0x243/0xac0 [ 335.514956][T28563] bio_iov_iter_get_pages+0x1d4/0xc90 [ 335.520331][T28563] __blkdev_direct_IO+0x6d1/0x1340 [ 335.525431][T28563] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 335.531144][T28563] ? aio_prep_rw+0x900/0x900 [ 335.535732][T28563] ? iov_iter_npages+0x1ee/0x9a0 [ 335.540662][T28563] blkdev_direct_IO+0xbe/0xd0 [ 335.545332][T28563] generic_file_read_iter+0x1ad3/0x21b0 [ 335.550865][T28563] ? fsnotify+0x12d1/0x13d0 [ 335.555358][T28563] ? __kasan_check_read+0x11/0x20 [ 335.560376][T28563] blkdev_read_iter+0x12e/0x140 [ 335.565218][T28563] aio_read+0x31f/0x400 [ 335.569375][T28563] io_submit_one+0x6eb/0x1970 [ 335.574044][T28563] ? __might_fault+0xf9/0x160 [ 335.578709][T28563] ? __might_fault+0xf9/0x160 [ 335.583391][T28563] __se_sys_io_submit+0x12f/0x240 [ 335.588407][T28563] __x64_sys_io_submit+0x7b/0x90 [ 335.593341][T28563] do_syscall_64+0xfe/0x140 [ 335.597845][T28563] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.603722][T28563] RIP: 0033:0x459829 [ 335.607614][T28563] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 335.627213][T28563] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 335.635629][T28563] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 335.643629][T28563] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 335.651588][T28563] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 335.659551][T28563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 335.667516][T28563] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 [ 335.675489][T28573] CPU: 0 PID: 28573 Comm: syz-executor.4 Not tainted 5.3.0-rc3+ #72 [ 335.683465][T28573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.683469][T28573] Call Trace: [ 335.683484][T28573] dump_stack+0x1d8/0x2f8 [ 335.683499][T28573] should_fail+0x555/0x770 [ 335.683514][T28573] __should_failslab+0x11a/0x160 [ 335.710448][T28573] ? io_submit_one+0xde/0x1970 [ 335.715202][T28573] should_failslab+0x9/0x20 [ 335.719694][T28573] kmem_cache_alloc+0x56/0x2e0 [ 335.724442][T28573] ? _copy_from_user+0x11a/0x180 [ 335.724455][T28573] io_submit_one+0xde/0x1970 [ 335.724464][T28573] ? rcu_lock_release+0xd/0x30 [ 335.724475][T28573] ? __might_fault+0xf9/0x160 [ 335.724490][T28573] ? trace_lock_release+0x135/0x1a0 [ 335.748572][T28573] ? __might_fault+0xf9/0x160 [ 335.753258][T28573] __se_sys_io_submit+0x12f/0x240 [ 335.758282][T28573] __x64_sys_io_submit+0x7b/0x90 [ 335.763215][T28573] do_syscall_64+0xfe/0x140 [ 335.767714][T28573] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.773599][T28573] RIP: 0033:0x459829 [ 335.777487][T28573] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 335.797099][T28573] RSP: 002b:00007ffa90774c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:07 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 335.805504][T28573] RAX: ffffffffffffffda RBX: 00007ffa90774c90 RCX: 0000000000459829 [ 335.813449][T28573] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007ffa90754000 [ 335.821393][T28573] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 335.829331][T28573] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa907756d4 [ 335.837291][T28573] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:07 executing program 2 (fault-call:2 fault-nth:11): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 335.946026][T28591] FAULT_INJECTION: forcing a failure. [ 335.946026][T28591] name failslab, interval 1, probability 0, space 0, times 0 [ 335.958798][T28591] CPU: 1 PID: 28591 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 335.966773][T28591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.976822][T28591] Call Trace: [ 335.976840][T28591] dump_stack+0x1d8/0x2f8 [ 335.976857][T28591] should_fail+0x555/0x770 [ 335.976874][T28591] __should_failslab+0x11a/0x160 [ 335.984465][T28591] ? ptlock_alloc+0x20/0x70 [ 335.984478][T28591] should_failslab+0x9/0x20 [ 335.984488][T28591] kmem_cache_alloc+0x56/0x2e0 [ 335.984497][T28591] ? alloc_pages_current+0x2db/0x500 [ 335.984511][T28591] ptlock_alloc+0x20/0x70 [ 336.017133][T28591] pte_alloc_one+0x6e/0x180 [ 336.021631][T28591] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 336.027412][T28591] ? count_memcg_event_mm+0x214/0x300 [ 336.032760][T28591] handle_mm_fault+0x26fc/0x6010 [ 336.037676][T28591] __get_user_pages+0x1002/0x1610 [ 336.042691][T28591] get_user_pages_unlocked+0x120/0x530 [ 336.048124][T28591] get_user_pages_fast+0x2e4/0x4f0 [ 336.053211][T28591] iov_iter_get_pages+0x243/0xac0 [ 336.058209][T28591] bio_iov_iter_get_pages+0x1d4/0xc90 [ 336.063575][T28591] __blkdev_direct_IO+0x6d1/0x1340 [ 336.068669][T28591] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 336.074367][T28591] ? aio_prep_rw+0x900/0x900 [ 336.079029][T28591] ? iov_iter_npages+0x1ee/0x9a0 [ 336.083959][T28591] blkdev_direct_IO+0xbe/0xd0 [ 336.088639][T28591] generic_file_read_iter+0x1ad3/0x21b0 [ 336.094160][T28591] ? fsnotify+0x12d1/0x13d0 [ 336.098640][T28591] ? __kasan_check_read+0x11/0x20 [ 336.103642][T28591] blkdev_read_iter+0x12e/0x140 [ 336.108468][T28591] aio_read+0x31f/0x400 [ 336.112601][T28591] io_submit_one+0x6eb/0x1970 [ 336.117256][T28591] ? __might_fault+0xf9/0x160 [ 336.121905][T28591] ? __might_fault+0xf9/0x160 [ 336.126560][T28591] __se_sys_io_submit+0x12f/0x240 [ 336.131559][T28591] __x64_sys_io_submit+0x7b/0x90 [ 336.136485][T28591] do_syscall_64+0xfe/0x140 [ 336.140979][T28591] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.146843][T28591] RIP: 0033:0x459829 [ 336.150711][T28591] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 336.170294][T28591] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 336.178689][T28591] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 336.186635][T28591] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 16:47:07 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r3 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xa7d0, 0x48b82) ioctl$ASHMEM_GET_PIN_STATUS(r3, 0x7709, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:07 executing program 4 (fault-call:2 fault-nth:1): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 336.194582][T28591] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 336.202550][T28591] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 336.210508][T28591] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket(0x10, 0x400000000080803, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:07 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1231) 16:47:07 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 2 (fault-call:2 fault-nth:12): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:07 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:07 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = getpgid(0xffffffffffffffff) ptrace$getsig(0x4202, r3, 0xee9, &(0x7f0000000040)) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r4, 0x0, r4, 0x0, 0x1000000006, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000240)) write$P9_RWSTAT(r2, 0x0, 0x0) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 336.407460][T28620] FAULT_INJECTION: forcing a failure. [ 336.407460][T28620] name failslab, interval 1, probability 0, space 0, times 0 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 336.499881][T28620] CPU: 1 PID: 28620 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 336.507904][T28620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.517955][T28620] Call Trace: [ 336.521247][T28620] dump_stack+0x1d8/0x2f8 [ 336.525620][T28620] should_fail+0x555/0x770 [ 336.530048][T28620] __should_failslab+0x11a/0x160 [ 336.535057][T28620] ? ptlock_alloc+0x20/0x70 [ 336.535068][T28620] should_failslab+0x9/0x20 [ 336.535078][T28620] kmem_cache_alloc+0x56/0x2e0 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) [ 336.535092][T28620] ? alloc_pages_current+0x2db/0x500 [ 336.554094][T28620] ptlock_alloc+0x20/0x70 [ 336.558425][T28620] pte_alloc_one+0x6e/0x180 [ 336.562927][T28620] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 336.568725][T28620] ? count_memcg_event_mm+0x214/0x300 [ 336.574097][T28620] handle_mm_fault+0x26fc/0x6010 [ 336.579049][T28620] __get_user_pages+0x1002/0x1610 [ 336.584082][T28620] get_user_pages_unlocked+0x120/0x530 [ 336.589542][T28620] get_user_pages_fast+0x2e4/0x4f0 [ 336.594653][T28620] iov_iter_get_pages+0x243/0xac0 16:47:07 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x8) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b8000000190001000000000000000104ff0100000000000038bde559000000000000000001e0000002000000000000000000000000f332000000000000000000000000000099ba5520c143d6102bb33b7b60bae3ca748c2f45526537d27a8731161c9c09f7792a9cd640c2a3e6cc442bf8010431496907e2474d2784987898214b95df97836c523af48083fe2a8e545c2f1026f23f29", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:07 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 336.599683][T28620] bio_iov_iter_get_pages+0x1d4/0xc90 [ 336.605070][T28620] __blkdev_direct_IO+0x6d1/0x1340 [ 336.610173][T28620] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 336.615888][T28620] ? aio_prep_rw+0x900/0x900 [ 336.620478][T28620] ? iov_iter_npages+0x1ee/0x9a0 [ 336.625412][T28620] blkdev_direct_IO+0xbe/0xd0 [ 336.630085][T28620] generic_file_read_iter+0x1ad3/0x21b0 [ 336.635634][T28620] ? fsnotify+0x12d1/0x13d0 [ 336.640138][T28620] ? __kasan_check_read+0x11/0x20 [ 336.645173][T28620] blkdev_read_iter+0x12e/0x140 16:47:07 executing program 0: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000000140)="24000004af3cab5a730000d17da53a7436fef70007000000000000000f0f002800080003", 0xffffffffffffff96) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff0100000000000000000000000200ecff00000000001373a136fff554421ed0f3ef3d6f131edd07c09c0e1a27408a1b84881a25ca0010566c7fe6f7877b0e2b00"/95, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r4 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x0, 0x800) read(r0, &(0x7f0000001580)=""/4096, 0x1000) ioctl$sock_inet_SIOCRTMSG(r4, 0x890d, &(0x7f0000000040)={0x0, {0x2, 0x4e20, @remote}, {0x2, 0x4e23, @rand_addr=0x8}, {0x2, 0x100000001, @multicast2}, 0x8, 0x0, 0x0, 0x0, 0x9f15, 0x0, 0x8, 0xdcd9, 0x8}) 16:47:07 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 336.650023][T28620] aio_read+0x31f/0x400 [ 336.654190][T28620] io_submit_one+0x6eb/0x1970 [ 336.658868][T28620] ? __might_fault+0xf9/0x160 [ 336.663549][T28620] ? __might_fault+0xf9/0x160 [ 336.668237][T28620] __se_sys_io_submit+0x12f/0x240 [ 336.673303][T28620] __x64_sys_io_submit+0x7b/0x90 [ 336.678236][T28620] do_syscall_64+0xfe/0x140 [ 336.682736][T28620] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.688625][T28620] RIP: 0033:0x459829 [ 336.692518][T28620] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 336.712120][T28620] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 336.720522][T28620] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 336.728484][T28620] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 336.736449][T28620] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 336.744415][T28620] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 336.752375][T28620] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:08 executing program 2 (fault-call:2 fault-nth:13): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000480)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"/530], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:08 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) getpeername$ax25(r1, &(0x7f0000000000)={{0x3, @netrom}, [@null, @netrom, @null, @netrom, @default, @bcast, @remote, @default]}, &(0x7f0000000080)=0x48) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 336.919643][T28674] FAULT_INJECTION: forcing a failure. [ 336.919643][T28674] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 336.936755][T28674] CPU: 1 PID: 28674 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 336.944737][T28674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.944742][T28674] Call Trace: [ 336.944759][T28674] dump_stack+0x1d8/0x2f8 [ 336.944781][T28674] should_fail+0x555/0x770 [ 336.966805][T28674] should_fail_alloc_page+0x55/0x60 [ 336.971999][T28674] prepare_alloc_pages+0x283/0x470 [ 336.977105][T28674] __alloc_pages_nodemask+0xb2/0x5d0 [ 336.977117][T28674] ? trace_lock_release+0x135/0x1a0 [ 336.977128][T28674] ? check_preemption_disabled+0xb7/0x2a0 [ 336.977142][T28674] alloc_pages_vma+0x947/0xca0 [ 336.977155][T28674] ? trace_lock_release+0x135/0x1a0 [ 336.993304][T28674] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 336.993316][T28674] ? count_memcg_event_mm+0x214/0x300 [ 336.993332][T28674] handle_mm_fault+0x26fc/0x6010 [ 336.993358][T28674] __get_user_pages+0x1002/0x1610 [ 337.024388][T28674] get_user_pages_unlocked+0x120/0x530 [ 337.029851][T28674] get_user_pages_fast+0x2e4/0x4f0 [ 337.034966][T28674] iov_iter_get_pages+0x243/0xac0 [ 337.039986][T28674] bio_iov_iter_get_pages+0x1d4/0xc90 [ 337.045369][T28674] __blkdev_direct_IO+0x6d1/0x1340 [ 337.050472][T28674] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 337.056191][T28674] ? aio_prep_rw+0x900/0x900 [ 337.060778][T28674] ? iov_iter_npages+0x1ee/0x9a0 [ 337.065711][T28674] blkdev_direct_IO+0xbe/0xd0 [ 337.070380][T28674] generic_file_read_iter+0x1ad3/0x21b0 [ 337.075924][T28674] ? fsnotify+0x12d1/0x13d0 [ 337.080426][T28674] ? __kasan_check_read+0x11/0x20 [ 337.085443][T28674] blkdev_read_iter+0x12e/0x140 [ 337.085455][T28674] aio_read+0x31f/0x400 [ 337.085475][T28674] io_submit_one+0x6eb/0x1970 [ 337.099095][T28674] ? __might_fault+0xf9/0x160 [ 337.103765][T28674] ? __might_fault+0xf9/0x160 [ 337.108442][T28674] __se_sys_io_submit+0x12f/0x240 [ 337.113465][T28674] __x64_sys_io_submit+0x7b/0x90 [ 337.118399][T28674] do_syscall_64+0xfe/0x140 [ 337.122899][T28674] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 337.128786][T28674] RIP: 0033:0x459829 [ 337.132672][T28674] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 337.152274][T28674] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 337.160680][T28674] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:08 executing program 1: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 1: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[]}, 0x1, 0x0, 0x0, 0x10000}, 0x0) bind$unix(r1, &(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:08 executing program 1: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 337.168642][T28674] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 337.176599][T28674] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 337.176609][T28674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 337.176615][T28674] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:08 executing program 2 (fault-call:2 fault-nth:14): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x0, 0x80000) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:08 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xb901, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x171, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:08 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) fremovexattr(r0, &(0x7f0000000000)=@random={'system.', 'security:\x00'}) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000010000000000000000f3320000000000000a00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 337.378035][T28712] FAULT_INJECTION: forcing a failure. [ 337.378035][T28712] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 337.395482][T28712] CPU: 1 PID: 28712 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 337.403467][T28712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.403471][T28712] Call Trace: [ 337.403489][T28712] dump_stack+0x1d8/0x2f8 [ 337.403505][T28712] should_fail+0x555/0x770 [ 337.403521][T28712] should_fail_alloc_page+0x55/0x60 [ 337.403532][T28712] prepare_alloc_pages+0x283/0x470 [ 337.403549][T28712] __alloc_pages_nodemask+0xb2/0x5d0 [ 337.425587][T28712] alloc_pages_current+0x2db/0x500 [ 337.425601][T28712] pte_alloc_one+0x1f/0x180 [ 337.436406][T28712] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 337.436418][T28712] ? count_memcg_event_mm+0x214/0x300 [ 337.436432][T28712] handle_mm_fault+0x26fc/0x6010 [ 337.436452][T28712] __get_user_pages+0x1002/0x1610 [ 337.472372][T28712] get_user_pages_unlocked+0x120/0x530 [ 337.477841][T28712] get_user_pages_fast+0x2e4/0x4f0 [ 337.482957][T28712] iov_iter_get_pages+0x243/0xac0 [ 337.487987][T28712] bio_iov_iter_get_pages+0x1d4/0xc90 [ 337.493369][T28712] __blkdev_direct_IO+0x6d1/0x1340 [ 337.498482][T28712] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 337.504206][T28712] ? aio_prep_rw+0x900/0x900 [ 337.504225][T28712] ? iov_iter_npages+0x1ee/0x9a0 [ 337.513715][T28712] blkdev_direct_IO+0xbe/0xd0 [ 337.513727][T28712] generic_file_read_iter+0x1ad3/0x21b0 [ 337.513735][T28712] ? fsnotify+0x12d1/0x13d0 16:47:08 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000000000)) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 337.513748][T28712] ? __kasan_check_read+0x11/0x20 [ 337.513764][T28712] blkdev_read_iter+0x12e/0x140 [ 337.538261][T28712] aio_read+0x31f/0x400 [ 337.542423][T28712] io_submit_one+0x6eb/0x1970 [ 337.547095][T28712] ? __might_fault+0xf9/0x160 [ 337.551768][T28712] ? __might_fault+0xf9/0x160 [ 337.556447][T28712] __se_sys_io_submit+0x12f/0x240 [ 337.561474][T28712] __x64_sys_io_submit+0x7b/0x90 [ 337.566402][T28712] do_syscall_64+0xfe/0x140 [ 337.570904][T28712] entry_SYSCALL_64_after_hwframe+0x49/0xbe 16:47:08 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r0, r1, &(0x7f0000000000), 0xffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8200000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 337.576791][T28712] RIP: 0033:0x459829 [ 337.580679][T28712] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 337.600275][T28712] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 337.608675][T28712] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 337.616638][T28712] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 16:47:08 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 337.624609][T28712] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 337.632575][T28712] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 337.640539][T28712] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:09 executing program 2 (fault-call:2 fault-nth:15): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x2b3, &(0x7f00000bfff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) 16:47:09 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) recvmmsg(r2, &(0x7f00000009c0)=[{{&(0x7f0000000000)=@pppol2tpin6, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/31, 0x1f}, {&(0x7f0000000380)=""/209, 0xd1}, {&(0x7f0000000140)=""/112, 0x70}], 0x3, &(0x7f00000001c0)=""/37, 0x25}}, {{&(0x7f0000000480)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000500)=""/137, 0x89}, {&(0x7f00000005c0)=""/15, 0xf}], 0x2}, 0x636}, {{&(0x7f0000000640)=@nfc_llcp, 0x80, &(0x7f0000000940)=[{&(0x7f00000006c0)=""/245, 0xf5}, {&(0x7f00000007c0)=""/86, 0x56}, {&(0x7f0000000840)=""/215, 0xd7}], 0x3, &(0x7f0000000980)=""/28, 0x1c}, 0xcdb}], 0x3, 0x2160, &(0x7f0000000a80)) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) [ 337.843509][T28755] FAULT_INJECTION: forcing a failure. [ 337.843509][T28755] name failslab, interval 1, probability 0, space 0, times 0 [ 337.869757][T28755] CPU: 1 PID: 28755 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 337.877753][T28755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.887900][T28755] Call Trace: [ 337.891192][T28755] dump_stack+0x1d8/0x2f8 [ 337.895527][T28755] should_fail+0x555/0x770 [ 337.899946][T28755] __should_failslab+0x11a/0x160 [ 337.904880][T28755] ? ptlock_alloc+0x20/0x70 [ 337.909384][T28755] should_failslab+0x9/0x20 [ 337.913966][T28755] kmem_cache_alloc+0x56/0x2e0 [ 337.918727][T28755] ? alloc_pages_current+0x2db/0x500 [ 337.924019][T28755] ptlock_alloc+0x20/0x70 [ 337.928342][T28755] pte_alloc_one+0x6e/0x180 [ 337.932842][T28755] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 337.938641][T28755] ? count_memcg_event_mm+0x214/0x300 [ 337.944013][T28755] handle_mm_fault+0x26fc/0x6010 [ 337.948955][T28755] __get_user_pages+0x1002/0x1610 [ 337.953992][T28755] get_user_pages_unlocked+0x120/0x530 [ 337.959453][T28755] get_user_pages_fast+0x2e4/0x4f0 [ 337.964564][T28755] iov_iter_get_pages+0x243/0xac0 [ 337.969589][T28755] bio_iov_iter_get_pages+0x1d4/0xc90 [ 337.974980][T28755] __blkdev_direct_IO+0x6d1/0x1340 [ 337.980084][T28755] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 337.985821][T28755] ? aio_prep_rw+0x900/0x900 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) [ 337.990852][T28755] ? iov_iter_npages+0x1ee/0x9a0 [ 337.995786][T28755] blkdev_direct_IO+0xbe/0xd0 [ 338.000461][T28755] generic_file_read_iter+0x1ad3/0x21b0 [ 338.005999][T28755] ? fsnotify+0x12d1/0x13d0 [ 338.010496][T28755] ? __kasan_check_read+0x11/0x20 [ 338.015523][T28755] blkdev_read_iter+0x12e/0x140 [ 338.020373][T28755] aio_read+0x31f/0x400 [ 338.024538][T28755] io_submit_one+0x6eb/0x1970 [ 338.029216][T28755] ? __might_fault+0xf9/0x160 [ 338.033894][T28755] ? __might_fault+0xf9/0x160 [ 338.038573][T28755] __se_sys_io_submit+0x12f/0x240 [ 338.043595][T28755] __x64_sys_io_submit+0x7b/0x90 [ 338.043614][T28755] do_syscall_64+0xfe/0x140 [ 338.043632][T28755] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.058998][T28755] RIP: 0033:0x459829 [ 338.062892][T28755] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 338.082496][T28755] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 338.090907][T28755] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 338.098878][T28755] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 338.106886][T28755] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 338.114832][T28755] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 338.122782][T28755] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:09 executing program 2 (fault-call:2 fault-nth:16): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) 16:47:09 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff01, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7fff, 0xb697ae25ed5d39af) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000040)=@generic={0x1, 0x6e3, 0x9}) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000001580)=""/4096, 0x1000) [ 338.284293][T28794] FAULT_INJECTION: forcing a failure. [ 338.284293][T28794] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 338.302048][T28794] CPU: 1 PID: 28794 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 338.310041][T28794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.320085][T28794] Call Trace: [ 338.320103][T28794] dump_stack+0x1d8/0x2f8 [ 338.320121][T28794] should_fail+0x555/0x770 [ 338.320136][T28794] should_fail_alloc_page+0x55/0x60 [ 338.320148][T28794] prepare_alloc_pages+0x283/0x470 [ 338.320163][T28794] __alloc_pages_nodemask+0xb2/0x5d0 [ 338.320180][T28794] ? trace_lock_release+0x135/0x1a0 [ 338.342436][T28794] ? check_preemption_disabled+0xb7/0x2a0 [ 338.342453][T28794] alloc_pages_vma+0x947/0xca0 [ 338.342462][T28794] ? trace_lock_release+0x135/0x1a0 [ 338.342476][T28794] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 338.342491][T28794] ? count_memcg_event_mm+0x214/0x300 [ 338.352953][T28794] handle_mm_fault+0x26fc/0x6010 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000005e0000001000000000000000000000000f3320000000000000a0088ac00000000da93677a6baf5cf446c1936ae81d9cab428ad8", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x100, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000040)={0x101, 0x3f, 0xfffffffffffffffe}) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 338.352976][T28794] __get_user_pages+0x1002/0x1610 [ 338.390026][T28794] get_user_pages_unlocked+0x120/0x530 [ 338.395524][T28794] get_user_pages_fast+0x2e4/0x4f0 [ 338.395538][T28794] iov_iter_get_pages+0x243/0xac0 [ 338.395552][T28794] bio_iov_iter_get_pages+0x1d4/0xc90 [ 338.395575][T28794] __blkdev_direct_IO+0x6d1/0x1340 [ 338.395589][T28794] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 338.405728][T28794] ? aio_prep_rw+0x900/0x900 [ 338.405744][T28794] ? iov_iter_npages+0x1ee/0x9a0 16:47:09 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xda9) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 338.405761][T28794] blkdev_direct_IO+0xbe/0xd0 [ 338.436048][T28794] generic_file_read_iter+0x1ad3/0x21b0 [ 338.441590][T28794] ? fsnotify+0x12d1/0x13d0 [ 338.446092][T28794] ? __kasan_check_read+0x11/0x20 [ 338.451644][T28794] blkdev_read_iter+0x12e/0x140 [ 338.456487][T28794] aio_read+0x31f/0x400 [ 338.460653][T28794] io_submit_one+0x6eb/0x1970 [ 338.465331][T28794] ? __might_fault+0xf9/0x160 [ 338.470010][T28794] ? __might_fault+0xf9/0x160 [ 338.474690][T28794] __se_sys_io_submit+0x12f/0x240 [ 338.479717][T28794] __x64_sys_io_submit+0x7b/0x90 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4) sendmsg$nl_xfrm(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYPTR=&(0x7f0000000040)=ANY=[@ANYPTR, @ANYRESHEX=r0, @ANYRESHEX=0x0]], 0x4}, 0x1, 0x0, 0x0, 0x2}, 0x400c010) r3 = add_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r4 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$unlink(0x9, r3, r4) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000001580)=""/4096, 0x1000) [ 338.484656][T28794] do_syscall_64+0xfe/0x140 [ 338.489167][T28794] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.495046][T28794] RIP: 0033:0x459829 [ 338.498974][T28794] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 338.518700][T28794] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 338.527105][T28794] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 338.535071][T28794] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 338.543038][T28794] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 338.551001][T28794] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 338.551007][T28794] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:09 executing program 2 (fault-call:2 fault-nth:17): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, 0x0, 0x0) 16:47:09 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x402, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:09 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x10000, 0x13c34575445d142e) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000040)) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 338.731754][T28833] FAULT_INJECTION: forcing a failure. [ 338.731754][T28833] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 338.748643][T28833] CPU: 1 PID: 28833 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 338.756638][T28833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.766680][T28833] Call Trace: [ 338.766698][T28833] dump_stack+0x1d8/0x2f8 [ 338.766714][T28833] should_fail+0x555/0x770 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, 0x0, 0x0) 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, 0x0, 0x0) [ 338.766731][T28833] should_fail_alloc_page+0x55/0x60 [ 338.779142][T28833] prepare_alloc_pages+0x283/0x470 [ 338.779162][T28833] __alloc_pages_nodemask+0xb2/0x5d0 [ 338.795221][T28833] ? finish_lock_switch+0x31/0x40 [ 338.800246][T28833] alloc_pages_vma+0x947/0xca0 [ 338.805006][T28833] ? trace_lock_release+0x135/0x1a0 [ 338.810204][T28833] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 338.816007][T28833] ? count_memcg_event_mm+0x214/0x300 [ 338.821380][T28833] handle_mm_fault+0x26fc/0x6010 [ 338.826324][T28833] __get_user_pages+0x1002/0x1610 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, 0x0}, 0x0) [ 338.831366][T28833] get_user_pages_unlocked+0x120/0x530 [ 338.831382][T28833] get_user_pages_fast+0x2e4/0x4f0 [ 338.841911][T28833] iov_iter_get_pages+0x243/0xac0 [ 338.841926][T28833] bio_iov_iter_get_pages+0x1d4/0xc90 [ 338.841949][T28833] __blkdev_direct_IO+0x6d1/0x1340 [ 338.857383][T28833] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 338.863104][T28833] ? aio_prep_rw+0x900/0x900 [ 338.867697][T28833] ? iov_iter_npages+0x1ee/0x9a0 [ 338.872636][T28833] blkdev_direct_IO+0xbe/0xd0 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, 0x0}, 0x0) [ 338.877310][T28833] generic_file_read_iter+0x1ad3/0x21b0 [ 338.882851][T28833] ? fsnotify+0x12d1/0x13d0 [ 338.887354][T28833] ? trace_mm_page_alloc+0x17a/0x1f0 [ 338.892654][T28833] blkdev_read_iter+0x12e/0x140 [ 338.897503][T28833] aio_read+0x31f/0x400 [ 338.901670][T28833] io_submit_one+0x6eb/0x1970 [ 338.906347][T28833] ? __might_fault+0xf9/0x160 [ 338.911018][T28833] ? __might_fault+0xf9/0x160 [ 338.915698][T28833] __se_sys_io_submit+0x12f/0x240 [ 338.920719][T28833] __x64_sys_io_submit+0x7b/0x90 [ 338.920733][T28833] do_syscall_64+0xfe/0x140 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, 0x0}, 0x0) [ 338.920749][T28833] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.930147][T28833] RIP: 0033:0x459829 [ 338.930158][T28833] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 338.930169][T28833] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 338.967950][T28833] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)}, 0x0) [ 338.975924][T28833] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 338.983889][T28833] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 338.991852][T28833] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 338.999818][T28833] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:10 executing program 2 (fault-call:2 fault-nth:18): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000000)={r0}) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:10 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)}, 0x0) 16:47:10 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x406, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x18100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 0: r0 = accept$netrom(0xffffffffffffffff, &(0x7f0000000000)={{}, [@remote, @null, @bcast, @rose, @bcast, @rose, @null]}, &(0x7f0000000080)=0x48) fcntl$setflags(r0, 0x2, 0x1) r1 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0xb3cd, 0x200000) ioctl$PPPIOCGUNIT(r1, 0x80047456, &(0x7f0000000140)) socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x10, 0x400000000080803, 0x0) write(r3, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 339.206838][T28874] FAULT_INJECTION: forcing a failure. [ 339.206838][T28874] name failslab, interval 1, probability 0, space 0, times 0 [ 339.222216][T28874] CPU: 1 PID: 28874 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 339.230203][T28874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.230207][T28874] Call Trace: [ 339.230226][T28874] dump_stack+0x1d8/0x2f8 [ 339.230248][T28874] should_fail+0x555/0x770 [ 339.252293][T28874] __should_failslab+0x11a/0x160 16:47:10 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x408040) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 339.257230][T28874] ? ptlock_alloc+0x20/0x70 [ 339.261733][T28874] should_failslab+0x9/0x20 [ 339.266233][T28874] kmem_cache_alloc+0x56/0x2e0 [ 339.270987][T28874] ? alloc_pages_current+0x2db/0x500 [ 339.276267][T28874] ptlock_alloc+0x20/0x70 [ 339.280593][T28874] pte_alloc_one+0x6e/0x180 [ 339.285102][T28874] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 339.290903][T28874] ? count_memcg_event_mm+0x214/0x300 [ 339.296279][T28874] handle_mm_fault+0x26fc/0x6010 [ 339.301228][T28874] __get_user_pages+0x1002/0x1610 16:47:10 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xffffffffffff0001, 0x0) ioctl$ASHMEM_SET_NAME(r3, 0x41007701, &(0x7f0000000040)='@GPL\x00') read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 339.306257][T28874] get_user_pages_unlocked+0x120/0x530 [ 339.311710][T28874] get_user_pages_fast+0x2e4/0x4f0 [ 339.317771][T28874] iov_iter_get_pages+0x243/0xac0 [ 339.317781][T28874] bio_iov_iter_get_pages+0x1d4/0xc90 [ 339.317794][T28874] __blkdev_direct_IO+0x6d1/0x1340 [ 339.317800][T28874] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 339.317808][T28874] ? aio_prep_rw+0x900/0x900 [ 339.317815][T28874] ? iov_iter_npages+0x1ee/0x9a0 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)}, 0x0) 16:47:10 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000140)=@gcm_128={{0x304}, "38c5f6c7dc43150b", "923559dc84d4efc55bfa5c4c249541bb", "99bb93af", "f69debfa6b241456"}, 0x28) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000180)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff01000000e9100000000000000000000001e0000001000000000000000000f3320000000000000a00"/66, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) fallocate(r0, 0x42, 0x8001, 0x8) read(r1, &(0x7f0000002580)=""/4096, 0x1000) r3 = syz_genetlink_get_family_id$tipc(0xfffffffffffffffe) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x300000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r3, 0x300, 0x70bd26, 0x25dfdbff, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) [ 339.317822][T28874] blkdev_direct_IO+0xbe/0xd0 [ 339.317828][T28874] generic_file_read_iter+0x1ad3/0x21b0 [ 339.317832][T28874] ? fsnotify+0x12d1/0x13d0 [ 339.317840][T28874] ? __kasan_check_read+0x11/0x20 [ 339.317849][T28874] blkdev_read_iter+0x12e/0x140 [ 339.317855][T28874] aio_read+0x31f/0x400 [ 339.317866][T28874] io_submit_one+0x6eb/0x1970 [ 339.317873][T28874] ? __might_fault+0xf9/0x160 [ 339.317879][T28874] ? __might_fault+0xf9/0x160 [ 339.317888][T28874] __se_sys_io_submit+0x12f/0x240 [ 339.317896][T28874] __x64_sys_io_submit+0x7b/0x90 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0], 0x3}}, 0x0) [ 339.317902][T28874] do_syscall_64+0xfe/0x140 [ 339.317911][T28874] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 339.317916][T28874] RIP: 0033:0x459829 [ 339.317922][T28874] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 339.317925][T28874] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 339.317931][T28874] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 339.317934][T28874] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 339.317937][T28874] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 339.317940][T28874] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 339.317943][T28874] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:10 executing program 2 (fault-call:2 fault-nth:19): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000000)={{{@in=@empty, @in=@local}}, {{@in6=@local}, 0x0, @in=@initdev}}, &(0x7f0000000140)=0xe8) socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0], 0x3}}, 0x0) 16:47:10 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x20000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:10 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0], 0x3}}, 0x0) 16:47:10 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = socket(0x10, 0x400000000080803, 0x0) write(r0, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) fcntl$setsig(r1, 0xa, 0x26) read(r0, &(0x7f0000002580)=""/4096, 0x1000) [ 339.698873][T28915] FAULT_INJECTION: forcing a failure. [ 339.698873][T28915] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.717949][T28915] CPU: 1 PID: 28915 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 339.725954][T28915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.736002][T28915] Call Trace: [ 339.739294][T28915] dump_stack+0x1d8/0x2f8 [ 339.743627][T28915] should_fail+0x555/0x770 [ 339.748049][T28915] should_fail_alloc_page+0x55/0x60 [ 339.753240][T28915] prepare_alloc_pages+0x283/0x470 [ 339.758345][T28915] __alloc_pages_nodemask+0xb2/0x5d0 [ 339.758357][T28915] ? trace_lock_release+0x135/0x1a0 [ 339.758371][T28915] ? check_preemption_disabled+0xb7/0x2a0 [ 339.774535][T28915] alloc_pages_vma+0x947/0xca0 [ 339.779302][T28915] ? trace_lock_release+0x135/0x1a0 [ 339.784501][T28915] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 339.790305][T28915] ? count_memcg_event_mm+0x214/0x300 [ 339.795681][T28915] handle_mm_fault+0x26fc/0x6010 [ 339.800639][T28915] __get_user_pages+0x1002/0x1610 [ 339.805675][T28915] get_user_pages_unlocked+0x120/0x530 [ 339.811131][T28915] get_user_pages_fast+0x2e4/0x4f0 [ 339.816249][T28915] iov_iter_get_pages+0x243/0xac0 [ 339.821278][T28915] bio_iov_iter_get_pages+0x1d4/0xc90 [ 339.826660][T28915] __blkdev_direct_IO+0x6d1/0x1340 [ 339.831770][T28915] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 339.837480][T28915] ? aio_prep_rw+0x900/0x900 [ 339.842067][T28915] ? iov_iter_npages+0x1ee/0x9a0 [ 339.847006][T28915] blkdev_direct_IO+0xbe/0xd0 [ 339.851790][T28915] generic_file_read_iter+0x1ad3/0x21b0 [ 339.857328][T28915] ? fsnotify+0x12d1/0x13d0 [ 339.861827][T28915] ? __kasan_check_read+0x11/0x20 [ 339.866854][T28915] blkdev_read_iter+0x12e/0x140 [ 339.871710][T28915] aio_read+0x31f/0x400 [ 339.875872][T28915] io_submit_one+0x6eb/0x1970 [ 339.880548][T28915] ? __might_fault+0xf9/0x160 [ 339.885217][T28915] ? __might_fault+0xf9/0x160 [ 339.889894][T28915] __se_sys_io_submit+0x12f/0x240 [ 339.894916][T28915] __x64_sys_io_submit+0x7b/0x90 [ 339.899853][T28915] do_syscall_64+0xfe/0x140 [ 339.904358][T28915] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 339.910242][T28915] RIP: 0033:0x459829 [ 339.914125][T28915] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 339.914130][T28915] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 339.914139][T28915] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:10 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xab, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x4}}, 0x0) 16:47:11 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x10001) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x4}}, 0x0) [ 339.914145][T28915] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 339.914150][T28915] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 339.914161][T28915] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 339.973959][T28915] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:11 executing program 2 (fault-call:2 fault-nth:20): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x80000, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x7, 0x0, 0x7, 0x8001}, &(0x7f0000000180)=0x18) setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=r2, 0x4) r3 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) r4 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x1, 0x101000) ioctl$FUSE_DEV_IOC_CLONE(r3, 0x8004e500, &(0x7f0000000080)=r4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r5 = socket(0x10, 0x400000000080803, 0x0) write(r5, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$SNDRV_TIMER_IOCTL_STOP(r4, 0x54a1) sendmsg$nl_xfrm(r6, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r5, &(0x7f0000002580)=""/4096, 0x1000) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x4}}, 0x0) 16:47:11 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c39"], 0x4}}, 0x0) 16:47:11 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/sockcreate\x00', 0x2, 0x0) bind(r0, &(0x7f0000000040)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x2}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @bcast, @null, @null]}, 0x80) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 340.170102][T28953] FAULT_INJECTION: forcing a failure. [ 340.170102][T28953] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 340.196858][T28953] CPU: 1 PID: 28953 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 340.204866][T28953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.214915][T28953] Call Trace: [ 340.218202][T28953] dump_stack+0x1d8/0x2f8 [ 340.222539][T28953] should_fail+0x555/0x770 [ 340.226960][T28953] should_fail_alloc_page+0x55/0x60 [ 340.232161][T28953] prepare_alloc_pages+0x283/0x470 [ 340.237266][T28953] __alloc_pages_nodemask+0xb2/0x5d0 [ 340.242550][T28953] alloc_pages_current+0x2db/0x500 [ 340.247658][T28953] pte_alloc_one+0x1f/0x180 [ 340.252157][T28953] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 340.257960][T28953] ? count_memcg_event_mm+0x214/0x300 [ 340.263339][T28953] handle_mm_fault+0x26fc/0x6010 [ 340.268289][T28953] __get_user_pages+0x1002/0x1610 [ 340.273318][T28953] get_user_pages_unlocked+0x120/0x530 [ 340.278781][T28953] get_user_pages_fast+0x2e4/0x4f0 [ 340.283986][T28953] iov_iter_get_pages+0x243/0xac0 [ 340.289015][T28953] bio_iov_iter_get_pages+0x1d4/0xc90 [ 340.294397][T28953] __blkdev_direct_IO+0x6d1/0x1340 [ 340.299501][T28953] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 340.305221][T28953] ? aio_prep_rw+0x900/0x900 [ 340.309810][T28953] ? iov_iter_npages+0x1ee/0x9a0 [ 340.314738][T28953] blkdev_direct_IO+0xbe/0xd0 [ 340.319423][T28953] generic_file_read_iter+0x1ad3/0x21b0 [ 340.324965][T28953] ? fsnotify+0x12d1/0x13d0 [ 340.329469][T28953] ? __kasan_check_read+0x11/0x20 [ 340.334508][T28953] blkdev_read_iter+0x12e/0x140 [ 340.339355][T28953] aio_read+0x31f/0x400 [ 340.343524][T28953] io_submit_one+0x6eb/0x1970 [ 340.348200][T28953] ? __might_fault+0xf9/0x160 [ 340.352873][T28953] ? __might_fault+0xf9/0x160 [ 340.357556][T28953] __se_sys_io_submit+0x12f/0x240 [ 340.362664][T28953] __x64_sys_io_submit+0x7b/0x90 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c39"], 0x4}}, 0x0) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c39"], 0x4}}, 0x0) 16:47:11 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826"], 0x4}}, 0x0) [ 340.367634][T28953] do_syscall_64+0xfe/0x140 [ 340.372136][T28953] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.378020][T28953] RIP: 0033:0x459829 [ 340.381909][T28953] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 340.401502][T28953] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 340.401512][T28953] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 340.401518][T28953] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 340.401523][T28953] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 340.401528][T28953] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 340.401533][T28953] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:11 executing program 2 (fault-call:2 fault-nth:21): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)) r0 = socket(0x10, 0x400000000080803, 0x0) write(r0, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000800}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="780100012600000227bd7000fddbdf250700000008006d00", @ANYRES32=r2, @ANYBLOB="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"/348], 0x178}, 0x1, 0x0, 0x0, 0x1}, 0x4004844) accept$ax25(r0, &(0x7f0000000500)={{0x3, @netrom}, [@bcast, @netrom, @null, @bcast, @bcast, @default, @bcast, @netrom]}, &(0x7f00000001c0)=0x48) read(r0, &(0x7f0000002580)=""/4096, 0x1000) 16:47:11 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826"], 0x4}}, 0x0) 16:47:11 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:11 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 340.580619][T28988] FAULT_INJECTION: forcing a failure. [ 340.580619][T28988] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 340.602679][T28988] CPU: 0 PID: 28988 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 340.610705][T28988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.620763][T28988] Call Trace: [ 340.624054][T28988] dump_stack+0x1d8/0x2f8 [ 340.628394][T28988] should_fail+0x555/0x770 [ 340.632802][T28988] should_fail_alloc_page+0x55/0x60 [ 340.638007][T28988] prepare_alloc_pages+0x283/0x470 [ 340.643097][T28988] __alloc_pages_nodemask+0xb2/0x5d0 [ 340.648363][T28988] ? trace_lock_release+0x135/0x1a0 [ 340.653544][T28988] ? check_preemption_disabled+0xb7/0x2a0 [ 340.659251][T28988] alloc_pages_vma+0x947/0xca0 [ 340.663992][T28988] ? trace_lock_release+0x135/0x1a0 [ 340.669174][T28988] do_huge_pmd_anonymous_page+0x882/0x1b60 [ 340.674966][T28988] ? count_memcg_event_mm+0x214/0x300 [ 340.680314][T28988] handle_mm_fault+0x26fc/0x6010 [ 340.685231][T28988] __get_user_pages+0x1002/0x1610 [ 340.690234][T28988] get_user_pages_unlocked+0x120/0x530 [ 340.695670][T28988] get_user_pages_fast+0x2e4/0x4f0 [ 340.700757][T28988] iov_iter_get_pages+0x243/0xac0 [ 340.705755][T28988] bio_iov_iter_get_pages+0x1d4/0xc90 [ 340.711139][T28988] __blkdev_direct_IO+0x6d1/0x1340 [ 340.716257][T28988] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 340.721954][T28988] ? aio_prep_rw+0x900/0x900 [ 340.726558][T28988] ? iov_iter_npages+0x1ee/0x9a0 [ 340.731492][T28988] blkdev_direct_IO+0xbe/0xd0 [ 340.736173][T28988] generic_file_read_iter+0x1ad3/0x21b0 [ 340.741799][T28988] ? fsnotify+0x12d1/0x13d0 [ 340.746302][T28988] ? trace_mm_page_alloc+0x17a/0x1f0 [ 340.751584][T28988] blkdev_read_iter+0x12e/0x140 [ 340.756423][T28988] aio_read+0x31f/0x400 [ 340.760576][T28988] io_submit_one+0x6eb/0x1970 [ 340.765230][T28988] ? __might_fault+0xf9/0x160 [ 340.769888][T28988] ? __might_fault+0xf9/0x160 [ 340.774559][T28988] __se_sys_io_submit+0x12f/0x240 [ 340.779576][T28988] __x64_sys_io_submit+0x7b/0x90 [ 340.784507][T28988] do_syscall_64+0xfe/0x140 [ 340.788995][T28988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.794947][T28988] RIP: 0033:0x459829 [ 340.798836][T28988] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 340.818417][T28988] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826"], 0x4}}, 0x0) 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) ioctl$FICLONE(r0, 0x40049409, r1) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) 16:47:12 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x402, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 340.827005][T28988] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 340.834956][T28988] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 340.842909][T28988] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 340.850859][T28988] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 340.858804][T28988] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) r4 = creat(&(0x7f0000000000)='./file0\x00', 0x100) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=0x0) capset(&(0x7f0000000080)={0x20071026, r5}, &(0x7f00000000c0)={0x20, 0x6, 0xffffffff, 0x2, 0x7f, 0x1}) ioctl$VIDIOC_TRY_FMT(r4, 0xc0d05640, &(0x7f0000000380)={0xa, @pix_mp={0x5, 0x8, 0x30323953, 0x1, 0x7, [{0xa2a3, 0xffffffff}, {0x2, 0xbfc}, {0x5d, 0x1}, {0xffff, 0xb7b}, {0x7b2, 0x7}, {0x1f, 0x5}, {0x3, 0x7}, {0x208, 0x3}], 0xa9, 0x6, 0x2, 0x1, 0x646cb18bcc7e4b72}}) ioctl$NBD_CLEAR_SOCK(r4, 0xab04) 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:12 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 2 (fault-call:2 fault-nth:22): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x810100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 340.958945][T29002] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x4000, 0x0) ioctl$NBD_SET_FLAGS(r3, 0xab0a, 0x9) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:12 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x406, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 341.133099][T29016] FAULT_INJECTION: forcing a failure. [ 341.133099][T29016] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 341.162259][T29016] CPU: 1 PID: 29016 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 341.170267][T29016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000000000)={0x0, 0xfffffffffffffff7, 0xcc10855de714296a, 0x0, 0x1}, &(0x7f0000000040)=0x18) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={r3, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0x2, @local, 0x9}]}, &(0x7f0000000140)=0x10) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r0, &(0x7f0000001580)=""/4096, 0xffffffffffffff40) 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) getsockopt$sock_buf(r2, 0x1, 0x1f, &(0x7f0000000000)=""/143, &(0x7f00000000c0)=0x8f) [ 341.180310][T29016] Call Trace: [ 341.180328][T29016] dump_stack+0x1d8/0x2f8 [ 341.180341][T29016] should_fail+0x555/0x770 [ 341.180354][T29016] should_fail_alloc_page+0x55/0x60 [ 341.180363][T29016] prepare_alloc_pages+0x283/0x470 [ 341.180375][T29016] __alloc_pages_nodemask+0xb2/0x5d0 [ 341.180391][T29016] alloc_pages_current+0x2db/0x500 [ 341.180403][T29016] pte_alloc_one+0x1f/0x180 [ 341.180416][T29016] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 341.180426][T29016] ? count_memcg_event_mm+0x214/0x300 [ 341.180441][T29016] handle_mm_fault+0x26fc/0x6010 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 341.180462][T29016] __get_user_pages+0x1002/0x1610 [ 341.180484][T29016] get_user_pages_unlocked+0x120/0x530 [ 341.244082][T29016] get_user_pages_fast+0x2e4/0x4f0 [ 341.249194][T29016] iov_iter_get_pages+0x243/0xac0 [ 341.254222][T29016] bio_iov_iter_get_pages+0x1d4/0xc90 [ 341.259600][T29016] __blkdev_direct_IO+0x6d1/0x1340 [ 341.264711][T29016] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 341.270432][T29016] ? aio_prep_rw+0x900/0x900 [ 341.275022][T29016] ? iov_iter_npages+0x1ee/0x9a0 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 341.279951][T29016] blkdev_direct_IO+0xbe/0xd0 [ 341.284630][T29016] generic_file_read_iter+0x1ad3/0x21b0 [ 341.290169][T29016] ? fsnotify+0x12d1/0x13d0 [ 341.294674][T29016] ? __kasan_check_read+0x11/0x20 [ 341.299711][T29016] blkdev_read_iter+0x12e/0x140 [ 341.304560][T29016] aio_read+0x31f/0x400 [ 341.308727][T29016] io_submit_one+0x6eb/0x1970 [ 341.313406][T29016] ? __might_fault+0xf9/0x160 [ 341.318559][T29016] ? __might_fault+0xf9/0x160 [ 341.323249][T29016] __se_sys_io_submit+0x12f/0x240 [ 341.328277][T29016] __x64_sys_io_submit+0x7b/0x90 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x204240, 0x0) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f0000000040)) splice(r0, &(0x7f0000000080), r1, &(0x7f00000000c0), 0x7f, 0x8) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 341.333207][T29016] do_syscall_64+0xfe/0x140 [ 341.333221][T29016] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 341.333229][T29016] RIP: 0033:0x459829 [ 341.333239][T29016] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 341.333244][T29016] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 341.382192][T29016] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 341.390157][T29016] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 341.390163][T29016] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 341.390169][T29016] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 341.390174][T29016] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:12 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67"], 0x4}}, 0x0) 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x200, 0x616002) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="b8000000190001affdb02bfd2307a04fdeae000000000000000000ff010000000000000000000001e0000001000000000000000000000000f3320000000000000a00"/75, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:12 executing program 2 (fault-call:2 fault-nth:23): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:12 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@loopback}}, &(0x7f0000000480)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'vcan0\x00', r2}) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x7, 0x1, 0x3, 0x6, 0x8, r1, 0x9, [], r3, 0xffffffffffffffff, 0x0, 0x1}, 0x3c) r4 = socket(0x10, 0x400000000080803, 0x0) write(r4, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) r6 = gettid() ioctl$sock_FIOSETOWN(r4, 0x8901, &(0x7f0000000000)=r6) sendmsg$nl_xfrm(r5, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000500)=ANY=[@ANYBLOB="000000000000000380000000000800000f010000000000000000000107002001e00000e5ff1c0002000000000000bc3d2fd38c763dcd7121", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r4, &(0x7f0000002580)=""/4096, 0x1000) 16:47:12 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 341.583400][T29055] FAULT_INJECTION: forcing a failure. [ 341.583400][T29055] name failslab, interval 1, probability 0, space 0, times 0 [ 341.651130][T29055] CPU: 1 PID: 29055 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 341.659160][T29055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.669218][T29055] Call Trace: [ 341.672514][T29055] dump_stack+0x1d8/0x2f8 [ 341.676846][T29055] should_fail+0x555/0x770 [ 341.681262][T29055] __should_failslab+0x11a/0x160 [ 341.686192][T29055] ? ptlock_alloc+0x20/0x70 [ 341.690679][T29055] should_failslab+0x9/0x20 [ 341.695257][T29055] kmem_cache_alloc+0x56/0x2e0 [ 341.699994][T29055] ? alloc_pages_current+0x2db/0x500 [ 341.705252][T29055] ptlock_alloc+0x20/0x70 [ 341.709554][T29055] pte_alloc_one+0x6e/0x180 [ 341.714031][T29055] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 341.719815][T29055] ? count_memcg_event_mm+0x214/0x300 [ 341.725163][T29055] handle_mm_fault+0x26fc/0x6010 [ 341.730095][T29055] __get_user_pages+0x1002/0x1610 [ 341.735114][T29055] get_user_pages_unlocked+0x120/0x530 [ 341.740550][T29055] get_user_pages_fast+0x2e4/0x4f0 [ 341.745648][T29055] iov_iter_get_pages+0x243/0xac0 [ 341.750659][T29055] bio_iov_iter_get_pages+0x1d4/0xc90 [ 341.756013][T29055] __blkdev_direct_IO+0x6d1/0x1340 [ 341.761102][T29055] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 341.766822][T29055] ? aio_prep_rw+0x900/0x900 [ 341.771402][T29055] ? iov_iter_npages+0x1ee/0x9a0 [ 341.776316][T29055] blkdev_direct_IO+0xbe/0xd0 [ 341.780978][T29055] generic_file_read_iter+0x1ad3/0x21b0 [ 341.786519][T29055] ? fsnotify+0x12d1/0x13d0 [ 341.791184][T29055] ? __kasan_check_read+0x11/0x20 [ 341.796271][T29055] blkdev_read_iter+0x12e/0x140 [ 341.801100][T29055] aio_read+0x31f/0x400 [ 341.805241][T29055] io_submit_one+0x6eb/0x1970 [ 341.809908][T29055] ? __might_fault+0xf9/0x160 [ 341.814573][T29055] ? __might_fault+0xf9/0x160 [ 341.819228][T29055] __se_sys_io_submit+0x12f/0x240 [ 341.824256][T29055] __x64_sys_io_submit+0x7b/0x90 [ 341.829174][T29055] do_syscall_64+0xfe/0x140 [ 341.833651][T29055] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 341.839515][T29055] RIP: 0033:0x459829 [ 341.843385][T29055] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 341.862981][T29055] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 341.871365][T29055] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 341.879330][T29055] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 341.887273][T29055] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:13 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 341.895217][T29055] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 341.903182][T29055] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:13 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:13 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) r2 = pkey_alloc(0x0, 0x1) pkey_free(r2) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:13 executing program 2 (fault-call:2 fault-nth:24): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:13 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 342.117947][T29102] FAULT_INJECTION: forcing a failure. [ 342.117947][T29102] name failslab, interval 1, probability 0, space 0, times 0 [ 342.171596][T29102] CPU: 1 PID: 29102 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 342.179623][T29102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.189673][T29102] Call Trace: [ 342.192963][T29102] dump_stack+0x1d8/0x2f8 [ 342.197296][T29102] should_fail+0x555/0x770 [ 342.201713][T29102] __should_failslab+0x11a/0x160 [ 342.206647][T29102] ? ptlock_alloc+0x20/0x70 [ 342.211147][T29102] should_failslab+0x9/0x20 [ 342.215653][T29102] kmem_cache_alloc+0x56/0x2e0 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 342.220416][T29102] ? alloc_pages_current+0x2db/0x500 [ 342.225697][T29102] ptlock_alloc+0x20/0x70 [ 342.230107][T29102] pte_alloc_one+0x6e/0x180 [ 342.234614][T29102] do_huge_pmd_anonymous_page+0xb01/0x1b60 [ 342.240418][T29102] ? count_memcg_event_mm+0x214/0x300 [ 342.245814][T29102] handle_mm_fault+0x26fc/0x6010 [ 342.250764][T29102] __get_user_pages+0x1002/0x1610 [ 342.255802][T29102] get_user_pages_unlocked+0x120/0x530 [ 342.261261][T29102] get_user_pages_fast+0x2e4/0x4f0 [ 342.266375][T29102] iov_iter_get_pages+0x243/0xac0 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f69"], 0x4}}, 0x0) [ 342.271401][T29102] bio_iov_iter_get_pages+0x1d4/0xc90 [ 342.276788][T29102] __blkdev_direct_IO+0x6d1/0x1340 [ 342.281892][T29102] ? ktime_get_coarse_real_ts64+0x4a/0xc0 [ 342.287620][T29102] ? aio_prep_rw+0x900/0x900 [ 342.292207][T29102] ? iov_iter_npages+0x1ee/0x9a0 [ 342.297140][T29102] blkdev_direct_IO+0xbe/0xd0 [ 342.301820][T29102] generic_file_read_iter+0x1ad3/0x21b0 [ 342.301830][T29102] ? fsnotify+0x12d1/0x13d0 [ 342.301844][T29102] ? __kasan_check_read+0x11/0x20 [ 342.301860][T29102] blkdev_read_iter+0x12e/0x140 [ 342.301872][T29102] aio_read+0x31f/0x400 [ 342.301892][T29102] io_submit_one+0x6eb/0x1970 [ 342.311922][T29102] ? __might_fault+0xf9/0x160 [ 342.311935][T29102] ? __might_fault+0xf9/0x160 [ 342.311955][T29102] __se_sys_io_submit+0x12f/0x240 [ 342.311969][T29102] __x64_sys_io_submit+0x7b/0x90 [ 342.311984][T29102] do_syscall_64+0xfe/0x140 [ 342.325962][T29102] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.325972][T29102] RIP: 0033:0x459829 16:47:13 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x20000, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x42fd49dbc2458c0e, 0x3}) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f0000000000)='ip6tnl0\x00') read(r1, &(0x7f0000002580)=""/4096, 0x1000) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x119000, 0x0) 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 342.325982][T29102] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 342.325993][T29102] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 342.335334][T29102] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 342.335340][T29102] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 342.335346][T29102] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 342.335353][T29102] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 342.335358][T29102] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 [ 342.427379][T29124] QAT: Invalid ioctl 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 342.476703][T29124] QAT: Invalid ioctl 16:47:13 executing program 2 (fault-call:2 fault-nth:25): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001c00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0x10, 0x3, 0x0) sendto(r4, &(0x7f0000000200)="120000001200e7ef007b1a3fcd00000000a1", 0x12, 0x0, 0x0, 0x5f) recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f0000000140)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb43}, {&(0x7f00000000c0)=""/85, 0xef}, {&(0x7f00000024c0)=""/4096, 0x1034}, {&(0x7f0000000400)=""/120, 0x39}, {&(0x7f0000000480)=""/60, 0x574}, {&(0x7f0000000280)=""/77, 0x4d}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x1de}], 0x3d, &(0x7f0000002400)=""/191, 0x1f9}}], 0x4000000000001de, 0x6, &(0x7f0000003700)={0x77359400}) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:13 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7101, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 342.647700][T29150] FAULT_INJECTION: forcing a failure. [ 342.647700][T29150] name failslab, interval 1, probability 0, space 0, times 0 [ 342.671311][T29150] CPU: 1 PID: 29150 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 342.679318][T29150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.689364][T29150] Call Trace: [ 342.692657][T29150] dump_stack+0x1d8/0x2f8 [ 342.696981][T29150] should_fail+0x555/0x770 [ 342.701391][T29150] __should_failslab+0x11a/0x160 [ 342.706327][T29150] ? mempool_alloc_slab+0x4d/0x70 [ 342.711346][T29150] should_failslab+0x9/0x20 [ 342.715850][T29150] kmem_cache_alloc+0x56/0x2e0 [ 342.720618][T29150] mempool_alloc_slab+0x4d/0x70 [ 342.725462][T29150] ? mempool_free+0x350/0x350 [ 342.730122][T29150] mempool_alloc+0x104/0x5e0 [ 342.734709][T29150] ? _raw_spin_unlock_irqrestore+0x77/0xe0 [ 342.740504][T29150] bio_alloc_bioset+0x1b0/0x5f0 [ 342.745345][T29150] ? _raw_spin_unlock_irqrestore+0xbc/0xe0 [ 342.751139][T29150] ? __debug_object_init+0x878/0x19b0 [ 342.756503][T29150] bio_split+0x7b/0x360 [ 342.760656][T29150] __blk_queue_split+0x127e/0x1580 [ 342.765780][T29150] blk_mq_make_request+0xf4/0x1940 [ 342.770892][T29150] ? rcu_lock_release+0x26/0x30 [ 342.775731][T29150] ? blk_queue_enter+0x715/0x740 [ 342.780668][T29150] generic_make_request+0x24b/0x980 [ 342.785873][T29150] submit_bio+0x254/0x540 [ 342.790199][T29150] ? iov_iter_npages+0x1ee/0x9a0 16:47:13 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f"], 0x4}}, 0x0) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 342.795134][T29150] __blkdev_direct_IO+0x9d7/0x1340 [ 342.800265][T29150] ? aio_prep_rw+0x900/0x900 [ 342.804865][T29150] ? iov_iter_npages+0x1ee/0x9a0 [ 342.809798][T29150] blkdev_direct_IO+0xbe/0xd0 [ 342.814472][T29150] generic_file_read_iter+0x1ad3/0x21b0 [ 342.820012][T29150] ? fsnotify+0x12d1/0x13d0 [ 342.824502][T29150] ? __kasan_check_read+0x11/0x20 [ 342.824519][T29150] blkdev_read_iter+0x12e/0x140 [ 342.824532][T29150] aio_read+0x31f/0x400 [ 342.824552][T29150] io_submit_one+0x6eb/0x1970 [ 342.843195][T29150] ? __might_fault+0xf9/0x160 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) [ 342.847874][T29150] ? __might_fault+0xf9/0x160 [ 342.852558][T29150] __se_sys_io_submit+0x12f/0x240 [ 342.857581][T29150] __x64_sys_io_submit+0x7b/0x90 [ 342.862524][T29150] do_syscall_64+0xfe/0x140 [ 342.867112][T29150] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.872993][T29150] RIP: 0033:0x459829 [ 342.876881][T29150] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:14 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 342.896476][T29150] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 342.904879][T29150] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 342.904885][T29150] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 342.904891][T29150] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 342.904896][T29150] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 342.904901][T29150] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:14 executing program 2 (fault-call:2 fault-nth:26): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = syz_open_dev$vivid(&(0x7f0000000000)='/dev/video#\x00', 0x1, 0x2) ioctl$VIDIOC_DQEVENT(r3, 0x80885659, &(0x7f0000000040)) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) 16:47:14 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff01, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) getsockopt$inet6_dccp_buf(r1, 0x21, 0x82, &(0x7f0000000000)=""/222, &(0x7f0000000140)=0xde) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 343.116028][T29186] FAULT_INJECTION: forcing a failure. [ 343.116028][T29186] name failslab, interval 1, probability 0, space 0, times 0 [ 343.136806][T29186] CPU: 0 PID: 29186 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 343.144822][T29186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.154878][T29186] Call Trace: [ 343.158169][T29186] dump_stack+0x1d8/0x2f8 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) [ 343.158185][T29186] should_fail+0x555/0x770 [ 343.158199][T29186] __should_failslab+0x11a/0x160 [ 343.158214][T29186] ? mempool_alloc_slab+0x4d/0x70 [ 343.176858][T29186] should_failslab+0x9/0x20 [ 343.181405][T29186] kmem_cache_alloc+0x56/0x2e0 [ 343.186172][T29186] mempool_alloc_slab+0x4d/0x70 [ 343.191018][T29186] ? mempool_free+0x350/0x350 [ 343.191027][T29186] mempool_alloc+0x104/0x5e0 [ 343.191037][T29186] ? sbitmap_get+0x443/0x4f0 [ 343.191055][T29186] bio_alloc_bioset+0x1b0/0x5f0 [ 343.191064][T29186] ? trace_lock_release+0x135/0x1a0 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) [ 343.191072][T29186] ? ktime_get+0x5a/0x120 [ 343.191082][T29186] ? rcu_lock_release+0xd/0x30 [ 343.191093][T29186] bio_split+0x7b/0x360 [ 343.191111][T29186] __blk_queue_split+0x127e/0x1580 [ 343.191132][T29186] blk_mq_make_request+0xf4/0x1940 [ 343.200367][T29186] ? rcu_lock_release+0x26/0x30 [ 343.200377][T29186] ? blk_queue_enter+0x715/0x740 [ 343.200392][T29186] generic_make_request+0x24b/0x980 [ 343.253299][T29186] submit_bio+0x254/0x540 [ 343.257633][T29186] ? iov_iter_npages+0x1ee/0x9a0 16:47:14 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x7) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x800, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 343.262575][T29186] __blkdev_direct_IO+0x9d7/0x1340 [ 343.267687][T29186] ? aio_prep_rw+0x900/0x900 [ 343.272281][T29186] ? iov_iter_npages+0x1ee/0x9a0 [ 343.277220][T29186] blkdev_direct_IO+0xbe/0xd0 [ 343.281893][T29186] generic_file_read_iter+0x1ad3/0x21b0 [ 343.281902][T29186] ? fsnotify+0x12d1/0x13d0 [ 343.281915][T29186] ? __kasan_check_read+0x11/0x20 [ 343.281930][T29186] blkdev_read_iter+0x12e/0x140 [ 343.281943][T29186] aio_read+0x31f/0x400 [ 343.281963][T29186] io_submit_one+0x6eb/0x1970 [ 343.281976][T29186] ? __might_fault+0xf9/0x160 [ 343.281990][T29186] ? __might_fault+0xf9/0x160 [ 343.292024][T29186] __se_sys_io_submit+0x12f/0x240 [ 343.292038][T29186] __x64_sys_io_submit+0x7b/0x90 [ 343.292049][T29186] do_syscall_64+0xfe/0x140 [ 343.292062][T29186] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.292070][T29186] RIP: 0033:0x459829 16:47:14 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0xc2bf, 0x40000) getsockopt$kcm_KCM_RECV_DISABLE(r1, 0x119, 0x1, &(0x7f0000000040), 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) [ 343.292081][T29186] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 343.292092][T29186] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 343.382861][T29186] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 343.390835][T29186] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 343.398809][T29186] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 343.406780][T29186] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 343.414753][T29186] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:14 executing program 2 (fault-call:2 fault-nth:27): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x60ff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2) ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = socket(0x10, 0x2, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="b8000000060001000000000000000000ff0500000000003021d850b222cdedc4000000000000000001e0000001000000000000000000000000f3a80e00"/73, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) 16:47:14 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:14 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) r4 = shmget(0x0, 0x1000, 0x10, &(0x7f0000ffc000/0x1000)=nil) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) r6 = getgid() getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000380)={{{@in6=@local, @in6}}, {{@in6=@remote}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) fstat(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000480)={0x0, r3, 0x0, 0x23, &(0x7f00000001c0)=')\'\x1bvboxnet1(trustedlo@GPL!^[wlan1,\x00', 0xffffffffffffffff}, 0x30) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000004c0)) shmctl$IPC_SET(r4, 0x1, &(0x7f0000000500)={{0xf14, r5, r6, r5, r7, 0x20, 0x800}, 0x1, 0x8, 0x1, 0x100000000, r8, r8, 0x400}) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) 16:47:14 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7600, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 343.684559][T29232] FAULT_INJECTION: forcing a failure. [ 343.684559][T29232] name failslab, interval 1, probability 0, space 0, times 0 [ 343.714197][T29232] CPU: 0 PID: 29232 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 343.722296][T29232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 16:47:14 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x3}}, 0x0) [ 343.732350][T29232] Call Trace: [ 343.735649][T29232] dump_stack+0x1d8/0x2f8 [ 343.739981][T29232] should_fail+0x555/0x770 [ 343.744395][T29232] __should_failslab+0x11a/0x160 [ 343.749342][T29232] ? mempool_alloc_slab+0x4d/0x70 [ 343.754367][T29232] should_failslab+0x9/0x20 [ 343.758888][T29232] kmem_cache_alloc+0x56/0x2e0 [ 343.763657][T29232] mempool_alloc_slab+0x4d/0x70 [ 343.768504][T29232] ? mempool_free+0x350/0x350 [ 343.773183][T29232] mempool_alloc+0x104/0x5e0 [ 343.777763][T29232] ? sbitmap_get+0x443/0x4f0 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 343.782374][T29232] bio_alloc_bioset+0x1b0/0x5f0 [ 343.787220][T29232] ? trace_lock_release+0x135/0x1a0 [ 343.792408][T29232] ? ktime_get+0x5a/0x120 [ 343.796734][T29232] ? rcu_lock_release+0xd/0x30 [ 343.801488][T29232] bio_split+0x7b/0x360 [ 343.801501][T29232] __blk_queue_split+0x127e/0x1580 [ 343.801520][T29232] blk_mq_make_request+0xf4/0x1940 [ 343.801528][T29232] ? rcu_lock_release+0x26/0x30 [ 343.801536][T29232] ? blk_queue_enter+0x715/0x740 [ 343.801551][T29232] generic_make_request+0x24b/0x980 [ 343.801565][T29232] submit_bio+0x254/0x540 [ 343.820739][T29232] ? iov_iter_npages+0x1ee/0x9a0 [ 343.820755][T29232] __blkdev_direct_IO+0x9d7/0x1340 [ 343.820770][T29232] ? aio_prep_rw+0x900/0x900 [ 343.820787][T29232] ? iov_iter_npages+0x1ee/0x9a0 [ 343.835204][T29232] blkdev_direct_IO+0xbe/0xd0 [ 343.835217][T29232] generic_file_read_iter+0x1ad3/0x21b0 [ 343.835226][T29232] ? fsnotify+0x12d1/0x13d0 [ 343.835240][T29232] ? __kasan_check_read+0x11/0x20 [ 343.835255][T29232] blkdev_read_iter+0x12e/0x140 [ 343.845302][T29232] aio_read+0x31f/0x400 [ 343.845327][T29232] io_submit_one+0x6eb/0x1970 [ 343.845340][T29232] ? __might_fault+0xf9/0x160 [ 343.845351][T29232] ? __might_fault+0xf9/0x160 [ 343.845370][T29232] __se_sys_io_submit+0x12f/0x240 [ 343.854859][T29232] __x64_sys_io_submit+0x7b/0x90 [ 343.854872][T29232] do_syscall_64+0xfe/0x140 [ 343.854885][T29232] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.854893][T29232] RIP: 0033:0x459829 16:47:15 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) [ 343.854904][T29232] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 343.854909][T29232] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 343.854919][T29232] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 343.854925][T29232] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 343.854931][T29232] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 343.854936][T29232] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 343.854941][T29232] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:15 executing program 2 (fault-call:2 fault-nth:28): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x18100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:15 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x200400, 0x0) write$P9_RRENAME(r2, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0x7) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000400)={'team0\x00', 0x0}) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000440)={{{@in=@broadcast, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000540)=0xe8) sendmsg$nl_xfrm(r2, &(0x7f0000000640)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)=@migrate={0x68, 0x21, 0x400, 0x70bd25, 0x25dfdbfe, {{@in=@multicast2, @in6=@remote, 0x4e23, 0xffffffffffffff1a, 0x4e24, 0x100, 0xa, 0x80, 0x20, 0x32, r3, r4}, 0x6e6bbc}, [@lastused={0xc, 0xf, 0x61ad}, @mark={0xc, 0x15, {0x35075a, 0xf51}}]}, 0x68}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r5 = socket(0x10, 0x400000000080803, 0x0) write(r5, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000140)={0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) sendmsg$nl_xfrm(r6, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r5, &(0x7f0000002580)=""/4096, 0x1000) 16:47:15 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x9600, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:15 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x20000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 344.156422][T29271] FAULT_INJECTION: forcing a failure. [ 344.156422][T29271] name failslab, interval 1, probability 0, space 0, times 0 [ 344.193274][T29271] CPU: 0 PID: 29271 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 344.201298][T29271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.211438][T29271] Call Trace: [ 344.214726][T29271] dump_stack+0x1d8/0x2f8 [ 344.219063][T29271] should_fail+0x555/0x770 [ 344.223482][T29271] __should_failslab+0x11a/0x160 [ 344.228417][T29271] ? mempool_alloc_slab+0x4d/0x70 [ 344.228430][T29271] should_failslab+0x9/0x20 [ 344.228446][T29271] kmem_cache_alloc+0x56/0x2e0 [ 344.242693][T29271] mempool_alloc_slab+0x4d/0x70 [ 344.242701][T29271] ? mempool_free+0x350/0x350 [ 344.242709][T29271] mempool_alloc+0x104/0x5e0 [ 344.242718][T29271] ? sbitmap_get+0x443/0x4f0 [ 344.242737][T29271] bio_alloc_bioset+0x1b0/0x5f0 [ 344.242746][T29271] ? trace_lock_release+0x135/0x1a0 [ 344.242754][T29271] ? ktime_get+0x5a/0x120 [ 344.242763][T29271] ? rcu_lock_release+0xd/0x30 [ 344.242779][T29271] bio_split+0x7b/0x360 [ 344.284672][T29271] __blk_queue_split+0x127e/0x1580 [ 344.289805][T29271] blk_mq_make_request+0xf4/0x1940 [ 344.294918][T29271] ? rcu_lock_release+0x26/0x30 [ 344.299777][T29271] ? blk_queue_enter+0x715/0x740 [ 344.304722][T29271] generic_make_request+0x24b/0x980 [ 344.309925][T29271] submit_bio+0x254/0x540 [ 344.314255][T29271] ? iov_iter_npages+0x1ee/0x9a0 [ 344.319192][T29271] __blkdev_direct_IO+0x9d7/0x1340 [ 344.324325][T29271] ? aio_prep_rw+0x900/0x900 [ 344.328910][T29271] ? iov_iter_npages+0x1ee/0x9a0 [ 344.333847][T29271] blkdev_direct_IO+0xbe/0xd0 [ 344.338520][T29271] generic_file_read_iter+0x1ad3/0x21b0 [ 344.344063][T29271] ? fsnotify+0x12d1/0x13d0 [ 344.348570][T29271] ? __kasan_check_read+0x11/0x20 [ 344.353601][T29271] blkdev_read_iter+0x12e/0x140 [ 344.358456][T29271] aio_read+0x31f/0x400 [ 344.362615][T29271] io_submit_one+0x6eb/0x1970 [ 344.367285][T29271] ? __might_fault+0xf9/0x160 [ 344.367297][T29271] ? __might_fault+0xf9/0x160 [ 344.367318][T29271] __se_sys_io_submit+0x12f/0x240 [ 344.367333][T29271] __x64_sys_io_submit+0x7b/0x90 [ 344.386856][T29271] do_syscall_64+0xfe/0x140 [ 344.391369][T29271] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 344.397256][T29271] RIP: 0033:0x459829 [ 344.401152][T29271] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 344.420760][T29271] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 344.429170][T29271] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 344.437146][T29271] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 344.445154][T29271] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:15 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xab00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000100008000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26e64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:15 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000040)={{0xa, 0x4e20, 0x3, @remote, 0x2}, {0xa, 0x4e22, 0xfffffffffffeffff, @mcast1, 0x10001}, 0x85, [0x9, 0x8, 0x4, 0x7fffffff, 0x7, 0x7, 0xffffffffffffffff, 0x7fff]}, 0x5c) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 344.454145][T29271] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 344.462122][T29271] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:15 executing program 2 (fault-call:2 fault-nth:29): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:15 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x6040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6f9ffffff1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0x400, 0x401}, &(0x7f0000000040)=0xc) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000080)={r3, 0x77}, 0x8) sendto$inet(r1, &(0x7f0000000100)="0b28a3b5da982234c97aea5acaa7700cab4eaa852f2a8c9f4396ab7d41d7e691b3dc9d26aca381e6a4fa1178947afedbbf1244b11e026e5d", 0x38, 0x2a386ea98869910e, &(0x7f0000000140)={0x2, 0x4e22, @empty}, 0x10) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:15 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x400000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:15 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:15 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket(0x10, 0x400000000080803, 0x0) write(r0, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff}) ioctl$VIDIOC_G_SLICED_VBI_CAP(r2, 0xc0745645, &(0x7f0000000180)={0x4000000000000000, [0x200, 0x1, 0x100000000, 0x6, 0x6, 0x9, 0x5, 0x6, 0x5, 0x4, 0x1f, 0x8, 0x40, 0x9, 0x8, 0x496, 0x7, 0x80, 0x7, 0x9, 0x8, 0x4, 0x6, 0x6, 0x3, 0xb6, 0x5, 0x20, 0x12a2aea1, 0x1c, 0x3c, 0x3, 0x100000001, 0x1036, 0x7de, 0xa6, 0x4, 0x3f, 0x2701, 0x7c264442, 0x7ff, 0x101, 0x7, 0x401, 0x83, 0x5, 0x5, 0x9], 0xa}) read(r0, &(0x7f0000002580)=""/4096, 0x1000) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x24, r3, 0x600, 0x70bd2d, 0x25dfdbfc, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x44}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000000)={0x0, 0xa6, 0x80000000, 0x6, 0x100, 0x8, 0x7, 0x5, {0x0, @in6={{0xa, 0x4e21, 0x7, @rand_addr="c2103c121407bd744dc96ef74dd5a00f", 0x40}}, 0x101, 0x6, 0xfffffffffffffffd, 0x7, 0x1f}}, &(0x7f00000000c0)=0xb0) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000100)={r4, 0x90000000000000}, 0x8) [ 344.715338][T29317] FAULT_INJECTION: forcing a failure. [ 344.715338][T29317] name failslab, interval 1, probability 0, space 0, times 0 [ 344.740540][T29317] CPU: 1 PID: 29317 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 344.748577][T29317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.758649][T29317] Call Trace: [ 344.761943][T29317] dump_stack+0x1d8/0x2f8 [ 344.766273][T29317] should_fail+0x555/0x770 [ 344.770695][T29317] __should_failslab+0x11a/0x160 [ 344.775648][T29317] ? mempool_alloc_slab+0x4d/0x70 [ 344.780688][T29317] should_failslab+0x9/0x20 [ 344.785201][T29317] kmem_cache_alloc+0x56/0x2e0 [ 344.789971][T29317] mempool_alloc_slab+0x4d/0x70 [ 344.789980][T29317] ? mempool_free+0x350/0x350 [ 344.789989][T29317] mempool_alloc+0x104/0x5e0 [ 344.790003][T29317] ? sbitmap_get+0x443/0x4f0 [ 344.799535][T29317] bio_alloc_bioset+0x1b0/0x5f0 [ 344.799546][T29317] ? trace_lock_release+0x135/0x1a0 [ 344.799561][T29317] ? ktime_get+0x5a/0x120 [ 344.823072][T29317] ? rcu_lock_release+0xd/0x30 [ 344.827848][T29317] bio_split+0x7b/0x360 [ 344.832019][T29317] __blk_queue_split+0x127e/0x1580 [ 344.837149][T29317] blk_mq_make_request+0xf4/0x1940 [ 344.842448][T29317] ? rcu_lock_release+0x26/0x30 [ 344.847314][T29317] ? blk_queue_enter+0x715/0x740 [ 344.852274][T29317] generic_make_request+0x24b/0x980 [ 344.857481][T29317] submit_bio+0x254/0x540 [ 344.861818][T29317] ? iov_iter_npages+0x1ee/0x9a0 [ 344.866762][T29317] __blkdev_direct_IO+0x9d7/0x1340 [ 344.871875][T29317] ? aio_prep_rw+0x900/0x900 [ 344.871889][T29317] ? iov_iter_npages+0x1ee/0x9a0 [ 344.871901][T29317] blkdev_direct_IO+0xbe/0xd0 [ 344.871910][T29317] generic_file_read_iter+0x1ad3/0x21b0 [ 344.871918][T29317] ? fsnotify+0x12d1/0x13d0 [ 344.871935][T29317] ? __kasan_check_read+0x11/0x20 [ 344.901181][T29317] blkdev_read_iter+0x12e/0x140 [ 344.906044][T29317] aio_read+0x31f/0x400 [ 344.910222][T29317] io_submit_one+0x6eb/0x1970 [ 344.914911][T29317] ? __might_fault+0xf9/0x160 [ 344.919597][T29317] ? __might_fault+0xf9/0x160 [ 344.924298][T29317] __se_sys_io_submit+0x12f/0x240 [ 344.929331][T29317] __x64_sys_io_submit+0x7b/0x90 [ 344.934285][T29317] do_syscall_64+0xfe/0x140 [ 344.938798][T29317] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 344.944696][T29317] RIP: 0033:0x459829 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b1600000100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000080)={0x1, 0x4, 0x40, 0x4, 0x0}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000003c0)={r2, 0x58, &(0x7f0000000d00)=[@in={0x2, 0x4e23}, @in6={0xa, 0x4e23, 0xf04, @empty, 0x6}, @in={0x2, 0x4e21, @empty}, @in6={0xa, 0x4e22, 0xffffffff, @ipv4={[], [], @multicast1}, 0x2}]}, &(0x7f0000000380)=0x10) ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) write$P9_RRENAME(r1, &(0x7f00000002c0)={0x7, 0x15, 0x1}, 0x7) r3 = socket(0x10, 0x400000000080803, 0x0) syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x3, 0x2) write(r3, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmmsg$alg(r0, &(0x7f0000000bc0)=[{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)="68b703f6f4b82aa4e312eb7e7517d37701d276188fbaf19198ffc7e9cd", 0x1d}], 0x2, &(0x7f0000000480)=[@assoc={0x18, 0x117, 0x4, 0x100000001}, @iv={0x28, 0x117, 0x2, 0x10, "49f1b191eedfdd3fb9c07d119153031b"}, @iv={0x108, 0x117, 0x2, 0xf0, "5f38e298f06df1c4e5f35f9be0d758191be7e4b7832a2d90e100ca4450f1d8697f9e5e30771837e5e00aea66ba5e4b6466587953058a5ea5834882cce081b778521dc930d0ee1afbd300ba7c5fda749aa357a2e515e7f8819679799af56b3ea046d35bc2734686dc1ae006bd43e80849dabf64f7b296d9aee22d5bfdebcc277894c0e90c0d138f1a7f677e7dc8d4630e848a70e3646e2c8c46955c1919ee299bfb9c3b4383b682f158bebc60aa8e95e40665c3798e39e0e655647c4cb9e2ec121a129b9b742d23be5d0d3006aba490c1600bd8804f13fcd430dba9cebd9f8821677c265086bd61b3f3d748d3de41dd0f"}], 0x148, 0x800}, {0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000600)="42c34e0ae5e7cc1f92bf53304ba6286017e335bdfcad109deb7d33c4544ce6d51ed2ac8991e01ba7f78fd292ee66124a", 0x30}, {&(0x7f0000000640)="baedbb47f23c8b9e5c3017289e332d20f9de1749dcbe8c03ab52725fdee37fa61c820871f90d156d274e3b02345732cc6e246a0b09a6af814e8fceed9d3ce2e2232ba0300a5e595daf49922431c2ff27711fb84a4421d91b818de4dee81c5aabcabe532e76c0fc66d970e275d29f7b1ecb1fa2cb3872dba7d051fa011528831189b329be907e91b316a25fdac0d6a3bec30d6f68c382f64a4d", 0x99}, {&(0x7f0000000700)="f506580e10ffdbc2c53de6a86b9b95296c319f7dd07b4ce22c4643e3dd5e344bb3c6b0b046fa058a8fc98b89f19fba6ed4433fe03203a043b8121e4caeb0177c444705e8f06163e1c62d06f915be735fec9c4c6e8357343cbc0508e6ebc74a", 0x5f}], 0x3, 0x0, 0x0, 0x48800}, {0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000800)=[@op={0x18}, @iv={0x70, 0x117, 0x2, 0x59, "809982d7892c15ebc50b1ad899de4df2243142cfc8dbcb9d69436412f070703683c12b86f8d032f0ae5d9440ffe728b6cdac457c8326f08b670478bc5fce9e07273215030ab0a8bd8ad4c88078053bac65e2d06a1cb09d9b2d"}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0x90, 0x117, 0x2, 0x76, "cb8194892c37c78bde49d259f77da6943d6f8f15c0bdb84a7c988ea11e07f5f2c90564da54275d293cf5a1dd6102ac15b84282e6edfde3788641236255fadc2653568527f2b57e2bafa8d4af1c45a4df5a66b6b627474b8ac0924922c9ca3524a0852c04cf0da821abc693ffa08ac099844a1dd597da"}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}], 0x160, 0x4}, {0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000980)="521928e8f59dc8de8935ffc31f717aaa91725ffd32bdafa1be17616abae9a3842c5fdb5fe6acc4a324c88a1d08dca19bfc09180eee5b9a1eceb5e98d730853a5f47f6f3b23e44e66b402aa7a151ebad4405f8c60237ab6c31d566b8b0727b638c115ee5df6463c461abaecf01eab325ca543f91a47da3ca1467f936aca6de1d7bca994bd6fd99701b17b72cabf357b9ec71ce8b19ee41f10644f8ca5e7b97a70c549a825fc275fc18a9db9815afef4c84e80baf65ada1c9e677be1c161a39bce2d144d0b9d1452ec016298f4", 0xcc}], 0x1, 0x0, 0x0, 0x4000000}, {0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000ac0)="cd415e8778414d9fe8155bac7df3f4b41f17df1b716d83", 0x17}, {&(0x7f0000000b00)="51c3adfa285c0640682336b246860429b7d3507c9514b3e181343d036c4e635b769dce660a153ce0abbbe8694a77e5212bf18c78e98dfb4939935dd2cf3ffd2983b630ff1e17f9ca1052d5df066150e1898c5e6dfad51c6193348d29487a1054c2284cb3acf828ec3451", 0x6a}, {&(0x7f0000001580)="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", 0x1000}], 0x3, 0x0, 0x0, 0x80}], 0x5, 0x17306e01a889c32d) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000180)={{{@in=@local, @in=@local}}, {{@in6=@initdev}, 0x0, @in=@multicast2}}, &(0x7f0000000280)=0xe8) sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[]}}, 0x0) read(r3, &(0x7f0000002580)=""/4096, 0x1000) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b1600000100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b1600000100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0x4}}, 0x0) [ 344.948589][T29317] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 344.968208][T29317] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 344.968219][T29317] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 344.968224][T29317] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 344.968238][T29317] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 345.000587][T29317] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 345.000594][T29317] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:16 executing program 2 (fault-call:2 fault-nth:30): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f328830000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x50f000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_rose_SIOCADDRT(r1, 0x890b, &(0x7f0000000040)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x40, @bcast, @rose={'rose', 0x0}, 0x7, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000001e0008001000000000000eb000000000000f3320800000000000a0000000000e600", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r1, &(0x7f0000002580)=""/4096, 0x1000) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x10200, 0x0) ioctl$TIOCGICOUNT(r3, 0x545d, 0x0) 16:47:16 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f328830000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x707100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2e02, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000040)=ANY=[@ANYBLOB="4900000091b46d2252000d0b86d896848b5a4339151c64878551970a16c473f336dff01d1602fe1d44f118f09410502955a4e3dd635c273035d0adfda2a27acb5600cabc5171c7be33af0bc96e"]) socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) [ 345.282243][T29361] FAULT_INJECTION: forcing a failure. [ 345.282243][T29361] name failslab, interval 1, probability 0, space 0, times 0 [ 345.311892][T29361] CPU: 0 PID: 29361 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 345.321402][T29361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.331457][T29361] Call Trace: [ 345.334750][T29361] dump_stack+0x1d8/0x2f8 [ 345.344504][T29361] should_fail+0x555/0x770 [ 345.350762][T29361] __should_failslab+0x11a/0x160 [ 345.355712][T29361] ? mempool_alloc_slab+0x4d/0x70 [ 345.360732][T29361] should_failslab+0x9/0x20 [ 345.365239][T29361] kmem_cache_alloc+0x56/0x2e0 [ 345.370010][T29361] mempool_alloc_slab+0x4d/0x70 [ 345.374865][T29361] ? mempool_free+0x350/0x350 [ 345.379547][T29361] mempool_alloc+0x104/0x5e0 [ 345.384140][T29361] ? sbitmap_get+0x443/0x4f0 [ 345.384158][T29361] bio_alloc_bioset+0x1b0/0x5f0 [ 345.384168][T29361] ? trace_lock_release+0x135/0x1a0 [ 345.384175][T29361] ? ktime_get+0x5a/0x120 [ 345.384185][T29361] ? rcu_lock_release+0xd/0x30 [ 345.384195][T29361] bio_split+0x7b/0x360 [ 345.384214][T29361] __blk_queue_split+0x127e/0x1580 [ 345.393693][T29361] blk_mq_make_request+0xf4/0x1940 [ 345.393703][T29361] ? rcu_lock_release+0x26/0x30 [ 345.393712][T29361] ? blk_queue_enter+0x715/0x740 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f328830000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xfffffffffffffff9, 0x40200) setns(r1, 0x20000) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082183e333b662e9c3ec20d26a64c7d7d79d4683010e0b6dfe7561a1f4dc913be3c3971c2e464a3aae692fe14bf33888e5b82295151a2686340a1d07546e5fd8f42aaa58c2fd701ea1026b9ba2482d07d0e2e99c44f46c308ea3f2dd2c53e9ab6afd6ab41c2f259b98826c93fd206790739203b2fd4a614613958d4969bc3803bd4890c793e1368f90e9d5df6a4341766c5cc38967299a2fb8cebf844b14b9a67d9464cb8dd571f341bc5c8fb1f691cf58f66"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 345.393728][T29361] generic_make_request+0x24b/0x980 [ 345.393742][T29361] submit_bio+0x254/0x540 [ 345.393750][T29361] ? iov_iter_npages+0x1ee/0x9a0 [ 345.393763][T29361] __blkdev_direct_IO+0x9d7/0x1340 [ 345.393777][T29361] ? aio_prep_rw+0x900/0x900 [ 345.393789][T29361] ? iov_iter_npages+0x1ee/0x9a0 [ 345.393799][T29361] blkdev_direct_IO+0xbe/0xd0 [ 345.393809][T29361] generic_file_read_iter+0x1ad3/0x21b0 [ 345.393823][T29361] ? fsnotify+0x12d1/0x13d0 [ 345.475854][T29361] ? __kasan_check_read+0x11/0x20 [ 345.480903][T29361] blkdev_read_iter+0x12e/0x140 [ 345.485751][T29361] aio_read+0x31f/0x400 [ 345.485770][T29361] io_submit_one+0x6eb/0x1970 [ 345.485782][T29361] ? __might_fault+0xf9/0x160 [ 345.485792][T29361] ? __might_fault+0xf9/0x160 [ 345.485825][T29361] __se_sys_io_submit+0x12f/0x240 [ 345.485839][T29361] __x64_sys_io_submit+0x7b/0x90 [ 345.485851][T29361] do_syscall_64+0xfe/0x140 [ 345.485868][T29361] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 345.524295][T29361] RIP: 0033:0x459829 [ 345.528275][T29361] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 345.547881][T29361] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 345.556300][T29361] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 345.564278][T29361] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 345.572256][T29361] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 345.572262][T29361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 345.572267][T29361] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:16 executing program 2 (fault-call:2 fault-nth:31): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x400000000080803, 0x0) write(r1, &(0x7f0000000140)="2400002f0700d17da5a17436fef7001d0a0b49ffed00e7417f4bfb19e96a6800008000283a0900000002000000df5e3ec6d5f91280fed69cabaaa525c75ada7a5e409f653596ab2bda3e8d9e9e6bd0e3c17c0545806a824b50f4497b5c", 0x11) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) recvmsg(r2, &(0x7f0000000740)={&(0x7f0000000480)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000000640)=[{&(0x7f00000000c0)=""/48, 0x30}, {&(0x7f0000000500)=""/79, 0x4f}, {&(0x7f00000001c0)=""/36, 0x24}, {&(0x7f0000000580)=""/138, 0x8a}], 0x4, &(0x7f0000000680)=""/131, 0x83}, 0x22) r4 = syz_open_dev$ndb(&(0x7f00000007c0)='/dev/nbd#\x00', 0x0, 0x88000) ioctl$IOC_PR_RELEASE(r4, 0x401070ca, &(0x7f0000000800)={0x6, 0x5, 0x1}) bind$xdp(r1, &(0x7f0000000780)={0x2c, 0x2, r3, 0x2d}, 0x10) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000840)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320200000000000a0000000000000065910c2a8a569a12d052d31be14e08a0d11aac35b677f87be1d4943f5f0893e823c197b7d2d92438d0e7194c245b88d939aaa844d836b1184f22ab12e978c72a0134d22e9875fa3aa4bf1179855b09c9968c1626af8d", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x4000, 0x0) ioctl$VHOST_GET_VRING_ENDIAN(r5, 0x4008af14, &(0x7f0000000040)={0x0, 0x3}) recvfrom$inet(r5, &(0x7f0000000380)=""/206, 0xce, 0x40, &(0x7f0000000080)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10) read(r1, &(0x7f0000002580)=""/4096, 0x1000) 16:47:16 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:16 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x810100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x70e000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:16 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) connect$ax25(r2, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x8}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default]}, 0x48) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) fcntl$getownex(r2, 0x10, &(0x7f00000000c0)={0x0, 0x0}) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000140)=0x0) sendmsg$nl_generic(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000003580)={0x2244, 0x27, 0x4, 0x70bd2a, 0x25dfdbfd, {0x1d}, [@generic="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", @generic="80c9d93cd1d6e47c63222acd75664aa5b747", @nested={0x1078, 0x2c, [@generic="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", @typed={0x4, 0x8e}, @generic="fc4d18aa3ea5f772bbb255246929eb6bca9c1202806ea810bb38ceb06fe339b45932d68b116cc305398159604785613b9b36415104517710ce7eca1d430cfad9cc7954e752306fe422526ad817845b36436c43c21d14bcb5645d1d15de98d9f1a6ecdf8b6b", @typed={0x8, 0x6c, @ipv4=@multicast2}]}, @generic="a8cc3d79fb0fd51d8914dfe0cfec0bf3951965c340bfdde5f97d6c146153f364377db0b507439db789a3b786d7f0e11f77191b67ecf809ece0846f324ff278fbea7b71abda0df37a62aee375093799d5a0184c9462078ace332076bc30", @generic="c285cce8133a88cfda7f69d8015b3ebb446093eaff2410c2a47614b77fb39d114b9e2ffac1fabae430ade11332b5f89c5beed65554a93665c9bcbf6529762c74983b762d0cdb87929073a0bee593f8fdc86f2e17d8ace5e65b3104e6a59e2d8b887ffdaf849f1ca74d2a8f30b040b7fd118da4e0ab03881b6d2daf0c9a52fdfafebe62fd5dd2d35498aa32a7ec258bb230690c", @nested={0xb4, 0x77, [@generic="808540c6fc97d1d7a8c29cb979087a76a24cecea8ed43e3000956743711574b2760243df1f892406541e89fb3ec1302eb9db22d5d0e73e23e07580bc8c938f42f42bee6cac51fcd053e7005bb683c622425a49af8ffe81fe1b829cfc9b4090986f93f4351519f26367d0558778e9073843321fd7332e6cd963f20fc281907080be17f5df19f4597be093c45fdcf1aefd18533ab630", @typed={0x8, 0x2e, @fd=r1}, @typed={0x8, 0x79, @pid=r4}, @typed={0x8, 0x49, @pid=r5}]}]}, 0x2244}, 0x1, 0x0, 0x0, 0x20000000}, 0x4005) sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) read(r2, &(0x7f0000002580)=""/4096, 0x1000) 16:47:17 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 345.791395][T29396] FAULT_INJECTION: forcing a failure. [ 345.791395][T29396] name failslab, interval 1, probability 0, space 0, times 0 16:47:17 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 345.858289][T29396] CPU: 1 PID: 29396 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 345.866318][T29396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.877152][T29396] Call Trace: [ 345.880441][T29396] dump_stack+0x1d8/0x2f8 [ 345.884776][T29396] should_fail+0x555/0x770 [ 345.889193][T29396] __should_failslab+0x11a/0x160 [ 345.894130][T29396] ? mempool_alloc_slab+0x4d/0x70 [ 345.899152][T29396] should_failslab+0x9/0x20 [ 345.903742][T29396] kmem_cache_alloc+0x56/0x2e0 [ 345.908527][T29396] mempool_alloc_slab+0x4d/0x70 [ 345.913380][T29396] ? mempool_free+0x350/0x350 [ 345.918061][T29396] mempool_alloc+0x104/0x5e0 [ 345.922642][T29396] ? sbitmap_get+0x443/0x4f0 [ 345.927343][T29396] bio_alloc_bioset+0x1b0/0x5f0 [ 345.932176][T29396] ? trace_lock_release+0x135/0x1a0 [ 345.937355][T29396] ? ktime_get+0x5a/0x120 [ 345.941659][T29396] ? rcu_lock_release+0xd/0x30 [ 345.946396][T29396] bio_split+0x7b/0x360 [ 345.950571][T29396] __blk_queue_split+0x127e/0x1580 [ 345.955836][T29396] blk_mq_make_request+0xf4/0x1940 [ 345.960925][T29396] ? rcu_lock_release+0x26/0x30 [ 345.965754][T29396] ? blk_queue_enter+0x715/0x740 [ 345.970668][T29396] generic_make_request+0x24b/0x980 [ 345.975841][T29396] submit_bio+0x254/0x540 [ 345.980159][T29396] ? iov_iter_npages+0x1ee/0x9a0 [ 345.985071][T29396] __blkdev_direct_IO+0x9d7/0x1340 [ 345.990174][T29396] ? aio_prep_rw+0x900/0x900 [ 345.994741][T29396] ? iov_iter_npages+0x1ee/0x9a0 [ 345.999653][T29396] blkdev_direct_IO+0xbe/0xd0 [ 346.004304][T29396] generic_file_read_iter+0x1ad3/0x21b0 [ 346.009843][T29396] ? fsnotify+0x12d1/0x13d0 [ 346.014329][T29396] ? __kasan_check_read+0x11/0x20 [ 346.019421][T29396] blkdev_read_iter+0x12e/0x140 [ 346.024244][T29396] aio_read+0x31f/0x400 [ 346.028382][T29396] io_submit_one+0x6eb/0x1970 [ 346.033481][T29396] ? __might_fault+0xf9/0x160 [ 346.038137][T29396] ? __might_fault+0xf9/0x160 [ 346.042793][T29396] __se_sys_io_submit+0x12f/0x240 [ 346.047821][T29396] __x64_sys_io_submit+0x7b/0x90 [ 346.052749][T29396] do_syscall_64+0xfe/0x140 [ 346.057228][T29396] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 346.063092][T29396] RIP: 0033:0x459829 [ 346.066975][T29396] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 346.086569][T29396] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 346.094968][T29396] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:17 executing program 0: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x400000000080803, 0x0) write(r2, &(0x7f0000001540)="240000001a00d17da53a7436fef7001d0a0b49ffed000000800028000800030001000000", 0x24) syz_genetlink_get_family_id$tipc(&(0x7f0000000000)='TIPC\x00') sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f000014f000)={0x0, 0xfffffffffffffecf, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e0000001000000000000000000000000f3320000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0xb8}}, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000380)) read(r2, &(0x7f0000003580)=""/4096, 0xfffffffffffffe68) [ 346.102915][T29396] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 346.110863][T29396] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 346.118834][T29396] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 346.126784][T29396] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000000)=0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) 16:47:17 executing program 2 (fault-call:2 fault-nth:32): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:17 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:17 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:17 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x717000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:17 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:17 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:17 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x760000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 346.424446][T29441] FAULT_INJECTION: forcing a failure. [ 346.424446][T29441] name failslab, interval 1, probability 0, space 0, times 0 [ 346.454219][T29441] CPU: 0 PID: 29441 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 346.462220][T29441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.462224][T29441] Call Trace: [ 346.462242][T29441] dump_stack+0x1d8/0x2f8 [ 346.462259][T29441] should_fail+0x555/0x770 [ 346.462274][T29441] __should_failslab+0x11a/0x160 [ 346.462285][T29441] ? mempool_alloc_slab+0x4d/0x70 [ 346.462296][T29441] should_failslab+0x9/0x20 [ 346.462308][T29441] kmem_cache_alloc+0x56/0x2e0 [ 346.462319][T29441] mempool_alloc_slab+0x4d/0x70 [ 346.462326][T29441] ? mempool_free+0x350/0x350 [ 346.462335][T29441] mempool_alloc+0x104/0x5e0 [ 346.462343][T29441] ? sbitmap_get+0x443/0x4f0 [ 346.462364][T29441] bio_alloc_bioset+0x1b0/0x5f0 [ 346.462381][T29441] ? trace_lock_release+0x135/0x1a0 [ 346.532404][T29441] ? ktime_get+0x5a/0x120 [ 346.536720][T29441] ? rcu_lock_release+0xd/0x30 [ 346.541470][T29441] bio_split+0x7b/0x360 [ 346.545610][T29441] __blk_queue_split+0x127e/0x1580 [ 346.550714][T29441] blk_mq_make_request+0xf4/0x1940 [ 346.555806][T29441] ? rcu_lock_release+0x26/0x30 [ 346.560636][T29441] ? blk_queue_enter+0x715/0x740 [ 346.565560][T29441] generic_make_request+0x24b/0x980 [ 346.570744][T29441] submit_bio+0x254/0x540 [ 346.575056][T29441] ? iov_iter_npages+0x1ee/0x9a0 [ 346.579983][T29441] __blkdev_direct_IO+0x9d7/0x1340 [ 346.585079][T29441] ? aio_prep_rw+0x900/0x900 [ 346.589653][T29441] ? iov_iter_npages+0x1ee/0x9a0 [ 346.594589][T29441] blkdev_direct_IO+0xbe/0xd0 [ 346.599252][T29441] generic_file_read_iter+0x1ad3/0x21b0 [ 346.604776][T29441] ? fsnotify+0x12d1/0x13d0 [ 346.609265][T29441] ? __kasan_check_read+0x11/0x20 [ 346.614279][T29441] blkdev_read_iter+0x12e/0x140 [ 346.619115][T29441] aio_read+0x31f/0x400 [ 346.623264][T29441] io_submit_one+0x6eb/0x1970 [ 346.628011][T29441] ? __might_fault+0xf9/0x160 [ 346.632672][T29441] ? __might_fault+0xf9/0x160 [ 346.637341][T29441] __se_sys_io_submit+0x12f/0x240 [ 346.642357][T29441] __x64_sys_io_submit+0x7b/0x90 [ 346.647281][T29441] do_syscall_64+0xfe/0x140 [ 346.651774][T29441] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 346.657665][T29441] RIP: 0033:0x459829 [ 346.661544][T29441] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 346.681131][T29441] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 346.689523][T29441] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 346.697484][T29441] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 346.705462][T29441] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 346.713419][T29441] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:17 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) 16:47:17 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) utime(&(0x7f0000000180)='./file0\x00', 0x0) [ 346.721375][T29441] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:18 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 0: syz_read_part_table(0x0, 0x2, &(0x7f0000001340)=[{&(0x7f0000000100)='#', 0x1, 0x6}, {&(0x7f0000000200)="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", 0xcff, 0x101}]) 16:47:18 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x960000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 2 (fault-call:2 fault-nth:33): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 1: socketpair$unix(0x1, 0x200000000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=ANY=[@ANYBLOB="b80000001900010000007b0b00000000ff010000000000000000020000958e8b16000001000000000000000000000000f3288300000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x4}}, 0x0) [ 346.947557][T29467] Dev loop0: unable to read RDB block 7 [ 347.000354][T29467] loop0: unable to read partition table [ 347.035643][T29467] loop0: partition table beyond EOD, truncated 16:47:18 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_tid_address(0x0) fallocate(r0, 0x10, 0x0, 0x10fffe) 16:47:18 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xe07000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 347.050223][T29467] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) [ 347.050957][T29476] FAULT_INJECTION: forcing a failure. [ 347.050957][T29476] name failslab, interval 1, probability 0, space 0, times 0 [ 347.072470][T29476] CPU: 1 PID: 29476 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 347.080453][T29476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.090507][T29476] Call Trace: [ 347.093800][T29476] dump_stack+0x1d8/0x2f8 [ 347.098144][T29476] should_fail+0x555/0x770 [ 347.102573][T29476] __should_failslab+0x11a/0x160 [ 347.107523][T29476] ? mempool_alloc_slab+0x4d/0x70 [ 347.112583][T29476] should_failslab+0x9/0x20 [ 347.117181][T29476] kmem_cache_alloc+0x56/0x2e0 [ 347.121950][T29476] mempool_alloc_slab+0x4d/0x70 [ 347.126803][T29476] ? mempool_free+0x350/0x350 [ 347.131488][T29476] mempool_alloc+0x104/0x5e0 [ 347.136085][T29476] ? sbitmap_get+0x443/0x4f0 [ 347.140694][T29476] bio_alloc_bioset+0x1b0/0x5f0 [ 347.145550][T29476] ? trace_lock_release+0x135/0x1a0 [ 347.150752][T29476] ? ktime_get+0x5a/0x120 [ 347.155084][T29476] ? rcu_lock_release+0xd/0x30 [ 347.159856][T29476] bio_split+0x7b/0x360 [ 347.164020][T29476] __blk_queue_split+0x127e/0x1580 [ 347.169142][T29476] blk_mq_make_request+0xf4/0x1940 [ 347.174343][T29476] ? rcu_lock_release+0x26/0x30 [ 347.179193][T29476] ? blk_queue_enter+0x715/0x740 [ 347.184145][T29476] generic_make_request+0x24b/0x980 [ 347.189354][T29476] submit_bio+0x254/0x540 [ 347.193768][T29476] ? iov_iter_npages+0x1ee/0x9a0 [ 347.198709][T29476] __blkdev_direct_IO+0x9d7/0x1340 [ 347.203826][T29476] ? aio_prep_rw+0x900/0x900 [ 347.208424][T29476] ? iov_iter_npages+0x1ee/0x9a0 [ 347.213366][T29476] blkdev_direct_IO+0xbe/0xd0 [ 347.218043][T29476] generic_file_read_iter+0x1ad3/0x21b0 [ 347.223588][T29476] ? fsnotify+0x12d1/0x13d0 [ 347.228098][T29476] ? __kasan_check_read+0x11/0x20 [ 347.233126][T29476] blkdev_read_iter+0x12e/0x140 [ 347.237980][T29476] aio_read+0x31f/0x400 [ 347.242143][T29476] io_submit_one+0x6eb/0x1970 [ 347.246825][T29476] ? __might_fault+0xf9/0x160 [ 347.251499][T29476] ? __might_fault+0xf9/0x160 [ 347.256180][T29476] __se_sys_io_submit+0x12f/0x240 [ 347.261210][T29476] __x64_sys_io_submit+0x7b/0x90 [ 347.266148][T29476] do_syscall_64+0xfe/0x140 [ 347.270670][T29476] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 347.276560][T29476] RIP: 0033:0x459829 [ 347.280452][T29476] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 347.300054][T29476] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 347.308466][T29476] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 347.316436][T29476] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 347.325158][T29476] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 347.333127][T29476] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:18 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_tid_address(0x0) fallocate(r0, 0x10, 0x0, 0x10fffe) [ 347.349013][T29476] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:18 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x40000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf05000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:18 executing program 2 (fault-call:2 fault-nth:34): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 347.481789][T29467] Dev loop0: unable to read RDB block 7 [ 347.487486][T29467] loop0: unable to read partition table [ 347.516016][T29467] loop0: partition table beyond EOD, truncated 16:47:18 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 347.543637][T29467] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) [ 347.585305][T29507] FAULT_INJECTION: forcing a failure. [ 347.585305][T29507] name failslab, interval 1, probability 0, space 0, times 0 [ 347.605277][T29507] CPU: 1 PID: 29507 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 347.613266][T29507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.623346][T29507] Call Trace: [ 347.626671][T29507] dump_stack+0x1d8/0x2f8 [ 347.631006][T29507] should_fail+0x555/0x770 [ 347.635421][T29507] __should_failslab+0x11a/0x160 [ 347.640355][T29507] ? mempool_alloc_slab+0x4d/0x70 [ 347.645377][T29507] should_failslab+0x9/0x20 [ 347.649879][T29507] kmem_cache_alloc+0x56/0x2e0 [ 347.654647][T29507] mempool_alloc_slab+0x4d/0x70 [ 347.659494][T29507] ? mempool_free+0x350/0x350 [ 347.664167][T29507] mempool_alloc+0x104/0x5e0 [ 347.668751][T29507] ? sbitmap_get+0x443/0x4f0 [ 347.673344][T29507] bio_alloc_bioset+0x1b0/0x5f0 [ 347.678194][T29507] ? trace_lock_release+0x135/0x1a0 [ 347.683386][T29507] ? ktime_get+0x5a/0x120 [ 347.687714][T29507] ? rcu_lock_release+0xd/0x30 [ 347.692476][T29507] bio_split+0x7b/0x360 [ 347.696631][T29507] __blk_queue_split+0x127e/0x1580 [ 347.701773][T29507] blk_mq_make_request+0xf4/0x1940 [ 347.706882][T29507] ? rcu_lock_release+0x26/0x30 [ 347.711729][T29507] ? blk_queue_enter+0x715/0x740 [ 347.716667][T29507] generic_make_request+0x24b/0x980 [ 347.721871][T29507] submit_bio+0x254/0x540 [ 347.726194][T29507] ? iov_iter_npages+0x1ee/0x9a0 [ 347.731130][T29507] __blkdev_direct_IO+0x9d7/0x1340 [ 347.736240][T29507] ? aio_prep_rw+0x900/0x900 [ 347.740827][T29507] ? iov_iter_npages+0x1ee/0x9a0 [ 347.745756][T29507] blkdev_direct_IO+0xbe/0xd0 [ 347.750408][T29507] generic_file_read_iter+0x1ad3/0x21b0 [ 347.755927][T29507] ? fsnotify+0x12d1/0x13d0 [ 347.760405][T29507] ? __kasan_check_read+0x11/0x20 [ 347.765430][T29507] blkdev_read_iter+0x12e/0x140 [ 347.770251][T29507] aio_read+0x31f/0x400 [ 347.774384][T29507] io_submit_one+0x6eb/0x1970 [ 347.779047][T29507] ? __might_fault+0xf9/0x160 [ 347.783709][T29507] ? __might_fault+0xf9/0x160 [ 347.788375][T29507] __se_sys_io_submit+0x12f/0x240 [ 347.793401][T29507] __x64_sys_io_submit+0x7b/0x90 [ 347.798312][T29507] do_syscall_64+0xfe/0x140 [ 347.802787][T29507] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 347.808648][T29507] RIP: 0033:0x459829 [ 347.812514][T29507] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 347.832115][T29507] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 347.840638][T29507] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 347.848597][T29507] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 347.856550][T29507] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 347.864492][T29507] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 347.872435][T29507] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:19 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xfffffbff00006609, 0x0) 16:47:19 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_tid_address(0x0) fallocate(r0, 0x10, 0x0, 0x10fffe) 16:47:19 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7fffefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) connect$netlink(r0, &(0x7f0000000040)=@kern={0x10, 0x0, 0x0, 0x8000021}, 0xc) 16:47:19 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xb9010000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:19 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 2 (fault-call:2 fault-nth:35): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:19 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:19 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 348.394508][T29548] FAULT_INJECTION: forcing a failure. [ 348.394508][T29548] name failslab, interval 1, probability 0, space 0, times 0 [ 348.419698][T29548] CPU: 0 PID: 29548 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 348.427701][T29548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.437751][T29548] Call Trace: [ 348.441038][T29548] dump_stack+0x1d8/0x2f8 [ 348.441053][T29548] should_fail+0x555/0x770 [ 348.441071][T29548] __should_failslab+0x11a/0x160 [ 348.450425][T29548] ? mempool_alloc_slab+0x4d/0x70 [ 348.460341][T29548] should_failslab+0x9/0x20 [ 348.464841][T29548] kmem_cache_alloc+0x56/0x2e0 [ 348.469690][T29548] mempool_alloc_slab+0x4d/0x70 [ 348.474538][T29548] ? mempool_free+0x350/0x350 [ 348.479212][T29548] mempool_alloc+0x104/0x5e0 [ 348.483799][T29548] ? sbitmap_get+0x443/0x4f0 [ 348.488395][T29548] bio_alloc_bioset+0x1b0/0x5f0 [ 348.493237][T29548] ? trace_lock_release+0x135/0x1a0 [ 348.498429][T29548] ? ktime_get+0x5a/0x120 [ 348.502756][T29548] ? rcu_lock_release+0xd/0x30 [ 348.507520][T29548] bio_split+0x7b/0x360 [ 348.511672][T29548] __blk_queue_split+0x127e/0x1580 [ 348.516789][T29548] blk_mq_make_request+0xf4/0x1940 [ 348.521895][T29548] ? rcu_lock_release+0x26/0x30 [ 348.526738][T29548] ? blk_queue_enter+0x715/0x740 [ 348.531679][T29548] generic_make_request+0x24b/0x980 [ 348.536878][T29548] ? check_memory_region+0x6/0x2e0 [ 348.541985][T29548] submit_bio+0x254/0x540 [ 348.546312][T29548] ? iov_iter_npages+0x1ee/0x9a0 [ 348.551245][T29548] __blkdev_direct_IO+0x9d7/0x1340 [ 348.556354][T29548] ? aio_prep_rw+0x900/0x900 [ 348.560940][T29548] ? iov_iter_npages+0x1ee/0x9a0 [ 348.565877][T29548] blkdev_direct_IO+0xbe/0xd0 [ 348.570550][T29548] generic_file_read_iter+0x1ad3/0x21b0 [ 348.576090][T29548] ? fsnotify+0x12d1/0x13d0 [ 348.580593][T29548] ? __kasan_check_read+0x11/0x20 [ 348.585616][T29548] blkdev_read_iter+0x12e/0x140 [ 348.590463][T29548] aio_read+0x31f/0x400 [ 348.594709][T29548] io_submit_one+0x6eb/0x1970 [ 348.599379][T29548] ? __might_fault+0xf9/0x160 [ 348.604047][T29548] ? __might_fault+0xf9/0x160 [ 348.608724][T29548] __se_sys_io_submit+0x12f/0x240 [ 348.613741][T29548] __x64_sys_io_submit+0x7b/0x90 [ 348.618671][T29548] do_syscall_64+0xfe/0x140 [ 348.623167][T29548] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 348.629052][T29548] RIP: 0033:0x459829 [ 348.632935][T29548] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 348.652534][T29548] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 348.660966][T29548] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 348.668928][T29548] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f26209e8000 [ 348.676889][T29548] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 348.684848][T29548] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 348.692806][T29548] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x210007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmsg$sock(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000002c0)="59f0d5bc6800cca1ddd33f931622e29741d883417224885205df21d33dc2eaa3884745bd5bde95b441eecc6606c2597e69d4bbd99125553df444ed22171b13fda41b4923f6604ec9129e6d60a486dcfa6c2fdf10f66fcc3533ee8259c6eb09a1266f76df6f5e78386c839d16f03fba86ec77dbf5c6977ae9d83b526c577df3e5d8f2555016d723e31f3a85658615750e5820bee558ea308419df522b913376952d441c96903d5b67b5f0593024c29b45d83d074357070abb96434e90c23e31536e0e60da075af3371eacad4033d9306936ec4fca28cc798cb98c05a82a573cdeb4911ab5f4", 0xe5}, {&(0x7f00000003c0)="9e2025e62f92658a4b11a90cc0419a864eec2f0ffeeb8488f9712d76325f406efa9cf0dc109f75a0be67a334ce40d84b1f9cee950d9ee38ec7898ee1f6c5480a45abec0a54bce20bbec02af9e392e7739d03874f612b8e47eef3af80b9481dd57336b2cbb2f52e0a6ffd42d0ecdbcdfd2656077bb61cb1207e3960749e00d204924a2839c0edfb67d687dcd51512a197eca9bd9d400f", 0x96}, {&(0x7f0000000540)="fdf8450059cf555839fdefb0b5791bb975b76b698e06bf142b053c57a85b6653ae03bed0e8ed726a9574659bdcaa8301f534ebf5659a3ce3c3d45f4cb497d5c46d2a926be3cb1c29f1065f344c6c2b30ad2e91722d396c0a448ac354f731c68943407e204edea176f4fb9db647f91e1441e0280cc9ea0969", 0x78}, {0x0}, {&(0x7f0000000480)="39b42b190429c9738182f149681503c33cb207bdcbdbfa59241d46990e", 0x1d}, {&(0x7f00000005c0)="4c4e4cbe25ebbcc48674ff656d3bd3d1b2690b9f792d24466352b935175c761befe94c06b893da9ddb87fa44baabd0b97caad066ea1d9e99b3f2f8027ad398", 0x3f}, {&(0x7f0000000600)="e3b31d66fcaa9183af1b4537b3abc7e286b910c360998e8ac734d68a6a5696c39a465c150ac4b31e370298adccb857195d818baac334a2c79633bff92d9d1d2160ecef3b51a57ed0f378d5a34a6e9d06bf80dac59e073a844d9f63f129e6cda3577b5d5edd2832451e85fd4568951158a68fa911d9c90689e74728986851d2f780c91f8cd02cdc276331d8716667319ff9c3a6b6d06e1302599c0339672987ea14f442c17c578c233a7ade302367b8a09df7a949ddf4a6e9f40d9503c6d3b1d7d29eb78fcdd77fc3eba21954749fd5eb6f71a5557d224fd2", 0xd8}, {&(0x7f0000000700)="2d7d6d5701553baf7719a8cf5cc4e6ab4abcb68ae9863ce3c933503e99ef9e7988eca9049c47bffbf7bb81277b7b87e37098e1319883d0be7122dfb55043da1528ca9a1e65e50d0871eeeee07d7e76b490d2872c0afa4c120e0a38ce221c7ad2858899", 0x63}], 0x8}, 0x0) socket$packet(0x11, 0x2, 0x300) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000240)=0x40000008001, 0x4) sendto$inet(r0, &(0x7f0000000200)="f2", 0x346, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f00000012c0)="03268a927f1f653cb967480b41ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a7511bf746bec66ba", 0x6ef1, 0x9, 0x0, 0x27) 16:47:20 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:20 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff010000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:20 executing program 2 (fault-call:2 fault-nth:36): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefff7f, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:20 executing program 0: ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 349.087051][T29582] FAULT_INJECTION: forcing a failure. [ 349.087051][T29582] name failslab, interval 1, probability 0, space 0, times 0 [ 349.189322][T29582] CPU: 1 PID: 29582 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 349.197342][T29582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.207395][T29582] Call Trace: [ 349.210684][T29582] dump_stack+0x1d8/0x2f8 [ 349.215018][T29582] should_fail+0x555/0x770 [ 349.219447][T29582] __should_failslab+0x11a/0x160 [ 349.224387][T29582] ? mempool_alloc_slab+0x4d/0x70 [ 349.229413][T29582] should_failslab+0x9/0x20 [ 349.233911][T29582] kmem_cache_alloc+0x56/0x2e0 [ 349.238672][T29582] mempool_alloc_slab+0x4d/0x70 [ 349.243513][T29582] ? mempool_free+0x350/0x350 [ 349.248179][T29582] mempool_alloc+0x104/0x5e0 [ 349.252761][T29582] ? sbitmap_get+0x443/0x4f0 [ 349.257353][T29582] bio_alloc_bioset+0x1b0/0x5f0 [ 349.262195][T29582] ? trace_lock_release+0x135/0x1a0 [ 349.267383][T29582] ? ktime_get+0x5a/0x120 [ 349.271701][T29582] ? rcu_lock_release+0xd/0x30 [ 349.276459][T29582] bio_split+0x7b/0x360 [ 349.280617][T29582] __blk_queue_split+0x127e/0x1580 [ 349.285730][T29582] blk_mq_make_request+0xf4/0x1940 [ 349.290829][T29582] ? rcu_lock_release+0x26/0x30 [ 349.295669][T29582] ? blk_queue_enter+0x715/0x740 [ 349.300618][T29582] generic_make_request+0x24b/0x980 [ 349.305832][T29582] submit_bio+0x254/0x540 [ 349.310159][T29582] ? iov_iter_npages+0x1ee/0x9a0 [ 349.315088][T29582] __blkdev_direct_IO+0x9d7/0x1340 [ 349.320587][T29582] ? aio_prep_rw+0x900/0x900 [ 349.325178][T29582] ? iov_iter_npages+0x1ee/0x9a0 [ 349.330109][T29582] blkdev_direct_IO+0xbe/0xd0 [ 349.334776][T29582] generic_file_read_iter+0x1ad3/0x21b0 [ 349.340311][T29582] ? fsnotify+0x12d1/0x13d0 [ 349.344824][T29582] ? __kasan_check_read+0x11/0x20 [ 349.349845][T29582] blkdev_read_iter+0x12e/0x140 [ 349.354692][T29582] aio_read+0x31f/0x400 [ 349.358858][T29582] io_submit_one+0x6eb/0x1970 [ 349.363529][T29582] ? __might_fault+0xf9/0x160 [ 349.368202][T29582] ? __might_fault+0xf9/0x160 [ 349.372877][T29582] __se_sys_io_submit+0x12f/0x240 [ 349.377900][T29582] __x64_sys_io_submit+0x7b/0x90 [ 349.382832][T29582] do_syscall_64+0xfe/0x140 [ 349.387330][T29582] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 349.393248][T29582] RIP: 0033:0x459829 [ 349.397136][T29582] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 349.416734][T29582] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 349.425129][T29582] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:20 executing program 0: ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 349.433081][T29582] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 349.441031][T29582] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 349.449439][T29582] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 349.457389][T29582] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:20 executing program 0: ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:21 executing program 1: syz_open_dev$binder(&(0x7f00000000c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f0000000580)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe9\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \x05f~\xa5\x8b\xce\xb1\xd6\x97\xabN\xae\xc9\xbd\xd3g@\xe1j\x85\x9c\xd7|\xac\xb9\x92\xd2\xa3\x8b\x8dW\r\xd7@\x01fB\xba\xcd\xa8F9\x8b\xf4\xaf\xe2\xff\xae\xd1\xe6\xcf\n\xaanI\xf6r\ri\x86>\x97\xaa\xae\xf3^aD\xca\x86\x85\x80\xa8\xe2T\xb9f\xb8\xfbAm\xb6\xe0\x99~\x88\xef%\x9f\x10\xe6g\xe5\x19\x03\xc3d\xad\xdb\xa48\x9e|\xfb\xa8:{o\x03\xeaO\xdd\x87\xc3|x\xaf\xf4u0.evjg\x9d\x9dH\xef\xf4\x8d4\x83k@\x04\xf4\x83\x8c\xdd#\xb3Y\x95\x00xL\xa1.aKb)\xb5G^\xd3|\xed\xe1\x14\xc0\x1c\xb4\xdeE\xf0\xda\xc2\x14\xf5df\xd2F\x0eG\x99\xb8\xfe\xca\xc9\xf7\xee\x8c\xd5\v\xdd\xa8F\x05\xd38\xf4\xbb\xa5k(\xc3\xf8~\xa4\xe2\xf4\x10F)\xd5\x80\x9f\xfe)}\xe0\xedS&\xaa\'\xfa\x1b\x14\xbc\xf9C\x88LJ\xf0\x95p\xb4\xac\xaa\xecA\xfa\xf2\x0e\xe6\vv8\xf2\xcd\xc5\a', 0x0) pwrite64(r1, &(0x7f000003bfff)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000000)='./file0\x00') socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0) close(0xffffffffffffffff) write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00') write$P9_RWSTAT(0xffffffffffffffff, &(0x7f0000000100)={0x7, 0x7f, 0x2}, 0x7) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='pstore\x00', 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xc0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=0x1, 0x0, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x0, &(0x7f00000001c0)={0x1, 0xd, 0x3, 0x20000000}, &(0x7f0000000200)=0x9, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) 16:47:21 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x6040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 0: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:21 executing program 2 (fault-call:2 fault-nth:37): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 350.060248][T29617] FAULT_INJECTION: forcing a failure. [ 350.060248][T29617] name failslab, interval 1, probability 0, space 0, times 0 [ 350.081393][T29617] CPU: 0 PID: 29617 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 350.089385][T29617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.099429][T29617] Call Trace: [ 350.102709][T29617] dump_stack+0x1d8/0x2f8 [ 350.102724][T29617] should_fail+0x555/0x770 [ 350.102737][T29617] __should_failslab+0x11a/0x160 [ 350.102748][T29617] ? mempool_alloc_slab+0x4d/0x70 [ 350.102763][T29617] should_failslab+0x9/0x20 [ 350.125897][T29617] kmem_cache_alloc+0x56/0x2e0 [ 350.130659][T29617] mempool_alloc_slab+0x4d/0x70 [ 350.135541][T29617] ? mempool_free+0x350/0x350 [ 350.140215][T29617] mempool_alloc+0x104/0x5e0 [ 350.144798][T29617] ? sbitmap_get+0x443/0x4f0 [ 350.149396][T29617] bio_alloc_bioset+0x1b0/0x5f0 [ 350.154241][T29617] ? trace_lock_release+0x135/0x1a0 16:47:21 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0, 0x229}}], 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp6\x00') preadv(r0, &(0x7f00000017c0), 0x19a, 0x0) 16:47:21 executing program 0: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 350.159430][T29617] ? ktime_get+0x5a/0x120 [ 350.163764][T29617] ? rcu_lock_release+0xd/0x30 [ 350.168529][T29617] bio_split+0x7b/0x360 [ 350.172686][T29617] __blk_queue_split+0x127e/0x1580 [ 350.177802][T29617] blk_mq_make_request+0xf4/0x1940 [ 350.182901][T29617] ? rcu_lock_release+0x26/0x30 [ 350.187746][T29617] ? blk_queue_enter+0x715/0x740 [ 350.192683][T29617] generic_make_request+0x24b/0x980 [ 350.197882][T29617] submit_bio+0x254/0x540 [ 350.202207][T29617] ? iov_iter_npages+0x1ee/0x9a0 16:47:21 executing program 0: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 350.207153][T29617] __blkdev_direct_IO+0x9d7/0x1340 [ 350.212266][T29617] ? aio_prep_rw+0x900/0x900 [ 350.216854][T29617] ? iov_iter_npages+0x1ee/0x9a0 [ 350.221783][T29617] blkdev_direct_IO+0xbe/0xd0 [ 350.226459][T29617] generic_file_read_iter+0x1ad3/0x21b0 [ 350.231994][T29617] ? fsnotify+0x12d1/0x13d0 [ 350.232009][T29617] ? __kasan_check_read+0x11/0x20 [ 350.232025][T29617] blkdev_read_iter+0x12e/0x140 [ 350.232037][T29617] aio_read+0x31f/0x400 [ 350.232058][T29617] io_submit_one+0x6eb/0x1970 [ 350.232074][T29617] ? __might_fault+0xf9/0x160 16:47:21 executing program 0: syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 350.241572][T29617] ? __might_fault+0xf9/0x160 [ 350.241593][T29617] __se_sys_io_submit+0x12f/0x240 [ 350.241607][T29617] __x64_sys_io_submit+0x7b/0x90 [ 350.241619][T29617] do_syscall_64+0xfe/0x140 [ 350.241632][T29617] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 350.241645][T29617] RIP: 0033:0x459829 [ 350.288798][T29617] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:21 executing program 0: syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) 16:47:21 executing program 0: syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2, &(0x7f00000002c0)=""/210}) [ 350.308404][T29617] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 350.317169][T29617] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 350.325138][T29617] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 350.333098][T29617] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 350.341062][T29617] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 350.341068][T29617] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:21 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 2 (fault-call:2 fault-nth:38): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x6040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:21 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, 0x0) 16:47:21 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, 0x0) [ 350.555638][T29664] FAULT_INJECTION: forcing a failure. [ 350.555638][T29664] name failslab, interval 1, probability 0, space 0, times 0 [ 350.580730][T29664] CPU: 1 PID: 29664 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 350.588729][T29664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.598782][T29664] Call Trace: [ 350.598801][T29664] dump_stack+0x1d8/0x2f8 [ 350.598814][T29664] should_fail+0x555/0x770 [ 350.598826][T29664] __should_failslab+0x11a/0x160 [ 350.598837][T29664] ? mempool_alloc_slab+0x4d/0x70 [ 350.598853][T29664] should_failslab+0x9/0x20 [ 350.625240][T29664] kmem_cache_alloc+0x56/0x2e0 [ 350.630003][T29664] mempool_alloc_slab+0x4d/0x70 [ 350.634853][T29664] ? mempool_free+0x350/0x350 [ 350.639524][T29664] mempool_alloc+0x104/0x5e0 [ 350.644114][T29664] ? sbitmap_get+0x443/0x4f0 [ 350.648708][T29664] bio_alloc_bioset+0x1b0/0x5f0 [ 350.648720][T29664] ? trace_lock_release+0x135/0x1a0 [ 350.648728][T29664] ? ktime_get+0x5a/0x120 [ 350.648743][T29664] ? rcu_lock_release+0xd/0x30 [ 350.663084][T29664] bio_split+0x7b/0x360 [ 350.663099][T29664] __blk_queue_split+0x127e/0x1580 [ 350.663120][T29664] blk_mq_make_request+0xf4/0x1940 [ 350.682205][T29664] ? rcu_lock_release+0x26/0x30 [ 350.687053][T29664] ? blk_queue_enter+0x715/0x740 [ 350.691988][T29664] generic_make_request+0x24b/0x980 [ 350.697172][T29664] submit_bio+0x254/0x540 [ 350.701477][T29664] ? iov_iter_npages+0x1ee/0x9a0 [ 350.706391][T29664] __blkdev_direct_IO+0x9d7/0x1340 [ 350.711478][T29664] ? aio_prep_rw+0x900/0x900 [ 350.716049][T29664] ? iov_iter_npages+0x1ee/0x9a0 [ 350.720983][T29664] blkdev_direct_IO+0xbe/0xd0 [ 350.725633][T29664] generic_file_read_iter+0x1ad3/0x21b0 [ 350.731151][T29664] ? fsnotify+0x12d1/0x13d0 [ 350.735629][T29664] ? __kasan_check_read+0x11/0x20 [ 350.740633][T29664] blkdev_read_iter+0x12e/0x140 [ 350.745499][T29664] aio_read+0x31f/0x400 [ 350.749636][T29664] io_submit_one+0x6eb/0x1970 [ 350.754289][T29664] ? __might_fault+0xf9/0x160 [ 350.758958][T29664] ? __might_fault+0xf9/0x160 [ 350.763621][T29664] __se_sys_io_submit+0x12f/0x240 [ 350.768645][T29664] __x64_sys_io_submit+0x7b/0x90 [ 350.773571][T29664] do_syscall_64+0xfe/0x140 [ 350.778052][T29664] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 350.783922][T29664] RIP: 0033:0x459829 16:47:22 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000037c0), 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)) r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) fallocate(0xffffffffffffffff, 0x1, 0x0, 0x0) prctl$PR_SET_TIMERSLACK(0x1d, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_tid_address(0x0) syz_emit_ethernet(0x0, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x2, 0x0, 0x3) fallocate(r0, 0x10, 0x0, 0x10fffe) r1 = add_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$revoke(0x3, r1) 16:47:22 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 350.787847][T29664] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 350.807422][T29664] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 350.815803][T29664] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 350.823796][T29664] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 350.831759][T29664] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 350.840320][T29664] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 350.848278][T29664] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:22 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, 0x0) 16:47:22 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 16:47:22 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3e80000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 2 (fault-call:2 fault-nth:39): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 351.118350][T29699] FAULT_INJECTION: forcing a failure. [ 351.118350][T29699] name failslab, interval 1, probability 0, space 0, times 0 [ 351.142743][T29699] CPU: 1 PID: 29699 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 351.150739][T29699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.160789][T29699] Call Trace: [ 351.164078][T29699] dump_stack+0x1d8/0x2f8 [ 351.168409][T29699] should_fail+0x555/0x770 [ 351.172827][T29699] __should_failslab+0x11a/0x160 [ 351.177759][T29699] ? mempool_alloc_slab+0x4d/0x70 [ 351.182782][T29699] should_failslab+0x9/0x20 [ 351.187282][T29699] kmem_cache_alloc+0x56/0x2e0 [ 351.192043][T29699] mempool_alloc_slab+0x4d/0x70 [ 351.196889][T29699] ? mempool_free+0x350/0x350 [ 351.201565][T29699] mempool_alloc+0x104/0x5e0 [ 351.206151][T29699] ? sbitmap_get+0x443/0x4f0 [ 351.210747][T29699] bio_alloc_bioset+0x1b0/0x5f0 16:47:22 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 351.215596][T29699] ? trace_lock_release+0x135/0x1a0 [ 351.220797][T29699] ? ktime_get+0x5a/0x120 [ 351.225121][T29699] ? rcu_lock_release+0xd/0x30 [ 351.229881][T29699] bio_split+0x7b/0x360 [ 351.234034][T29699] __blk_queue_split+0x127e/0x1580 [ 351.239152][T29699] blk_mq_make_request+0xf4/0x1940 [ 351.244255][T29699] ? rcu_lock_release+0x26/0x30 [ 351.249106][T29699] ? blk_queue_enter+0x715/0x740 [ 351.254043][T29699] generic_make_request+0x24b/0x980 [ 351.259243][T29699] submit_bio+0x254/0x540 [ 351.263562][T29699] ? iov_iter_npages+0x1ee/0x9a0 16:47:22 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) [ 351.263577][T29699] __blkdev_direct_IO+0x9d7/0x1340 [ 351.263592][T29699] ? aio_prep_rw+0x900/0x900 [ 351.263605][T29699] ? iov_iter_npages+0x1ee/0x9a0 [ 351.283129][T29699] blkdev_direct_IO+0xbe/0xd0 [ 351.287806][T29699] generic_file_read_iter+0x1ad3/0x21b0 [ 351.293347][T29699] ? fsnotify+0x12d1/0x13d0 [ 351.297844][T29699] ? __kasan_check_read+0x11/0x20 [ 351.302877][T29699] blkdev_read_iter+0x12e/0x140 [ 351.307724][T29699] aio_read+0x31f/0x400 [ 351.311891][T29699] io_submit_one+0x6eb/0x1970 [ 351.316568][T29699] ? __might_fault+0xf9/0x160 [ 351.321775][T29699] ? __might_fault+0xf9/0x160 [ 351.326453][T29699] __se_sys_io_submit+0x12f/0x240 [ 351.331466][T29699] __x64_sys_io_submit+0x7b/0x90 [ 351.331478][T29699] do_syscall_64+0xfe/0x140 [ 351.331491][T29699] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 351.331506][T29699] RIP: 0033:0x459829 [ 351.361524][T29699] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 351.381125][T29699] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 351.389535][T29699] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 351.397516][T29699] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 351.405477][T29699] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 351.405482][T29699] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 351.405487][T29699] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:22 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000037c0), 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)) r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) fallocate(0xffffffffffffffff, 0x1, 0x0, 0x0) prctl$PR_SET_TIMERSLACK(0x1d, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_tid_address(0x0) syz_emit_ethernet(0x0, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x2, 0x0, 0x3) fallocate(r0, 0x10, 0x0, 0x10fffe) r1 = add_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$revoke(0x3, r1) 16:47:22 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x40000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 0: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f00000001c0), 0xfffffef3) read(r0, &(0x7f0000000200)=""/250, 0x50c7e3e3) getgroups(0x1, &(0x7f0000000980)=[0xee00]) setxattr$system_posix_acl(0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r2 = memfd_create(&(0x7f0000000300)='#em3#/\x00', 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x8000000}) 16:47:22 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 2 (fault-call:2 fault-nth:40): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x803e000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:22 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xab000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 351.686232][T29729] FAULT_INJECTION: forcing a failure. [ 351.686232][T29729] name failslab, interval 1, probability 0, space 0, times 0 [ 351.719425][T29729] CPU: 1 PID: 29729 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 351.727449][T29729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.737503][T29729] Call Trace: [ 351.740795][T29729] dump_stack+0x1d8/0x2f8 [ 351.745125][T29729] should_fail+0x555/0x770 [ 351.749543][T29729] __should_failslab+0x11a/0x160 [ 351.754476][T29729] ? mempool_alloc_slab+0x4d/0x70 [ 351.759497][T29729] should_failslab+0x9/0x20 [ 351.763994][T29729] kmem_cache_alloc+0x56/0x2e0 [ 351.768761][T29729] mempool_alloc_slab+0x4d/0x70 [ 351.773609][T29729] ? mempool_free+0x350/0x350 [ 351.778416][T29729] mempool_alloc+0x104/0x5e0 [ 351.783005][T29729] ? sbitmap_get+0x443/0x4f0 [ 351.787620][T29729] bio_alloc_bioset+0x1b0/0x5f0 [ 351.792472][T29729] ? trace_lock_release+0x135/0x1a0 [ 351.797666][T29729] ? ktime_get+0x5a/0x120 [ 351.801993][T29729] ? rcu_lock_release+0xd/0x30 [ 351.806757][T29729] bio_split+0x7b/0x360 [ 351.810931][T29729] __blk_queue_split+0x127e/0x1580 [ 351.816056][T29729] blk_mq_make_request+0xf4/0x1940 [ 351.821165][T29729] ? rcu_lock_release+0x26/0x30 [ 351.826014][T29729] ? blk_queue_enter+0x715/0x740 [ 351.830954][T29729] generic_make_request+0x24b/0x980 [ 351.836164][T29729] submit_bio+0x254/0x540 [ 351.840501][T29729] ? iov_iter_npages+0x1ee/0x9a0 [ 351.845481][T29729] __blkdev_direct_IO+0x9d7/0x1340 [ 351.850599][T29729] ? aio_prep_rw+0x900/0x900 [ 351.855196][T29729] ? iov_iter_npages+0x1ee/0x9a0 [ 351.860135][T29729] blkdev_direct_IO+0xbe/0xd0 [ 351.864811][T29729] generic_file_read_iter+0x1ad3/0x21b0 [ 351.870354][T29729] ? fsnotify+0x12d1/0x13d0 [ 351.874859][T29729] ? __kasan_check_read+0x11/0x20 [ 351.879891][T29729] blkdev_read_iter+0x12e/0x140 [ 351.884744][T29729] aio_read+0x31f/0x400 [ 351.888940][T29729] io_submit_one+0x6eb/0x1970 [ 351.893626][T29729] ? __might_fault+0xf9/0x160 [ 351.898348][T29729] ? __might_fault+0xf9/0x160 [ 351.903037][T29729] __se_sys_io_submit+0x12f/0x240 [ 351.908090][T29729] __x64_sys_io_submit+0x7b/0x90 [ 351.913027][T29729] do_syscall_64+0xfe/0x140 [ 351.917529][T29729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 351.923503][T29729] RIP: 0033:0x459829 [ 351.927399][T29729] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 351.947005][T29729] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 351.955412][T29729] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 351.963384][T29729] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 351.971354][T29729] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 351.979322][T29729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:23 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\r', 0x20000005002}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000340)={'veth1\x00', 0x400}) 16:47:23 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff600000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 351.987295][T29729] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:23 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 2 (fault-call:2 fault-nth:41): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0xfffffffffffffff7}, 0x1c) 16:47:23 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3e80000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 352.240939][T29757] FAULT_INJECTION: forcing a failure. [ 352.240939][T29757] name failslab, interval 1, probability 0, space 0, times 0 [ 352.288299][T29757] CPU: 1 PID: 29757 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 352.296322][T29757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.306549][T29757] Call Trace: [ 352.309840][T29757] dump_stack+0x1d8/0x2f8 [ 352.314194][T29757] should_fail+0x555/0x770 [ 352.318618][T29757] __should_failslab+0x11a/0x160 [ 352.323556][T29757] ? mempool_alloc_slab+0x4d/0x70 [ 352.328577][T29757] should_failslab+0x9/0x20 [ 352.333083][T29757] kmem_cache_alloc+0x56/0x2e0 [ 352.337847][T29757] mempool_alloc_slab+0x4d/0x70 [ 352.342693][T29757] ? mempool_free+0x350/0x350 [ 352.347365][T29757] mempool_alloc+0x104/0x5e0 [ 352.351960][T29757] ? sbitmap_get+0x443/0x4f0 [ 352.356559][T29757] bio_alloc_bioset+0x1b0/0x5f0 [ 352.361407][T29757] ? trace_lock_release+0x135/0x1a0 [ 352.366604][T29757] ? ktime_get+0x5a/0x120 [ 352.370938][T29757] ? rcu_lock_release+0xd/0x30 [ 352.375701][T29757] bio_split+0x7b/0x360 [ 352.379858][T29757] __blk_queue_split+0x127e/0x1580 [ 352.384983][T29757] blk_mq_make_request+0xf4/0x1940 [ 352.390091][T29757] ? rcu_lock_release+0x26/0x30 [ 352.394936][T29757] ? blk_queue_enter+0x715/0x740 [ 352.399880][T29757] generic_make_request+0x24b/0x980 [ 352.405124][T29757] submit_bio+0x254/0x540 [ 352.409454][T29757] ? iov_iter_npages+0x1ee/0x9a0 [ 352.414392][T29757] __blkdev_direct_IO+0x9d7/0x1340 [ 352.419502][T29757] ? aio_prep_rw+0x900/0x900 [ 352.424092][T29757] ? iov_iter_npages+0x1ee/0x9a0 [ 352.429026][T29757] blkdev_direct_IO+0xbe/0xd0 [ 352.433701][T29757] generic_file_read_iter+0x1ad3/0x21b0 [ 352.439242][T29757] ? fsnotify+0x12d1/0x13d0 [ 352.443747][T29757] ? __kasan_check_read+0x11/0x20 [ 352.450299][T29757] blkdev_read_iter+0x12e/0x140 [ 352.455147][T29757] aio_read+0x31f/0x400 [ 352.459310][T29757] io_submit_one+0x6eb/0x1970 [ 352.463983][T29757] ? __might_fault+0xf9/0x160 [ 352.468651][T29757] ? __might_fault+0xf9/0x160 [ 352.473333][T29757] __se_sys_io_submit+0x12f/0x240 [ 352.478355][T29757] __x64_sys_io_submit+0x7b/0x90 [ 352.483285][T29757] do_syscall_64+0xfe/0x140 [ 352.487785][T29757] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 352.493665][T29757] RIP: 0033:0x459829 [ 352.497553][T29757] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 352.517159][T29757] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 352.525567][T29757] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:23 executing program 0: syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000580)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe9\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \x05f~\xa5\x8b\xce\xb1\xd6\x97\xabN\xae\xc9\xbd\xd3g@\xe1j\x85\x9c\xd7|\xac\xb9\x92\xd2\xa3\x8b\x8dW\r\xd7@\x01fB\xba\xcd\xa8F9\x8b\xf4\xaf\xe2\xff\xae\xd1\xe6\xcf\n\xaanI\xf6r\ri\x86>\x97\xaa\xae\xf3^aD\xca\x86\x85\x80\xa8\xe2T\xb9f\xb8\xfbAm\xb6\xe0\x99~\x88\xef%\x9f\x10\xe6g\xe5\x19\x03\xc3d\xad\xdb\xa48\x9e|\xfb\xa8:{o\x03\xeaO\xdd\x87\xc3|x\xaf\xf4u0.evjg\x9d\x9dH\xef\xf4\x8d4\x83k@\x04\xf4\x83\x8c\xdd#\xb3Y\x95\x00xL\xa1.aKb)\xb5G^\xd3|\xed\xe1\x14\xc0\x1c\xb4\xdeE\xf0\xda\xc2\x14\xf5df\xd2F\x0eG\x99\xb8\xfe\xca\xc9\xf7\xee\x8c\xd5\v\xdd\xa8F\x05\xd38\xf4\xbb\xa5k(\xc3\xf8~\xa4\xe2\xf4\x10F)\xd5\x80\x9f\xfe)}\xe0\xedS&\xaa\'\xfa\x1b\x14\xbc\xf9C\x88LJ\xf0\x95p\xb4\xac\xaa\xecA\xfa\xf2\x0e\xe6\vv8\xf2\xcd\xc5\a', 0x0) fremovexattr(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="757365722e706f7369785f61636c5f6163636573732500e9adf5922c32d6c80378793a357a9056845515dc71d51c2a1e91fb4f7a59d9582f1087643c97b8ba1175883fc531149f13e0aa8a7caece91d598704a"]) pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000000)='./file0\x00') socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000700)={0x0, 0x0, 0x2, 0x0, [], [{0x81, 0x4, 0xff, 0x0, 0x5, 0xe4d4}, {0xfffffffffffffffd, 0x0, 0x3, 0x2, 0x0, 0x9}], [[], []]}) close(0xffffffffffffffff) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000000)={0x19, 0x7, 0x0, {{0xc, 'systemcgroup'}}}, 0x19) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000240)={0x0, 0x0, 0x9}) connect$packet(0xffffffffffffffff, 0x0, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f0000000100)={0x7, 0x7f, 0x2}, 0x7) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='pstore\x00', 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) 16:47:23 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:23 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x803e000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 352.533532][T29757] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 352.541502][T29757] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 352.549466][T29757] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 352.557432][T29757] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:23 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 2 (fault-call:2 fault-nth:42): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:23 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:23 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)=ANY=[@ANYBLOB="02060200020000000017000000000000d5f1f2fae9af45ca93e1dce6bf773975d18b137b4af796e26c12f7e3b9270165e9081ea6583026f20482ae06050393a72a798e17fd7c520b3c84eb7e0ca9bfb4a6e5b4dd5ea4ba59e44279ff8763c9a67997597a99e0f8a42df5fa6a204bfee19817eabc2630b0bd8825e749fdfd16b3f495975a2282ebbeabdfaa1fc0ae7765a1cdb846d262f49a0b732582dcce8d61b90937042c82d40f4d2e7e7d105c962800d26a713a1ec9a330de6631a5c37083b1a3f0f55767b80b1eb2e4e8523377eda8dff091f9cc200274b3a21d0933ad"], 0x10}}, 0x0) [ 352.791967][T29791] FAULT_INJECTION: forcing a failure. [ 352.791967][T29791] name failslab, interval 1, probability 0, space 0, times 0 [ 352.809751][T29791] CPU: 0 PID: 29791 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 352.817762][T29791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.827814][T29791] Call Trace: [ 352.831103][T29791] dump_stack+0x1d8/0x2f8 [ 352.835442][T29791] should_fail+0x555/0x770 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 352.839861][T29791] __should_failslab+0x11a/0x160 [ 352.844798][T29791] ? mempool_alloc_slab+0x4d/0x70 [ 352.849820][T29791] should_failslab+0x9/0x20 [ 352.854322][T29791] kmem_cache_alloc+0x56/0x2e0 [ 352.859089][T29791] mempool_alloc_slab+0x4d/0x70 [ 352.863936][T29791] ? mempool_free+0x350/0x350 [ 352.868609][T29791] mempool_alloc+0x104/0x5e0 [ 352.873192][T29791] ? sbitmap_get+0x443/0x4f0 [ 352.877787][T29791] bio_alloc_bioset+0x1b0/0x5f0 [ 352.882635][T29791] ? trace_lock_release+0x135/0x1a0 [ 352.887833][T29791] ? ktime_get+0x5a/0x120 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 352.892159][T29791] ? rcu_lock_release+0xd/0x30 [ 352.896951][T29791] bio_split+0x7b/0x360 [ 352.901107][T29791] __blk_queue_split+0x127e/0x1580 [ 352.906239][T29791] blk_mq_make_request+0xf4/0x1940 [ 352.911351][T29791] ? rcu_lock_release+0x26/0x30 [ 352.916193][T29791] ? blk_queue_enter+0x715/0x740 [ 352.921156][T29791] generic_make_request+0x24b/0x980 [ 352.926351][T29791] submit_bio+0x254/0x540 [ 352.930681][T29791] ? iov_iter_npages+0x1ee/0x9a0 [ 352.935617][T29791] __blkdev_direct_IO+0x9d7/0x1340 16:47:24 executing program 1: bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 1: bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 352.940732][T29791] ? aio_prep_rw+0x900/0x900 [ 352.945320][T29791] ? iov_iter_npages+0x1ee/0x9a0 [ 352.950253][T29791] blkdev_direct_IO+0xbe/0xd0 [ 352.954934][T29791] generic_file_read_iter+0x1ad3/0x21b0 [ 352.960477][T29791] ? fsnotify+0x12d1/0x13d0 [ 352.964988][T29791] ? __kasan_check_read+0x11/0x20 [ 352.970019][T29791] blkdev_read_iter+0x12e/0x140 [ 352.974868][T29791] aio_read+0x31f/0x400 [ 352.979035][T29791] io_submit_one+0x6eb/0x1970 [ 352.983714][T29791] ? __might_fault+0xf9/0x160 [ 352.988389][T29791] ? __might_fault+0xf9/0x160 [ 352.993083][T29791] __se_sys_io_submit+0x12f/0x240 [ 352.998119][T29791] __x64_sys_io_submit+0x7b/0x90 [ 353.003057][T29791] do_syscall_64+0xfe/0x140 [ 353.007557][T29791] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 353.013437][T29791] RIP: 0033:0x459829 [ 353.017306][T29791] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 353.036910][T29791] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 353.045303][T29791] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 353.053258][T29791] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 353.061236][T29791] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 353.069193][T29791] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 353.077174][T29791] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:24 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 2 (fault-call:2 fault-nth:43): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 1: bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x400000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 0: socket(0x0, 0x0, 0x10001) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:24 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x40000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) [ 353.301362][T29835] FAULT_INJECTION: forcing a failure. [ 353.301362][T29835] name failslab, interval 1, probability 0, space 0, times 0 [ 353.319372][T29835] CPU: 1 PID: 29835 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 353.327374][T29835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.337419][T29835] Call Trace: [ 353.337436][T29835] dump_stack+0x1d8/0x2f8 [ 353.337451][T29835] should_fail+0x555/0x770 16:47:24 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x55555650c000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 353.337466][T29835] __should_failslab+0x11a/0x160 [ 353.345045][T29835] ? mempool_alloc_slab+0x4d/0x70 [ 353.345056][T29835] should_failslab+0x9/0x20 [ 353.345066][T29835] kmem_cache_alloc+0x56/0x2e0 [ 353.345081][T29835] mempool_alloc_slab+0x4d/0x70 [ 353.384496][T29835] ? mempool_free+0x350/0x350 [ 353.389169][T29835] mempool_alloc+0x104/0x5e0 [ 353.393752][T29835] ? sbitmap_get+0x443/0x4f0 16:47:24 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 353.398346][T29835] bio_alloc_bioset+0x1b0/0x5f0 [ 353.403191][T29835] ? trace_lock_release+0x135/0x1a0 [ 353.408389][T29835] ? ktime_get+0x5a/0x120 [ 353.412717][T29835] ? rcu_lock_release+0xd/0x30 [ 353.417482][T29835] bio_split+0x7b/0x360 [ 353.421640][T29835] __blk_queue_split+0x127e/0x1580 [ 353.426756][T29835] blk_mq_make_request+0xf4/0x1940 [ 353.431894][T29835] ? rcu_lock_release+0x26/0x30 [ 353.436742][T29835] ? blk_queue_enter+0x715/0x740 [ 353.441684][T29835] generic_make_request+0x24b/0x980 [ 353.446896][T29835] submit_bio+0x254/0x540 16:47:24 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 353.451718][T29835] ? iov_iter_npages+0x1ee/0x9a0 [ 353.456656][T29835] __blkdev_direct_IO+0x9d7/0x1340 [ 353.461767][T29835] ? aio_prep_rw+0x900/0x900 [ 353.466420][T29835] ? iov_iter_npages+0x1ee/0x9a0 [ 353.471356][T29835] blkdev_direct_IO+0xbe/0xd0 [ 353.476031][T29835] generic_file_read_iter+0x1ad3/0x21b0 [ 353.481568][T29835] ? fsnotify+0x12d1/0x13d0 [ 353.486075][T29835] ? __kasan_check_read+0x11/0x20 [ 353.491089][T29835] blkdev_read_iter+0x12e/0x140 [ 353.495929][T29835] aio_read+0x31f/0x400 [ 353.500077][T29835] io_submit_one+0x6eb/0x1970 [ 353.504738][T29835] ? __might_fault+0xf9/0x160 [ 353.509405][T29835] ? __might_fault+0xf9/0x160 [ 353.514060][T29835] __se_sys_io_submit+0x12f/0x240 [ 353.519058][T29835] __x64_sys_io_submit+0x7b/0x90 [ 353.523974][T29835] do_syscall_64+0xfe/0x140 [ 353.528452][T29835] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 353.534316][T29835] RIP: 0033:0x459829 [ 353.538182][T29835] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 353.557781][T29835] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 353.566183][T29835] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 353.574133][T29835] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 353.582083][T29835] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 353.590036][T29835] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 353.597989][T29835] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:24 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 2 (fault-call:2 fault-nth:44): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:24 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x71010000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:24 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:24 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x55555652e000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 353.809947][T29873] FAULT_INJECTION: forcing a failure. [ 353.809947][T29873] name failslab, interval 1, probability 0, space 0, times 0 [ 353.825028][T29873] CPU: 1 PID: 29873 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 353.833029][T29873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.843079][T29873] Call Trace: [ 353.846376][T29873] dump_stack+0x1d8/0x2f8 [ 353.850714][T29873] should_fail+0x555/0x770 [ 353.855128][T29873] __should_failslab+0x11a/0x160 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) [ 353.860066][T29873] ? mempool_alloc_slab+0x4d/0x70 [ 353.865093][T29873] should_failslab+0x9/0x20 [ 353.869594][T29873] kmem_cache_alloc+0x56/0x2e0 [ 353.874371][T29873] mempool_alloc_slab+0x4d/0x70 [ 353.879224][T29873] ? mempool_free+0x350/0x350 [ 353.883902][T29873] mempool_alloc+0x104/0x5e0 [ 353.888491][T29873] ? sbitmap_get+0x443/0x4f0 [ 353.893088][T29873] bio_alloc_bioset+0x1b0/0x5f0 [ 353.897939][T29873] ? trace_lock_release+0x135/0x1a0 [ 353.903127][T29873] ? ktime_get+0x5a/0x120 [ 353.907451][T29873] ? rcu_lock_release+0xd/0x30 [ 353.912219][T29873] bio_split+0x7b/0x360 [ 353.916374][T29873] __blk_queue_split+0x127e/0x1580 [ 353.921501][T29873] blk_mq_make_request+0xf4/0x1940 [ 353.926619][T29873] ? rcu_lock_release+0x26/0x30 [ 353.931460][T29873] ? blk_queue_enter+0x715/0x740 [ 353.936399][T29873] generic_make_request+0x24b/0x980 [ 353.941652][T29873] submit_bio+0x254/0x540 [ 353.945958][T29873] ? iov_iter_npages+0x1ee/0x9a0 [ 353.950960][T29873] __blkdev_direct_IO+0x9d7/0x1340 [ 353.956045][T29873] ? aio_prep_rw+0x900/0x900 [ 353.960618][T29873] ? iov_iter_npages+0x1ee/0x9a0 [ 353.965533][T29873] blkdev_direct_IO+0xbe/0xd0 [ 353.970183][T29873] generic_file_read_iter+0x1ad3/0x21b0 [ 353.975704][T29873] ? fsnotify+0x12d1/0x13d0 [ 353.980183][T29873] ? __kasan_check_read+0x11/0x20 [ 353.985184][T29873] blkdev_read_iter+0x12e/0x140 [ 353.990009][T29873] aio_read+0x31f/0x400 [ 353.994145][T29873] io_submit_one+0x6eb/0x1970 [ 353.998797][T29873] ? __might_fault+0xf9/0x160 [ 354.003469][T29873] ? __might_fault+0xf9/0x160 [ 354.008147][T29873] __se_sys_io_submit+0x12f/0x240 [ 354.013158][T29873] __x64_sys_io_submit+0x7b/0x90 [ 354.018071][T29873] do_syscall_64+0xfe/0x140 [ 354.022550][T29873] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 354.028416][T29873] RIP: 0033:0x459829 [ 354.032287][T29873] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 354.051868][T29873] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:25 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x20000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 354.060257][T29873] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 354.068205][T29873] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 354.076165][T29873] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 354.084132][T29873] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 354.092080][T29873] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:25 executing program 2 (fault-call:2 fault-nth:45): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:25 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x60ffffffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7fffefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc846", 0x20) 16:47:25 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x81010000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x760000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 354.273325][T29904] FAULT_INJECTION: forcing a failure. [ 354.273325][T29904] name failslab, interval 1, probability 0, space 0, times 0 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) [ 354.337473][T29904] CPU: 1 PID: 29904 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 354.345585][T29904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.355647][T29904] Call Trace: [ 354.358937][T29904] dump_stack+0x1d8/0x2f8 [ 354.363363][T29904] should_fail+0x555/0x770 [ 354.367785][T29904] __should_failslab+0x11a/0x160 [ 354.372733][T29904] ? mempool_alloc_slab+0x4d/0x70 [ 354.377754][T29904] should_failslab+0x9/0x20 [ 354.382253][T29904] kmem_cache_alloc+0x56/0x2e0 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) [ 354.387018][T29904] mempool_alloc_slab+0x4d/0x70 [ 354.391863][T29904] ? mempool_free+0x350/0x350 [ 354.396537][T29904] mempool_alloc+0x104/0x5e0 [ 354.401119][T29904] ? sbitmap_get+0x443/0x4f0 [ 354.405718][T29904] bio_alloc_bioset+0x1b0/0x5f0 [ 354.410569][T29904] ? trace_lock_release+0x135/0x1a0 [ 354.415772][T29904] ? ktime_get+0x5a/0x120 [ 354.420106][T29904] ? rcu_lock_release+0xd/0x30 [ 354.424868][T29904] bio_split+0x7b/0x360 [ 354.429024][T29904] __blk_queue_split+0x127e/0x1580 [ 354.434171][T29904] blk_mq_make_request+0xf4/0x1940 [ 354.439266][T29904] ? rcu_lock_release+0x26/0x30 [ 354.444093][T29904] ? blk_queue_enter+0x715/0x740 [ 354.449036][T29904] generic_make_request+0x24b/0x980 [ 354.454216][T29904] submit_bio+0x254/0x540 [ 354.458526][T29904] ? iov_iter_npages+0x1ee/0x9a0 [ 354.463443][T29904] __blkdev_direct_IO+0x9d7/0x1340 [ 354.468532][T29904] ? aio_prep_rw+0x900/0x900 [ 354.473127][T29904] ? iov_iter_npages+0x1ee/0x9a0 [ 354.478046][T29904] blkdev_direct_IO+0xbe/0xd0 [ 354.482724][T29904] generic_file_read_iter+0x1ad3/0x21b0 [ 354.488245][T29904] ? fsnotify+0x12d1/0x13d0 [ 354.492748][T29904] ? __kasan_check_read+0x11/0x20 [ 354.497751][T29904] blkdev_read_iter+0x12e/0x140 [ 354.502578][T29904] aio_read+0x31f/0x400 [ 354.506713][T29904] io_submit_one+0x6eb/0x1970 [ 354.511389][T29904] ? __might_fault+0xf9/0x160 [ 354.516045][T29904] ? __might_fault+0xf9/0x160 [ 354.520699][T29904] __se_sys_io_submit+0x12f/0x240 [ 354.525699][T29904] __x64_sys_io_submit+0x7b/0x90 [ 354.530610][T29904] do_syscall_64+0xfe/0x140 [ 354.535101][T29904] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 354.540990][T29904] RIP: 0033:0x459829 [ 354.544860][T29904] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 354.564448][T29904] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 354.572842][T29904] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 354.580789][T29904] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 354.588736][T29904] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 354.596705][T29904] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 354.604654][T29904] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:25 executing program 2 (fault-call:2 fault-nth:46): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0) 16:47:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:25 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:25 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7ffa90754000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0) [ 354.825551][T29937] FAULT_INJECTION: forcing a failure. [ 354.825551][T29937] name failslab, interval 1, probability 0, space 0, times 0 [ 354.841685][T29937] CPU: 1 PID: 29937 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 354.849677][T29937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.859724][T29937] Call Trace: [ 354.863017][T29937] dump_stack+0x1d8/0x2f8 [ 354.867351][T29937] should_fail+0x555/0x770 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1", 0x10) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1", 0x10) [ 354.871777][T29937] __should_failslab+0x11a/0x160 [ 354.876716][T29937] ? mempool_alloc_slab+0x4d/0x70 [ 354.881735][T29937] should_failslab+0x9/0x20 [ 354.886234][T29937] kmem_cache_alloc+0x56/0x2e0 [ 354.891001][T29937] mempool_alloc_slab+0x4d/0x70 [ 354.895858][T29937] ? mempool_free+0x350/0x350 [ 354.900537][T29937] mempool_alloc+0x104/0x5e0 [ 354.905121][T29937] ? sbitmap_get+0x443/0x4f0 [ 354.909716][T29937] bio_alloc_bioset+0x1b0/0x5f0 [ 354.914567][T29937] ? trace_lock_release+0x135/0x1a0 [ 354.919759][T29937] ? ktime_get+0x5a/0x120 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1", 0x10) [ 354.924088][T29937] ? rcu_lock_release+0xd/0x30 [ 354.928846][T29937] bio_split+0x7b/0x360 [ 354.933006][T29937] __blk_queue_split+0x127e/0x1580 [ 354.938127][T29937] blk_mq_make_request+0xf4/0x1940 [ 354.943239][T29937] ? rcu_lock_release+0x26/0x30 [ 354.948093][T29937] ? blk_queue_enter+0x715/0x740 [ 354.953032][T29937] generic_make_request+0x24b/0x980 [ 354.958231][T29937] submit_bio+0x254/0x540 [ 354.962602][T29937] ? iov_iter_npages+0x1ee/0x9a0 [ 354.967552][T29937] __blkdev_direct_IO+0x9d7/0x1340 [ 354.972641][T29937] ? aio_prep_rw+0x900/0x900 [ 354.977208][T29937] ? iov_iter_npages+0x1ee/0x9a0 [ 354.982209][T29937] blkdev_direct_IO+0xbe/0xd0 [ 354.986880][T29937] generic_file_read_iter+0x1ad3/0x21b0 [ 354.992421][T29937] ? fsnotify+0x12d1/0x13d0 [ 354.996910][T29937] ? __kasan_check_read+0x11/0x20 [ 355.001930][T29937] blkdev_read_iter+0x12e/0x140 [ 355.006761][T29937] aio_read+0x31f/0x400 [ 355.010907][T29937] io_submit_one+0x6eb/0x1970 [ 355.015558][T29937] ? __might_fault+0xf9/0x160 [ 355.020228][T29937] ? __might_fault+0xf9/0x160 [ 355.024883][T29937] __se_sys_io_submit+0x12f/0x240 [ 355.029883][T29937] __x64_sys_io_submit+0x7b/0x90 [ 355.034828][T29937] do_syscall_64+0xfe/0x140 [ 355.039309][T29937] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 355.045171][T29937] RIP: 0033:0x459829 [ 355.049037][T29937] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 355.068660][T29937] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 355.077046][T29937] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 355.084990][T29937] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 355.092935][T29937] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 355.100906][T29937] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 355.108861][T29937] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:26 executing program 2 (fault-call:2 fault-nth:47): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062", 0x18) 16:47:26 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:26 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff010000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7ffffffff000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 0: setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062", 0x18) 16:47:26 executing program 0: setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 355.292371][T29971] FAULT_INJECTION: forcing a failure. [ 355.292371][T29971] name failslab, interval 1, probability 0, space 0, times 0 [ 355.307340][T29971] CPU: 1 PID: 29971 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 355.315329][T29971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.326123][T29971] Call Trace: [ 355.329410][T29971] dump_stack+0x1d8/0x2f8 [ 355.333740][T29971] should_fail+0x555/0x770 16:47:26 executing program 0: setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062", 0x18) [ 355.338161][T29971] __should_failslab+0x11a/0x160 [ 355.343101][T29971] ? mempool_alloc_slab+0x4d/0x70 [ 355.348119][T29971] should_failslab+0x9/0x20 [ 355.352630][T29971] kmem_cache_alloc+0x56/0x2e0 [ 355.358077][T29971] mempool_alloc_slab+0x4d/0x70 [ 355.367785][T29971] ? mempool_free+0x350/0x350 [ 355.372460][T29971] mempool_alloc+0x104/0x5e0 [ 355.377047][T29971] ? sbitmap_get+0x443/0x4f0 [ 355.381646][T29971] bio_alloc_bioset+0x1b0/0x5f0 [ 355.386594][T29971] ? trace_lock_release+0x135/0x1a0 16:47:26 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 355.391796][T29971] ? ktime_get+0x5a/0x120 [ 355.396121][T29971] ? rcu_lock_release+0xd/0x30 [ 355.400883][T29971] bio_split+0x7b/0x360 [ 355.405075][T29971] __blk_queue_split+0x127e/0x1580 [ 355.410195][T29971] blk_mq_make_request+0xf4/0x1940 [ 355.415304][T29971] ? rcu_lock_release+0x26/0x30 [ 355.420145][T29971] ? blk_queue_enter+0x715/0x740 [ 355.425084][T29971] generic_make_request+0x24b/0x980 [ 355.430290][T29971] submit_bio+0x254/0x540 [ 355.434629][T29971] ? iov_iter_npages+0x1ee/0x9a0 [ 355.439568][T29971] __blkdev_direct_IO+0x9d7/0x1340 [ 355.444681][T29971] ? aio_prep_rw+0x900/0x900 [ 355.449722][T29971] ? iov_iter_npages+0x1ee/0x9a0 [ 355.454657][T29971] blkdev_direct_IO+0xbe/0xd0 [ 355.459327][T29971] generic_file_read_iter+0x1ad3/0x21b0 [ 355.464855][T29971] ? fsnotify+0x12d1/0x13d0 [ 355.469335][T29971] ? __kasan_check_read+0x11/0x20 [ 355.474337][T29971] blkdev_read_iter+0x12e/0x140 [ 355.479168][T29971] aio_read+0x31f/0x400 [ 355.483316][T29971] io_submit_one+0x6eb/0x1970 [ 355.488082][T29971] ? __might_fault+0xf9/0x160 [ 355.492738][T29971] ? __might_fault+0xf9/0x160 [ 355.497407][T29971] __se_sys_io_submit+0x12f/0x240 [ 355.502421][T29971] __x64_sys_io_submit+0x7b/0x90 [ 355.507345][T29971] do_syscall_64+0xfe/0x140 [ 355.511826][T29971] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 355.517690][T29971] RIP: 0033:0x459829 [ 355.521557][T29971] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 355.541160][T29971] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 355.549562][T29971] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 355.557534][T29971] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 355.565510][T29971] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 355.573487][T29971] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 355.581436][T29971] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:26 executing program 2 (fault-call:2 fault-nth:48): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc", 0x1c) 16:47:26 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:26 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x960000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefff7f, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:26 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x407590fa7f0000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc", 0x1c) [ 355.797204][T30008] FAULT_INJECTION: forcing a failure. [ 355.797204][T30008] name failslab, interval 1, probability 0, space 0, times 0 [ 355.815395][T30008] CPU: 0 PID: 30008 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 355.823402][T30008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.833460][T30008] Call Trace: [ 355.836745][T30008] dump_stack+0x1d8/0x2f8 [ 355.841067][T30008] should_fail+0x555/0x770 [ 355.845484][T30008] __should_failslab+0x11a/0x160 [ 355.850416][T30008] ? mempool_alloc_slab+0x4d/0x70 [ 355.855428][T30008] should_failslab+0x9/0x20 [ 355.859916][T30008] kmem_cache_alloc+0x56/0x2e0 [ 355.864659][T30008] mempool_alloc_slab+0x4d/0x70 [ 355.869487][T30008] ? mempool_free+0x350/0x350 [ 355.874151][T30008] mempool_alloc+0x104/0x5e0 [ 355.878747][T30008] ? sbitmap_get+0x443/0x4f0 [ 355.883317][T30008] bio_alloc_bioset+0x1b0/0x5f0 [ 355.888145][T30008] ? trace_lock_release+0x135/0x1a0 [ 355.893336][T30008] ? ktime_get+0x5a/0x120 [ 355.897726][T30008] ? rcu_lock_release+0xd/0x30 [ 355.902467][T30008] bio_split+0x7b/0x360 [ 355.906600][T30008] __blk_queue_split+0x127e/0x1580 [ 355.911706][T30008] blk_mq_make_request+0xf4/0x1940 [ 355.916802][T30008] ? rcu_lock_release+0x26/0x30 [ 355.921629][T30008] ? blk_queue_enter+0x715/0x740 [ 355.926582][T30008] generic_make_request+0x24b/0x980 [ 355.931773][T30008] submit_bio+0x254/0x540 [ 355.936221][T30008] ? iov_iter_npages+0x1ee/0x9a0 [ 355.941156][T30008] __blkdev_direct_IO+0x9d7/0x1340 [ 355.946254][T30008] ? aio_prep_rw+0x900/0x900 [ 355.950840][T30008] ? iov_iter_npages+0x1ee/0x9a0 [ 355.955789][T30008] blkdev_direct_IO+0xbe/0xd0 [ 355.960457][T30008] generic_file_read_iter+0x1ad3/0x21b0 [ 355.965979][T30008] ? fsnotify+0x12d1/0x13d0 [ 355.971165][T30008] ? __kasan_check_read+0x11/0x20 [ 355.976199][T30008] blkdev_read_iter+0x12e/0x140 [ 355.981054][T30008] aio_read+0x31f/0x400 [ 355.985207][T30008] io_submit_one+0x6eb/0x1970 [ 355.989865][T30008] ? __might_fault+0xf9/0x160 [ 355.994522][T30008] ? __might_fault+0xf9/0x160 [ 355.999210][T30008] __se_sys_io_submit+0x12f/0x240 [ 356.004220][T30008] __x64_sys_io_submit+0x7b/0x90 [ 356.009180][T30008] do_syscall_64+0xfe/0x140 [ 356.013664][T30008] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 356.019536][T30008] RIP: 0033:0x459829 [ 356.023415][T30008] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:27 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc", 0x1c) [ 356.043005][T30008] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 356.051403][T30008] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 356.059367][T30008] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 356.067336][T30008] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 356.075316][T30008] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 356.083275][T30008] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:27 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 2 (fault-call:2 fault-nth:49): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01ab", 0x1e) 16:47:27 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x70710000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01ab", 0x1e) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 356.300860][T30044] FAULT_INJECTION: forcing a failure. [ 356.300860][T30044] name failslab, interval 1, probability 0, space 0, times 0 [ 356.318402][T30044] CPU: 1 PID: 30044 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 356.326398][T30044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.336452][T30044] Call Trace: [ 356.339752][T30044] dump_stack+0x1d8/0x2f8 [ 356.344090][T30044] should_fail+0x555/0x770 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01ab", 0x1e) [ 356.348504][T30044] __should_failslab+0x11a/0x160 [ 356.353437][T30044] ? mempool_alloc_slab+0x4d/0x70 [ 356.358457][T30044] should_failslab+0x9/0x20 [ 356.362958][T30044] kmem_cache_alloc+0x56/0x2e0 [ 356.367724][T30044] mempool_alloc_slab+0x4d/0x70 [ 356.372572][T30044] ? mempool_free+0x350/0x350 [ 356.377241][T30044] mempool_alloc+0x104/0x5e0 [ 356.381824][T30044] ? sbitmap_get+0x443/0x4f0 [ 356.386424][T30044] bio_alloc_bioset+0x1b0/0x5f0 [ 356.391267][T30044] ? trace_lock_release+0x135/0x1a0 [ 356.396461][T30044] ? ktime_get+0x5a/0x120 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 356.400788][T30044] ? rcu_lock_release+0xd/0x30 [ 356.405552][T30044] bio_split+0x7b/0x360 [ 356.409708][T30044] __blk_queue_split+0x127e/0x1580 [ 356.414827][T30044] blk_mq_make_request+0xf4/0x1940 [ 356.419940][T30044] ? rcu_lock_release+0x26/0x30 [ 356.424820][T30044] ? blk_queue_enter+0x715/0x740 [ 356.429758][T30044] generic_make_request+0x24b/0x980 [ 356.434958][T30044] submit_bio+0x254/0x540 [ 356.439284][T30044] ? iov_iter_npages+0x1ee/0x9a0 [ 356.444213][T30044] __blkdev_direct_IO+0x9d7/0x1340 [ 356.449305][T30044] ? aio_prep_rw+0x900/0x900 [ 356.453945][T30044] ? iov_iter_npages+0x1ee/0x9a0 [ 356.458856][T30044] blkdev_direct_IO+0xbe/0xd0 [ 356.463514][T30044] generic_file_read_iter+0x1ad3/0x21b0 [ 356.469032][T30044] ? fsnotify+0x12d1/0x13d0 [ 356.473520][T30044] ? __kasan_check_read+0x11/0x20 [ 356.478538][T30044] blkdev_read_iter+0x12e/0x140 [ 356.483372][T30044] aio_read+0x31f/0x400 [ 356.487511][T30044] io_submit_one+0x6eb/0x1970 [ 356.492168][T30044] ? __might_fault+0xf9/0x160 [ 356.496842][T30044] ? __might_fault+0xf9/0x160 [ 356.501523][T30044] __se_sys_io_submit+0x12f/0x240 [ 356.506545][T30044] __x64_sys_io_submit+0x7b/0x90 [ 356.511461][T30044] do_syscall_64+0xfe/0x140 [ 356.515940][T30044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 356.521827][T30044] RIP: 0033:0x459829 [ 356.525700][T30044] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:27 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x400000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 356.545282][T30044] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 356.553691][T30044] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 356.561658][T30044] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 356.569604][T30044] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 356.577575][T30044] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 356.585647][T30044] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:27 executing program 2 (fault-call:2 fault-nth:50): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc8", 0x1f) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xc0505655550000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:27 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:27 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc8", 0x1f) 16:47:28 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3e80000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 356.784941][T30075] FAULT_INJECTION: forcing a failure. [ 356.784941][T30075] name failslab, interval 1, probability 0, space 0, times 0 [ 356.819384][T30075] CPU: 1 PID: 30075 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 356.827406][T30075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.837455][T30075] Call Trace: [ 356.840744][T30075] dump_stack+0x1d8/0x2f8 [ 356.845118][T30075] should_fail+0x555/0x770 [ 356.849536][T30075] __should_failslab+0x11a/0x160 [ 356.854471][T30075] ? mempool_alloc_slab+0x4d/0x70 [ 356.859489][T30075] should_failslab+0x9/0x20 [ 356.863984][T30075] kmem_cache_alloc+0x56/0x2e0 [ 356.868741][T30075] mempool_alloc_slab+0x4d/0x70 [ 356.873583][T30075] ? mempool_free+0x350/0x350 [ 356.878256][T30075] mempool_alloc+0x104/0x5e0 [ 356.882837][T30075] ? sbitmap_get+0x443/0x4f0 [ 356.887429][T30075] bio_alloc_bioset+0x1b0/0x5f0 [ 356.892271][T30075] ? trace_lock_release+0x135/0x1a0 [ 356.897460][T30075] ? ktime_get+0x5a/0x120 [ 356.901783][T30075] ? rcu_lock_release+0xd/0x30 [ 356.906543][T30075] bio_split+0x7b/0x360 [ 356.910696][T30075] __blk_queue_split+0x127e/0x1580 [ 356.915811][T30075] blk_mq_make_request+0xf4/0x1940 [ 356.920918][T30075] ? rcu_lock_release+0x26/0x30 [ 356.925757][T30075] ? blk_queue_enter+0x715/0x740 [ 356.930693][T30075] generic_make_request+0x24b/0x980 [ 356.935894][T30075] submit_bio+0x254/0x540 [ 356.940216][T30075] ? iov_iter_npages+0x1ee/0x9a0 [ 356.945151][T30075] __blkdev_direct_IO+0x9d7/0x1340 [ 356.950258][T30075] ? aio_prep_rw+0x900/0x900 [ 356.954848][T30075] ? iov_iter_npages+0x1ee/0x9a0 [ 356.959777][T30075] blkdev_direct_IO+0xbe/0xd0 [ 356.964448][T30075] generic_file_read_iter+0x1ad3/0x21b0 [ 356.969977][T30075] ? fsnotify+0x12d1/0x13d0 [ 356.974457][T30075] ? __kasan_check_read+0x11/0x20 [ 356.979457][T30075] blkdev_read_iter+0x12e/0x140 [ 356.984279][T30075] aio_read+0x31f/0x400 [ 356.988416][T30075] io_submit_one+0x6eb/0x1970 [ 356.993155][T30075] ? __might_fault+0xf9/0x160 [ 356.997805][T30075] ? __might_fault+0xf9/0x160 [ 357.002456][T30075] __se_sys_io_submit+0x12f/0x240 [ 357.007457][T30075] __x64_sys_io_submit+0x7b/0x90 [ 357.012372][T30075] do_syscall_64+0xfe/0x140 [ 357.016851][T30075] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 357.022721][T30075] RIP: 0033:0x459829 [ 357.026601][T30075] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 357.046183][T30075] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 357.054564][T30075] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 357.062507][T30075] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 357.070450][T30075] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 357.078392][T30075] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:28 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc8", 0x1f) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:28 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xe0525655550000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 357.086337][T30075] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:28 executing program 2 (fault-call:2 fault-nth:51): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:28 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x803e000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xe0700000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 1: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x1, 0x0) chroot(&(0x7f0000000000)='./file0\x00') umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380), 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:28 executing program 1: r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000200)=ANY=[], 0x5aa78d33) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x10, 0x0, 0x10fffe) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380), 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 357.328766][T30111] FAULT_INJECTION: forcing a failure. [ 357.328766][T30111] name failslab, interval 1, probability 0, space 0, times 0 [ 357.360604][T30111] CPU: 0 PID: 30111 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 357.368605][T30111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.378653][T30111] Call Trace: [ 357.381946][T30111] dump_stack+0x1d8/0x2f8 [ 357.386278][T30111] should_fail+0x555/0x770 [ 357.390693][T30111] __should_failslab+0x11a/0x160 [ 357.395628][T30111] ? mempool_alloc_slab+0x4d/0x70 [ 357.400646][T30111] should_failslab+0x9/0x20 [ 357.405152][T30111] kmem_cache_alloc+0x56/0x2e0 [ 357.409914][T30111] mempool_alloc_slab+0x4d/0x70 [ 357.414759][T30111] ? mempool_free+0x350/0x350 [ 357.419431][T30111] mempool_alloc+0x104/0x5e0 [ 357.424014][T30111] ? sbitmap_get+0x443/0x4f0 [ 357.428608][T30111] bio_alloc_bioset+0x1b0/0x5f0 [ 357.433460][T30111] ? trace_lock_release+0x135/0x1a0 [ 357.438654][T30111] ? ktime_get+0x5a/0x120 [ 357.442983][T30111] ? rcu_lock_release+0xd/0x30 [ 357.447748][T30111] bio_split+0x7b/0x360 [ 357.451907][T30111] __blk_queue_split+0x127e/0x1580 [ 357.457030][T30111] blk_mq_make_request+0xf4/0x1940 [ 357.462144][T30111] ? rcu_lock_release+0x26/0x30 [ 357.466995][T30111] ? blk_queue_enter+0x715/0x740 [ 357.471975][T30111] generic_make_request+0x24b/0x980 [ 357.477177][T30111] submit_bio+0x254/0x540 [ 357.481505][T30111] ? iov_iter_npages+0x1ee/0x9a0 [ 357.486446][T30111] __blkdev_direct_IO+0x9d7/0x1340 [ 357.491560][T30111] ? aio_prep_rw+0x900/0x900 [ 357.496152][T30111] ? iov_iter_npages+0x1ee/0x9a0 [ 357.501084][T30111] blkdev_direct_IO+0xbe/0xd0 [ 357.505768][T30111] generic_file_read_iter+0x1ad3/0x21b0 [ 357.511394][T30111] ? fsnotify+0x12d1/0x13d0 [ 357.515901][T30111] ? __kasan_check_read+0x11/0x20 [ 357.520929][T30111] blkdev_read_iter+0x12e/0x140 [ 357.525778][T30111] aio_read+0x31f/0x400 [ 357.529952][T30111] io_submit_one+0x6eb/0x1970 [ 357.534629][T30111] ? __might_fault+0xf9/0x160 [ 357.539302][T30111] ? __might_fault+0xf9/0x160 [ 357.543984][T30111] __se_sys_io_submit+0x12f/0x240 [ 357.549010][T30111] __x64_sys_io_submit+0x7b/0x90 [ 357.553950][T30111] do_syscall_64+0xfe/0x140 [ 357.558452][T30111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 357.564368][T30111] RIP: 0033:0x459829 [ 357.568257][T30111] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 357.587862][T30111] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 357.596262][T30111] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 357.604229][T30111] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 357.612284][T30111] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 357.620351][T30111] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:28 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x66, &(0x7f0000000080), 0x4) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380), 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 357.628321][T30111] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:28 executing program 2 (fault-call:2 fault-nth:52): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) recvmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000180)=""/242, 0xf2}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x2) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x73a0b1b, 0x0, 0x0, 0x800e00549) shutdown(r1, 0x0) r3 = dup(r2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r4, &(0x7f0000001c40)=[{&(0x7f0000000000)=""/207, 0xcf}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5) r5 = dup(r4) r6 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r6, 0x0, 0xccf3, 0x0, 0x0, 0x800e0053d) shutdown(r5, 0x0) r7 = socket$inet6_sctp(0x1c, 0x2000000000005, 0x84) readv(r7, &(0x7f00000007c0)=[{&(0x7f0000000280)=""/5, 0x5}], 0x1) shutdown(r6, 0x0) shutdown(r3, 0x0) 16:47:28 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:28 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf0500000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:28 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 357.825023][T30148] FAULT_INJECTION: forcing a failure. [ 357.825023][T30148] name failslab, interval 1, probability 0, space 0, times 0 [ 357.856969][T30148] CPU: 1 PID: 30148 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 357.864965][T30148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.875011][T30148] Call Trace: [ 357.878297][T30148] dump_stack+0x1d8/0x2f8 [ 357.882630][T30148] should_fail+0x555/0x770 [ 357.887048][T30148] __should_failslab+0x11a/0x160 [ 357.891981][T30148] ? mempool_alloc_slab+0x4d/0x70 [ 357.897003][T30148] should_failslab+0x9/0x20 [ 357.901500][T30148] kmem_cache_alloc+0x56/0x2e0 [ 357.906262][T30148] mempool_alloc_slab+0x4d/0x70 [ 357.911105][T30148] ? mempool_free+0x350/0x350 [ 357.915857][T30148] mempool_alloc+0x104/0x5e0 [ 357.920584][T30148] ? sbitmap_get+0x443/0x4f0 [ 357.925153][T30148] bio_alloc_bioset+0x1b0/0x5f0 [ 357.930009][T30148] ? trace_lock_release+0x135/0x1a0 [ 357.935181][T30148] ? ktime_get+0x5a/0x120 [ 357.939485][T30148] ? rcu_lock_release+0xd/0x30 [ 357.944222][T30148] bio_split+0x7b/0x360 [ 357.948370][T30148] __blk_queue_split+0x127e/0x1580 [ 357.953480][T30148] blk_mq_make_request+0xf4/0x1940 [ 357.958574][T30148] ? rcu_lock_release+0x26/0x30 [ 357.963420][T30148] ? blk_queue_enter+0x715/0x740 [ 357.968619][T30148] generic_make_request+0x24b/0x980 [ 357.973800][T30148] submit_bio+0x254/0x540 [ 357.978132][T30148] ? iov_iter_npages+0x1ee/0x9a0 [ 357.983046][T30148] __blkdev_direct_IO+0x9d7/0x1340 [ 357.988136][T30148] ? aio_prep_rw+0x900/0x900 [ 357.992712][T30148] ? iov_iter_npages+0x1ee/0x9a0 [ 357.997638][T30148] blkdev_direct_IO+0xbe/0xd0 [ 358.002288][T30148] generic_file_read_iter+0x1ad3/0x21b0 [ 358.007827][T30148] ? fsnotify+0x12d1/0x13d0 [ 358.012347][T30148] ? __kasan_check_read+0x11/0x20 [ 358.017367][T30148] blkdev_read_iter+0x12e/0x140 [ 358.022213][T30148] aio_read+0x31f/0x400 [ 358.026378][T30148] io_submit_one+0x6eb/0x1970 [ 358.031221][T30148] ? __might_fault+0xf9/0x160 [ 358.035871][T30148] ? __might_fault+0xf9/0x160 [ 358.040547][T30148] __se_sys_io_submit+0x12f/0x240 [ 358.045546][T30148] __x64_sys_io_submit+0x7b/0x90 [ 358.050458][T30148] do_syscall_64+0xfe/0x140 [ 358.054948][T30148] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 358.060809][T30148] RIP: 0033:0x459829 [ 358.064682][T30148] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 358.084261][T30148] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 358.092641][T30148] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 358.100589][T30148] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 358.108550][T30148] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 358.116491][T30148] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) recvmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000180)=""/242, 0xf2}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x2) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x73a0b1b, 0x0, 0x0, 0x800e00549) shutdown(r1, 0x0) r3 = dup(r2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r4, &(0x7f0000001c40)=[{&(0x7f0000000000)=""/207, 0xcf}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5) r5 = dup(r4) r6 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r6, 0x0, 0xccf3, 0x0, 0x0, 0x800e0053d) shutdown(r5, 0x0) r7 = socket$inet6_sctp(0x1c, 0x2000000000005, 0x84) readv(r7, &(0x7f00000007c0)=[{&(0x7f0000000280)=""/5, 0x5}], 0x1) shutdown(r6, 0x0) shutdown(r3, 0x0) 16:47:29 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf0ffffff7f0000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.124434][T30148] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:29 executing program 2 (fault-call:2 fault-nth:53): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x800000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x0, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:29 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.367446][T30185] FAULT_INJECTION: forcing a failure. [ 358.367446][T30185] name failslab, interval 1, probability 0, space 0, times 0 [ 358.391226][T30185] CPU: 0 PID: 30185 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 358.399417][T30185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.409466][T30185] Call Trace: [ 358.412756][T30185] dump_stack+0x1d8/0x2f8 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000080)=""/129, 0x81}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x6}, 0x2) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x2769, 0x0, 0x0, 0x800e00506) shutdown(r1, 0x0) clock_nanosleep(0x0, 0x0, &(0x7f0000000000)={0x40}, &(0x7f0000000040)) shutdown(r2, 0x0) [ 358.417093][T30185] should_fail+0x555/0x770 [ 358.421517][T30185] __should_failslab+0x11a/0x160 [ 358.426448][T30185] ? mempool_alloc_slab+0x4d/0x70 [ 358.431472][T30185] should_failslab+0x9/0x20 [ 358.435971][T30185] kmem_cache_alloc+0x56/0x2e0 [ 358.440733][T30185] mempool_alloc_slab+0x4d/0x70 [ 358.445581][T30185] ? mempool_free+0x350/0x350 [ 358.450720][T30185] mempool_alloc+0x104/0x5e0 [ 358.455313][T30185] ? sbitmap_get+0x443/0x4f0 [ 358.459907][T30185] bio_alloc_bioset+0x1b0/0x5f0 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100), 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.464754][T30185] ? trace_lock_release+0x135/0x1a0 [ 358.469945][T30185] ? ktime_get+0x5a/0x120 [ 358.474270][T30185] ? rcu_lock_release+0xd/0x30 [ 358.479033][T30185] bio_split+0x7b/0x360 [ 358.483188][T30185] __blk_queue_split+0x127e/0x1580 [ 358.488302][T30185] blk_mq_make_request+0xf4/0x1940 [ 358.493415][T30185] ? rcu_lock_release+0x26/0x30 [ 358.498256][T30185] ? blk_queue_enter+0x715/0x740 [ 358.503191][T30185] generic_make_request+0x24b/0x980 [ 358.508386][T30185] submit_bio+0x254/0x540 [ 358.512715][T30185] ? iov_iter_npages+0x1ee/0x9a0 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100), 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.517661][T30185] __blkdev_direct_IO+0x9d7/0x1340 [ 358.522777][T30185] ? aio_prep_rw+0x900/0x900 [ 358.527370][T30185] ? iov_iter_npages+0x1ee/0x9a0 [ 358.532304][T30185] blkdev_direct_IO+0xbe/0xd0 [ 358.536973][T30185] generic_file_read_iter+0x1ad3/0x21b0 [ 358.542518][T30185] ? fsnotify+0x12d1/0x13d0 [ 358.547022][T30185] ? __kasan_check_read+0x11/0x20 [ 358.552050][T30185] blkdev_read_iter+0x12e/0x140 [ 358.556906][T30185] aio_read+0x31f/0x400 [ 358.561070][T30185] io_submit_one+0x6eb/0x1970 16:47:29 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100), 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.565747][T30185] ? __might_fault+0xf9/0x160 [ 358.570418][T30185] ? __might_fault+0xf9/0x160 [ 358.575102][T30185] __se_sys_io_submit+0x12f/0x240 [ 358.580140][T30185] __x64_sys_io_submit+0x7b/0x90 [ 358.585167][T30185] do_syscall_64+0xfe/0x140 [ 358.589672][T30185] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 358.595561][T30185] RIP: 0033:0x459829 [ 358.599445][T30185] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 358.619035][T30185] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 358.627429][T30185] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 358.635378][T30185] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 358.643333][T30185] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 358.651295][T30185] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 358.659295][T30185] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:30 executing program 2 (fault-call:2 fault-nth:54): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) 16:47:30 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 358.852999][T30221] FAULT_INJECTION: forcing a failure. [ 358.852999][T30221] name failslab, interval 1, probability 0, space 0, times 0 [ 358.870439][T30221] CPU: 1 PID: 30221 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 358.878426][T30221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.888458][T30221] Call Trace: [ 358.891723][T30221] dump_stack+0x1d8/0x2f8 [ 358.896067][T30221] should_fail+0x555/0x770 [ 358.900477][T30221] __should_failslab+0x11a/0x160 [ 358.905400][T30221] ? mempool_alloc_slab+0x4d/0x70 [ 358.910399][T30221] should_failslab+0x9/0x20 [ 358.914923][T30221] kmem_cache_alloc+0x56/0x2e0 [ 358.919675][T30221] mempool_alloc_slab+0x4d/0x70 [ 358.924497][T30221] ? mempool_free+0x350/0x350 [ 358.929145][T30221] mempool_alloc+0x104/0x5e0 [ 358.933707][T30221] ? sbitmap_get+0x443/0x4f0 [ 358.938287][T30221] bio_alloc_bioset+0x1b0/0x5f0 [ 358.943126][T30221] ? trace_lock_release+0x135/0x1a0 [ 358.948305][T30221] ? ktime_get+0x5a/0x120 [ 358.952610][T30221] ? rcu_lock_release+0xd/0x30 [ 358.957358][T30221] bio_split+0x7b/0x360 [ 358.961488][T30221] __blk_queue_split+0x127e/0x1580 [ 358.966576][T30221] blk_mq_make_request+0xf4/0x1940 [ 358.971660][T30221] ? rcu_lock_release+0x26/0x30 [ 358.976519][T30221] ? blk_queue_enter+0x715/0x740 [ 358.981450][T30221] generic_make_request+0x24b/0x980 [ 358.986661][T30221] submit_bio+0x254/0x540 [ 358.990964][T30221] ? iov_iter_npages+0x1ee/0x9a0 [ 358.995878][T30221] __blkdev_direct_IO+0x9d7/0x1340 [ 359.000984][T30221] ? aio_prep_rw+0x900/0x900 [ 359.005550][T30221] ? iov_iter_npages+0x1ee/0x9a0 [ 359.010472][T30221] blkdev_direct_IO+0xbe/0xd0 [ 359.015132][T30221] generic_file_read_iter+0x1ad3/0x21b0 [ 359.020652][T30221] ? fsnotify+0x12d1/0x13d0 [ 359.025134][T30221] ? __kasan_check_read+0x11/0x20 [ 359.030137][T30221] blkdev_read_iter+0x12e/0x140 [ 359.034964][T30221] aio_read+0x31f/0x400 [ 359.039099][T30221] io_submit_one+0x6eb/0x1970 [ 359.043761][T30221] ? __might_fault+0xf9/0x160 [ 359.048412][T30221] ? __might_fault+0xf9/0x160 [ 359.053067][T30221] __se_sys_io_submit+0x12f/0x240 [ 359.058067][T30221] __x64_sys_io_submit+0x7b/0x90 [ 359.062989][T30221] do_syscall_64+0xfe/0x140 [ 359.067471][T30221] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 359.073354][T30221] RIP: 0033:0x459829 [ 359.077222][T30221] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) [ 359.096801][T30221] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 359.105188][T30221] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 359.113135][T30221] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 359.121082][T30221] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 359.129027][T30221] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 359.136982][T30221] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000080)=""/129, 0x81}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5}, 0x2) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x2769, 0x0, 0x0, 0x800e00506) shutdown(r1, 0x0) getsockopt$sock_timeval(r1, 0xffff, 0x0, 0x0, 0x0) recvfrom$inet(r2, 0x0, 0xb5962e0fc0aae43, 0x2, 0x0, 0x800e0050f) shutdown(r2, 0x0) 16:47:30 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:30 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 2 (fault-call:2 fault-nth:55): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 359.425974][T30239] FAULT_INJECTION: forcing a failure. [ 359.425974][T30239] name failslab, interval 1, probability 0, space 0, times 0 [ 359.446429][T30239] CPU: 1 PID: 30239 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 359.454933][T30239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.464980][T30239] Call Trace: [ 359.468268][T30239] dump_stack+0x1d8/0x2f8 [ 359.472600][T30239] should_fail+0x555/0x770 [ 359.477023][T30239] __should_failslab+0x11a/0x160 [ 359.481945][T30239] ? mempool_alloc_slab+0x4d/0x70 [ 359.486950][T30239] should_failslab+0x9/0x20 [ 359.491465][T30239] kmem_cache_alloc+0x56/0x2e0 [ 359.496214][T30239] mempool_alloc_slab+0x4d/0x70 [ 359.501047][T30239] ? mempool_free+0x350/0x350 [ 359.505702][T30239] mempool_alloc+0x104/0x5e0 [ 359.510287][T30239] ? sbitmap_get+0x443/0x4f0 [ 359.514869][T30239] bio_alloc_bioset+0x1b0/0x5f0 [ 359.519700][T30239] ? trace_lock_release+0x135/0x1a0 [ 359.524879][T30239] ? ktime_get+0x5a/0x120 [ 359.529294][T30239] ? rcu_lock_release+0xd/0x30 [ 359.534045][T30239] bio_split+0x7b/0x360 [ 359.538185][T30239] __blk_queue_split+0x127e/0x1580 [ 359.543302][T30239] blk_mq_make_request+0xf4/0x1940 [ 359.548393][T30239] ? rcu_lock_release+0x26/0x30 [ 359.553223][T30239] ? blk_queue_enter+0x715/0x740 [ 359.558152][T30239] generic_make_request+0x24b/0x980 [ 359.563352][T30239] submit_bio+0x254/0x540 [ 359.567663][T30239] ? iov_iter_npages+0x1ee/0x9a0 [ 359.572688][T30239] __blkdev_direct_IO+0x9d7/0x1340 [ 359.577787][T30239] ? aio_prep_rw+0x900/0x900 [ 359.582364][T30239] ? iov_iter_npages+0x1ee/0x9a0 [ 359.587285][T30239] blkdev_direct_IO+0xbe/0xd0 [ 359.591945][T30239] generic_file_read_iter+0x1ad3/0x21b0 [ 359.597483][T30239] ? fsnotify+0x12d1/0x13d0 [ 359.601973][T30239] ? __kasan_check_read+0x11/0x20 [ 359.607073][T30239] blkdev_read_iter+0x12e/0x140 [ 359.611909][T30239] aio_read+0x31f/0x400 [ 359.616056][T30239] io_submit_one+0x6eb/0x1970 [ 359.620716][T30239] ? __might_fault+0xf9/0x160 [ 359.625379][T30239] ? __might_fault+0xf9/0x160 [ 359.630050][T30239] __se_sys_io_submit+0x12f/0x240 [ 359.635063][T30239] __x64_sys_io_submit+0x7b/0x90 [ 359.639987][T30239] do_syscall_64+0xfe/0x140 [ 359.644475][T30239] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 359.650348][T30239] RIP: 0033:0x459829 [ 359.654225][T30239] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c) [ 359.673811][T30239] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 359.682206][T30239] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 359.690177][T30239] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 359.698133][T30239] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 359.706086][T30239] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 359.714038][T30239] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:30 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c) 16:47:31 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x4, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x8, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c) 16:47:31 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) readv(r1, &(0x7f00000006c0)=[{&(0x7f0000000140)=""/48, 0x30}, {0x0}, {0x0}], 0x3) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x73a0b1b, 0x0, 0x0, 0x800e00549) shutdown(r1, 0x0) r3 = dup(r2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r4, &(0x7f0000001c40)=[{&(0x7f0000000000)=""/207, 0xcf}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5) r5 = dup(r4) r6 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r6, 0x0, 0xccf3, 0x0, 0x0, 0x800e0053d) shutdown(r5, 0x0) ppoll(&(0x7f0000000200)=[{r3}], 0x1, &(0x7f0000000240)={0x8000}, &(0x7f00000002c0), 0x8) shutdown(r6, 0x0) shutdown(r3, 0x0) 16:47:31 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000080)=""/129, 0x81}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x6}, 0x0) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x2769, 0x0, 0x0, 0x800e00506) shutdown(r1, 0x0) accept4$unix(r1, 0x0, 0x0, 0x0) recvfrom$inet(r2, 0x0, 0xb5962e0fc0aae43, 0x2, 0x0, 0x800e0050f) shutdown(r2, 0x0) 16:47:31 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x20000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 2 (fault-call:2 fault-nth:56): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x400000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 359.933315][T30274] FAULT_INJECTION: forcing a failure. [ 359.933315][T30274] name failslab, interval 1, probability 0, space 0, times 0 [ 359.974491][T30274] CPU: 1 PID: 30274 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 359.982511][T30274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.992563][T30274] Call Trace: [ 359.995854][T30274] dump_stack+0x1d8/0x2f8 [ 360.000188][T30274] should_fail+0x555/0x770 [ 360.004607][T30274] __should_failslab+0x11a/0x160 [ 360.009550][T30274] ? mempool_alloc_slab+0x4d/0x70 [ 360.014572][T30274] should_failslab+0x9/0x20 [ 360.019158][T30274] kmem_cache_alloc+0x56/0x2e0 [ 360.023920][T30274] mempool_alloc_slab+0x4d/0x70 [ 360.028767][T30274] ? mempool_free+0x350/0x350 [ 360.033440][T30274] mempool_alloc+0x104/0x5e0 [ 360.038024][T30274] ? sbitmap_get+0x443/0x4f0 [ 360.042621][T30274] bio_alloc_bioset+0x1b0/0x5f0 [ 360.047472][T30274] ? trace_lock_release+0x135/0x1a0 [ 360.052664][T30274] ? ktime_get+0x5a/0x120 [ 360.056993][T30274] ? rcu_lock_release+0xd/0x30 [ 360.061753][T30274] bio_split+0x7b/0x360 [ 360.065912][T30274] __blk_queue_split+0x127e/0x1580 [ 360.071015][T30274] blk_mq_make_request+0xf4/0x1940 [ 360.076109][T30274] ? rcu_lock_release+0x26/0x30 [ 360.080932][T30274] ? blk_queue_enter+0x715/0x740 [ 360.085845][T30274] generic_make_request+0x24b/0x980 [ 360.091023][T30274] submit_bio+0x254/0x540 [ 360.095337][T30274] ? iov_iter_npages+0x1ee/0x9a0 [ 360.100249][T30274] __blkdev_direct_IO+0x9d7/0x1340 [ 360.105335][T30274] ? aio_prep_rw+0x900/0x900 [ 360.109943][T30274] ? iov_iter_npages+0x1ee/0x9a0 [ 360.114858][T30274] blkdev_direct_IO+0xbe/0xd0 [ 360.119513][T30274] generic_file_read_iter+0x1ad3/0x21b0 [ 360.125033][T30274] ? fsnotify+0x12d1/0x13d0 [ 360.129531][T30274] ? __kasan_check_read+0x11/0x20 [ 360.134547][T30274] blkdev_read_iter+0x12e/0x140 [ 360.139381][T30274] aio_read+0x31f/0x400 [ 360.143521][T30274] io_submit_one+0x6eb/0x1970 [ 360.148185][T30274] ? __might_fault+0xf9/0x160 [ 360.152833][T30274] ? __might_fault+0xf9/0x160 [ 360.157523][T30274] __se_sys_io_submit+0x12f/0x240 [ 360.162552][T30274] __x64_sys_io_submit+0x7b/0x90 [ 360.167467][T30274] do_syscall_64+0xfe/0x140 [ 360.171946][T30274] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 360.177814][T30274] RIP: 0033:0x459829 [ 360.181684][T30274] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 360.201267][T30274] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 360.209664][T30274] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 360.217633][T30274] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 360.225583][T30274] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 360.233554][T30274] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 360.241536][T30274] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:31 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) readv(r1, &(0x7f00000006c0)=[{&(0x7f0000000140)=""/48, 0x30}, {0x0}, {0x0}, {0x0}], 0x10000000000002ad) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x73a0b1b, 0x0, 0x0, 0x800e00549) shutdown(r1, 0x0) r3 = dup(r2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r4, &(0x7f0000001c40)=[{&(0x7f0000000000)=""/207, 0xcf}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5) r5 = dup(r4) r6 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r6, 0x0, 0xccf3, 0x0, 0x0, 0x800e0053d) shutdown(r5, 0x0) ppoll(&(0x7f0000000200)=[{r3}], 0x1, &(0x7f0000000240)={0x8000}, &(0x7f00000002c0), 0x8) shutdown(r6, 0x0) shutdown(r3, 0x0) 16:47:31 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x81010000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 2 (fault-call:2 fault-nth:57): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:31 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xb901000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 360.449643][T30310] FAULT_INJECTION: forcing a failure. [ 360.449643][T30310] name failslab, interval 1, probability 0, space 0, times 0 [ 360.462616][T30310] CPU: 0 PID: 30310 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 360.470585][T30310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.470590][T30310] Call Trace: [ 360.470607][T30310] dump_stack+0x1d8/0x2f8 [ 360.470631][T30310] should_fail+0x555/0x770 [ 360.492651][T30310] __should_failslab+0x11a/0x160 [ 360.492664][T30310] ? mempool_alloc_slab+0x4d/0x70 [ 360.492675][T30310] should_failslab+0x9/0x20 [ 360.492686][T30310] kmem_cache_alloc+0x56/0x2e0 [ 360.492697][T30310] mempool_alloc_slab+0x4d/0x70 [ 360.492705][T30310] ? mempool_free+0x350/0x350 [ 360.492713][T30310] mempool_alloc+0x104/0x5e0 [ 360.492722][T30310] ? sbitmap_get+0x443/0x4f0 [ 360.492740][T30310] bio_alloc_bioset+0x1b0/0x5f0 [ 360.535353][T30310] ? trace_lock_release+0x135/0x1a0 [ 360.540730][T30310] ? ktime_get+0x5a/0x120 [ 360.545056][T30310] ? rcu_lock_release+0xd/0x30 [ 360.549826][T30310] bio_split+0x7b/0x360 [ 360.553974][T30310] __blk_queue_split+0x127e/0x1580 [ 360.559063][T30310] blk_mq_make_request+0xf4/0x1940 [ 360.564158][T30310] ? rcu_lock_release+0x26/0x30 [ 360.569001][T30310] ? blk_queue_enter+0x715/0x740 [ 360.573940][T30310] generic_make_request+0x24b/0x980 [ 360.579148][T30310] submit_bio+0x254/0x540 [ 360.583481][T30310] ? iov_iter_npages+0x1ee/0x9a0 [ 360.588420][T30310] __blkdev_direct_IO+0x9d7/0x1340 [ 360.593521][T30310] ? aio_prep_rw+0x900/0x900 [ 360.598086][T30310] ? iov_iter_npages+0x1ee/0x9a0 [ 360.603009][T30310] blkdev_direct_IO+0xbe/0xd0 [ 360.607677][T30310] generic_file_read_iter+0x1ad3/0x21b0 [ 360.613197][T30310] ? fsnotify+0x12d1/0x13d0 [ 360.617674][T30310] ? __kasan_check_read+0x11/0x20 [ 360.622689][T30310] blkdev_read_iter+0x12e/0x140 [ 360.627547][T30310] aio_read+0x31f/0x400 [ 360.631703][T30310] io_submit_one+0x6eb/0x1970 [ 360.636365][T30310] ? __might_fault+0xf9/0x160 [ 360.641021][T30310] ? __might_fault+0xf9/0x160 [ 360.645688][T30310] __se_sys_io_submit+0x12f/0x240 [ 360.650699][T30310] __x64_sys_io_submit+0x7b/0x90 [ 360.655626][T30310] do_syscall_64+0xfe/0x140 [ 360.660110][T30310] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 360.666003][T30310] RIP: 0033:0x459829 [ 360.669873][T30310] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 360.689544][T30310] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 360.697929][T30310] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 360.705873][T30310] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 360.713816][T30310] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 360.721769][T30310] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 360.729743][T30310] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:32 executing program 1: syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f0000000580)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe9\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \x05f~\xa5\x8b\xce\xb1\xd6\x97\xabN\xae\xc9\xbd\xd3g@\xe1j\x85\x9c\xd7|\xac\xb9\x92\xd2\xa3\x8b\x8dW\r\xd7@\x01fB\xba\xcd\xa8F9\x8b\xf4\xaf\xe2\xff\xae\xd1\xe6\xcf\n\xaanI\xf6r\ri\x86>\x97\xaa\xae\xf3^aD\xca\x86\x85\x80\xa8\xe2T\xb9f\xb8\xfbAm\xb6\xe0\x99~\x88\xef%\x9f\x10\xe6g\xe5\x19\x03\xc3d\xad\xdb\xa48\x9e|\xfb\xa8:{o\x03\xeaO\xdd\x87\xc3|x\xaf\xf4u0.evjg\x9d\x9dH\xef\xf4\x8d4\x83k@\x04\xf4\x83\x8c\xdd#\xb3Y\x95\x00xL\xa1.aKb)\xb5G^\xd3|\xed\xe1\x14\xc0\x1c\xb4\xdeE\xf0\xda\xc2\x14\xf5df\xd2F\x0eG\x99\xb8\xfe\xca\xc9\xf7\xee\x8c\xd5\v\xdd\xa8F\x05\xd38\xf4\xbb\xa5k(\xc3\xf8~\xa4\xe2\xf4\x10F)\xd5\x80\x9f\xfe)}\xe0\xedS&\xaa\'\xfa\x1b\x14\xbc\xf9C\x88LJ\xf0\x95p\xb4\xac\xaa\xecA\xfa\xf2\x0e\xe6\vv8\xf2\xcd\xc5\a', 0x0) fremovexattr(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="757365722e706f7369785f61636c5f6163636573732500e9adf5922c32d6c80378793a357a9056845515dc71d51c2a1e91fb4f7a59d9582f1087643c97b8ba1175883fc531149f13e0aa8a7caece91d598704a"]) pwrite64(r1, &(0x7f000003bfff)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000000)='./file0\x00') socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000700)={0x0, 0x0, 0x3, 0x0, [], [{0x81, 0x4, 0xff, 0x0, 0x5, 0xe4d4}, {0xfffffffffffffffd, 0x0, 0x3, 0x2, 0x0, 0x9}], [[], [], []]}) close(0xffffffffffffffff) write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00') ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000240)={0x0, 0x0, 0x9}) connect$packet(0xffffffffffffffff, 0x0, 0x0) write$P9_RWSTAT(r2, &(0x7f0000000100)={0x7, 0x7f, 0x2}, 0x7) syz_genetlink_get_family_id$tipc(&(0x7f0000000400)='TIPC\x00') clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='pstore\x00', 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xc0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x0, 0x0, &(0x7f0000000200)=0x9, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) 16:47:32 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 2 (fault-call:2 fault-nth:58): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefffffffffffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 360.955972][T30327] FAULT_INJECTION: forcing a failure. [ 360.955972][T30327] name failslab, interval 1, probability 0, space 0, times 0 [ 360.969294][T30327] CPU: 1 PID: 30327 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 360.977287][T30327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.987354][T30327] Call Trace: [ 360.990640][T30327] dump_stack+0x1d8/0x2f8 [ 360.994957][T30327] should_fail+0x555/0x770 [ 360.999348][T30327] __should_failslab+0x11a/0x160 [ 361.004260][T30327] ? mempool_alloc_slab+0x4d/0x70 [ 361.009260][T30327] should_failslab+0x9/0x20 [ 361.013856][T30327] kmem_cache_alloc+0x56/0x2e0 [ 361.018600][T30327] mempool_alloc_slab+0x4d/0x70 [ 361.023441][T30327] ? mempool_free+0x350/0x350 [ 361.028089][T30327] mempool_alloc+0x104/0x5e0 [ 361.032657][T30327] bio_alloc_bioset+0x1b0/0x5f0 [ 361.037522][T30327] ? blk_mq_sched_insert_requests+0x463/0x540 [ 361.043565][T30327] bio_split+0x7b/0x360 [ 361.047705][T30327] __blk_queue_split+0x127e/0x1580 [ 361.052813][T30327] blk_mq_make_request+0xf4/0x1940 [ 361.057919][T30327] ? rcu_lock_release+0x26/0x30 [ 361.062745][T30327] ? blk_queue_enter+0x715/0x740 [ 361.067666][T30327] generic_make_request+0x24b/0x980 [ 361.072852][T30327] submit_bio+0x254/0x540 [ 361.077158][T30327] ? iov_iter_npages+0x1ee/0x9a0 [ 361.082072][T30327] __blkdev_direct_IO+0x9d7/0x1340 [ 361.087626][T30327] ? aio_prep_rw+0x900/0x900 [ 361.092204][T30327] ? iov_iter_npages+0x1ee/0x9a0 [ 361.097129][T30327] blkdev_direct_IO+0xbe/0xd0 [ 361.101797][T30327] generic_file_read_iter+0x1ad3/0x21b0 [ 361.107314][T30327] ? fsnotify+0x12d1/0x13d0 [ 361.111792][T30327] ? __kasan_check_read+0x11/0x20 [ 361.116794][T30327] blkdev_read_iter+0x12e/0x140 [ 361.121623][T30327] aio_read+0x31f/0x400 [ 361.125760][T30327] io_submit_one+0x6eb/0x1970 [ 361.130437][T30327] ? __might_fault+0xf9/0x160 [ 361.135127][T30327] ? __might_fault+0xf9/0x160 [ 361.139788][T30327] __se_sys_io_submit+0x12f/0x240 [ 361.144795][T30327] __x64_sys_io_submit+0x7b/0x90 [ 361.149722][T30327] do_syscall_64+0xfe/0x140 [ 361.154203][T30327] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 361.160068][T30327] RIP: 0033:0x459829 [ 361.163941][T30327] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 361.183613][T30327] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 361.192005][T30327] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:32 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000037c0), 0xfffffdef) keyctl$dh_compute(0x17, 0x0, &(0x7f0000000580)=""/172, 0xac, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(r2, &(0x7f0000000200)=ANY=[], 0x5aa78d33) prctl$PR_SET_TIMERSLACK(0x1d, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0xa4) set_tid_address(0x0) syz_emit_ethernet(0x12a, &(0x7f0000000300)={@remote, @broadcast, [], {@mpls_uc={0x8847, {[{}], @ipv6={0x0, 0x6, "e09ea3", 0xf0, 0x7e, 0x0, @initdev, @local, {[@routing={0xbb, 0x6, 0x0, 0x0, 0x0, [@remote, @rand_addr="d62e1844a1b9d28bb6029ca13a179faf", @empty]}], @icmpv6=@time_exceed={0x3, 0x0, 0x0, 0x7, [], {0x0, 0x6, "ed9b5d", 0x0, 0x0, 0x0, @loopback, @loopback, [@fragment={0x3f, 0x0, 0xe605, 0x6b2}, @fragment={0x0, 0x0, 0x600000000000, 0x0, 0x0, 0x70c0e18a}], "1b22fcdb0bbd78cbac9c226c5526e7fb5092f6e30e7a10a4a9d0b2c03e675ee84caf015f1fc85ce5aba1574871bf91bcd0574961534cb104c2a03f675266129dfd56f6f2eee74ceb036f11183da75aba9d6037ff0d63dce704bae13e00747687c561108f44d025fc6d89cb4880e6801d0eb34907276744ba"}}}}}}}}, &(0x7f0000000080)={0x1, 0x3, [0x2ea, 0xd37, 0x0, 0xedd]}) fallocate(0xffffffffffffffff, 0x2, 0x8, 0x3) fallocate(r2, 0x10, 0x0, 0x10fffe) write$P9_RWRITE(r0, &(0x7f0000000100)={0xb, 0x77, 0x1}, 0xb) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000200)={0xff, 0x1f, 0x2, 0x3, 0x4, [{0x3ff, 0x6, 0x7, 0x0, 0x0, 0x400}, {0x0, 0x8, 0xfffffffffffffffa, 0x0, 0x0, 0x28c}, {0xff, 0xfff, 0x7, 0x0, 0x0, 0x4}, {0x401, 0xfde0, 0x0, 0x0, 0x0, 0x8}]}) r3 = add_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$revoke(0x3, r3) [ 361.199955][T30327] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 361.207906][T30327] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 361.215853][T30327] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 361.223826][T30327] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:32 executing program 0: 16:47:32 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff01000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 2 (fault-call:2 fault-nth:59): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 0: 16:47:32 executing program 0: 16:47:32 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x800000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefff7f00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:32 executing program 0: 16:47:32 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 361.512111][T30362] FAULT_INJECTION: forcing a failure. [ 361.512111][T30362] name failslab, interval 1, probability 0, space 0, times 0 [ 361.574953][T30362] CPU: 0 PID: 30362 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 361.582967][T30362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.593017][T30362] Call Trace: [ 361.596307][T30362] dump_stack+0x1d8/0x2f8 [ 361.600636][T30362] should_fail+0x555/0x770 [ 361.605056][T30362] __should_failslab+0x11a/0x160 [ 361.609999][T30362] ? mempool_alloc_slab+0x4d/0x70 [ 361.615129][T30362] should_failslab+0x9/0x20 [ 361.619634][T30362] kmem_cache_alloc+0x56/0x2e0 [ 361.624399][T30362] mempool_alloc_slab+0x4d/0x70 [ 361.629248][T30362] ? mempool_free+0x350/0x350 [ 361.633925][T30362] mempool_alloc+0x104/0x5e0 [ 361.638512][T30362] ? sbitmap_get+0x443/0x4f0 [ 361.643104][T30362] bio_alloc_bioset+0x1b0/0x5f0 [ 361.647961][T30362] ? trace_lock_release+0x135/0x1a0 [ 361.653156][T30362] ? ktime_get+0x5a/0x120 [ 361.657479][T30362] ? rcu_lock_release+0xd/0x30 [ 361.662241][T30362] bio_split+0x7b/0x360 [ 361.666394][T30362] __blk_queue_split+0x127e/0x1580 [ 361.671515][T30362] blk_mq_make_request+0xf4/0x1940 [ 361.676625][T30362] ? rcu_lock_release+0x26/0x30 [ 361.681471][T30362] ? blk_queue_enter+0x715/0x740 [ 361.686409][T30362] generic_make_request+0x24b/0x980 [ 361.691611][T30362] submit_bio+0x254/0x540 [ 361.695934][T30362] ? iov_iter_npages+0x1ee/0x9a0 [ 361.700871][T30362] __blkdev_direct_IO+0x9d7/0x1340 [ 361.705982][T30362] ? aio_prep_rw+0x900/0x900 [ 361.710573][T30362] ? iov_iter_npages+0x1ee/0x9a0 [ 361.715510][T30362] blkdev_direct_IO+0xbe/0xd0 [ 361.720183][T30362] generic_file_read_iter+0x1ad3/0x21b0 [ 361.725727][T30362] ? fsnotify+0x12d1/0x13d0 [ 361.730232][T30362] ? __kasan_check_read+0x11/0x20 [ 361.735259][T30362] blkdev_read_iter+0x12e/0x140 [ 361.740107][T30362] aio_read+0x31f/0x400 [ 361.744278][T30362] io_submit_one+0x6eb/0x1970 [ 361.748952][T30362] ? __might_fault+0xf9/0x160 [ 361.753623][T30362] ? __might_fault+0xf9/0x160 [ 361.758305][T30362] __se_sys_io_submit+0x12f/0x240 [ 361.763332][T30362] __x64_sys_io_submit+0x7b/0x90 [ 361.768270][T30362] do_syscall_64+0xfe/0x140 [ 361.772771][T30362] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 361.778653][T30362] RIP: 0033:0x459829 [ 361.782539][T30362] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 361.802141][T30362] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 361.810524][T30362] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 361.818472][T30362] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 361.826505][T30362] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 361.834456][T30362] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 361.842401][T30362] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:33 executing program 1: r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$search(0xa, r0, &(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) 16:47:33 executing program 0: creat(0x0, 0x0) ioctl$FS_IOC_MEASURE_VERITY(0xffffffffffffffff, 0xc0046686, 0x0) r0 = open(&(0x7f0000000140)='.\x00', 0x0, 0x0) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0xfffffffffffffe5b) r1 = gettid() getsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0xffffffffffffff41) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, 0x0) pivot_root(0x0, 0x0) mknodat(r0, &(0x7f0000000100)='./file0\x00', 0xbffd, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) tkill(r1, 0x1000000000016) 16:47:33 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefffff00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 2 (fault-call:2 fault-nth:60): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 1: 16:47:33 executing program 0: [ 362.048672][T30393] FAULT_INJECTION: forcing a failure. [ 362.048672][T30393] name failslab, interval 1, probability 0, space 0, times 0 [ 362.078154][T30393] CPU: 1 PID: 30393 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 362.086156][T30393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.096210][T30393] Call Trace: [ 362.099531][T30393] dump_stack+0x1d8/0x2f8 [ 362.103860][T30393] should_fail+0x555/0x770 [ 362.108276][T30393] __should_failslab+0x11a/0x160 [ 362.113213][T30393] ? mempool_alloc_slab+0x4d/0x70 [ 362.118234][T30393] should_failslab+0x9/0x20 [ 362.122733][T30393] kmem_cache_alloc+0x56/0x2e0 [ 362.127501][T30393] mempool_alloc_slab+0x4d/0x70 [ 362.132341][T30393] ? mempool_free+0x350/0x350 [ 362.137009][T30393] mempool_alloc+0x104/0x5e0 [ 362.141605][T30393] bio_alloc_bioset+0x1b0/0x5f0 16:47:33 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x5, 0x83, 0x80, 0xf, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x2}, 0x3c) 16:47:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x30, r1, 0x9, 0x0, 0x0, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0x0, 0x0, 0x80}}}}, 0x30}}, 0x0) [ 362.146467][T30393] ? blk_mq_sched_insert_requests+0x463/0x540 [ 362.152542][T30393] bio_split+0x7b/0x360 [ 362.156692][T30393] __blk_queue_split+0x127e/0x1580 [ 362.161809][T30393] blk_mq_make_request+0xf4/0x1940 [ 362.166918][T30393] ? rcu_lock_release+0x26/0x30 [ 362.171762][T30393] ? blk_queue_enter+0x715/0x740 [ 362.176703][T30393] generic_make_request+0x24b/0x980 [ 362.181987][T30393] submit_bio+0x254/0x540 [ 362.186312][T30393] ? iov_iter_npages+0x1ee/0x9a0 [ 362.191251][T30393] __blkdev_direct_IO+0x9d7/0x1340 [ 362.196366][T30393] ? aio_prep_rw+0x900/0x900 [ 362.200960][T30393] ? iov_iter_npages+0x1ee/0x9a0 [ 362.205899][T30393] blkdev_direct_IO+0xbe/0xd0 [ 362.210570][T30393] generic_file_read_iter+0x1ad3/0x21b0 [ 362.216088][T30393] ? fsnotify+0x12d1/0x13d0 [ 362.220568][T30393] ? __kasan_check_read+0x11/0x20 [ 362.225569][T30393] blkdev_read_iter+0x12e/0x140 [ 362.230396][T30393] aio_read+0x31f/0x400 [ 362.234624][T30393] io_submit_one+0x6eb/0x1970 [ 362.239279][T30393] ? __might_fault+0xf9/0x160 [ 362.243967][T30393] ? __might_fault+0xf9/0x160 [ 362.248634][T30393] __se_sys_io_submit+0x12f/0x240 [ 362.253656][T30393] __x64_sys_io_submit+0x7b/0x90 [ 362.258598][T30393] do_syscall_64+0xfe/0x140 [ 362.263093][T30393] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 362.268957][T30393] RIP: 0033:0x459829 [ 362.272832][T30393] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:33 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) close(0xffffffffffffffff) socket$inet(0x10, 0x3, 0x0) [ 362.292429][T30393] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 362.300824][T30393] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 362.308771][T30393] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 362.316721][T30393] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 362.324676][T30393] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 362.332624][T30393] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:33 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7fffffffffffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffff00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 2 (fault-call:2 fault-nth:61): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:33 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x10, 0x0, &(0x7f0000005fd4)=[@acquire={0x40086303}, @acquire={0x400c630e}], 0xffffffffffffffe0, 0x0, 0x0}) 16:47:33 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 362.575944][T30425] FAULT_INJECTION: forcing a failure. [ 362.575944][T30425] name failslab, interval 1, probability 0, space 0, times 0 [ 362.611690][T30425] CPU: 1 PID: 30425 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 362.619704][T30425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.629794][T30425] Call Trace: [ 362.633086][T30425] dump_stack+0x1d8/0x2f8 [ 362.637418][T30425] should_fail+0x555/0x770 [ 362.641835][T30425] __should_failslab+0x11a/0x160 [ 362.646772][T30425] ? mempool_alloc_slab+0x4d/0x70 [ 362.651794][T30425] should_failslab+0x9/0x20 [ 362.656295][T30425] kmem_cache_alloc+0x56/0x2e0 [ 362.661058][T30425] mempool_alloc_slab+0x4d/0x70 [ 362.665929][T30425] ? mempool_free+0x350/0x350 [ 362.670598][T30425] mempool_alloc+0x104/0x5e0 16:47:33 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a1183de1993f0275df5cf1bf1000000ec0d55b062950b86bc01abc8464d", 0x21) [ 362.675198][T30425] ? sbitmap_get+0x443/0x4f0 [ 362.679789][T30425] bio_alloc_bioset+0x1b0/0x5f0 [ 362.684638][T30425] ? trace_lock_release+0x135/0x1a0 [ 362.689833][T30425] ? ktime_get+0x5a/0x120 [ 362.694162][T30425] ? rcu_lock_release+0xd/0x30 [ 362.698931][T30425] bio_split+0x7b/0x360 [ 362.703086][T30425] __blk_queue_split+0x127e/0x1580 [ 362.708377][T30425] blk_mq_make_request+0xf4/0x1940 [ 362.713562][T30425] ? rcu_lock_release+0x26/0x30 [ 362.718400][T30425] ? blk_queue_enter+0x715/0x740 [ 362.723325][T30425] generic_make_request+0x24b/0x980 [ 362.728509][T30425] submit_bio+0x254/0x540 [ 362.732820][T30425] ? iov_iter_npages+0x1ee/0x9a0 [ 362.737741][T30425] __blkdev_direct_IO+0x9d7/0x1340 [ 362.742836][T30425] ? aio_prep_rw+0x900/0x900 [ 362.747408][T30425] ? iov_iter_npages+0x1ee/0x9a0 [ 362.752328][T30425] blkdev_direct_IO+0xbe/0xd0 [ 362.756986][T30425] generic_file_read_iter+0x1ad3/0x21b0 [ 362.762510][T30425] ? fsnotify+0x12d1/0x13d0 [ 362.766994][T30425] ? __kasan_check_read+0x11/0x20 [ 362.772009][T30425] blkdev_read_iter+0x12e/0x140 [ 362.776846][T30425] aio_read+0x31f/0x400 [ 362.780991][T30425] io_submit_one+0x6eb/0x1970 [ 362.785669][T30425] ? __might_fault+0xf9/0x160 [ 362.790330][T30425] ? __might_fault+0xf9/0x160 [ 362.794995][T30425] __se_sys_io_submit+0x12f/0x240 [ 362.800005][T30425] __x64_sys_io_submit+0x7b/0x90 [ 362.804925][T30425] do_syscall_64+0xfe/0x140 [ 362.809411][T30425] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 362.815280][T30425] RIP: 0033:0x459829 [ 362.819173][T30425] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 362.838760][T30425] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 362.847150][T30425] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 362.855104][T30425] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 362.863054][T30425] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:34 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc4c85513, &(0x7f0000000080)) 16:47:34 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffffffffffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 362.871004][T30425] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 362.878974][T30425] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:34 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xab00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) close(0xffffffffffffffff) socket$inet(0x10, 0x3, 0x0) 16:47:34 executing program 2 (fault-call:2 fault-nth:62): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x400000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x40000000000026d, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/unix\x00') preadv(r0, &(0x7f00000017c0), 0x3a8, 0x0) 16:47:34 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x4, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="03630840"], 0x0, 0x0, 0x0}) [ 363.174451][T30457] FAULT_INJECTION: forcing a failure. [ 363.174451][T30457] name failslab, interval 1, probability 0, space 0, times 0 [ 363.218532][T30457] CPU: 0 PID: 30457 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 363.226549][T30457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.236597][T30457] Call Trace: [ 363.236613][T30457] dump_stack+0x1d8/0x2f8 [ 363.236627][T30457] should_fail+0x555/0x770 [ 363.236642][T30457] __should_failslab+0x11a/0x160 [ 363.236658][T30457] ? mempool_alloc_slab+0x4d/0x70 [ 363.244272][T30457] should_failslab+0x9/0x20 [ 363.244283][T30457] kmem_cache_alloc+0x56/0x2e0 16:47:34 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffff00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 363.244294][T30457] mempool_alloc_slab+0x4d/0x70 [ 363.244303][T30457] ? mempool_free+0x350/0x350 [ 363.244311][T30457] mempool_alloc+0x104/0x5e0 [ 363.244320][T30457] ? sbitmap_get+0x443/0x4f0 [ 363.244337][T30457] bio_alloc_bioset+0x1b0/0x5f0 [ 363.244352][T30457] ? trace_lock_release+0x135/0x1a0 [ 363.296549][T30457] ? ktime_get+0x5a/0x120 [ 363.300903][T30457] ? rcu_lock_release+0xd/0x30 [ 363.305646][T30457] bio_split+0x7b/0x360 [ 363.309780][T30457] __blk_queue_split+0x127e/0x1580 [ 363.314905][T30457] blk_mq_make_request+0xf4/0x1940 [ 363.320004][T30457] ? rcu_lock_release+0x26/0x30 [ 363.324829][T30457] ? blk_queue_enter+0x715/0x740 [ 363.329754][T30457] generic_make_request+0x24b/0x980 [ 363.334940][T30457] submit_bio+0x254/0x540 [ 363.339262][T30457] ? iov_iter_npages+0x1ee/0x9a0 [ 363.344185][T30457] __blkdev_direct_IO+0x9d7/0x1340 [ 363.349271][T30457] ? aio_prep_rw+0x900/0x900 [ 363.353860][T30457] ? iov_iter_npages+0x1ee/0x9a0 [ 363.365053][T30457] blkdev_direct_IO+0xbe/0xd0 [ 363.369742][T30457] generic_file_read_iter+0x1ad3/0x21b0 [ 363.375261][T30457] ? fsnotify+0x12d1/0x13d0 [ 363.379757][T30457] ? __kasan_check_read+0x11/0x20 [ 363.384779][T30457] blkdev_read_iter+0x12e/0x140 [ 363.389628][T30457] aio_read+0x31f/0x400 [ 363.393767][T30457] io_submit_one+0x6eb/0x1970 [ 363.398420][T30457] ? __might_fault+0xf9/0x160 [ 363.403071][T30457] ? __might_fault+0xf9/0x160 [ 363.407728][T30457] __se_sys_io_submit+0x12f/0x240 [ 363.412741][T30457] __x64_sys_io_submit+0x7b/0x90 [ 363.417667][T30457] do_syscall_64+0xfe/0x140 [ 363.422148][T30457] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 363.428011][T30457] RIP: 0033:0x459829 [ 363.431880][T30457] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 363.451467][T30457] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 363.459857][T30457] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:34 executing program 0: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) rt_sigprocmask(0x0, &(0x7f0000072ff8)={0x7fffffff}, 0x0, 0x8) dup2(r1, r0) io_setup(0xc, &(0x7f00000000c0)=0x0) io_submit(r2, 0x1, &(0x7f00000001c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000200)='\'', 0x1}]) 16:47:34 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) close(0xffffffffffffffff) socket$inet(0x10, 0x3, 0x0) [ 363.467801][T30457] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 363.475847][T30457] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 363.483798][T30457] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 363.491757][T30457] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:34 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffffff600000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x15, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="08631040000000000e630c4000000000ad4a905c7c"], 0x0, 0x0, 0x0}) 16:47:34 executing program 2 (fault-call:2 fault-nth:63): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:34 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0, 0x229}}], 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp6\x00') preadv(r0, &(0x7f00000017c0), 0x19a, 0x0) [ 363.694750][T30499] FAULT_INJECTION: forcing a failure. [ 363.694750][T30499] name failslab, interval 1, probability 0, space 0, times 0 [ 363.718041][T30499] CPU: 1 PID: 30499 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 363.726029][T30499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.736076][T30499] Call Trace: [ 363.739367][T30499] dump_stack+0x1d8/0x2f8 [ 363.743698][T30499] should_fail+0x555/0x770 [ 363.748112][T30499] __should_failslab+0x11a/0x160 [ 363.753045][T30499] ? mempool_alloc_slab+0x4d/0x70 [ 363.758064][T30499] should_failslab+0x9/0x20 [ 363.762562][T30499] kmem_cache_alloc+0x56/0x2e0 [ 363.767320][T30499] mempool_alloc_slab+0x4d/0x70 [ 363.772188][T30499] ? mempool_free+0x350/0x350 [ 363.776857][T30499] mempool_alloc+0x104/0x5e0 [ 363.781439][T30499] ? sbitmap_get+0x443/0x4f0 [ 363.786033][T30499] bio_alloc_bioset+0x1b0/0x5f0 [ 363.790879][T30499] ? trace_lock_release+0x135/0x1a0 [ 363.796075][T30499] ? ktime_get+0x5a/0x120 [ 363.800396][T30499] ? rcu_lock_release+0xd/0x30 [ 363.805173][T30499] bio_split+0x7b/0x360 [ 363.809316][T30499] __blk_queue_split+0x127e/0x1580 [ 363.814448][T30499] blk_mq_make_request+0xf4/0x1940 [ 363.819552][T30499] ? rcu_lock_release+0x26/0x30 [ 363.824389][T30499] ? blk_queue_enter+0x715/0x740 [ 363.829376][T30499] generic_make_request+0x24b/0x980 [ 363.834570][T30499] submit_bio+0x254/0x540 [ 363.838884][T30499] ? iov_iter_npages+0x1ee/0x9a0 [ 363.843812][T30499] __blkdev_direct_IO+0x9d7/0x1340 [ 363.848915][T30499] ? aio_prep_rw+0x900/0x900 [ 363.853499][T30499] ? iov_iter_npages+0x1ee/0x9a0 [ 363.858426][T30499] blkdev_direct_IO+0xbe/0xd0 [ 363.863438][T30499] generic_file_read_iter+0x1ad3/0x21b0 [ 363.868969][T30499] ? fsnotify+0x12d1/0x13d0 [ 363.873464][T30499] ? __kasan_check_read+0x11/0x20 [ 363.878484][T30499] blkdev_read_iter+0x12e/0x140 [ 363.883325][T30499] aio_read+0x31f/0x400 [ 363.887488][T30499] io_submit_one+0x6eb/0x1970 [ 363.892163][T30499] ? __might_fault+0xf9/0x160 [ 363.896827][T30499] ? __might_fault+0xf9/0x160 [ 363.901507][T30499] __se_sys_io_submit+0x12f/0x240 [ 363.906525][T30499] __x64_sys_io_submit+0x7b/0x90 [ 363.911457][T30499] do_syscall_64+0xfe/0x140 [ 363.915952][T30499] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 363.921828][T30499] RIP: 0033:0x459829 [ 363.925713][T30499] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:35 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffffffffff7f, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 363.945307][T30499] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 363.953707][T30499] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 363.961667][T30499] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 363.969639][T30499] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 363.977602][T30499] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 363.985564][T30499] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:35 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 2 (fault-call:2 fault-nth:64): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) close(0xffffffffffffffff) socket$inet(0x10, 0x3, 0x0) 16:47:35 executing program 0: r0 = socket$inet6(0xa, 0x100000003, 0x3a) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000000), 0xffa7, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0x0, 0x8}}, 0x1c) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 364.216069][T30523] FAULT_INJECTION: forcing a failure. [ 364.216069][T30523] name failslab, interval 1, probability 0, space 0, times 0 [ 364.233823][T30523] CPU: 1 PID: 30523 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 364.241815][T30523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.251865][T30523] Call Trace: [ 364.255153][T30523] dump_stack+0x1d8/0x2f8 [ 364.259488][T30523] should_fail+0x555/0x770 [ 364.263905][T30523] __should_failslab+0x11a/0x160 [ 364.268839][T30523] ? mempool_alloc_slab+0x4d/0x70 [ 364.273861][T30523] should_failslab+0x9/0x20 [ 364.278360][T30523] kmem_cache_alloc+0x56/0x2e0 [ 364.283120][T30523] mempool_alloc_slab+0x4d/0x70 [ 364.288007][T30523] ? mempool_free+0x350/0x350 [ 364.292677][T30523] mempool_alloc+0x104/0x5e0 [ 364.297262][T30523] ? sbitmap_get+0x443/0x4f0 [ 364.301856][T30523] bio_alloc_bioset+0x1b0/0x5f0 [ 364.306700][T30523] ? trace_lock_release+0x135/0x1a0 [ 364.311895][T30523] ? ktime_get+0x5a/0x120 16:47:35 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x13102001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = add_key$user(&(0x7f0000000140)='user\x00', 0x0, 0x0, 0x0, 0xfffffffffffffff9) keyctl$read(0xb, r0, 0x0, 0x0) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2a) ptrace$cont(0x18, r1, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x1c, 0xffffffffffffffff, 0x3e}) fgetxattr(0xffffffffffffffff, &(0x7f0000000000)=@known='com.apple.system.Security\x00', 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) lstat(&(0x7f0000001440)='./file0\x00', &(0x7f0000001480)) ptrace$cont(0x1f, r1, 0x0, 0x0) timer_create(0x0, 0x0, 0x0) [ 364.316224][T30523] ? rcu_lock_release+0xd/0x30 [ 364.320987][T30523] bio_split+0x7b/0x360 [ 364.325141][T30523] __blk_queue_split+0x127e/0x1580 [ 364.330262][T30523] blk_mq_make_request+0xf4/0x1940 [ 364.335368][T30523] ? rcu_lock_release+0x26/0x30 [ 364.340207][T30523] ? blk_queue_enter+0x715/0x740 [ 364.345142][T30523] generic_make_request+0x24b/0x980 [ 364.350345][T30523] submit_bio+0x254/0x540 [ 364.354669][T30523] ? iov_iter_npages+0x1ee/0x9a0 [ 364.359606][T30523] __blkdev_direct_IO+0x9d7/0x1340 [ 364.364751][T30523] ? aio_prep_rw+0x900/0x900 [ 364.369342][T30523] ? iov_iter_npages+0x1ee/0x9a0 [ 364.374277][T30523] blkdev_direct_IO+0xbe/0xd0 [ 364.378959][T30523] generic_file_read_iter+0x1ad3/0x21b0 [ 364.384495][T30523] ? fsnotify+0x12d1/0x13d0 [ 364.388999][T30523] ? __kasan_check_read+0x11/0x20 [ 364.394027][T30523] blkdev_read_iter+0x12e/0x140 [ 364.398878][T30523] aio_read+0x31f/0x400 [ 364.403025][T30523] io_submit_one+0x6eb/0x1970 [ 364.407714][T30523] ? __might_fault+0xf9/0x160 [ 364.412366][T30523] ? __might_fault+0xf9/0x160 16:47:35 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 364.417048][T30523] __se_sys_io_submit+0x12f/0x240 [ 364.422070][T30523] __x64_sys_io_submit+0x7b/0x90 [ 364.427032][T30523] do_syscall_64+0xfe/0x140 [ 364.431539][T30523] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 364.437428][T30523] RIP: 0033:0x459829 [ 364.441316][T30523] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:35 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5, r0, &(0x7f0000000000), 0xfffffce4}]) [ 364.462378][T30523] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 364.470776][T30523] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 364.478735][T30523] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 364.486685][T30523] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 364.494641][T30523] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 364.502610][T30523] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:35 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) 16:47:35 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 2 (fault-call:2 fault-nth:65): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:35 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) close(0xffffffffffffffff) [ 364.714397][T30561] FAULT_INJECTION: forcing a failure. [ 364.714397][T30561] name failslab, interval 1, probability 0, space 0, times 0 [ 364.728757][T30561] CPU: 0 PID: 30561 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 364.736737][T30561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.746782][T30561] Call Trace: [ 364.750069][T30561] dump_stack+0x1d8/0x2f8 [ 364.754403][T30561] should_fail+0x555/0x770 [ 364.758816][T30561] __should_failslab+0x11a/0x160 [ 364.763750][T30561] ? mempool_alloc_slab+0x4d/0x70 [ 364.768772][T30561] should_failslab+0x9/0x20 [ 364.773274][T30561] kmem_cache_alloc+0x56/0x2e0 [ 364.778038][T30561] mempool_alloc_slab+0x4d/0x70 [ 364.782884][T30561] ? mempool_free+0x350/0x350 [ 364.787555][T30561] mempool_alloc+0x104/0x5e0 [ 364.792150][T30561] ? sbitmap_get+0x443/0x4f0 [ 364.796743][T30561] bio_alloc_bioset+0x1b0/0x5f0 [ 364.801579][T30561] ? trace_lock_release+0x135/0x1a0 [ 364.806755][T30561] ? ktime_get+0x5a/0x120 [ 364.811064][T30561] ? rcu_lock_release+0xd/0x30 [ 364.815808][T30561] bio_split+0x7b/0x360 [ 364.819940][T30561] __blk_queue_split+0x127e/0x1580 [ 364.825043][T30561] blk_mq_make_request+0xf4/0x1940 [ 364.830135][T30561] ? rcu_lock_release+0x26/0x30 [ 364.834963][T30561] ? blk_queue_enter+0x715/0x740 [ 364.839886][T30561] generic_make_request+0x24b/0x980 [ 364.845068][T30561] submit_bio+0x254/0x540 [ 364.849377][T30561] ? iov_iter_npages+0x1ee/0x9a0 [ 364.854297][T30561] __blkdev_direct_IO+0x9d7/0x1340 [ 364.859405][T30561] ? aio_prep_rw+0x900/0x900 [ 364.863982][T30561] ? iov_iter_npages+0x1ee/0x9a0 [ 364.869004][T30561] blkdev_direct_IO+0xbe/0xd0 [ 364.873664][T30561] generic_file_read_iter+0x1ad3/0x21b0 [ 364.879187][T30561] ? fsnotify+0x12d1/0x13d0 [ 364.883676][T30561] ? __kasan_check_read+0x11/0x20 [ 364.888691][T30561] blkdev_read_iter+0x12e/0x140 [ 364.893524][T30561] aio_read+0x31f/0x400 [ 364.897670][T30561] io_submit_one+0x6eb/0x1970 [ 364.902348][T30561] ? __might_fault+0xf9/0x160 [ 364.907007][T30561] ? __might_fault+0xf9/0x160 [ 364.911687][T30561] __se_sys_io_submit+0x12f/0x240 [ 364.916693][T30561] __x64_sys_io_submit+0x7b/0x90 [ 364.921613][T30561] do_syscall_64+0xfe/0x140 [ 364.926099][T30561] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 364.931973][T30561] RIP: 0033:0x459829 [ 364.935850][T30561] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 364.955440][T30561] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:36 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:36 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7, r0, &(0x7f0000000000), 0xfffffce4}]) [ 364.963851][T30561] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 364.971813][T30561] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 364.979771][T30561] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 364.987729][T30561] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 364.995738][T30561] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:36 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x800000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 2 (fault-call:2 fault-nth:66): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:36 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 16:47:36 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) [ 365.287816][T30593] FAULT_INJECTION: forcing a failure. [ 365.287816][T30593] name failslab, interval 1, probability 0, space 0, times 0 [ 365.309265][T30593] CPU: 1 PID: 30593 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 365.317775][T30593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.327825][T30593] Call Trace: [ 365.331118][T30593] dump_stack+0x1d8/0x2f8 [ 365.335450][T30593] should_fail+0x555/0x770 [ 365.339868][T30593] __should_failslab+0x11a/0x160 [ 365.344803][T30593] ? mempool_alloc_slab+0x4d/0x70 [ 365.349821][T30593] should_failslab+0x9/0x20 [ 365.354325][T30593] kmem_cache_alloc+0x56/0x2e0 [ 365.359266][T30593] mempool_alloc_slab+0x4d/0x70 [ 365.364287][T30593] ? mempool_free+0x350/0x350 [ 365.368955][T30593] mempool_alloc+0x104/0x5e0 [ 365.373536][T30593] ? sbitmap_get+0x443/0x4f0 [ 365.378128][T30593] bio_alloc_bioset+0x1b0/0x5f0 [ 365.382971][T30593] ? trace_lock_release+0x135/0x1a0 [ 365.388164][T30593] ? ktime_get+0x5a/0x120 [ 365.392491][T30593] ? rcu_lock_release+0xd/0x30 [ 365.397255][T30593] bio_split+0x7b/0x360 [ 365.401408][T30593] __blk_queue_split+0x127e/0x1580 [ 365.406529][T30593] blk_mq_make_request+0xf4/0x1940 [ 365.411633][T30593] ? rcu_lock_release+0x26/0x30 [ 365.416462][T30593] ? blk_queue_enter+0x715/0x740 [ 365.421402][T30593] generic_make_request+0x24b/0x980 [ 365.426579][T30593] submit_bio+0x254/0x540 [ 365.430887][T30593] ? iov_iter_npages+0x1ee/0x9a0 [ 365.435803][T30593] __blkdev_direct_IO+0x9d7/0x1340 [ 365.440894][T30593] ? aio_prep_rw+0x900/0x900 [ 365.445467][T30593] ? iov_iter_npages+0x1ee/0x9a0 [ 365.450380][T30593] blkdev_direct_IO+0xbe/0xd0 [ 365.455033][T30593] generic_file_read_iter+0x1ad3/0x21b0 [ 365.460554][T30593] ? fsnotify+0x12d1/0x13d0 [ 365.465049][T30593] blkdev_read_iter+0x12e/0x140 [ 365.469900][T30593] aio_read+0x31f/0x400 [ 365.474053][T30593] io_submit_one+0x6eb/0x1970 [ 365.478720][T30593] ? __might_fault+0xf9/0x160 [ 365.483384][T30593] ? __might_fault+0xf9/0x160 [ 365.488057][T30593] __se_sys_io_submit+0x12f/0x240 [ 365.493071][T30593] __x64_sys_io_submit+0x7b/0x90 [ 365.498005][T30593] do_syscall_64+0xfe/0x140 [ 365.502511][T30593] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 365.508385][T30593] RIP: 0033:0x459829 [ 365.512264][T30593] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 365.531849][T30593] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 365.540240][T30593] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 365.548193][T30593] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 365.556165][T30593] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 365.564116][T30593] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 365.572070][T30593] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:36 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:47:36 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:36 executing program 2 (fault-call:2 fault-nth:67): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 365.782582][T30627] FAULT_INJECTION: forcing a failure. [ 365.782582][T30627] name failslab, interval 1, probability 0, space 0, times 0 [ 365.796306][T30627] CPU: 1 PID: 30627 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 365.804291][T30627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.814341][T30627] Call Trace: [ 365.817639][T30627] dump_stack+0x1d8/0x2f8 [ 365.822020][T30627] should_fail+0x555/0x770 [ 365.826421][T30627] __should_failslab+0x11a/0x160 [ 365.831337][T30627] ? mempool_alloc_slab+0x4d/0x70 [ 365.836343][T30627] should_failslab+0x9/0x20 [ 365.840828][T30627] kmem_cache_alloc+0x56/0x2e0 [ 365.845588][T30627] mempool_alloc_slab+0x4d/0x70 [ 365.850416][T30627] ? mempool_free+0x350/0x350 [ 365.855091][T30627] mempool_alloc+0x104/0x5e0 [ 365.859661][T30627] ? sbitmap_get+0x443/0x4f0 [ 365.864242][T30627] bio_alloc_bioset+0x1b0/0x5f0 [ 365.869076][T30627] ? trace_lock_release+0x135/0x1a0 [ 365.874255][T30627] ? ktime_get+0x5a/0x120 [ 365.878564][T30627] ? rcu_lock_release+0xd/0x30 [ 365.883312][T30627] bio_split+0x7b/0x360 [ 365.887451][T30627] __blk_queue_split+0x127e/0x1580 [ 365.892561][T30627] blk_mq_make_request+0xf4/0x1940 [ 365.897649][T30627] ? rcu_lock_release+0x26/0x30 [ 365.902477][T30627] ? blk_queue_enter+0x715/0x740 [ 365.907400][T30627] generic_make_request+0x24b/0x980 [ 365.912582][T30627] submit_bio+0x254/0x540 [ 365.916889][T30627] ? iov_iter_npages+0x1ee/0x9a0 [ 365.921809][T30627] __blkdev_direct_IO+0x9d7/0x1340 [ 365.926905][T30627] ? aio_prep_rw+0x900/0x900 [ 365.931480][T30627] ? iov_iter_npages+0x1ee/0x9a0 [ 365.936412][T30627] blkdev_direct_IO+0xbe/0xd0 [ 365.941073][T30627] generic_file_read_iter+0x1ad3/0x21b0 [ 365.946598][T30627] ? fsnotify+0x12d1/0x13d0 [ 365.951091][T30627] ? __kasan_check_read+0x11/0x20 [ 365.956104][T30627] blkdev_read_iter+0x12e/0x140 [ 365.960936][T30627] aio_read+0x31f/0x400 [ 365.965085][T30627] io_submit_one+0x6eb/0x1970 [ 365.969830][T30627] ? __might_fault+0xf9/0x160 [ 365.974488][T30627] ? __might_fault+0xf9/0x160 [ 365.979156][T30627] __se_sys_io_submit+0x12f/0x240 [ 365.984170][T30627] __x64_sys_io_submit+0x7b/0x90 [ 365.989093][T30627] do_syscall_64+0xfe/0x140 [ 365.993587][T30627] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 365.999504][T30627] RIP: 0033:0x459829 [ 366.003379][T30627] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 366.022975][T30627] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:37 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf, r0, &(0x7f0000000000), 0xfffffce4}]) [ 366.031372][T30627] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 366.039325][T30627] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 366.047277][T30627] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 366.055228][T30627] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 366.063180][T30627] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:37 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000300)) 16:47:37 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xab, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f00000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) 16:47:37 executing program 2 (fault-call:2 fault-nth:68): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 366.332689][T30657] FAULT_INJECTION: forcing a failure. [ 366.332689][T30657] name failslab, interval 1, probability 0, space 0, times 0 [ 366.351083][T30657] CPU: 0 PID: 30657 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 366.359091][T30657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.369149][T30657] Call Trace: [ 366.372443][T30657] dump_stack+0x1d8/0x2f8 [ 366.376795][T30657] should_fail+0x555/0x770 16:47:37 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x204, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 366.381233][T30657] __should_failslab+0x11a/0x160 [ 366.381245][T30657] ? mempool_alloc_slab+0x4d/0x70 [ 366.381255][T30657] should_failslab+0x9/0x20 [ 366.381265][T30657] kmem_cache_alloc+0x56/0x2e0 [ 366.381276][T30657] mempool_alloc_slab+0x4d/0x70 [ 366.381284][T30657] ? mempool_free+0x350/0x350 [ 366.381293][T30657] mempool_alloc+0x104/0x5e0 [ 366.381306][T30657] ? sbitmap_get+0x443/0x4f0 [ 366.419096][T30657] bio_alloc_bioset+0x1b0/0x5f0 [ 366.423961][T30657] ? trace_lock_release+0x135/0x1a0 [ 366.429155][T30657] ? ktime_get+0x5a/0x120 [ 366.433481][T30657] ? rcu_lock_release+0xd/0x30 [ 366.438244][T30657] bio_split+0x7b/0x360 [ 366.442401][T30657] __blk_queue_split+0x127e/0x1580 [ 366.447521][T30657] blk_mq_make_request+0xf4/0x1940 [ 366.453049][T30657] ? rcu_lock_release+0x26/0x30 [ 366.457901][T30657] ? blk_queue_enter+0x715/0x740 [ 366.462843][T30657] generic_make_request+0x24b/0x980 [ 366.468040][T30657] submit_bio+0x254/0x540 [ 366.472369][T30657] ? iov_iter_npages+0x1ee/0x9a0 [ 366.477305][T30657] __blkdev_direct_IO+0x9d7/0x1340 [ 366.482415][T30657] ? aio_prep_rw+0x900/0x900 [ 366.487002][T30657] ? iov_iter_npages+0x1ee/0x9a0 [ 366.491937][T30657] blkdev_direct_IO+0xbe/0xd0 [ 366.496611][T30657] generic_file_read_iter+0x1ad3/0x21b0 [ 366.502152][T30657] ? fsnotify+0x12d1/0x13d0 [ 366.506656][T30657] ? __kasan_check_read+0x11/0x20 [ 366.511685][T30657] blkdev_read_iter+0x12e/0x140 [ 366.516538][T30657] aio_read+0x31f/0x400 [ 366.520702][T30657] io_submit_one+0x6eb/0x1970 [ 366.525378][T30657] ? __might_fault+0xf9/0x160 16:47:37 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 366.530047][T30657] ? __might_fault+0xf9/0x160 [ 366.534728][T30657] __se_sys_io_submit+0x12f/0x240 [ 366.539750][T30657] __x64_sys_io_submit+0x7b/0x90 [ 366.544685][T30657] do_syscall_64+0xfe/0x140 [ 366.549185][T30657] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 366.555074][T30657] RIP: 0033:0x459829 [ 366.558966][T30657] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:37 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) r2 = request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x1be) [ 366.578564][T30657] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 366.586969][T30657] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 366.594936][T30657] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 366.602900][T30657] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 366.610863][T30657] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 366.618828][T30657] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:37 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x300, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:37 executing program 2 (fault-call:2 fault-nth:69): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 366.854264][T30692] FAULT_INJECTION: forcing a failure. [ 366.854264][T30692] name failslab, interval 1, probability 0, space 0, times 0 [ 366.881987][T30692] CPU: 1 PID: 30692 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 366.889985][T30692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.900036][T30692] Call Trace: 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) request_key(&(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='\x00', 0xfffffffffffffffb) [ 366.903343][T30692] dump_stack+0x1d8/0x2f8 [ 366.907672][T30692] should_fail+0x555/0x770 [ 366.912090][T30692] __should_failslab+0x11a/0x160 [ 366.917025][T30692] ? mempool_alloc_slab+0x4d/0x70 [ 366.922056][T30692] should_failslab+0x9/0x20 [ 366.926564][T30692] kmem_cache_alloc+0x56/0x2e0 [ 366.931331][T30692] mempool_alloc_slab+0x4d/0x70 [ 366.936181][T30692] ? mempool_free+0x350/0x350 [ 366.940851][T30692] mempool_alloc+0x104/0x5e0 [ 366.945435][T30692] ? sbitmap_get+0x443/0x4f0 [ 366.950032][T30692] bio_alloc_bioset+0x1b0/0x5f0 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000180)}], 0x1) [ 366.954879][T30692] ? trace_lock_release+0x135/0x1a0 [ 366.960111][T30692] ? ktime_get+0x5a/0x120 [ 366.964442][T30692] ? rcu_lock_release+0xd/0x30 [ 366.969205][T30692] bio_split+0x7b/0x360 [ 366.973364][T30692] __blk_queue_split+0x127e/0x1580 [ 366.978482][T30692] blk_mq_make_request+0xf4/0x1940 [ 366.983585][T30692] ? rcu_lock_release+0x26/0x30 [ 366.988431][T30692] ? blk_queue_enter+0x715/0x740 [ 366.993368][T30692] generic_make_request+0x24b/0x980 [ 366.998564][T30692] submit_bio+0x254/0x540 [ 367.002890][T30692] ? iov_iter_npages+0x1ee/0x9a0 [ 367.007835][T30692] __blkdev_direct_IO+0x9d7/0x1340 [ 367.012948][T30692] ? aio_prep_rw+0x900/0x900 [ 367.017540][T30692] ? iov_iter_npages+0x1ee/0x9a0 [ 367.022474][T30692] blkdev_direct_IO+0xbe/0xd0 [ 367.027150][T30692] generic_file_read_iter+0x1ad3/0x21b0 [ 367.032688][T30692] ? fsnotify+0x12d1/0x13d0 [ 367.037189][T30692] ? __kasan_check_read+0x11/0x20 [ 367.042219][T30692] blkdev_read_iter+0x12e/0x140 [ 367.047071][T30692] aio_read+0x31f/0x400 [ 367.051239][T30692] io_submit_one+0x6eb/0x1970 [ 367.055917][T30692] ? __might_fault+0xf9/0x160 [ 367.060595][T30692] ? __might_fault+0xf9/0x160 [ 367.065284][T30692] __se_sys_io_submit+0x12f/0x240 [ 367.070309][T30692] __x64_sys_io_submit+0x7b/0x90 [ 367.075243][T30692] do_syscall_64+0xfe/0x140 [ 367.079742][T30692] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 367.085629][T30692] RIP: 0033:0x459829 [ 367.089533][T30692] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 367.109138][T30692] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 367.117525][T30692] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 367.125470][T30692] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 367.133415][T30692] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 367.141360][T30692] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:38 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') socket$netlink(0x10, 0x3, 0x0) 16:47:38 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x402, r0, &(0x7f0000000000), 0xfffffce4}]) [ 367.149307][T30692] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:38 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1b9, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:38 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7101000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:38 executing program 2 (fault-call:2 fault-nth:70): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:38 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x406, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') [ 367.367640][T30725] FAULT_INJECTION: forcing a failure. [ 367.367640][T30725] name failslab, interval 1, probability 0, space 0, times 0 [ 367.381198][T30725] CPU: 1 PID: 30725 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 367.389186][T30725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 367.399234][T30725] Call Trace: [ 367.402611][T30725] dump_stack+0x1d8/0x2f8 [ 367.406946][T30725] should_fail+0x555/0x770 [ 367.411372][T30725] __should_failslab+0x11a/0x160 [ 367.416308][T30725] ? mempool_alloc_slab+0x4d/0x70 [ 367.421333][T30725] should_failslab+0x9/0x20 [ 367.425840][T30725] kmem_cache_alloc+0x56/0x2e0 [ 367.430603][T30725] mempool_alloc_slab+0x4d/0x70 [ 367.435457][T30725] ? mempool_free+0x350/0x350 [ 367.440127][T30725] mempool_alloc+0x104/0x5e0 [ 367.444716][T30725] ? sbitmap_get+0x443/0x4f0 [ 367.449314][T30725] bio_alloc_bioset+0x1b0/0x5f0 [ 367.454173][T30725] ? trace_lock_release+0x135/0x1a0 [ 367.459360][T30725] ? ktime_get+0x5a/0x120 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 367.463679][T30725] ? rcu_lock_release+0xd/0x30 [ 367.468438][T30725] bio_split+0x7b/0x360 [ 367.472588][T30725] __blk_queue_split+0x127e/0x1580 [ 367.477795][T30725] blk_mq_make_request+0xf4/0x1940 [ 367.482900][T30725] ? rcu_lock_release+0x26/0x30 [ 367.487747][T30725] ? blk_queue_enter+0x715/0x740 [ 367.492686][T30725] generic_make_request+0x24b/0x980 [ 367.497885][T30725] submit_bio+0x254/0x540 [ 367.502213][T30725] ? iov_iter_npages+0x1ee/0x9a0 [ 367.507148][T30725] __blkdev_direct_IO+0x9d7/0x1340 [ 367.512260][T30725] ? aio_prep_rw+0x900/0x900 16:47:38 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0) [ 367.516850][T30725] ? iov_iter_npages+0x1ee/0x9a0 [ 367.521786][T30725] blkdev_direct_IO+0xbe/0xd0 [ 367.526463][T30725] generic_file_read_iter+0x1ad3/0x21b0 [ 367.532002][T30725] ? fsnotify+0x12d1/0x13d0 [ 367.536522][T30725] ? __kasan_check_read+0x11/0x20 [ 367.541545][T30725] blkdev_read_iter+0x12e/0x140 [ 367.546390][T30725] aio_read+0x31f/0x400 [ 367.550553][T30725] io_submit_one+0x6eb/0x1970 [ 367.555225][T30725] ? __might_fault+0xf9/0x160 [ 367.559891][T30725] ? __might_fault+0xf9/0x160 [ 367.564568][T30725] __se_sys_io_submit+0x12f/0x240 [ 367.569596][T30725] __x64_sys_io_submit+0x7b/0x90 [ 367.574538][T30725] do_syscall_64+0xfe/0x140 [ 367.579044][T30725] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 367.584929][T30725] RIP: 0033:0x459829 [ 367.588816][T30725] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 367.608431][T30725] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:38 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x204, r0, &(0x7f0000000000), 0xfffffce4}]) [ 367.616821][T30725] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 367.624773][T30725] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 367.632722][T30725] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 367.640672][T30725] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 367.648672][T30725] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:38 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x500, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) shutdown(r0, 0x0) 16:47:39 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 16:47:39 executing program 2 (fault-call:2 fault-nth:71): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x300, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x604, r0, &(0x7f0000000000), 0xfffffce4}]) [ 368.057670][T30758] FAULT_INJECTION: forcing a failure. [ 368.057670][T30758] name failslab, interval 1, probability 0, space 0, times 0 [ 368.073907][T30758] CPU: 0 PID: 30758 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 368.081907][T30758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.091959][T30758] Call Trace: [ 368.095260][T30758] dump_stack+0x1d8/0x2f8 [ 368.099592][T30758] should_fail+0x555/0x770 [ 368.104013][T30758] __should_failslab+0x11a/0x160 [ 368.108947][T30758] ? mempool_alloc_slab+0x4d/0x70 [ 368.113967][T30758] should_failslab+0x9/0x20 [ 368.118468][T30758] kmem_cache_alloc+0x56/0x2e0 [ 368.123233][T30758] mempool_alloc_slab+0x4d/0x70 [ 368.128086][T30758] ? mempool_free+0x350/0x350 [ 368.132767][T30758] mempool_alloc+0x104/0x5e0 [ 368.137354][T30758] ? sbitmap_get+0x443/0x4f0 [ 368.141950][T30758] bio_alloc_bioset+0x1b0/0x5f0 [ 368.146796][T30758] ? trace_lock_release+0x135/0x1a0 [ 368.151990][T30758] ? ktime_get+0x5a/0x120 [ 368.156312][T30758] ? rcu_lock_release+0xd/0x30 [ 368.161075][T30758] bio_split+0x7b/0x360 [ 368.165225][T30758] __blk_queue_split+0x127e/0x1580 [ 368.170326][T30758] blk_mq_make_request+0xf4/0x1940 [ 368.175415][T30758] ? rcu_lock_release+0x26/0x30 [ 368.180256][T30758] ? blk_queue_enter+0x715/0x740 [ 368.185176][T30758] generic_make_request+0x24b/0x980 [ 368.190359][T30758] submit_bio+0x254/0x540 [ 368.194700][T30758] ? iov_iter_npages+0x1ee/0x9a0 [ 368.199624][T30758] __blkdev_direct_IO+0x9d7/0x1340 [ 368.204721][T30758] ? aio_prep_rw+0x900/0x900 [ 368.209302][T30758] ? iov_iter_npages+0x1ee/0x9a0 [ 368.214215][T30758] blkdev_direct_IO+0xbe/0xd0 [ 368.218863][T30758] generic_file_read_iter+0x1ad3/0x21b0 [ 368.224398][T30758] ? fsnotify+0x12d1/0x13d0 [ 368.228879][T30758] ? __kasan_check_read+0x11/0x20 [ 368.233880][T30758] blkdev_read_iter+0x12e/0x140 [ 368.238704][T30758] aio_read+0x31f/0x400 [ 368.242837][T30758] io_submit_one+0x6eb/0x1970 [ 368.247508][T30758] ? __might_fault+0xf9/0x160 [ 368.252181][T30758] ? __might_fault+0xf9/0x160 [ 368.256848][T30758] __se_sys_io_submit+0x12f/0x240 [ 368.261859][T30758] __x64_sys_io_submit+0x7b/0x90 [ 368.266772][T30758] do_syscall_64+0xfe/0x140 [ 368.271252][T30758] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 368.277124][T30758] RIP: 0033:0x459829 [ 368.280993][T30758] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 368.300587][T30758] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:39 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) socket(0x0, 0x0, 0x0) 16:47:39 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) shutdown(r0, 0x0) [ 368.308975][T30758] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 368.316922][T30758] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 368.324902][T30758] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 368.332858][T30758] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 368.340802][T30758] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:39 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x700, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) r1 = accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10000, 0x0) 16:47:39 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) shutdown(r0, 0x0) 16:47:39 executing program 2 (fault-call:2 fault-nth:72): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x402, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefffffffffffffff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf00, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:39 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) [ 368.614593][T30795] FAULT_INJECTION: forcing a failure. [ 368.614593][T30795] name failslab, interval 1, probability 0, space 0, times 0 [ 368.631342][T30795] CPU: 1 PID: 30795 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 368.639373][T30795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.649413][T30795] Call Trace: [ 368.652700][T30795] dump_stack+0x1d8/0x2f8 [ 368.657039][T30795] should_fail+0x555/0x770 [ 368.661458][T30795] __should_failslab+0x11a/0x160 [ 368.666393][T30795] ? mempool_alloc_slab+0x4d/0x70 [ 368.671412][T30795] should_failslab+0x9/0x20 [ 368.677715][T30795] kmem_cache_alloc+0x56/0x2e0 [ 368.682478][T30795] mempool_alloc_slab+0x4d/0x70 [ 368.687336][T30795] ? mempool_free+0x350/0x350 [ 368.692019][T30795] mempool_alloc+0x104/0x5e0 [ 368.696606][T30795] ? sbitmap_get+0x443/0x4f0 [ 368.701202][T30795] bio_alloc_bioset+0x1b0/0x5f0 [ 368.706050][T30795] ? trace_lock_release+0x135/0x1a0 16:47:39 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) accept$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x0) [ 368.711239][T30795] ? ktime_get+0x5a/0x120 [ 368.715564][T30795] ? rcu_lock_release+0xd/0x30 [ 368.720323][T30795] bio_split+0x7b/0x360 [ 368.724481][T30795] __blk_queue_split+0x127e/0x1580 [ 368.729601][T30795] blk_mq_make_request+0xf4/0x1940 [ 368.734718][T30795] ? rcu_lock_release+0x26/0x30 [ 368.739568][T30795] ? blk_queue_enter+0x715/0x740 [ 368.744508][T30795] generic_make_request+0x24b/0x980 [ 368.749710][T30795] submit_bio+0x254/0x540 [ 368.754039][T30795] ? iov_iter_npages+0x1ee/0x9a0 [ 368.758976][T30795] __blkdev_direct_IO+0x9d7/0x1340 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) accept$unix(0xffffffffffffffff, 0x0, 0x0) [ 368.764087][T30795] ? aio_prep_rw+0x900/0x900 [ 368.768677][T30795] ? iov_iter_npages+0x1ee/0x9a0 [ 368.773876][T30795] blkdev_direct_IO+0xbe/0xd0 [ 368.778546][T30795] generic_file_read_iter+0x1ad3/0x21b0 [ 368.784084][T30795] ? fsnotify+0x12d1/0x13d0 [ 368.788589][T30795] ? __kasan_check_read+0x11/0x20 [ 368.793632][T30795] blkdev_read_iter+0x12e/0x140 [ 368.798480][T30795] aio_read+0x31f/0x400 [ 368.802661][T30795] io_submit_one+0x6eb/0x1970 [ 368.807341][T30795] ? __might_fault+0xf9/0x160 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x21000) [ 368.812070][T30795] ? __might_fault+0xf9/0x160 [ 368.816752][T30795] __se_sys_io_submit+0x12f/0x240 [ 368.821779][T30795] __x64_sys_io_submit+0x7b/0x90 [ 368.826716][T30795] do_syscall_64+0xfe/0x140 [ 368.831221][T30795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 368.837366][T30795] RIP: 0033:0x459829 [ 368.841256][T30795] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:40 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) [ 368.860851][T30795] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 368.869258][T30795] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 368.877222][T30795] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 368.885188][T30795] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 368.893325][T30795] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 368.901286][T30795] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:40 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:40 executing program 2 (fault-call:2 fault-nth:73): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff01000000000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x406, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 369.142542][T30840] FAULT_INJECTION: forcing a failure. [ 369.142542][T30840] name failslab, interval 1, probability 0, space 0, times 0 [ 369.180966][T30840] CPU: 0 PID: 30840 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 369.188980][T30840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.199017][T30840] Call Trace: [ 369.199034][T30840] dump_stack+0x1d8/0x2f8 [ 369.199047][T30840] should_fail+0x555/0x770 [ 369.199061][T30840] __should_failslab+0x11a/0x160 [ 369.199072][T30840] ? mempool_alloc_slab+0x4d/0x70 [ 369.199087][T30840] should_failslab+0x9/0x20 [ 369.225490][T30840] kmem_cache_alloc+0x56/0x2e0 [ 369.230249][T30840] mempool_alloc_slab+0x4d/0x70 [ 369.235093][T30840] ? mempool_free+0x350/0x350 16:47:40 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x60ff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) lseek(r0, 0x0, 0x4) 16:47:40 executing program 0: bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(0xffffffffffffffff, 0x0) [ 369.239857][T30840] mempool_alloc+0x104/0x5e0 [ 369.244441][T30840] ? sbitmap_get+0x443/0x4f0 [ 369.249036][T30840] bio_alloc_bioset+0x1b0/0x5f0 [ 369.253894][T30840] ? trace_lock_release+0x135/0x1a0 [ 369.259082][T30840] ? ktime_get+0x5a/0x120 [ 369.263405][T30840] ? rcu_lock_release+0xd/0x30 [ 369.268164][T30840] bio_split+0x7b/0x360 [ 369.272316][T30840] __blk_queue_split+0x127e/0x1580 [ 369.277440][T30840] blk_mq_make_request+0xf4/0x1940 [ 369.282547][T30840] ? rcu_lock_release+0x26/0x30 [ 369.287392][T30840] ? blk_queue_enter+0x715/0x740 16:47:40 executing program 0: bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(0xffffffffffffffff, 0x0) 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) lseek(r0, 0x0, 0x4) [ 369.292339][T30840] generic_make_request+0x24b/0x980 [ 369.297538][T30840] submit_bio+0x254/0x540 [ 369.301865][T30840] ? iov_iter_npages+0x1ee/0x9a0 [ 369.306805][T30840] __blkdev_direct_IO+0x9d7/0x1340 [ 369.311919][T30840] ? aio_prep_rw+0x900/0x900 [ 369.316510][T30840] ? iov_iter_npages+0x1ee/0x9a0 [ 369.321969][T30840] blkdev_direct_IO+0xbe/0xd0 [ 369.326638][T30840] generic_file_read_iter+0x1ad3/0x21b0 [ 369.332179][T30840] ? fsnotify+0x12d1/0x13d0 [ 369.336681][T30840] ? __kasan_check_read+0x11/0x20 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) lseek(r0, 0x0, 0x4) 16:47:40 executing program 0: bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(0xffffffffffffffff, 0x0) [ 369.341710][T30840] blkdev_read_iter+0x12e/0x140 [ 369.346556][T30840] aio_read+0x31f/0x400 [ 369.350723][T30840] io_submit_one+0x6eb/0x1970 [ 369.364645][T30840] ? __might_fault+0xf9/0x160 [ 369.369325][T30840] ? __might_fault+0xf9/0x160 [ 369.374009][T30840] __se_sys_io_submit+0x12f/0x240 [ 369.379033][T30840] __x64_sys_io_submit+0x7b/0x90 [ 369.383968][T30840] do_syscall_64+0xfe/0x140 [ 369.388504][T30840] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 369.394391][T30840] RIP: 0033:0x459829 [ 369.398281][T30840] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 369.417879][T30840] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 369.426288][T30840] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 369.434261][T30840] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 369.442226][T30840] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 369.450191][T30840] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 369.458151][T30840] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:40 executing program 2 (fault-call:2 fault-nth:74): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) 16:47:40 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:40 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefff7f00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x500, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7600, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:40 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 369.699862][T30879] FAULT_INJECTION: forcing a failure. [ 369.699862][T30879] name failslab, interval 1, probability 0, space 0, times 0 [ 369.723029][T30879] CPU: 1 PID: 30879 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 369.731021][T30879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.741075][T30879] Call Trace: [ 369.744364][T30879] dump_stack+0x1d8/0x2f8 [ 369.748696][T30879] should_fail+0x555/0x770 [ 369.753112][T30879] __should_failslab+0x11a/0x160 [ 369.758050][T30879] ? mempool_alloc_slab+0x4d/0x70 [ 369.763072][T30879] should_failslab+0x9/0x20 [ 369.767571][T30879] kmem_cache_alloc+0x56/0x2e0 [ 369.772340][T30879] mempool_alloc_slab+0x4d/0x70 [ 369.777187][T30879] ? mempool_free+0x350/0x350 [ 369.781861][T30879] mempool_alloc+0x104/0x5e0 [ 369.786441][T30879] bio_alloc_bioset+0x1b0/0x5f0 [ 369.791269][T30879] ? blk_mq_sched_insert_requests+0x463/0x540 [ 369.797312][T30879] bio_split+0x7b/0x360 [ 369.801443][T30879] __blk_queue_split+0x127e/0x1580 [ 369.806533][T30879] blk_mq_make_request+0xf4/0x1940 [ 369.811642][T30879] ? rcu_lock_release+0x26/0x30 [ 369.816465][T30879] ? blk_queue_enter+0x715/0x740 [ 369.821506][T30879] generic_make_request+0x24b/0x980 [ 369.826687][T30879] submit_bio+0x254/0x540 [ 369.830990][T30879] ? iov_iter_npages+0x1ee/0x9a0 [ 369.835912][T30879] __blkdev_direct_IO+0x9d7/0x1340 [ 369.841002][T30879] ? aio_prep_rw+0x900/0x900 [ 369.845578][T30879] ? iov_iter_npages+0x1ee/0x9a0 [ 369.850507][T30879] blkdev_direct_IO+0xbe/0xd0 [ 369.855156][T30879] generic_file_read_iter+0x1ad3/0x21b0 [ 369.860673][T30879] ? fsnotify+0x12d1/0x13d0 [ 369.865151][T30879] ? __kasan_check_read+0x11/0x20 [ 369.870151][T30879] blkdev_read_iter+0x12e/0x140 [ 369.874999][T30879] aio_read+0x31f/0x400 [ 369.879140][T30879] io_submit_one+0x6eb/0x1970 [ 369.883791][T30879] ? __might_fault+0xf9/0x160 [ 369.888445][T30879] ? __might_fault+0xf9/0x160 [ 369.893103][T30879] __se_sys_io_submit+0x12f/0x240 [ 369.898105][T30879] __x64_sys_io_submit+0x7b/0x90 [ 369.903018][T30879] do_syscall_64+0xfe/0x140 [ 369.907495][T30879] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 369.913359][T30879] RIP: 0033:0x459829 [ 369.917228][T30879] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 369.936946][T30879] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:41 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:41 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x9600, r0, &(0x7f0000000000), 0xfffffce4}]) [ 369.945331][T30879] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 369.953275][T30879] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 369.961220][T30879] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 369.969167][T30879] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 369.977112][T30879] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:41 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x604, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffefffff00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:41 executing program 2 (fault-call:2 fault-nth:75): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:41 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xab00, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x0) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 370.239325][T30907] FAULT_INJECTION: forcing a failure. [ 370.239325][T30907] name failslab, interval 1, probability 0, space 0, times 0 [ 370.263154][T30907] CPU: 0 PID: 30907 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 370.271153][T30907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.281205][T30907] Call Trace: [ 370.284494][T30907] dump_stack+0x1d8/0x2f8 16:47:41 executing program 1: write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) [ 370.288821][T30907] should_fail+0x555/0x770 [ 370.293235][T30907] __should_failslab+0x11a/0x160 [ 370.298170][T30907] ? mempool_alloc_slab+0x4d/0x70 [ 370.303190][T30907] should_failslab+0x9/0x20 [ 370.307692][T30907] kmem_cache_alloc+0x56/0x2e0 [ 370.312454][T30907] mempool_alloc_slab+0x4d/0x70 [ 370.317807][T30907] ? mempool_free+0x350/0x350 [ 370.322483][T30907] mempool_alloc+0x104/0x5e0 [ 370.327074][T30907] ? sbitmap_get+0x443/0x4f0 [ 370.331667][T30907] bio_alloc_bioset+0x1b0/0x5f0 16:47:41 executing program 1: write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) 16:47:41 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x0) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 370.336522][T30907] ? trace_lock_release+0x135/0x1a0 [ 370.341714][T30907] ? ktime_get+0x5a/0x120 [ 370.346039][T30907] ? rcu_lock_release+0xd/0x30 [ 370.350807][T30907] bio_split+0x7b/0x360 [ 370.354961][T30907] __blk_queue_split+0x127e/0x1580 [ 370.360086][T30907] blk_mq_make_request+0xf4/0x1940 [ 370.365196][T30907] ? rcu_lock_release+0x26/0x30 [ 370.370040][T30907] ? blk_queue_enter+0x715/0x740 [ 370.374973][T30907] generic_make_request+0x24b/0x980 [ 370.380171][T30907] submit_bio+0x254/0x540 [ 370.384498][T30907] ? iov_iter_npages+0x1ee/0x9a0 16:47:41 executing program 1: write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) 16:47:41 executing program 1: r0 = memfd_create(0x0, 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) [ 370.389437][T30907] __blkdev_direct_IO+0x9d7/0x1340 [ 370.394549][T30907] ? aio_prep_rw+0x900/0x900 [ 370.399150][T30907] ? iov_iter_npages+0x1ee/0x9a0 [ 370.404131][T30907] blkdev_direct_IO+0xbe/0xd0 [ 370.408824][T30907] generic_file_read_iter+0x1ad3/0x21b0 [ 370.414361][T30907] ? fsnotify+0x12d1/0x13d0 [ 370.418864][T30907] ? __kasan_check_read+0x11/0x20 [ 370.423890][T30907] blkdev_read_iter+0x12e/0x140 [ 370.428740][T30907] aio_read+0x31f/0x400 [ 370.432904][T30907] io_submit_one+0x6eb/0x1970 [ 370.437581][T30907] ? __might_fault+0xf9/0x160 [ 370.442258][T30907] ? __might_fault+0xf9/0x160 [ 370.446959][T30907] __se_sys_io_submit+0x12f/0x240 [ 370.452449][T30907] __x64_sys_io_submit+0x7b/0x90 [ 370.457441][T30907] do_syscall_64+0xfe/0x140 [ 370.461922][T30907] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 370.467787][T30907] RIP: 0033:0x459829 16:47:41 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x700, r0, &(0x7f0000000000), 0xfffffce4}]) [ 370.471654][T30907] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 370.491228][T30907] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 370.499616][T30907] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 370.507572][T30907] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 370.515527][T30907] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 370.523497][T30907] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 370.531441][T30907] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:41 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffff00000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 1: r0 = memfd_create(0x0, 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:41 executing program 2 (fault-call:2 fault-nth:76): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x0) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:41 executing program 1: r0 = memfd_create(0x0, 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:41 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x400000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:41 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf00, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:41 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 370.708407][T30951] FAULT_INJECTION: forcing a failure. [ 370.708407][T30951] name failslab, interval 1, probability 0, space 0, times 0 [ 370.741628][T30951] CPU: 0 PID: 30951 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 16:47:41 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffffffffffffffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 370.749624][T30951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.759674][T30951] Call Trace: [ 370.762960][T30951] dump_stack+0x1d8/0x2f8 [ 370.767288][T30951] should_fail+0x555/0x770 [ 370.771709][T30951] __should_failslab+0x11a/0x160 [ 370.776641][T30951] ? mempool_alloc_slab+0x4d/0x70 [ 370.781661][T30951] should_failslab+0x9/0x20 [ 370.781672][T30951] kmem_cache_alloc+0x56/0x2e0 [ 370.781683][T30951] mempool_alloc_slab+0x4d/0x70 [ 370.781691][T30951] ? mempool_free+0x350/0x350 [ 370.781700][T30951] mempool_alloc+0x104/0x5e0 [ 370.781714][T30951] ? sbitmap_get+0x443/0x4f0 [ 370.790958][T30951] bio_alloc_bioset+0x1b0/0x5f0 [ 370.790968][T30951] ? trace_lock_release+0x135/0x1a0 [ 370.790983][T30951] ? ktime_get+0x5a/0x120 [ 370.823960][T30951] ? rcu_lock_release+0xd/0x30 [ 370.828726][T30951] bio_split+0x7b/0x360 [ 370.832885][T30951] __blk_queue_split+0x127e/0x1580 [ 370.838003][T30951] blk_mq_make_request+0xf4/0x1940 [ 370.843114][T30951] ? rcu_lock_release+0x26/0x30 [ 370.847976][T30951] ? blk_queue_enter+0x715/0x740 [ 370.852915][T30951] generic_make_request+0x24b/0x980 [ 370.858114][T30951] submit_bio+0x254/0x540 [ 370.862446][T30951] ? iov_iter_npages+0x1ee/0x9a0 [ 370.867384][T30951] __blkdev_direct_IO+0x9d7/0x1340 [ 370.872498][T30951] ? aio_prep_rw+0x900/0x900 [ 370.877113][T30951] ? iov_iter_npages+0x1ee/0x9a0 [ 370.882059][T30951] blkdev_direct_IO+0xbe/0xd0 [ 370.886732][T30951] generic_file_read_iter+0x1ad3/0x21b0 [ 370.892266][T30951] ? fsnotify+0x12d1/0x13d0 [ 370.896767][T30951] ? __kasan_check_read+0x11/0x20 [ 370.901792][T30951] blkdev_read_iter+0x12e/0x140 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) [ 370.906638][T30951] aio_read+0x31f/0x400 [ 370.910807][T30951] io_submit_one+0x6eb/0x1970 [ 370.915485][T30951] ? __might_fault+0xf9/0x160 [ 370.920160][T30951] ? __might_fault+0xf9/0x160 [ 370.924846][T30951] __se_sys_io_submit+0x12f/0x240 [ 370.929867][T30951] __x64_sys_io_submit+0x7b/0x90 [ 370.934805][T30951] do_syscall_64+0xfe/0x140 [ 370.939312][T30951] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 370.945197][T30951] RIP: 0033:0x459829 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:42 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 370.949086][T30951] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 370.968690][T30951] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 370.977093][T30951] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 370.985065][T30951] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 370.993028][T30951] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 371.000988][T30951] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:42 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x50f000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 371.008953][T30951] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:42 executing program 2 (fault-call:2 fault-nth:77): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(0xffffffffffffffff, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:42 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x707100, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, 0x0, 0x0) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) [ 371.274739][T30988] FAULT_INJECTION: forcing a failure. [ 371.274739][T30988] name failslab, interval 1, probability 0, space 0, times 0 [ 371.308393][T30988] CPU: 1 PID: 30988 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 371.316406][T30988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.326992][T30988] Call Trace: [ 371.330283][T30988] dump_stack+0x1d8/0x2f8 [ 371.334610][T30988] should_fail+0x555/0x770 [ 371.339231][T30988] __should_failslab+0x11a/0x160 [ 371.348773][T30988] ? mempool_alloc_slab+0x4d/0x70 [ 371.353799][T30988] should_failslab+0x9/0x20 [ 371.358299][T30988] kmem_cache_alloc+0x56/0x2e0 [ 371.363064][T30988] mempool_alloc_slab+0x4d/0x70 [ 371.367913][T30988] ? mempool_free+0x350/0x350 [ 371.372587][T30988] mempool_alloc+0x104/0x5e0 [ 371.377177][T30988] ? sbitmap_get+0x443/0x4f0 [ 371.381774][T30988] bio_alloc_bioset+0x1b0/0x5f0 [ 371.386618][T30988] ? trace_lock_release+0x135/0x1a0 [ 371.391819][T30988] ? ktime_get+0x5a/0x120 [ 371.396144][T30988] ? rcu_lock_release+0xd/0x30 [ 371.400907][T30988] bio_split+0x7b/0x360 [ 371.405065][T30988] __blk_queue_split+0x127e/0x1580 [ 371.410184][T30988] blk_mq_make_request+0xf4/0x1940 [ 371.415291][T30988] ? rcu_lock_release+0x26/0x30 [ 371.420133][T30988] ? blk_queue_enter+0x715/0x740 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) [ 371.425073][T30988] generic_make_request+0x24b/0x980 [ 371.430270][T30988] submit_bio+0x254/0x540 [ 371.434604][T30988] ? iov_iter_npages+0x1ee/0x9a0 [ 371.439550][T30988] __blkdev_direct_IO+0x9d7/0x1340 [ 371.444662][T30988] ? aio_prep_rw+0x900/0x900 [ 371.449736][T30988] ? iov_iter_npages+0x1ee/0x9a0 [ 371.454669][T30988] blkdev_direct_IO+0xbe/0xd0 [ 371.459344][T30988] generic_file_read_iter+0x1ad3/0x21b0 [ 371.464888][T30988] ? fsnotify+0x12d1/0x13d0 [ 371.469390][T30988] ? trace_mm_page_alloc+0x17a/0x1f0 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) [ 371.474679][T30988] blkdev_read_iter+0x12e/0x140 [ 371.479525][T30988] aio_read+0x31f/0x400 [ 371.483691][T30988] io_submit_one+0x6eb/0x1970 [ 371.488370][T30988] ? __might_fault+0xf9/0x160 [ 371.493043][T30988] ? __might_fault+0xf9/0x160 [ 371.497720][T30988] __se_sys_io_submit+0x12f/0x240 [ 371.502741][T30988] __x64_sys_io_submit+0x7b/0x90 [ 371.507672][T30988] do_syscall_64+0xfe/0x140 [ 371.512169][T30988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 371.518048][T30988] RIP: 0033:0x459829 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x4) [ 371.521936][T30988] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 371.541540][T30988] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 371.549947][T30988] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 371.557911][T30988] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 371.565878][T30988] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 371.573839][T30988] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 371.581794][T30988] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:42 executing program 2 (fault-call:2 fault-nth:78): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0) lseek(r0, 0x0, 0x4) 16:47:42 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, 0x0, 0x0) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:42 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x70e000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3f00, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:42 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0) lseek(r0, 0x0, 0x4) [ 371.770968][T31027] FAULT_INJECTION: forcing a failure. [ 371.770968][T31027] name failslab, interval 1, probability 0, space 0, times 0 [ 371.787089][T31027] CPU: 1 PID: 31027 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 371.795080][T31027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.805129][T31027] Call Trace: [ 371.808422][T31027] dump_stack+0x1d8/0x2f8 [ 371.812755][T31027] should_fail+0x555/0x770 [ 371.817177][T31027] __should_failslab+0x11a/0x160 [ 371.822109][T31027] ? mempool_alloc_slab+0x4d/0x70 [ 371.827129][T31027] should_failslab+0x9/0x20 [ 371.831976][T31027] kmem_cache_alloc+0x56/0x2e0 [ 371.836734][T31027] mempool_alloc_slab+0x4d/0x70 [ 371.841573][T31027] ? mempool_free+0x350/0x350 [ 371.846244][T31027] mempool_alloc+0x104/0x5e0 [ 371.850824][T31027] ? sbitmap_get+0x443/0x4f0 [ 371.855418][T31027] bio_alloc_bioset+0x1b0/0x5f0 [ 371.860266][T31027] ? trace_lock_release+0x135/0x1a0 [ 371.865457][T31027] ? ktime_get+0x5a/0x120 [ 371.869786][T31027] ? rcu_lock_release+0xd/0x30 [ 371.874550][T31027] bio_split+0x7b/0x360 [ 371.878702][T31027] __blk_queue_split+0x127e/0x1580 [ 371.883817][T31027] blk_mq_make_request+0xf4/0x1940 [ 371.888922][T31027] ? rcu_lock_release+0x26/0x30 [ 371.893767][T31027] ? blk_queue_enter+0x715/0x740 [ 371.898711][T31027] generic_make_request+0x24b/0x980 [ 371.903901][T31027] submit_bio+0x254/0x540 [ 371.908223][T31027] ? iov_iter_npages+0x1ee/0x9a0 [ 371.913156][T31027] __blkdev_direct_IO+0x9d7/0x1340 [ 371.918249][T31027] ? aio_prep_rw+0x900/0x900 [ 371.922816][T31027] ? iov_iter_npages+0x1ee/0x9a0 [ 371.927729][T31027] blkdev_direct_IO+0xbe/0xd0 [ 371.932398][T31027] generic_file_read_iter+0x1ad3/0x21b0 [ 371.937914][T31027] ? fsnotify+0x12d1/0x13d0 [ 371.942390][T31027] ? __kasan_check_read+0x11/0x20 [ 371.947394][T31027] blkdev_read_iter+0x12e/0x140 [ 371.952220][T31027] aio_read+0x31f/0x400 [ 371.956372][T31027] io_submit_one+0x6eb/0x1970 [ 371.961038][T31027] ? __might_fault+0xf9/0x160 [ 371.965695][T31027] ? __might_fault+0xf9/0x160 [ 371.970348][T31027] __se_sys_io_submit+0x12f/0x240 [ 371.975354][T31027] __x64_sys_io_submit+0x7b/0x90 [ 371.980283][T31027] do_syscall_64+0xfe/0x140 [ 371.984763][T31027] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 371.990631][T31027] RIP: 0033:0x459829 [ 371.994502][T31027] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:43 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x717000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, 0x0, 0x0) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) [ 372.014080][T31027] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 372.022460][T31027] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 372.030405][T31027] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 372.038349][T31027] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 372.046301][T31027] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 372.054246][T31027] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0) lseek(r0, 0x0, 0x4) 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)) lseek(r0, 0x0, 0x4) 16:47:43 executing program 2 (fault-call:2 fault-nth:79): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)) lseek(r0, 0x0, 0x4) 16:47:43 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x760000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400), 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)) lseek(r0, 0x0, 0x4) [ 372.293555][T31048] FAULT_INJECTION: forcing a failure. [ 372.293555][T31048] name failslab, interval 1, probability 0, space 0, times 0 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) [ 372.336363][T31048] CPU: 0 PID: 31048 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 372.344384][T31048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.354436][T31048] Call Trace: [ 372.357727][T31048] dump_stack+0x1d8/0x2f8 [ 372.362057][T31048] should_fail+0x555/0x770 [ 372.366472][T31048] __should_failslab+0x11a/0x160 [ 372.371409][T31048] ? mempool_alloc_slab+0x4d/0x70 [ 372.376432][T31048] should_failslab+0x9/0x20 [ 372.380957][T31048] kmem_cache_alloc+0x56/0x2e0 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) [ 372.385719][T31048] mempool_alloc_slab+0x4d/0x70 [ 372.390562][T31048] ? mempool_free+0x350/0x350 [ 372.395231][T31048] mempool_alloc+0x104/0x5e0 [ 372.399815][T31048] ? sbitmap_get+0x443/0x4f0 [ 372.404408][T31048] bio_alloc_bioset+0x1b0/0x5f0 [ 372.409252][T31048] ? trace_lock_release+0x135/0x1a0 [ 372.414442][T31048] ? ktime_get+0x5a/0x120 [ 372.418763][T31048] ? rcu_lock_release+0xd/0x30 [ 372.423523][T31048] bio_split+0x7b/0x360 [ 372.427682][T31048] __blk_queue_split+0x127e/0x1580 [ 372.432798][T31048] blk_mq_make_request+0xf4/0x1940 [ 372.437901][T31048] ? rcu_lock_release+0x26/0x30 [ 372.442745][T31048] ? blk_queue_enter+0x715/0x740 [ 372.447682][T31048] generic_make_request+0x24b/0x980 [ 372.453398][T31048] submit_bio+0x254/0x540 [ 372.457728][T31048] ? iov_iter_npages+0x1ee/0x9a0 [ 372.462665][T31048] __blkdev_direct_IO+0x9d7/0x1340 [ 372.467771][T31048] ? aio_prep_rw+0x900/0x900 [ 372.472359][T31048] ? iov_iter_npages+0x1ee/0x9a0 [ 372.477296][T31048] blkdev_direct_IO+0xbe/0xd0 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(0xffffffffffffffff, 0x0, 0x4) [ 372.481971][T31048] generic_file_read_iter+0x1ad3/0x21b0 [ 372.487504][T31048] ? fsnotify+0x12d1/0x13d0 [ 372.492034][T31048] ? __kasan_check_read+0x11/0x20 [ 372.497062][T31048] blkdev_read_iter+0x12e/0x140 [ 372.501909][T31048] aio_read+0x31f/0x400 [ 372.506071][T31048] io_submit_one+0x6eb/0x1970 [ 372.510740][T31048] ? __might_fault+0xf9/0x160 [ 372.515417][T31048] ? __might_fault+0xf9/0x160 [ 372.520097][T31048] __se_sys_io_submit+0x12f/0x240 [ 372.525137][T31048] __x64_sys_io_submit+0x7b/0x90 [ 372.530078][T31048] do_syscall_64+0xfe/0x140 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x0) [ 372.534587][T31048] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 372.540471][T31048] RIP: 0033:0x459829 [ 372.544367][T31048] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 372.564073][T31048] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 372.572477][T31048] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:43 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400), 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 372.580443][T31048] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 372.588408][T31048] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 372.596373][T31048] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 372.604345][T31048] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:43 executing program 2 (fault-call:2 fault-nth:80): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x0) 16:47:43 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x960000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400), 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) 16:47:43 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xb901, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:43 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) [ 372.846804][T31095] FAULT_INJECTION: forcing a failure. [ 372.846804][T31095] name failslab, interval 1, probability 0, space 0, times 0 [ 372.870002][T31095] CPU: 0 PID: 31095 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 372.877995][T31095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.888040][T31095] Call Trace: [ 372.891325][T31095] dump_stack+0x1d8/0x2f8 16:47:44 executing program 1: r0 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) write$P9_RMKNOD(r0, &(0x7f0000000000)={0x14}, 0x14) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x80001a}) lseek(r0, 0x0, 0x0) [ 372.895653][T31095] should_fail+0x555/0x770 [ 372.900066][T31095] __should_failslab+0x11a/0x160 [ 372.904998][T31095] ? mempool_alloc_slab+0x4d/0x70 [ 372.910015][T31095] should_failslab+0x9/0x20 [ 372.914514][T31095] kmem_cache_alloc+0x56/0x2e0 [ 372.919273][T31095] mempool_alloc_slab+0x4d/0x70 [ 372.924127][T31095] ? mempool_free+0x350/0x350 [ 372.928815][T31095] mempool_alloc+0x104/0x5e0 [ 372.933416][T31095] ? sbitmap_get+0x443/0x4f0 [ 372.938008][T31095] bio_alloc_bioset+0x1b0/0x5f0 [ 372.942852][T31095] ? trace_lock_release+0x135/0x1a0 [ 372.948043][T31095] ? ktime_get+0x5a/0x120 [ 372.952372][T31095] ? rcu_lock_release+0xd/0x30 [ 372.957140][T31095] bio_split+0x7b/0x360 [ 372.961295][T31095] __blk_queue_split+0x127e/0x1580 [ 372.966418][T31095] blk_mq_make_request+0xf4/0x1940 [ 372.971520][T31095] ? rcu_lock_release+0x26/0x30 [ 372.976360][T31095] ? blk_queue_enter+0x715/0x740 [ 372.981299][T31095] generic_make_request+0x24b/0x980 [ 372.986496][T31095] submit_bio+0x254/0x540 [ 372.990810][T31095] ? iov_iter_npages+0x1ee/0x9a0 [ 372.995739][T31095] __blkdev_direct_IO+0x9d7/0x1340 [ 373.000839][T31095] ? aio_prep_rw+0x900/0x900 [ 373.005406][T31095] ? iov_iter_npages+0x1ee/0x9a0 [ 373.010316][T31095] blkdev_direct_IO+0xbe/0xd0 [ 373.014967][T31095] generic_file_read_iter+0x1ad3/0x21b0 [ 373.020489][T31095] ? fsnotify+0x12d1/0x13d0 [ 373.024969][T31095] ? __kasan_check_read+0x11/0x20 [ 373.029969][T31095] blkdev_read_iter+0x12e/0x140 [ 373.034801][T31095] aio_read+0x31f/0x400 [ 373.038949][T31095] io_submit_one+0x6eb/0x1970 [ 373.043601][T31095] ? __might_fault+0xf9/0x160 [ 373.048255][T31095] ? __might_fault+0xf9/0x160 [ 373.052925][T31095] __se_sys_io_submit+0x12f/0x240 [ 373.057933][T31095] __x64_sys_io_submit+0x7b/0x90 [ 373.062849][T31095] do_syscall_64+0xfe/0x140 [ 373.067348][T31095] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 373.073226][T31095] RIP: 0033:0x459829 [ 373.077112][T31095] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:44 executing program 1: 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:44 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xe07000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 373.096708][T31095] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 373.105090][T31095] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 373.113039][T31095] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 373.120991][T31095] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 373.128958][T31095] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 373.136902][T31095] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:44 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:44 executing program 2 (fault-call:2 fault-nth:81): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x200001000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070") r1 = socket$inet6(0xa, 0x2, 0x0) dup2(r0, r1) setsockopt$inet6_udp_int(r1, 0x11, 0x1, &(0x7f0000000080), 0x4) 16:47:44 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, 0x0, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:44 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0) fchdir(r0) mount$fuseblk(&(0x7f00000000c0)='/dev/loop0\x00', &(0x7f0000000340)='./bus\x00', &(0x7f0000000400)='fuseblk\x00', 0x0, 0x0) 16:47:44 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf05000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, 0x0, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:44 executing program 1: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) chroot(&(0x7f0000000000)='./file0\x00') umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 16:47:44 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, 0x0, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:44 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 373.442877][T31124] FAULT_INJECTION: forcing a failure. [ 373.442877][T31124] name failslab, interval 1, probability 0, space 0, times 0 16:47:44 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff01, r0, &(0x7f0000000000), 0xfffffce4}]) [ 373.541242][T31124] CPU: 1 PID: 31124 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 373.549263][T31124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.559323][T31124] Call Trace: [ 373.562632][T31124] dump_stack+0x1d8/0x2f8 [ 373.566968][T31124] should_fail+0x555/0x770 [ 373.571380][T31124] __should_failslab+0x11a/0x160 [ 373.576309][T31124] ? mempool_alloc_slab+0x4d/0x70 [ 373.581333][T31124] should_failslab+0x9/0x20 [ 373.585847][T31124] kmem_cache_alloc+0x56/0x2e0 [ 373.590611][T31124] mempool_alloc_slab+0x4d/0x70 [ 373.595458][T31124] ? mempool_free+0x350/0x350 [ 373.600127][T31124] mempool_alloc+0x104/0x5e0 [ 373.604711][T31124] ? sbitmap_get+0x443/0x4f0 [ 373.609304][T31124] bio_alloc_bioset+0x1b0/0x5f0 [ 373.614141][T31124] ? trace_lock_release+0x135/0x1a0 [ 373.619324][T31124] ? ktime_get+0x5a/0x120 [ 373.623643][T31124] ? rcu_lock_release+0xd/0x30 [ 373.628384][T31124] bio_split+0x7b/0x360 [ 373.632516][T31124] __blk_queue_split+0x127e/0x1580 [ 373.637605][T31124] blk_mq_make_request+0xf4/0x1940 [ 373.642694][T31124] ? rcu_lock_release+0x26/0x30 [ 373.647519][T31124] ? blk_queue_enter+0x715/0x740 [ 373.652432][T31124] generic_make_request+0x24b/0x980 [ 373.657607][T31124] submit_bio+0x254/0x540 [ 373.661956][T31124] ? iov_iter_npages+0x1ee/0x9a0 [ 373.666911][T31124] __blkdev_direct_IO+0x9d7/0x1340 [ 373.671999][T31124] ? aio_prep_rw+0x900/0x900 [ 373.676566][T31124] ? iov_iter_npages+0x1ee/0x9a0 [ 373.681487][T31124] blkdev_direct_IO+0xbe/0xd0 [ 373.686141][T31124] generic_file_read_iter+0x1ad3/0x21b0 [ 373.691660][T31124] ? fsnotify+0x12d1/0x13d0 [ 373.696138][T31124] ? __kasan_check_read+0x11/0x20 [ 373.701142][T31124] blkdev_read_iter+0x12e/0x140 [ 373.705966][T31124] aio_read+0x31f/0x400 [ 373.710102][T31124] io_submit_one+0x6eb/0x1970 [ 373.714763][T31124] ? __might_fault+0xf9/0x160 [ 373.719424][T31124] ? __might_fault+0xf9/0x160 [ 373.724078][T31124] __se_sys_io_submit+0x12f/0x240 [ 373.729077][T31124] __x64_sys_io_submit+0x7b/0x90 [ 373.733989][T31124] do_syscall_64+0xfe/0x140 [ 373.738469][T31124] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 373.744332][T31124] RIP: 0033:0x459829 [ 373.748199][T31124] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 373.767796][T31124] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 373.776182][T31124] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 373.784131][T31124] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 373.792088][T31124] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 373.800229][T31124] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 373.808178][T31124] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:45 executing program 2 (fault-call:2 fault-nth:82): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:45 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:45 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:45 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:45 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 373.966783][T31154] gfs2: invalid mount option: dont_appraise [ 373.996667][T31154] gfs2: can't parse mount arguments 16:47:45 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(r0, 0x0) [ 374.035431][T31164] FAULT_INJECTION: forcing a failure. [ 374.035431][T31164] name failslab, interval 1, probability 0, space 0, times 0 [ 374.048746][T31164] CPU: 0 PID: 31164 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 374.056724][T31164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.066767][T31164] Call Trace: [ 374.070033][T31164] dump_stack+0x1d8/0x2f8 [ 374.074341][T31164] should_fail+0x555/0x770 [ 374.078737][T31164] __should_failslab+0x11a/0x160 [ 374.083695][T31164] ? mempool_alloc_slab+0x4d/0x70 [ 374.088696][T31164] should_failslab+0x9/0x20 [ 374.093174][T31164] kmem_cache_alloc+0x56/0x2e0 [ 374.097914][T31164] mempool_alloc_slab+0x4d/0x70 [ 374.102746][T31164] ? mempool_free+0x350/0x350 [ 374.107405][T31164] mempool_alloc+0x104/0x5e0 [ 374.111969][T31164] ? sbitmap_get+0x443/0x4f0 [ 374.116537][T31164] bio_alloc_bioset+0x1b0/0x5f0 [ 374.121368][T31164] ? trace_lock_release+0x135/0x1a0 [ 374.126563][T31164] ? ktime_get+0x5a/0x120 [ 374.130866][T31164] ? rcu_lock_release+0xd/0x30 [ 374.135604][T31164] bio_split+0x7b/0x360 [ 374.139738][T31164] __blk_queue_split+0x127e/0x1580 [ 374.144827][T31164] blk_mq_make_request+0xf4/0x1940 [ 374.149913][T31164] ? rcu_lock_release+0x26/0x30 [ 374.154737][T31164] ? blk_queue_enter+0x715/0x740 [ 374.159652][T31164] generic_make_request+0x24b/0x980 [ 374.164825][T31164] submit_bio+0x254/0x540 [ 374.169134][T31164] ? iov_iter_npages+0x1ee/0x9a0 [ 374.174048][T31164] __blkdev_direct_IO+0x9d7/0x1340 [ 374.179144][T31164] ? aio_prep_rw+0x900/0x900 [ 374.183722][T31164] ? iov_iter_npages+0x1ee/0x9a0 [ 374.188648][T31164] blkdev_direct_IO+0xbe/0xd0 [ 374.193309][T31164] generic_file_read_iter+0x1ad3/0x21b0 [ 374.198840][T31164] ? fsnotify+0x12d1/0x13d0 [ 374.203333][T31164] ? __kasan_check_read+0x11/0x20 [ 374.208348][T31164] blkdev_read_iter+0x12e/0x140 [ 374.213172][T31164] aio_read+0x31f/0x400 [ 374.217306][T31164] io_submit_one+0x6eb/0x1970 [ 374.221964][T31164] ? __might_fault+0xf9/0x160 [ 374.226626][T31164] ? __might_fault+0xf9/0x160 [ 374.231305][T31164] __se_sys_io_submit+0x12f/0x240 [ 374.236399][T31164] __x64_sys_io_submit+0x7b/0x90 [ 374.241317][T31164] do_syscall_64+0xfe/0x140 [ 374.245812][T31164] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 374.251700][T31164] RIP: 0033:0x459829 [ 374.255569][T31164] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 374.275157][T31164] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 374.283551][T31164] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 374.291503][T31164] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 374.299448][T31164] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 374.307392][T31164] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 374.315336][T31164] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:45 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf, r0, &(0x7f0000000000), 0xfffffce4}]) [ 374.338410][T31173] gfs2: invalid mount option: dont_appraise [ 374.347170][T31173] gfs2: can't parse mount arguments 16:47:45 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:45 executing program 2 (fault-call:2 fault-nth:83): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:45 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:45 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x18100, r0, &(0x7f0000000000), 0xfffffce4}]) [ 374.555577][T31188] FAULT_INJECTION: forcing a failure. [ 374.555577][T31188] name failslab, interval 1, probability 0, space 0, times 0 [ 374.557365][T31195] gfs2: invalid mount option: dont_appraise [ 374.577326][T31195] gfs2: can't parse mount arguments [ 374.582774][T31188] CPU: 1 PID: 31188 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 374.590749][T31188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.600799][T31188] Call Trace: [ 374.604084][T31188] dump_stack+0x1d8/0x2f8 [ 374.608412][T31188] should_fail+0x555/0x770 [ 374.612837][T31188] __should_failslab+0x11a/0x160 [ 374.617818][T31188] ? mempool_alloc_slab+0x4d/0x70 [ 374.622849][T31188] should_failslab+0x9/0x20 [ 374.627353][T31188] kmem_cache_alloc+0x56/0x2e0 [ 374.632117][T31188] mempool_alloc_slab+0x4d/0x70 [ 374.636965][T31188] ? mempool_free+0x350/0x350 [ 374.641644][T31188] mempool_alloc+0x104/0x5e0 [ 374.646229][T31188] ? sbitmap_get+0x443/0x4f0 [ 374.650831][T31188] bio_alloc_bioset+0x1b0/0x5f0 [ 374.655764][T31188] ? trace_lock_release+0x135/0x1a0 [ 374.660961][T31188] ? ktime_get+0x5a/0x120 [ 374.665273][T31188] ? rcu_lock_release+0xd/0x30 [ 374.670084][T31188] bio_split+0x7b/0x360 [ 374.674218][T31188] __blk_queue_split+0x127e/0x1580 [ 374.679310][T31188] blk_mq_make_request+0xf4/0x1940 [ 374.684404][T31188] ? rcu_lock_release+0x26/0x30 [ 374.689229][T31188] ? blk_queue_enter+0x715/0x740 [ 374.694146][T31188] generic_make_request+0x24b/0x980 [ 374.699321][T31188] submit_bio+0x254/0x540 [ 374.703628][T31188] ? iov_iter_npages+0x1ee/0x9a0 [ 374.708539][T31188] __blkdev_direct_IO+0x9d7/0x1340 [ 374.713630][T31188] ? aio_prep_rw+0x900/0x900 [ 374.718213][T31188] ? iov_iter_npages+0x1ee/0x9a0 [ 374.723129][T31188] blkdev_direct_IO+0xbe/0xd0 [ 374.727792][T31188] generic_file_read_iter+0x1ad3/0x21b0 [ 374.733334][T31188] ? fsnotify+0x12d1/0x13d0 [ 374.737836][T31188] ? __kasan_check_read+0x11/0x20 [ 374.742837][T31188] blkdev_read_iter+0x12e/0x140 [ 374.747664][T31188] aio_read+0x31f/0x400 [ 374.751815][T31188] io_submit_one+0x6eb/0x1970 [ 374.756504][T31188] ? __might_fault+0xf9/0x160 [ 374.761162][T31188] ? __might_fault+0xf9/0x160 [ 374.765832][T31188] __se_sys_io_submit+0x12f/0x240 [ 374.770833][T31188] __x64_sys_io_submit+0x7b/0x90 [ 374.775746][T31188] do_syscall_64+0xfe/0x140 [ 374.780226][T31188] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 374.786089][T31188] RIP: 0033:0x459829 [ 374.789960][T31188] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 374.809552][T31188] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 374.817934][T31188] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 374.825879][T31188] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 374.833823][T31188] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 374.841765][T31188] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:46 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, 0x0, 0x0) shutdown(r0, 0x0) [ 374.849709][T31188] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:46 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:46 executing program 2 (fault-call:2 fault-nth:84): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, 0x0, 0x0) shutdown(r0, 0x0) [ 375.069618][T31221] gfs2: invalid mount option: dont_appraise [ 375.079740][T31220] FAULT_INJECTION: forcing a failure. [ 375.079740][T31220] name failslab, interval 1, probability 0, space 0, times 0 [ 375.108967][T31221] gfs2: can't parse mount arguments [ 375.120850][T31220] CPU: 1 PID: 31220 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 375.128836][T31220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.138865][T31220] Call Trace: [ 375.142130][T31220] dump_stack+0x1d8/0x2f8 [ 375.146440][T31220] should_fail+0x555/0x770 [ 375.150833][T31220] __should_failslab+0x11a/0x160 [ 375.155745][T31220] ? mempool_alloc_slab+0x4d/0x70 [ 375.160751][T31220] should_failslab+0x9/0x20 [ 375.165251][T31220] kmem_cache_alloc+0x56/0x2e0 [ 375.170021][T31220] mempool_alloc_slab+0x4d/0x70 [ 375.174861][T31220] ? mempool_free+0x350/0x350 [ 375.179512][T31220] mempool_alloc+0x104/0x5e0 [ 375.184079][T31220] ? sbitmap_get+0x443/0x4f0 [ 375.188670][T31220] bio_alloc_bioset+0x1b0/0x5f0 [ 375.193515][T31220] ? trace_lock_release+0x135/0x1a0 [ 375.198684][T31220] ? ktime_get+0x5a/0x120 [ 375.203005][T31220] ? rcu_lock_release+0xd/0x30 [ 375.207857][T31220] bio_split+0x7b/0x360 [ 375.211998][T31220] __blk_queue_split+0x127e/0x1580 [ 375.217097][T31220] blk_mq_make_request+0xf4/0x1940 [ 375.222180][T31220] ? rcu_lock_release+0x26/0x30 [ 375.227000][T31220] ? blk_queue_enter+0x715/0x740 [ 375.231914][T31220] generic_make_request+0x24b/0x980 [ 375.237099][T31220] submit_bio+0x254/0x540 [ 375.241400][T31220] ? iov_iter_npages+0x1ee/0x9a0 [ 375.246315][T31220] __blkdev_direct_IO+0x9d7/0x1340 [ 375.251401][T31220] ? aio_prep_rw+0x900/0x900 [ 375.255967][T31220] ? iov_iter_npages+0x1ee/0x9a0 [ 375.260893][T31220] blkdev_direct_IO+0xbe/0xd0 [ 375.265561][T31220] generic_file_read_iter+0x1ad3/0x21b0 [ 375.271078][T31220] ? fsnotify+0x12d1/0x13d0 [ 375.275559][T31220] ? __kasan_check_read+0x11/0x20 [ 375.280557][T31220] blkdev_read_iter+0x12e/0x140 [ 375.285392][T31220] aio_read+0x31f/0x400 [ 375.289539][T31220] io_submit_one+0x6eb/0x1970 [ 375.294191][T31220] ? __might_fault+0xf9/0x160 [ 375.298848][T31220] ? __might_fault+0xf9/0x160 [ 375.303501][T31220] __se_sys_io_submit+0x12f/0x240 [ 375.308499][T31220] __x64_sys_io_submit+0x7b/0x90 [ 375.313408][T31220] do_syscall_64+0xfe/0x140 [ 375.318478][T31220] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.324344][T31220] RIP: 0033:0x459829 [ 375.328215][T31220] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 375.347797][T31220] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 375.363957][T31220] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 16:47:46 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, 0x0, 0x0) shutdown(r0, 0x0) 16:47:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 375.371906][T31220] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 375.379937][T31220] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 375.387881][T31220] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 375.395824][T31220] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:46 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, &(0x7f00000005c0)=ANY=[], 0x0) shutdown(r0, 0x0) [ 375.468937][T31237] gfs2: invalid mount option: dont_appraise [ 375.475638][T31237] gfs2: can't parse mount arguments 16:47:46 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x100000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:46 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x6040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:46 executing program 2 (fault-call:2 fault-nth:85): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 375.670489][T31262] FAULT_INJECTION: forcing a failure. [ 375.670489][T31262] name failslab, interval 1, probability 0, space 0, times 0 [ 375.677510][T31258] gfs2: invalid mount option: dont_appraise [ 375.702865][T31262] CPU: 0 PID: 31262 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 375.710867][T31262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 16:47:46 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, &(0x7f00000005c0)=ANY=[], 0x0) shutdown(r0, 0x0) [ 375.720911][T31262] Call Trace: [ 375.724196][T31262] dump_stack+0x1d8/0x2f8 [ 375.728526][T31262] should_fail+0x555/0x770 [ 375.728736][T31258] gfs2: can't parse mount arguments [ 375.732934][T31262] __should_failslab+0x11a/0x160 [ 375.732946][T31262] ? mempool_alloc_slab+0x4d/0x70 [ 375.732957][T31262] should_failslab+0x9/0x20 [ 375.732968][T31262] kmem_cache_alloc+0x56/0x2e0 [ 375.732978][T31262] mempool_alloc_slab+0x4d/0x70 [ 375.732986][T31262] ? mempool_free+0x350/0x350 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x0, &(0x7f00000005c0)=ANY=[], 0x0) shutdown(r0, 0x0) [ 375.732995][T31262] mempool_alloc+0x104/0x5e0 [ 375.733003][T31262] ? sbitmap_get+0x443/0x4f0 [ 375.733022][T31262] bio_alloc_bioset+0x1b0/0x5f0 [ 375.780777][T31262] ? trace_lock_release+0x135/0x1a0 [ 375.785948][T31262] ? ktime_get+0x5a/0x120 [ 375.790262][T31262] ? rcu_lock_release+0xd/0x30 [ 375.795284][T31262] bio_split+0x7b/0x360 [ 375.799432][T31262] __blk_queue_split+0x127e/0x1580 [ 375.804550][T31262] blk_mq_make_request+0xf4/0x1940 [ 375.809652][T31262] ? rcu_lock_release+0x26/0x30 [ 375.814476][T31262] ? blk_queue_enter+0x715/0x740 [ 375.819390][T31262] generic_make_request+0x24b/0x980 [ 375.824564][T31262] submit_bio+0x254/0x540 [ 375.828874][T31262] ? iov_iter_npages+0x1ee/0x9a0 [ 375.833787][T31262] __blkdev_direct_IO+0x9d7/0x1340 [ 375.838892][T31262] ? aio_prep_rw+0x900/0x900 [ 375.843474][T31262] ? iov_iter_npages+0x1ee/0x9a0 [ 375.848385][T31262] blkdev_direct_IO+0xbe/0xd0 [ 375.853049][T31262] generic_file_read_iter+0x1ad3/0x21b0 [ 375.858586][T31262] ? fsnotify+0x12d1/0x13d0 [ 375.863070][T31262] ? __kasan_check_read+0x11/0x20 [ 375.868075][T31262] blkdev_read_iter+0x12e/0x140 [ 375.872917][T31262] aio_read+0x31f/0x400 [ 375.877065][T31262] io_submit_one+0x6eb/0x1970 [ 375.881715][T31262] ? __might_fault+0xf9/0x160 [ 375.886389][T31262] ? __might_fault+0xf9/0x160 [ 375.891058][T31262] __se_sys_io_submit+0x12f/0x240 [ 375.896085][T31262] __x64_sys_io_submit+0x7b/0x90 [ 375.901027][T31262] do_syscall_64+0xfe/0x140 [ 375.905520][T31262] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.911390][T31262] RIP: 0033:0x459829 [ 375.915267][T31262] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 375.934845][T31262] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 375.943229][T31262] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 375.951179][T31262] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 375.959136][T31262] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:47 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 375.967087][T31262] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 375.975048][T31262] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:47 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:47 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x171, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x200000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0) shutdown(r0, 0x0) 16:47:47 executing program 2 (fault-call:2 fault-nth:86): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 376.067221][T31279] gfs2: invalid mount option: dont_appraise [ 376.089501][T31279] gfs2: can't parse mount arguments 16:47:47 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0) shutdown(r0, 0x0) [ 376.242044][T31295] FAULT_INJECTION: forcing a failure. [ 376.242044][T31295] name failslab, interval 1, probability 0, space 0, times 0 [ 376.261250][T31295] CPU: 1 PID: 31295 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 376.269247][T31295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.279296][T31295] Call Trace: [ 376.282583][T31295] dump_stack+0x1d8/0x2f8 [ 376.286912][T31295] should_fail+0x555/0x770 [ 376.291326][T31295] __should_failslab+0x11a/0x160 [ 376.296260][T31295] ? mempool_alloc_slab+0x4d/0x70 [ 376.301281][T31295] should_failslab+0x9/0x20 [ 376.305868][T31295] kmem_cache_alloc+0x56/0x2e0 [ 376.310635][T31295] mempool_alloc_slab+0x4d/0x70 [ 376.315483][T31295] ? mempool_free+0x350/0x350 [ 376.320156][T31295] mempool_alloc+0x104/0x5e0 [ 376.324746][T31295] ? sbitmap_get+0x443/0x4f0 [ 376.329346][T31295] bio_alloc_bioset+0x1b0/0x5f0 [ 376.334180][T31295] ? trace_lock_release+0x135/0x1a0 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0) shutdown(r0, 0x0) [ 376.339353][T31295] ? ktime_get+0x5a/0x120 [ 376.343656][T31295] ? rcu_lock_release+0xd/0x30 [ 376.348394][T31295] bio_split+0x7b/0x360 [ 376.352524][T31295] __blk_queue_split+0x127e/0x1580 [ 376.357613][T31295] blk_mq_make_request+0xf4/0x1940 [ 376.362717][T31295] ? rcu_lock_release+0x26/0x30 [ 376.367550][T31295] ? blk_queue_enter+0x715/0x740 [ 376.372490][T31295] generic_make_request+0x24b/0x980 [ 376.377690][T31295] submit_bio+0x254/0x540 [ 376.382017][T31295] ? iov_iter_npages+0x1ee/0x9a0 [ 376.386955][T31295] __blkdev_direct_IO+0x9d7/0x1340 [ 376.392070][T31295] ? aio_prep_rw+0x900/0x900 [ 376.396654][T31295] ? iov_iter_npages+0x1ee/0x9a0 [ 376.401569][T31295] blkdev_direct_IO+0xbe/0xd0 [ 376.406219][T31295] generic_file_read_iter+0x1ad3/0x21b0 [ 376.411738][T31295] ? fsnotify+0x12d1/0x13d0 [ 376.416235][T31295] ? __kasan_check_read+0x11/0x20 [ 376.421239][T31295] blkdev_read_iter+0x12e/0x140 [ 376.426065][T31295] aio_read+0x31f/0x400 [ 376.430200][T31295] io_submit_one+0x6eb/0x1970 [ 376.434860][T31295] ? __might_fault+0xf9/0x160 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 376.439521][T31295] ? __might_fault+0xf9/0x160 [ 376.444200][T31295] __se_sys_io_submit+0x12f/0x240 [ 376.450676][T31295] __x64_sys_io_submit+0x7b/0x90 [ 376.455611][T31295] do_syscall_64+0xfe/0x140 [ 376.460122][T31295] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 376.466009][T31295] RIP: 0033:0x459829 [ 376.469898][T31295] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 376.489488][T31295] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 376.497869][T31295] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 376.505825][T31295] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 376.513777][T31295] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 376.521745][T31295] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 376.529711][T31295] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:47 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x810100, r0, &(0x7f0000000000), 0xfffffce4}]) [ 376.550745][T31305] gfs2: invalid mount option: dont_appraise [ 376.557261][T31305] gfs2: can't parse mount arguments 16:47:47 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x204, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:47 executing program 1: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:47 executing program 2 (fault-call:2 fault-nth:87): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x40000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:47 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 376.789902][T31340] gfs2: invalid mount option: dont_appraise [ 376.799031][T31339] FAULT_INJECTION: forcing a failure. [ 376.799031][T31339] name failslab, interval 1, probability 0, space 0, times 0 [ 376.805152][T31340] gfs2: can't parse mount arguments [ 376.817785][T31339] CPU: 0 PID: 31339 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 376.825765][T31339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.835814][T31339] Call Trace: 16:47:48 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 376.839103][T31339] dump_stack+0x1d8/0x2f8 [ 376.843430][T31339] should_fail+0x555/0x770 [ 376.847823][T31339] __should_failslab+0x11a/0x160 [ 376.852741][T31339] ? mempool_alloc_slab+0x4d/0x70 [ 376.857751][T31339] should_failslab+0x9/0x20 [ 376.862231][T31339] kmem_cache_alloc+0x56/0x2e0 [ 376.866973][T31339] mempool_alloc_slab+0x4d/0x70 [ 376.871806][T31339] ? mempool_free+0x350/0x350 [ 376.876485][T31339] mempool_alloc+0x104/0x5e0 [ 376.881055][T31339] ? sbitmap_get+0x443/0x4f0 [ 376.885641][T31339] bio_alloc_bioset+0x1b0/0x5f0 [ 376.890478][T31339] ? trace_lock_release+0x135/0x1a0 [ 376.895655][T31339] ? ktime_get+0x5a/0x120 [ 376.899970][T31339] ? rcu_lock_release+0xd/0x30 [ 376.904708][T31339] bio_split+0x7b/0x360 [ 376.908843][T31339] __blk_queue_split+0x127e/0x1580 [ 376.913946][T31339] blk_mq_make_request+0xf4/0x1940 [ 376.919134][T31339] ? rcu_lock_release+0x26/0x30 [ 376.923959][T31339] ? blk_queue_enter+0x715/0x740 [ 376.928886][T31339] generic_make_request+0x24b/0x980 [ 376.934079][T31339] submit_bio+0x254/0x540 [ 376.938384][T31339] ? iov_iter_npages+0x1ee/0x9a0 [ 376.943299][T31339] __blkdev_direct_IO+0x9d7/0x1340 [ 376.948407][T31339] ? aio_prep_rw+0x900/0x900 [ 376.952983][T31339] ? iov_iter_npages+0x1ee/0x9a0 [ 376.957905][T31339] blkdev_direct_IO+0xbe/0xd0 [ 376.962553][T31339] generic_file_read_iter+0x1ad3/0x21b0 [ 376.968068][T31339] ? fsnotify+0x12d1/0x13d0 [ 376.972557][T31339] ? __kasan_check_read+0x11/0x20 [ 376.977565][T31339] blkdev_read_iter+0x12e/0x140 [ 376.982391][T31339] aio_read+0x31f/0x400 [ 376.986524][T31339] io_submit_one+0x6eb/0x1970 [ 376.991187][T31339] ? __might_fault+0xf9/0x160 [ 376.995849][T31339] ? __might_fault+0xf9/0x160 [ 377.000501][T31339] __se_sys_io_submit+0x12f/0x240 [ 377.005500][T31339] __x64_sys_io_submit+0x7b/0x90 [ 377.010410][T31339] do_syscall_64+0xfe/0x140 [ 377.014891][T31339] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 377.020755][T31339] RIP: 0033:0x459829 [ 377.024642][T31339] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 377.044222][T31339] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 377.052611][T31339] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 377.060565][T31339] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 377.068508][T31339] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 377.076451][T31339] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:48 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 377.084394][T31339] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:48 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xab000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x300, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 1: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:48 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:48 executing program 2 (fault-call:2 fault-nth:88): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff600000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 377.269711][T31368] gfs2: invalid mount option: dont_appraise [ 377.283432][T31368] gfs2: can't parse mount arguments [ 377.310852][T31372] FAULT_INJECTION: forcing a failure. [ 377.310852][T31372] name failslab, interval 1, probability 0, space 0, times 0 [ 377.324161][T31372] CPU: 1 PID: 31372 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 377.332134][T31372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.342181][T31372] Call Trace: [ 377.345466][T31372] dump_stack+0x1d8/0x2f8 [ 377.349792][T31372] should_fail+0x555/0x770 [ 377.354205][T31372] __should_failslab+0x11a/0x160 [ 377.365843][T31372] ? mempool_alloc_slab+0x4d/0x70 [ 377.370855][T31372] should_failslab+0x9/0x20 [ 377.375330][T31372] kmem_cache_alloc+0x56/0x2e0 [ 377.380072][T31372] mempool_alloc_slab+0x4d/0x70 [ 377.384910][T31372] ? mempool_free+0x350/0x350 [ 377.389574][T31372] mempool_alloc+0x104/0x5e0 [ 377.394138][T31372] ? sbitmap_get+0x443/0x4f0 [ 377.398706][T31372] bio_alloc_bioset+0x1b0/0x5f0 [ 377.403528][T31372] ? trace_lock_release+0x135/0x1a0 [ 377.408708][T31372] ? ktime_get+0x5a/0x120 [ 377.413021][T31372] ? rcu_lock_release+0xd/0x30 [ 377.417759][T31372] bio_split+0x7b/0x360 [ 377.421898][T31372] __blk_queue_split+0x127e/0x1580 [ 377.427001][T31372] blk_mq_make_request+0xf4/0x1940 [ 377.432086][T31372] ? rcu_lock_release+0x26/0x30 [ 377.436908][T31372] ? blk_queue_enter+0x715/0x740 [ 377.441829][T31372] generic_make_request+0x24b/0x980 [ 377.447019][T31372] submit_bio+0x254/0x540 [ 377.451323][T31372] ? iov_iter_npages+0x1ee/0x9a0 [ 377.456235][T31372] __blkdev_direct_IO+0x9d7/0x1340 [ 377.461324][T31372] ? aio_prep_rw+0x900/0x900 [ 377.469796][T31372] ? iov_iter_npages+0x1ee/0x9a0 [ 377.474708][T31372] blkdev_direct_IO+0xbe/0xd0 [ 377.479362][T31372] generic_file_read_iter+0x1ad3/0x21b0 [ 377.484877][T31372] ? fsnotify+0x12d1/0x13d0 [ 377.489357][T31372] ? __kasan_check_read+0x11/0x20 [ 377.494393][T31372] blkdev_read_iter+0x12e/0x140 [ 377.499219][T31372] aio_read+0x31f/0x400 [ 377.503357][T31372] io_submit_one+0x6eb/0x1970 [ 377.508029][T31372] ? __might_fault+0xf9/0x160 [ 377.512703][T31372] ? __might_fault+0xf9/0x160 [ 377.517360][T31372] __se_sys_io_submit+0x12f/0x240 [ 377.522358][T31372] __x64_sys_io_submit+0x7b/0x90 [ 377.527272][T31372] do_syscall_64+0xfe/0x140 [ 377.531753][T31372] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 377.537616][T31372] RIP: 0033:0x459829 [ 377.541490][T31372] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 377.561126][T31372] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 377.569532][T31372] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 377.577481][T31372] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 377.585428][T31372] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 377.593391][T31372] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 377.601337][T31372] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:48 executing program 1: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:48 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:48 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3e80000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x402, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:48 executing program 2 (fault-call:2 fault-nth:89): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 377.708277][T31384] gfs2: invalid mount option: dont_appraise [ 377.714750][T31384] gfs2: can't parse mount arguments 16:47:49 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:49 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 377.837500][T31393] FAULT_INJECTION: forcing a failure. [ 377.837500][T31393] name failslab, interval 1, probability 0, space 0, times 0 [ 377.879540][T31393] CPU: 1 PID: 31393 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 377.887572][T31393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.897629][T31393] Call Trace: [ 377.900920][T31393] dump_stack+0x1d8/0x2f8 [ 377.905247][T31393] should_fail+0x555/0x770 [ 377.909663][T31393] __should_failslab+0x11a/0x160 [ 377.914596][T31393] ? mempool_alloc_slab+0x4d/0x70 [ 377.919621][T31393] should_failslab+0x9/0x20 [ 377.924125][T31393] kmem_cache_alloc+0x56/0x2e0 [ 377.928880][T31393] mempool_alloc_slab+0x4d/0x70 [ 377.933720][T31393] ? mempool_free+0x350/0x350 [ 377.938391][T31393] mempool_alloc+0x104/0x5e0 [ 377.942981][T31393] ? sbitmap_get+0x443/0x4f0 [ 377.947576][T31393] bio_alloc_bioset+0x1b0/0x5f0 [ 377.952420][T31393] ? trace_lock_release+0x135/0x1a0 [ 377.957609][T31393] ? ktime_get+0x5a/0x120 [ 377.961935][T31393] ? rcu_lock_release+0xd/0x30 [ 377.966699][T31393] bio_split+0x7b/0x360 [ 377.970851][T31393] __blk_queue_split+0x127e/0x1580 [ 377.970874][T31393] blk_mq_make_request+0xf4/0x1940 [ 377.970888][T31393] ? rcu_lock_release+0x26/0x30 [ 377.985915][T31393] ? blk_queue_enter+0x715/0x740 [ 377.990853][T31393] generic_make_request+0x24b/0x980 [ 377.990872][T31393] submit_bio+0x254/0x540 [ 378.000370][T31393] ? iov_iter_npages+0x1ee/0x9a0 [ 378.005311][T31393] __blkdev_direct_IO+0x9d7/0x1340 [ 378.010422][T31393] ? aio_prep_rw+0x900/0x900 [ 378.012217][T31404] gfs2: invalid mount option: dont_appraise [ 378.015010][T31393] ? iov_iter_npages+0x1ee/0x9a0 [ 378.015024][T31393] blkdev_direct_IO+0xbe/0xd0 [ 378.015038][T31393] generic_file_read_iter+0x1ad3/0x21b0 [ 378.021668][T31404] gfs2: can't parse mount arguments [ 378.025846][T31393] ? fsnotify+0x12d1/0x13d0 [ 378.025862][T31393] ? __kasan_check_read+0x11/0x20 [ 378.025878][T31393] blkdev_read_iter+0x12e/0x140 [ 378.055530][T31393] aio_read+0x31f/0x400 [ 378.059665][T31393] io_submit_one+0x6eb/0x1970 [ 378.064318][T31393] ? __might_fault+0xf9/0x160 [ 378.068978][T31393] ? __might_fault+0xf9/0x160 [ 378.073640][T31393] __se_sys_io_submit+0x12f/0x240 [ 378.078652][T31393] __x64_sys_io_submit+0x7b/0x90 [ 378.083574][T31393] do_syscall_64+0xfe/0x140 [ 378.088064][T31393] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 378.093941][T31393] RIP: 0033:0x459829 [ 378.097818][T31393] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 378.117397][T31393] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:49 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:49 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 378.125778][T31393] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 378.133722][T31393] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 378.141664][T31393] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 378.149606][T31393] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 378.157551][T31393] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:49 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:49 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:49 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x406, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:49 executing program 2 (fault-call:2 fault-nth:90): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:49 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:49 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 378.275090][T31418] gfs2: invalid mount option: dont_appraise [ 378.283496][T31418] gfs2: can't parse mount arguments 16:47:49 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 378.387848][T31430] FAULT_INJECTION: forcing a failure. [ 378.387848][T31430] name failslab, interval 1, probability 0, space 0, times 0 [ 378.426169][T31430] CPU: 1 PID: 31430 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 378.434188][T31430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.444239][T31430] Call Trace: [ 378.447532][T31430] dump_stack+0x1d8/0x2f8 [ 378.453363][T31430] should_fail+0x555/0x770 [ 378.457778][T31430] __should_failslab+0x11a/0x160 [ 378.462709][T31430] ? mempool_alloc_slab+0x4d/0x70 [ 378.467725][T31430] should_failslab+0x9/0x20 [ 378.472221][T31430] kmem_cache_alloc+0x56/0x2e0 [ 378.476980][T31430] mempool_alloc_slab+0x4d/0x70 [ 378.481820][T31430] ? mempool_free+0x350/0x350 [ 378.486489][T31430] mempool_alloc+0x104/0x5e0 [ 378.491079][T31430] bio_alloc_bioset+0x1b0/0x5f0 [ 378.495924][T31430] ? blk_mq_sched_insert_requests+0x463/0x540 [ 378.501986][T31430] bio_split+0x7b/0x360 [ 378.506139][T31430] __blk_queue_split+0x127e/0x1580 [ 378.511246][T31430] blk_mq_make_request+0xf4/0x1940 [ 378.516345][T31430] ? rcu_lock_release+0x26/0x30 [ 378.521189][T31430] ? blk_queue_enter+0x715/0x740 [ 378.521205][T31430] generic_make_request+0x24b/0x980 [ 378.521220][T31430] submit_bio+0x254/0x540 [ 378.521235][T31430] ? iov_iter_npages+0x1ee/0x9a0 [ 378.531334][T31430] __blkdev_direct_IO+0x9d7/0x1340 [ 378.531348][T31430] ? aio_prep_rw+0x900/0x900 [ 378.531362][T31430] ? iov_iter_npages+0x1ee/0x9a0 [ 378.546201][T31440] gfs2: invalid mount option: dont_appraise [ 378.550237][T31430] blkdev_direct_IO+0xbe/0xd0 [ 378.555825][T31440] gfs2: can't parse mount arguments [ 378.561020][T31430] generic_file_read_iter+0x1ad3/0x21b0 [ 378.561031][T31430] ? fsnotify+0x12d1/0x13d0 [ 378.561045][T31430] ? __kasan_check_read+0x11/0x20 [ 378.561063][T31430] blkdev_read_iter+0x12e/0x140 [ 378.590714][T31430] aio_read+0x31f/0x400 [ 378.594874][T31430] io_submit_one+0x6eb/0x1970 [ 378.599530][T31430] ? __might_fault+0xf9/0x160 [ 378.604184][T31430] ? __might_fault+0xf9/0x160 [ 378.608837][T31430] __se_sys_io_submit+0x12f/0x240 [ 378.613837][T31430] __x64_sys_io_submit+0x7b/0x90 [ 378.618751][T31430] do_syscall_64+0xfe/0x140 [ 378.623236][T31430] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 378.629114][T31430] RIP: 0033:0x459829 [ 378.632985][T31430] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 378.652563][T31430] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 378.660948][T31430] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 378.668896][T31430] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 378.676839][T31430] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:49 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 378.684783][T31430] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 378.692742][T31430] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:49 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x400000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:50 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x500, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 2 (fault-call:2 fault-nth:91): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 378.876948][T31455] gfs2: invalid mount option: dont_appraise 16:47:50 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x55555650c000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 378.934486][T31455] gfs2: can't parse mount arguments [ 378.963172][T31466] FAULT_INJECTION: forcing a failure. [ 378.963172][T31466] name failslab, interval 1, probability 0, space 0, times 0 [ 378.986713][T31466] CPU: 0 PID: 31466 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 378.994714][T31466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.004761][T31466] Call Trace: [ 379.008051][T31466] dump_stack+0x1d8/0x2f8 16:47:50 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a3"], 0x0) shutdown(r0, 0x0) 16:47:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 379.012377][T31466] should_fail+0x555/0x770 [ 379.016793][T31466] __should_failslab+0x11a/0x160 [ 379.021725][T31466] ? mempool_alloc_slab+0x4d/0x70 [ 379.026745][T31466] should_failslab+0x9/0x20 [ 379.031248][T31466] kmem_cache_alloc+0x56/0x2e0 [ 379.036007][T31466] mempool_alloc_slab+0x4d/0x70 [ 379.040872][T31466] ? mempool_free+0x350/0x350 [ 379.045541][T31466] mempool_alloc+0x104/0x5e0 [ 379.050133][T31466] ? sbitmap_get+0x443/0x4f0 [ 379.054733][T31466] bio_alloc_bioset+0x1b0/0x5f0 [ 379.059582][T31466] ? trace_lock_release+0x135/0x1a0 [ 379.064775][T31466] ? ktime_get+0x5a/0x120 [ 379.069102][T31466] ? rcu_lock_release+0xd/0x30 [ 379.073906][T31466] bio_split+0x7b/0x360 [ 379.078054][T31466] __blk_queue_split+0x127e/0x1580 [ 379.078078][T31466] blk_mq_make_request+0xf4/0x1940 [ 379.078087][T31466] ? rcu_lock_release+0x26/0x30 [ 379.078095][T31466] ? blk_queue_enter+0x715/0x740 [ 379.078110][T31466] generic_make_request+0x24b/0x980 [ 379.088311][T31466] submit_bio+0x254/0x540 [ 379.088322][T31466] ? iov_iter_npages+0x1ee/0x9a0 [ 379.088336][T31466] __blkdev_direct_IO+0x9d7/0x1340 [ 379.088351][T31466] ? aio_prep_rw+0x900/0x900 [ 379.088365][T31466] ? iov_iter_npages+0x1ee/0x9a0 [ 379.099263][T31479] gfs2: invalid mount option: dont_appraise [ 379.103281][T31466] blkdev_direct_IO+0xbe/0xd0 [ 379.103294][T31466] generic_file_read_iter+0x1ad3/0x21b0 [ 379.103303][T31466] ? fsnotify+0x12d1/0x13d0 [ 379.103317][T31466] ? __kasan_check_read+0x11/0x20 [ 379.103334][T31466] blkdev_read_iter+0x12e/0x140 [ 379.103345][T31466] aio_read+0x31f/0x400 16:47:50 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:50 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x604, r0, &(0x7f0000000000), 0xfffffce4}]) [ 379.103365][T31466] io_submit_one+0x6eb/0x1970 [ 379.108175][T31479] gfs2: can't parse mount arguments [ 379.112594][T31466] ? __might_fault+0xf9/0x160 [ 379.112606][T31466] ? __might_fault+0xf9/0x160 [ 379.112627][T31466] __se_sys_io_submit+0x12f/0x240 [ 379.112640][T31466] __x64_sys_io_submit+0x7b/0x90 [ 379.112653][T31466] do_syscall_64+0xfe/0x140 [ 379.112666][T31466] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.112674][T31466] RIP: 0033:0x459829 [ 379.112684][T31466] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 379.112690][T31466] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 379.112699][T31466] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 379.112704][T31466] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 379.112709][T31466] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:50 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x55555652e000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 379.112714][T31466] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 379.112719][T31466] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:50 executing program 2 (fault-call:2 fault-nth:92): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:50 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 379.456325][T31502] FAULT_INJECTION: forcing a failure. [ 379.456325][T31502] name failslab, interval 1, probability 0, space 0, times 0 [ 379.471258][T31502] CPU: 0 PID: 31502 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 379.479240][T31502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.479244][T31502] Call Trace: [ 379.479261][T31502] dump_stack+0x1d8/0x2f8 [ 379.479275][T31502] should_fail+0x555/0x770 [ 379.479289][T31502] __should_failslab+0x11a/0x160 [ 379.479305][T31502] ? mempool_alloc_slab+0x4d/0x70 [ 379.492614][T31502] should_failslab+0x9/0x20 [ 379.492626][T31502] kmem_cache_alloc+0x56/0x2e0 [ 379.492638][T31502] mempool_alloc_slab+0x4d/0x70 [ 379.492646][T31502] ? mempool_free+0x350/0x350 [ 379.492654][T31502] mempool_alloc+0x104/0x5e0 [ 379.492664][T31502] ? sbitmap_get+0x443/0x4f0 [ 379.492682][T31502] bio_alloc_bioset+0x1b0/0x5f0 [ 379.492692][T31502] ? trace_lock_release+0x135/0x1a0 [ 379.492701][T31502] ? ktime_get+0x5a/0x120 16:47:50 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457"], 0x0) shutdown(r0, 0x0) [ 379.492712][T31502] ? rcu_lock_release+0xd/0x30 [ 379.492725][T31502] bio_split+0x7b/0x360 [ 379.515925][T31501] gfs2: invalid mount option: dont_appraise [ 379.516328][T31502] __blk_queue_split+0x127e/0x1580 [ 379.521753][T31501] gfs2: can't parse mount arguments [ 379.525910][T31502] blk_mq_make_request+0xf4/0x1940 [ 379.525920][T31502] ? rcu_lock_release+0x26/0x30 [ 379.525929][T31502] ? blk_queue_enter+0x715/0x740 [ 379.525950][T31502] generic_make_request+0x24b/0x980 [ 379.599181][T31502] submit_bio+0x254/0x540 [ 379.603502][T31502] ? iov_iter_npages+0x1ee/0x9a0 [ 379.608419][T31502] __blkdev_direct_IO+0x9d7/0x1340 [ 379.613517][T31502] ? aio_prep_rw+0x900/0x900 [ 379.618103][T31502] ? iov_iter_npages+0x1ee/0x9a0 [ 379.623062][T31502] blkdev_direct_IO+0xbe/0xd0 [ 379.627715][T31502] generic_file_read_iter+0x1ad3/0x21b0 [ 379.633245][T31502] ? fsnotify+0x12d1/0x13d0 [ 379.637743][T31502] ? __kasan_check_read+0x11/0x20 [ 379.642744][T31502] blkdev_read_iter+0x12e/0x140 [ 379.647568][T31502] aio_read+0x31f/0x400 [ 379.651717][T31502] io_submit_one+0x6eb/0x1970 [ 379.656397][T31502] ? __might_fault+0xf9/0x160 [ 379.661079][T31502] ? __might_fault+0xf9/0x160 [ 379.665780][T31502] __se_sys_io_submit+0x12f/0x240 [ 379.670793][T31502] __x64_sys_io_submit+0x7b/0x90 [ 379.675707][T31502] do_syscall_64+0xfe/0x140 [ 379.680189][T31502] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.686062][T31502] RIP: 0033:0x459829 [ 379.689939][T31502] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 379.709525][T31502] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 379.717909][T31502] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 379.725861][T31502] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 379.733810][T31502] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 379.741763][T31502] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 379.749737][T31502] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:51 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x60ffffffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:51 executing program 2 (fault-call:2 fault-nth:93): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x700, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:51 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x760000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 379.900454][T31521] gfs2: invalid mount option: dont_appraise [ 379.932222][T31521] gfs2: can't parse mount arguments 16:47:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 379.956363][T31528] FAULT_INJECTION: forcing a failure. [ 379.956363][T31528] name failslab, interval 1, probability 0, space 0, times 0 [ 379.984451][T31528] CPU: 1 PID: 31528 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 379.992467][T31528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.002536][T31528] Call Trace: [ 380.005803][T31528] dump_stack+0x1d8/0x2f8 [ 380.010128][T31528] should_fail+0x555/0x770 [ 380.014545][T31528] __should_failslab+0x11a/0x160 [ 380.019466][T31528] ? mempool_alloc_slab+0x4d/0x70 [ 380.024503][T31528] should_failslab+0x9/0x20 [ 380.028997][T31528] kmem_cache_alloc+0x56/0x2e0 [ 380.033755][T31528] mempool_alloc_slab+0x4d/0x70 [ 380.038589][T31528] ? mempool_free+0x350/0x350 [ 380.043239][T31528] mempool_alloc+0x104/0x5e0 [ 380.047801][T31528] ? sbitmap_get+0x443/0x4f0 [ 380.052369][T31528] bio_alloc_bioset+0x1b0/0x5f0 [ 380.057193][T31528] ? trace_lock_release+0x135/0x1a0 [ 380.062367][T31528] ? ktime_get+0x5a/0x120 [ 380.066672][T31528] ? rcu_lock_release+0xd/0x30 [ 380.071425][T31528] bio_split+0x7b/0x360 [ 380.075592][T31528] __blk_queue_split+0x127e/0x1580 [ 380.080785][T31528] blk_mq_make_request+0xf4/0x1940 [ 380.085973][T31528] ? rcu_lock_release+0x26/0x30 [ 380.090794][T31528] ? blk_queue_enter+0x715/0x740 [ 380.095718][T31528] generic_make_request+0x24b/0x980 [ 380.100902][T31528] submit_bio+0x254/0x540 [ 380.105204][T31528] ? iov_iter_npages+0x1ee/0x9a0 [ 380.110120][T31528] __blkdev_direct_IO+0x9d7/0x1340 [ 380.115208][T31528] ? aio_prep_rw+0x900/0x900 [ 380.119771][T31528] ? iov_iter_npages+0x1ee/0x9a0 [ 380.124682][T31528] blkdev_direct_IO+0xbe/0xd0 [ 380.129350][T31528] generic_file_read_iter+0x1ad3/0x21b0 [ 380.134867][T31528] ? fsnotify+0x12d1/0x13d0 [ 380.139346][T31528] ? __kasan_check_read+0x11/0x20 [ 380.144343][T31528] blkdev_read_iter+0x12e/0x140 [ 380.149168][T31528] aio_read+0x31f/0x400 [ 380.153305][T31528] io_submit_one+0x6eb/0x1970 [ 380.157955][T31528] ? __might_fault+0xf9/0x160 [ 380.162620][T31528] ? __might_fault+0xf9/0x160 [ 380.167277][T31528] __se_sys_io_submit+0x12f/0x240 [ 380.172275][T31528] __x64_sys_io_submit+0x7b/0x90 [ 380.177187][T31528] do_syscall_64+0xfe/0x140 [ 380.181675][T31528] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 380.187550][T31528] RIP: 0033:0x459829 [ 380.191435][T31528] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 380.211012][T31528] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 380.219405][T31528] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 380.227350][T31528] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 380.235321][T31528] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 380.243282][T31528] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:51 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 380.251225][T31528] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:51 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x6040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf00, r0, &(0x7f0000000000), 0xfffffce4}]) [ 380.298185][T31541] gfs2: invalid mount option: dont_appraise [ 380.316128][T31541] gfs2: can't parse mount arguments 16:47:51 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7ffa90754000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:51 executing program 2 (fault-call:2 fault-nth:94): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 380.510576][T31561] gfs2: invalid mount option: dont_appraise [ 380.535179][T31561] gfs2: can't parse mount arguments [ 380.547123][T31564] FAULT_INJECTION: forcing a failure. [ 380.547123][T31564] name failslab, interval 1, probability 0, space 0, times 0 [ 380.565777][T31564] CPU: 1 PID: 31564 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 380.573775][T31564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.583822][T31564] Call Trace: [ 380.587108][T31564] dump_stack+0x1d8/0x2f8 [ 380.591438][T31564] should_fail+0x555/0x770 [ 380.595856][T31564] __should_failslab+0x11a/0x160 [ 380.600797][T31564] ? mempool_alloc_slab+0x4d/0x70 [ 380.605833][T31564] should_failslab+0x9/0x20 [ 380.610333][T31564] kmem_cache_alloc+0x56/0x2e0 16:47:51 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7ffffffff000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:51 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9"], 0x0) shutdown(r0, 0x0) [ 380.615092][T31564] mempool_alloc_slab+0x4d/0x70 [ 380.619936][T31564] ? mempool_free+0x350/0x350 [ 380.624608][T31564] mempool_alloc+0x104/0x5e0 [ 380.629223][T31564] ? sbitmap_get+0x443/0x4f0 [ 380.633818][T31564] bio_alloc_bioset+0x1b0/0x5f0 [ 380.638665][T31564] ? trace_lock_release+0x135/0x1a0 [ 380.643867][T31564] ? ktime_get+0x5a/0x120 [ 380.648197][T31564] ? rcu_lock_release+0xd/0x30 [ 380.652957][T31564] bio_split+0x7b/0x360 [ 380.657111][T31564] __blk_queue_split+0x127e/0x1580 [ 380.662230][T31564] blk_mq_make_request+0xf4/0x1940 [ 380.667330][T31564] ? rcu_lock_release+0x26/0x30 [ 380.672154][T31564] ? blk_queue_enter+0x715/0x740 [ 380.677065][T31564] generic_make_request+0x24b/0x980 [ 380.682346][T31564] submit_bio+0x254/0x540 [ 380.686651][T31564] ? iov_iter_npages+0x1ee/0x9a0 [ 380.691566][T31564] __blkdev_direct_IO+0x9d7/0x1340 [ 380.696654][T31564] ? aio_prep_rw+0x900/0x900 [ 380.701219][T31564] ? iov_iter_npages+0x1ee/0x9a0 [ 380.706154][T31564] blkdev_direct_IO+0xbe/0xd0 [ 380.710823][T31564] generic_file_read_iter+0x1ad3/0x21b0 [ 380.716340][T31564] ? fsnotify+0x12d1/0x13d0 [ 380.720834][T31564] ? __kasan_check_read+0x11/0x20 [ 380.725841][T31564] blkdev_read_iter+0x12e/0x140 [ 380.730684][T31564] aio_read+0x31f/0x400 [ 380.734837][T31564] io_submit_one+0x6eb/0x1970 [ 380.739492][T31564] ? __might_fault+0xf9/0x160 [ 380.744161][T31564] ? __might_fault+0xf9/0x160 [ 380.748819][T31564] __se_sys_io_submit+0x12f/0x240 [ 380.753836][T31564] __x64_sys_io_submit+0x7b/0x90 [ 380.758748][T31564] do_syscall_64+0xfe/0x140 [ 380.763229][T31564] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 380.769094][T31564] RIP: 0033:0x459829 [ 380.772960][T31564] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 380.792536][T31564] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 380.800919][T31564] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 380.808863][T31564] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 380.816808][T31564] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 380.824753][T31564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 380.832695][T31564] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:52 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 2 (fault-call:2 fault-nth:95): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 380.910093][T31579] gfs2: invalid mount option: dont_appraise [ 380.927993][T31579] gfs2: can't parse mount arguments 16:47:52 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:52 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x960000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 381.077643][T31588] FAULT_INJECTION: forcing a failure. [ 381.077643][T31588] name failslab, interval 1, probability 0, space 0, times 0 [ 381.098301][T31598] gfs2: invalid mount option: dont_appraise [ 381.106917][T31598] gfs2: can't parse mount arguments [ 381.112417][T31588] CPU: 0 PID: 31588 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 16:47:52 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 381.120396][T31588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.130442][T31588] Call Trace: [ 381.133730][T31588] dump_stack+0x1d8/0x2f8 [ 381.138263][T31588] should_fail+0x555/0x770 [ 381.142668][T31588] __should_failslab+0x11a/0x160 [ 381.147594][T31588] ? mempool_alloc_slab+0x4d/0x70 [ 381.152594][T31588] should_failslab+0x9/0x20 [ 381.157073][T31588] kmem_cache_alloc+0x56/0x2e0 [ 381.161813][T31588] mempool_alloc_slab+0x4d/0x70 [ 381.166637][T31588] ? mempool_free+0x350/0x350 [ 381.171289][T31588] mempool_alloc+0x104/0x5e0 [ 381.175851][T31588] ? sbitmap_get+0x443/0x4f0 [ 381.180431][T31588] bio_alloc_bioset+0x1b0/0x5f0 [ 381.185264][T31588] ? trace_lock_release+0x135/0x1a0 [ 381.190437][T31588] ? ktime_get+0x5a/0x120 [ 381.194741][T31588] ? rcu_lock_release+0xd/0x30 [ 381.199478][T31588] bio_split+0x7b/0x360 [ 381.203610][T31588] __blk_queue_split+0x127e/0x1580 [ 381.208716][T31588] blk_mq_make_request+0xf4/0x1940 [ 381.213806][T31588] ? rcu_lock_release+0x26/0x30 [ 381.218656][T31588] ? blk_queue_enter+0x715/0x740 [ 381.223580][T31588] generic_make_request+0x24b/0x980 [ 381.228768][T31588] submit_bio+0x254/0x540 [ 381.233083][T31588] ? iov_iter_npages+0x1ee/0x9a0 [ 381.237997][T31588] __blkdev_direct_IO+0x9d7/0x1340 [ 381.243084][T31588] ? aio_prep_rw+0x900/0x900 [ 381.247674][T31588] ? iov_iter_npages+0x1ee/0x9a0 [ 381.252600][T31588] blkdev_direct_IO+0xbe/0xd0 [ 381.257263][T31588] generic_file_read_iter+0x1ad3/0x21b0 [ 381.262806][T31588] ? fsnotify+0x12d1/0x13d0 [ 381.267285][T31588] ? __kasan_check_read+0x11/0x20 [ 381.272284][T31588] blkdev_read_iter+0x12e/0x140 [ 381.277109][T31588] aio_read+0x31f/0x400 [ 381.281258][T31588] io_submit_one+0x6eb/0x1970 [ 381.285923][T31588] ? __might_fault+0xf9/0x160 [ 381.290598][T31588] ? __might_fault+0xf9/0x160 [ 381.295253][T31588] __se_sys_io_submit+0x12f/0x240 [ 381.300251][T31588] __x64_sys_io_submit+0x7b/0x90 [ 381.305171][T31588] do_syscall_64+0xfe/0x140 [ 381.309650][T31588] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 381.315534][T31588] RIP: 0033:0x459829 [ 381.319406][T31588] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 381.338992][T31588] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 381.352314][T31588] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 381.360273][T31588] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 381.368392][T31588] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 16:47:52 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x407590fa7f0000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 381.376335][T31588] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 381.384299][T31588] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)) syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:52 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3f00, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 2 (fault-call:2 fault-nth:96): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:52 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9"], 0x0) shutdown(r0, 0x0) 16:47:52 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x70710000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 381.530466][T31616] gfs2: invalid mount option: dont_appraise [ 381.619433][T31616] gfs2: can't parse mount arguments [ 381.633154][T31626] FAULT_INJECTION: forcing a failure. [ 381.633154][T31626] name failslab, interval 1, probability 0, space 0, times 0 [ 381.647251][T31626] CPU: 0 PID: 31626 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 381.655245][T31626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.665291][T31626] Call Trace: [ 381.668560][T31626] dump_stack+0x1d8/0x2f8 [ 381.672869][T31626] should_fail+0x555/0x770 [ 381.677265][T31626] __should_failslab+0x11a/0x160 [ 381.682186][T31626] ? mempool_alloc_slab+0x4d/0x70 [ 381.687195][T31626] should_failslab+0x9/0x20 [ 381.691671][T31626] kmem_cache_alloc+0x56/0x2e0 [ 381.696410][T31626] mempool_alloc_slab+0x4d/0x70 [ 381.701240][T31626] ? mempool_free+0x350/0x350 [ 381.705896][T31626] mempool_alloc+0x104/0x5e0 [ 381.710456][T31626] ? sbitmap_get+0x443/0x4f0 [ 381.715027][T31626] bio_alloc_bioset+0x1b0/0x5f0 [ 381.719872][T31626] ? trace_lock_release+0x135/0x1a0 [ 381.725044][T31626] ? ktime_get+0x5a/0x120 [ 381.729348][T31626] ? rcu_lock_release+0xd/0x30 [ 381.734098][T31626] bio_split+0x7b/0x360 [ 381.738263][T31626] __blk_queue_split+0x127e/0x1580 [ 381.743375][T31626] blk_mq_make_request+0xf4/0x1940 [ 381.748468][T31626] ? rcu_lock_release+0x26/0x30 [ 381.753302][T31626] ? blk_queue_enter+0x715/0x740 [ 381.758225][T31626] generic_make_request+0x24b/0x980 [ 381.763411][T31626] submit_bio+0x254/0x540 [ 381.767727][T31626] ? iov_iter_npages+0x1ee/0x9a0 [ 381.772651][T31626] __blkdev_direct_IO+0x9d7/0x1340 [ 381.777761][T31626] ? aio_prep_rw+0x900/0x900 [ 381.782335][T31626] ? iov_iter_npages+0x1ee/0x9a0 [ 381.787259][T31626] blkdev_direct_IO+0xbe/0xd0 [ 381.791918][T31626] generic_file_read_iter+0x1ad3/0x21b0 [ 381.797442][T31626] ? fsnotify+0x12d1/0x13d0 [ 381.801933][T31626] ? __kasan_check_read+0x11/0x20 [ 381.806946][T31626] blkdev_read_iter+0x12e/0x140 [ 381.811798][T31626] aio_read+0x31f/0x400 [ 381.815948][T31626] io_submit_one+0x6eb/0x1970 [ 381.820607][T31626] ? __might_fault+0xf9/0x160 [ 381.825284][T31626] ? __might_fault+0xf9/0x160 [ 381.829955][T31626] __se_sys_io_submit+0x12f/0x240 [ 381.834969][T31626] __x64_sys_io_submit+0x7b/0x90 [ 381.839891][T31626] do_syscall_64+0xfe/0x140 [ 381.844406][T31626] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 381.850293][T31626] RIP: 0033:0x459829 [ 381.854171][T31626] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 381.873757][T31626] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 381.882148][T31626] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 381.890103][T31626] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 381.898159][T31626] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 381.906114][T31626] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:53 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:53 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 381.914069][T31626] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:53 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xc0505655550000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 381.976562][T31640] gfs2: invalid mount option: dont_appraise [ 381.997978][T31640] gfs2: can't parse mount arguments 16:47:53 executing program 2 (fault-call:2 fault-nth:97): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:53 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) 16:47:53 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xe0525655550000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 382.202573][T31663] gfs2: invalid mount option: dont_appraise [ 382.208572][T31663] gfs2: can't parse mount arguments [ 382.221693][T31661] FAULT_INJECTION: forcing a failure. [ 382.221693][T31661] name failslab, interval 1, probability 0, space 0, times 0 [ 382.234381][T31661] CPU: 1 PID: 31661 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 382.242356][T31661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.252422][T31661] Call Trace: [ 382.255709][T31661] dump_stack+0x1d8/0x2f8 [ 382.260041][T31661] should_fail+0x555/0x770 [ 382.264453][T31661] __should_failslab+0x11a/0x160 [ 382.264465][T31661] ? mempool_alloc_slab+0x4d/0x70 [ 382.264480][T31661] should_failslab+0x9/0x20 [ 382.274407][T31661] kmem_cache_alloc+0x56/0x2e0 [ 382.274418][T31661] mempool_alloc_slab+0x4d/0x70 [ 382.274425][T31661] ? mempool_free+0x350/0x350 [ 382.274432][T31661] mempool_alloc+0x104/0x5e0 [ 382.274441][T31661] ? sbitmap_get+0x443/0x4f0 [ 382.274459][T31661] bio_alloc_bioset+0x1b0/0x5f0 [ 382.274473][T31661] ? trace_lock_release+0x135/0x1a0 [ 382.288531][T31661] ? ktime_get+0x5a/0x120 [ 382.288544][T31661] ? rcu_lock_release+0xd/0x30 [ 382.288559][T31661] bio_split+0x7b/0x360 [ 382.297789][T31661] __blk_queue_split+0x127e/0x1580 [ 382.297812][T31661] blk_mq_make_request+0xf4/0x1940 [ 382.335851][T31661] ? rcu_lock_release+0x26/0x30 [ 382.340702][T31661] ? blk_queue_enter+0x715/0x740 [ 382.345655][T31661] generic_make_request+0x24b/0x980 [ 382.350857][T31661] submit_bio+0x254/0x540 [ 382.355188][T31661] ? iov_iter_npages+0x1ee/0x9a0 [ 382.360117][T31661] __blkdev_direct_IO+0x9d7/0x1340 [ 382.365208][T31661] ? aio_prep_rw+0x900/0x900 [ 382.369879][T31661] ? iov_iter_npages+0x1ee/0x9a0 [ 382.374792][T31661] blkdev_direct_IO+0xbe/0xd0 [ 382.379445][T31661] generic_file_read_iter+0x1ad3/0x21b0 [ 382.384962][T31661] ? fsnotify+0x12d1/0x13d0 [ 382.389440][T31661] ? __kasan_check_read+0x11/0x20 [ 382.394441][T31661] blkdev_read_iter+0x12e/0x140 [ 382.399265][T31661] aio_read+0x31f/0x400 [ 382.403416][T31661] io_submit_one+0x6eb/0x1970 [ 382.408087][T31661] ? __might_fault+0xf9/0x160 [ 382.412737][T31661] ? __might_fault+0xf9/0x160 [ 382.417393][T31661] __se_sys_io_submit+0x12f/0x240 [ 382.422394][T31661] __x64_sys_io_submit+0x7b/0x90 [ 382.427307][T31661] do_syscall_64+0xfe/0x140 [ 382.431784][T31661] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.437647][T31661] RIP: 0033:0x459829 [ 382.441534][T31661] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 382.461113][T31661] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 382.469497][T31661] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 382.477443][T31661] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 382.485399][T31661] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 382.493355][T31661] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 16:47:53 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:53 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3f000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x0) [ 382.501300][T31661] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:53 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7101, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xe0700000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(0xffffffffffffffff, 0x0) [ 382.553246][T31676] gfs2: invalid mount option: dont_appraise [ 382.559301][T31676] gfs2: can't parse mount arguments 16:47:53 executing program 2 (fault-call:2 fault-nth:98): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:53 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x40000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:53 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf0500000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 382.724045][T31697] gfs2: invalid mount option: dont_appraise [ 382.745599][T31694] FAULT_INJECTION: forcing a failure. [ 382.745599][T31694] name failslab, interval 1, probability 0, space 0, times 0 [ 382.775954][T31697] gfs2: can't parse mount arguments [ 382.794863][T31694] CPU: 1 PID: 31694 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 382.802972][T31694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.813023][T31694] Call Trace: [ 382.816317][T31694] dump_stack+0x1d8/0x2f8 [ 382.820661][T31694] should_fail+0x555/0x770 [ 382.825077][T31694] __should_failslab+0x11a/0x160 [ 382.830008][T31694] ? mempool_alloc_slab+0x4d/0x70 [ 382.835007][T31694] should_failslab+0x9/0x20 [ 382.839581][T31694] kmem_cache_alloc+0x56/0x2e0 [ 382.844329][T31694] mempool_alloc_slab+0x4d/0x70 [ 382.849206][T31694] ? mempool_free+0x350/0x350 [ 382.853890][T31694] mempool_alloc+0x104/0x5e0 [ 382.858452][T31694] ? sbitmap_get+0x443/0x4f0 [ 382.863018][T31694] bio_alloc_bioset+0x1b0/0x5f0 [ 382.867862][T31694] ? trace_lock_release+0x135/0x1a0 [ 382.873032][T31694] ? ktime_get+0x5a/0x120 [ 382.877333][T31694] ? rcu_lock_release+0xd/0x30 [ 382.882086][T31694] bio_split+0x7b/0x360 [ 382.886232][T31694] __blk_queue_split+0x127e/0x1580 [ 382.891322][T31694] blk_mq_make_request+0xf4/0x1940 [ 382.896425][T31694] ? rcu_lock_release+0x26/0x30 [ 382.901276][T31694] ? blk_queue_enter+0x715/0x740 [ 382.906188][T31694] generic_make_request+0x24b/0x980 [ 382.911360][T31694] submit_bio+0x254/0x540 [ 382.915660][T31694] ? iov_iter_npages+0x1ee/0x9a0 [ 382.920574][T31694] __blkdev_direct_IO+0x9d7/0x1340 [ 382.925662][T31694] ? aio_prep_rw+0x900/0x900 [ 382.930229][T31694] ? iov_iter_npages+0x1ee/0x9a0 [ 382.935144][T31694] blkdev_direct_IO+0xbe/0xd0 [ 382.939802][T31694] generic_file_read_iter+0x1ad3/0x21b0 [ 382.945340][T31694] ? fsnotify+0x12d1/0x13d0 [ 382.949835][T31694] ? __kasan_check_read+0x11/0x20 [ 382.954838][T31694] blkdev_read_iter+0x12e/0x140 [ 382.959675][T31694] aio_read+0x31f/0x400 [ 382.963825][T31694] io_submit_one+0x6eb/0x1970 [ 382.968499][T31694] ? __might_fault+0xf9/0x160 [ 382.973162][T31694] ? __might_fault+0xf9/0x160 [ 382.977818][T31694] __se_sys_io_submit+0x12f/0x240 [ 382.982817][T31694] __x64_sys_io_submit+0x7b/0x90 [ 382.987729][T31694] do_syscall_64+0xfe/0x140 [ 382.992207][T31694] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.998072][T31694] RIP: 0033:0x459829 [ 383.001942][T31694] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 16:47:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) [ 383.021523][T31694] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 383.029911][T31694] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 383.037864][T31694] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 383.045811][T31694] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 383.053790][T31694] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 383.061753][T31694] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:54 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:54 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf0ffffff7f0000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.139112][T31715] gfs2: invalid mount option: dont_appraise 16:47:54 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7fffefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:54 executing program 2 (fault-call:2 fault-nth:99): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.191201][T31715] gfs2: can't parse mount arguments 16:47:54 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x100000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:54 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff01, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.369412][T31729] FAULT_INJECTION: forcing a failure. [ 383.369412][T31729] name failslab, interval 1, probability 0, space 0, times 0 [ 383.382473][T31729] CPU: 1 PID: 31729 Comm: syz-executor.2 Not tainted 5.3.0-rc3+ #72 [ 383.390496][T31729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.400549][T31729] Call Trace: [ 383.403846][T31729] dump_stack+0x1d8/0x2f8 [ 383.408178][T31729] should_fail+0x555/0x770 [ 383.412594][T31729] __should_failslab+0x11a/0x160 [ 383.417533][T31729] ? mempool_alloc_slab+0x4d/0x70 [ 383.422553][T31729] should_failslab+0x9/0x20 [ 383.427052][T31729] kmem_cache_alloc+0x56/0x2e0 [ 383.431811][T31729] mempool_alloc_slab+0x4d/0x70 [ 383.436659][T31729] ? mempool_free+0x350/0x350 [ 383.441324][T31729] mempool_alloc+0x104/0x5e0 [ 383.445933][T31729] ? sbitmap_get+0x443/0x4f0 [ 383.450524][T31729] bio_alloc_bioset+0x1b0/0x5f0 [ 383.455371][T31729] ? trace_lock_release+0x135/0x1a0 [ 383.460563][T31729] ? ktime_get+0x5a/0x120 [ 383.464887][T31729] ? rcu_lock_release+0xd/0x30 [ 383.469656][T31729] bio_split+0x7b/0x360 [ 383.473843][T31729] __blk_queue_split+0x127e/0x1580 [ 383.478964][T31729] blk_mq_make_request+0xf4/0x1940 [ 383.484071][T31729] ? rcu_lock_release+0x26/0x30 [ 383.488935][T31729] ? blk_queue_enter+0x715/0x740 [ 383.493863][T31729] generic_make_request+0x24b/0x980 [ 383.499038][T31729] submit_bio+0x254/0x540 [ 383.503351][T31729] ? iov_iter_npages+0x1ee/0x9a0 [ 383.508275][T31729] __blkdev_direct_IO+0x9d7/0x1340 [ 383.513374][T31729] ? aio_prep_rw+0x900/0x900 [ 383.517945][T31729] ? iov_iter_npages+0x1ee/0x9a0 [ 383.522858][T31729] blkdev_direct_IO+0xbe/0xd0 [ 383.527508][T31729] generic_file_read_iter+0x1ad3/0x21b0 [ 383.533025][T31729] ? fsnotify+0x12d1/0x13d0 [ 383.537503][T31729] ? __kasan_check_read+0x11/0x20 [ 383.542501][T31729] blkdev_read_iter+0x12e/0x140 [ 383.547327][T31729] aio_read+0x31f/0x400 [ 383.551462][T31729] io_submit_one+0x6eb/0x1970 [ 383.556114][T31729] ? __might_fault+0xf9/0x160 [ 383.560769][T31729] ? __might_fault+0xf9/0x160 [ 383.565421][T31729] __se_sys_io_submit+0x12f/0x240 [ 383.570422][T31729] __x64_sys_io_submit+0x7b/0x90 [ 383.575334][T31729] do_syscall_64+0xfe/0x140 [ 383.579812][T31729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 383.585711][T31729] RIP: 0033:0x459829 [ 383.589579][T31729] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 383.609224][T31729] RSP: 002b:00007f2620a29c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 16:47:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47b") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:54 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e200033fa8b985185790478d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb10000000001000000fb96cc7c6fe4e24d1fcafff87429e50b32881731afab69cc3712c37ed00cdf3168dbad41c33a734a2707e37776c36ce6bb1cb951f40243a124126582dfcb1a6a5a107525525a4045cb01eed959503419872abf735592c54e0611bf5a64f64b200a4fbdba13fe3484a9c63fb3fe28d441783d6d9831402bf947e3ab704b25ad2b3bed575bcd2ed5ce33ce01683602a41955fd3d2cca030000003c1fba6fd00a83116b41f928d6f2f737312a348eec16bb58fc43076ca2fbca2dc2d4ae2fc6a89edc5f81abb9638b453d4bd191ee316df9a78be00ce2b0d2c7fa0ccd306bac15a3bb6fcc6036bd5d8baf6966559c26b3f970f391a5611a0ca1067f12a319069be8f83605d80185fd9d8fd469b6e35b6f9b024677a2385ec108bdf3f5970cadd03dd2a7a4d5c9215f31bddef54d599bd42f708e239db52ffe6926b57447b53e36357569531861b42a61453772b2c52811a74307c255de6acef7132e49c59b1942266c988051caf595ba17127393c5e196549cf24cf1f40aed04995d47c34977813cf1a289518683651f2ee4c9415266867e0000000097957ba053cf6b07c905e486f5cb2a320a2c6e2638fcbe2d614f9bf277e077672756212ded0e8b2b6f37f234a2c38c63486c460b5700eec6c0628ff4f145dcd17df877668a7fbc62e5008bf9d3ae04cd4a705fa770a370766a818561a5590457261c2c0da9e7b9856b"], 0x0) shutdown(0xffffffffffffffff, 0x0) 16:47:54 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x200000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.617667][T31729] RAX: ffffffffffffffda RBX: 00007f2620a29c90 RCX: 0000000000459829 [ 383.625635][T31729] RDX: 0000000020001540 RSI: 2000000000000246 RDI: 00007f2620a09000 [ 383.633584][T31729] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 383.641532][T31729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2620a2a6d4 [ 383.649480][T31729] R13: 00000000004c0c19 R14: 00000000004d3c40 R15: 0000000000000004 16:47:54 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xb9010000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:54 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:54 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.698060][T31743] gfs2: invalid mount option: dont_appraise [ 383.731204][T31743] gfs2: can't parse mount arguments 16:47:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf0") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:55 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x204000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffff, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.866564][T31765] gfs2: invalid mount option: dont_appraise [ 383.879655][T31765] gfs2: can't parse mount arguments 16:47:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf0") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:55 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x300000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x18100, r0, &(0x7f0000000000), 0xfffffce4}]) [ 383.988410][T31779] gfs2: invalid mount option: dont_appraise [ 383.995048][T31779] gfs2: can't parse mount arguments 16:47:55 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xf, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 0: r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000009400)={0xa, 0x10000000004e20}, 0x1c) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) syz_emit_ethernet(0x83, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0) shutdown(0xffffffffffffffff, 0x0) 16:47:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf0") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:55 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff010000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x400000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 384.518784][T31801] gfs2: invalid mount option: dont_appraise [ 384.532827][T31801] gfs2: can't parse mount arguments 16:47:55 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x500000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:55 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x100000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefff7f, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:55 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x604000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x700000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:56 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 0: r0 = memfd_create(&(0x7f00000000c0)='\x00'/10, 0x0) mknod$loop(0x0, 0x7be, 0xffffffffffffffff) write$binfmt_script(r0, &(0x7f00000005c0)={'#! ', './file0', [{}]}, 0xc) write$cgroup_type(0xffffffffffffffff, &(0x7f00000009c0)='threaded\x00', 0xfffffc47) clone(0x8020002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 16:47:56 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x200000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 0: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ppp\x00', 0x101002, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000440)=""/246) r1 = memfd_create(&(0x7f0000000280)='^\x00', 0x0) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f00000003c0)=0x17642c4) pwritev(r1, &(0x7f0000f50f90)=[{&(0x7f0000000100)="a8", 0x1}], 0x1, 0x0) sendfile(r0, r1, 0x0, 0x8001) 16:47:56 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x800000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:56 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x810100, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf00000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:56 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:56 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:57 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7fffffffffffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x10, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3e80000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8000000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:57 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xab00000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1f6, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 386.287392][T31977] gfs2: not a GFS2 filesystem 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffff00000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x204, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 386.511731][T32002] gfs2: not a GFS2 filesystem 16:47:57 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffffff600000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 16:47:57 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x300, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:57 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 386.669536][T32022] gfs2: not a GFS2 filesystem 16:47:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}], [{@dont_appraise='dont_appraise'}]}) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffffffffff7f, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x402, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 386.856045][T32040] gfs2: invalid mount option: dont_appraise [ 386.910922][T32040] gfs2: can't parse mount arguments 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x406, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0x7ffff000}]) 16:47:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}], [{@dont_appraise='dont_appraise'}]}) 16:47:58 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x500, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 387.107967][T32071] gfs2: invalid mount option: dont_appraise 16:47:58 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x2}]) [ 387.155223][T32071] gfs2: can't parse mount arguments 16:47:58 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x604, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}], [{@dont_appraise='dont_appraise'}]}) 16:47:58 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x5000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x3}]) 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x700, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 0: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 387.395865][T32104] gfs2: invalid mount option: dont_appraise [ 387.434698][T32104] gfs2: can't parse mount arguments 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x4}]) 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:58 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x6040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 0: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x5}]) [ 387.599151][T32135] gfs2: invalid mount option: dont_appraise [ 387.618209][T32135] gfs2: can't parse mount arguments 16:47:58 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:58 executing program 0: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:58 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x7}]) 16:47:58 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x81010000000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 387.770206][T32155] gfs2: invalid mount option: dont_appraise [ 387.798091][T32155] gfs2: can't parse mount arguments 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f00, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@meta='meta'}], [{@dont_appraise='dont_appraise'}]}) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x8}]) 16:47:59 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xf}]) [ 388.010379][T32185] gfs2: invalid mount option: dont_appraise [ 388.022308][T32185] gfs2: can't parse mount arguments 16:47:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfe47bf070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={[{@rgrplvb='rgrplvb'}, {@meta='meta'}]}) 16:47:59 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x100000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xab}]) 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xefff, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 388.223230][T32203] gfs2: not a GFS2 filesystem 16:47:59 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x200000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 1: r0 = socket$inet6(0xa, 0x4001000800000002, 0x0) perf_event_open(&(0x7f000001d000)={0x20000000000005, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f00000000c0)={'bridge0\x00', &(0x7f0000000000)=@ethtool_ringparam}) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x204}]) 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf601, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3f000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:59 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x2a, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00c@@\x00'/26, @ANYPTR, @ANYPTR=&(0x7f0000000240)=ANY=[]], 0x0, 0x0, 0x0}) 16:47:59 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x204000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xff01, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x300}]) 16:47:59 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008000d00f8ffffff08001b0000000000"], 0x3cb}}, 0x0) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:59 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x402}]) 16:47:59 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xffef, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) [ 388.651263][T32262] gretap0: refused to change device tx_queue_len [ 388.658117][T32262] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. 16:47:59 executing program 1: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) creat(&(0x7f0000000680)='./bus\x00', 0x0) creat(&(0x7f0000000180)='./bus\x00', 0x0) open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000040)={0x505e36917dcb0925, @loopback, 0x0, 0x0, 'lc\x00'}, 0x2c) r2 = syz_open_pts(r0, 0x88d82) write(r2, &(0x7f0000000000), 0xffffff86) 16:47:59 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:47:59 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x40000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:47:59 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x300000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x406}]) [ 388.785613][ T26] audit: type=1804 audit(1565542080.009:34): pid=32276 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.1" name="bus" dev="sda1" ino=17313 res=1 16:48:00 executing program 1: 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x18100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 1: 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x500}]) 16:48:00 executing program 1: 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x71010000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x400000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x20000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 1: 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x604}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 1: 16:48:00 executing program 1: 16:48:00 executing program 1: chdir(0x0) symlink(&(0x7f0000000140)='..', &(0x7f00000000c0)='./file0\x00') r0 = socket(0x8, 0x6, 0x10001) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000016c0)=ANY=[@ANYRES32=0x0, @ANYBLOB], &(0x7f0000000000)=0x2) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={0x0, @loopback}, &(0x7f0000000100)=0xc) openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SG_IO(r3, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, 0x0) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, 0x0, 0x0) tkill(0x0, 0x1000000000016) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040)={0x0, 0x4, 0xffffffffffffffff, 0x2000000000000000, r1}, 0x10) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x700}]) 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x100000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7fffefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x500000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 1: chdir(0x0) symlink(&(0x7f0000000140)='..', &(0x7f00000000c0)='./file0\x00') r0 = socket(0x8, 0x6, 0x10001) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000016c0)=ANY=[@ANYRES32=0x0, @ANYBLOB], &(0x7f0000000000)=0x2) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={0x0, @loopback}, &(0x7f0000000100)=0xc) openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SG_IO(r3, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, 0x0) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, 0x0, 0x0) tkill(0x0, 0x1000000000016) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040)={0x0, 0x4, 0xffffffffffffffff, 0x2000000000000000, r1}, 0x10) 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xf00}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 1: chdir(0x0) symlink(&(0x7f0000000140)='..', &(0x7f00000000c0)='./file0\x00') getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000016c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000000)=0x2) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={0x0, @loopback}, &(0x7f0000000100)=0xc) openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000001680)={0x53, 0x0, 0x373, 0x0, @buffer={0x10e, 0xb8, &(0x7f00000001c0)=""/184}, &(0x7f0000000040)="00d4", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000100), 0x0) futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, 0x0, 0x0) tkill(0x0, 0x1000000000016) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000040)={0x0, 0x0, 0xffffffffffffffff, 0x2000000000000000, r0}, 0x10) 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x200000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) r1 = fcntl$dupfd(r0, 0x0, r0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000002c00)=@assoc_value, &(0x7f0000002c40)=0x8) 16:48:00 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x604000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x4000}]) 16:48:00 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x810100, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 1: syz_open_dev$dspn(&(0x7f0000000400)='/dev/dsp#\x00', 0x0, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x1, 0x0) ioctl$VHOST_GET_FEATURES(0xffffffffffffffff, 0x8008af00, &(0x7f00000005c0)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000440)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000540)=[0x0, 0x7]) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='bbr\x00', 0x4) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f00000003c0), 0x4) ioctl$BLKBSZGET(r0, 0x80041270, &(0x7f0000000680)) ioctl$VIDIOC_G_DV_TIMINGS(0xffffffffffffffff, 0xc0845658, 0x0) clock_gettime(0x0, &(0x7f0000000280)) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000002c0), 0x4) perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r3, 0xc018620c, &(0x7f00000001c0)) sched_rr_get_interval(0x0, &(0x7f0000000640)) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x60ff}]) 16:48:00 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x1000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:00 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:00 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x700000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 1: openat$vnet(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-net\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, 0x0) write(r1, &(0x7f0000000340), 0x41395527) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000480)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x0, 0x24752c63fb9e34e2}, 0x5adbb2666b7ad54f) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r2+30000000}, 0x0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_G_MODULATOR(r1, 0xc0445636, &(0x7f0000000240)={0x0, "46400dd9ce10fee0b16658c23e8c4e2b60ef1a79a5cfc4cffb8630c5c2ccede8", 0x10, 0x6, 0x200, 0x4, 0xe56d60304eba95dd}) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x7600}]) 16:48:01 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x800000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff010000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) getsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x9600}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x2040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefff7f, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xf00000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xab00}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x400000}]) 16:48:01 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3f00000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) 16:48:01 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x4000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x50f000}]) 16:48:01 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x4000000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:01 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, 0x0, &(0x7f0000000040)) 16:48:01 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x707100}]) 16:48:01 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, 0x0, 0x0) 16:48:02 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x5000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x70e000}]) 16:48:02 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, 0x0, 0x0) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x8000000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x717000}]) 16:48:02 executing program 0: socketpair$unix(0x1, 0x40000000003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001440), 0x4) getsockopt$packet_int(r1, 0x107, 0x12, 0x0, 0x0) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xb901000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x6040000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x760000}]) 16:48:02 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x960000}]) 16:48:02 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x7000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x3e80000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xefffffffffffffff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xe07000}]) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2040000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xff01000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x8000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0xf05000}]) 16:48:02 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x1000000}]) 16:48:02 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:02 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefff7f00000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0xf000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x2000000}]) 16:48:03 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x803e000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x2040000}]) 16:48:03 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefffff00000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x3f000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x3000000}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x4000000}]) 16:48:03 executing program 2: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x40000000, 0x0, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffff00000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x2000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x20000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x1000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x5000000}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefffff00000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffffffffffffffef, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x7fffefff, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x0, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4, 0x6040000}]) 16:48:03 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0x10000000000000, r0, &(0x7f0000000000), 0xfffffce4}]) 16:48:03 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x185400, 0x0) io_setup(0x2, &(0x7f00000002c0)=0x0) io_submit(r1, 0x2000000000000246, &(0x7f0000001540)=[&(0x7f0000000140)={0x40000031, 0x2759, 0xd, 0x0, 0xffefffff00000000, r0, &(0x7f0000000000), 0xfffffce4}]) [ 545.871406][ T1057] INFO: task syz-executor.2:32671 blocked for more than 143 seconds. [ 545.879601][ T1057] Not tainted 5.3.0-rc3+ #72 [ 545.884778][ T1057] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 545.893441][ T1057] syz-executor.2 D27224 32671 9516 0x80004000 [ 545.899747][ T1057] Call Trace: [ 545.903044][ T1057] __schedule+0x877/0xc50 [ 545.907353][ T1057] schedule+0x131/0x1e0 [ 545.911516][ T1057] schedule_timeout+0x46/0x240 [ 545.916258][ T1057] ? trace_irq_enable_rcuidle+0x23/0x1e0 [ 545.922005][ T1057] do_wait_for_common+0x2e7/0x4d0 [ 545.927021][ T1057] ? console_conditional_schedule+0x40/0x40 [ 545.932935][ T1057] ? do_task_dead+0xc0/0xc0 [ 545.937422][ T1057] wait_for_completion+0x47/0x60 [ 545.942374][ T1057] exit_aio+0x2a0/0x370 [ 545.946510][ T1057] __mmput+0x66/0x3a0 [ 545.950459][ T1057] mmput+0x5d/0x70 [ 545.954186][ T1057] exit_mm+0x50a/0x590 [ 545.958232][ T1057] ? tty_audit_exit+0x147/0x1f0 [ 545.963079][ T1057] do_exit+0x565/0x21a0 [ 545.967208][ T1057] ? get_signal+0x3aa/0x1d60 [ 545.971822][ T1057] ? get_signal+0x3aa/0x1d60 [ 545.976401][ T1057] do_group_exit+0x15c/0x2b0 [ 545.981127][ T1057] get_signal+0x4ac/0x1d60 [ 545.985537][ T1057] ? trace_lock_release+0x135/0x1a0 [ 545.990716][ T1057] ? __might_fault+0xf9/0x160 [ 545.995413][ T1057] do_signal+0x37/0x640 [ 545.999548][ T1057] ? check_preemption_disabled+0xb7/0x2a0 [ 546.005432][ T1057] ? prepare_exit_to_usermode+0x258/0x580 [ 546.011151][ T1057] ? trace_irq_enable_rcuidle+0x23/0x1e0 [ 546.016755][ T1057] prepare_exit_to_usermode+0x303/0x580 [ 546.022300][ T1057] syscall_return_slowpath+0x113/0x4a0 [ 546.027733][ T1057] ? __x64_sys_futex+0xe5/0x100 [ 546.032582][ T1057] do_syscall_64+0x126/0x140 [ 546.037149][ T1057] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 546.043061][ T1057] RIP: 0033:0x459829 [ 546.046941][ T1057] Code: 24 60 48 8b 42 08 48 8b 4a 10 48 8b 5a 18 48 8b 72 20 48 8b 7a 28 48 8b 3f 4c 8b 42 30 48 8b 52 38 48 85 d2 76 62 48 89 44 24 <58> 4c 89 44 24 28 48 89 0c 24 48 89 5c 24 08 48 c7 44 24 10 00 00 [ 546.066845][ T1057] RSP: 002b:00007f2620a29cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 546.075252][ T1057] RAX: fffffffffffffe00 RBX: 000000000075bf28 RCX: 0000000000459829 [ 546.083227][ T1057] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28 [ 546.091299][ T1057] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 546.099245][ T1057] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c [ 546.107225][ T1057] R13: 00007fff925f9cef R14: 00007f2620a2a9c0 R15: 000000000075bf2c [ 546.115220][ T1057] INFO: lockdep is turned off. [ 546.119964][ T1057] NMI backtrace for cpu 0 [ 546.124306][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc3+ #72 [ 546.131898][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 546.142044][ T1057] Call Trace: [ 546.145311][ T1057] dump_stack+0x1d8/0x2f8 [ 546.149717][ T1057] nmi_cpu_backtrace+0xaf/0x1a0 [ 546.154539][ T1057] ? nmi_trigger_cpumask_backtrace+0x16d/0x290 [ 546.160661][ T1057] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 546.166696][ T1057] nmi_trigger_cpumask_backtrace+0x174/0x290 [ 546.172652][ T1057] arch_trigger_cpumask_backtrace+0x10/0x20 [ 546.178514][ T1057] trigger_all_cpu_backtrace+0x17/0x20 [ 546.183944][ T1057] watchdog+0xbb9/0xbd0 [ 546.188084][ T1057] kthread+0x332/0x350 [ 546.192139][ T1057] ? hungtask_pm_notify+0x50/0x50 [ 546.197138][ T1057] ? kthread_blkcg+0xe0/0xe0 [ 546.201746][ T1057] ret_from_fork+0x24/0x30 [ 546.206321][ T1057] Sending NMI from CPU 0 to CPUs 1: [ 546.211650][ C1] NMI backtrace for cpu 1 [ 546.211653][ C1] CPU: 1 PID: 29 Comm: kworker/u4:2 Not tainted 5.3.0-rc3+ #72 [ 546.211656][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 546.211657][ C1] Workqueue: bat_events batadv_nc_worker [ 546.211661][ C1] RIP: 0010:lock_release+0x8a/0x780 [ 546.211666][ C1] Code: 8a 88 48 c1 e8 03 80 3c 10 00 74 16 48 c7 c7 78 87 8a 88 e8 48 51 53 00 48 ba 00 00 00 00 00 fc ff df 48 83 3d ee 5a 31 07 00 <0f> 84 b9 06 00 00 9c 58 0f 1f 44 00 00 48 89 45 88 48 c7 c0 88 87 [ 546.211667][ C1] RSP: 0018:ffff8880a9aa7bd8 EFLAGS: 00000286 [ 546.211671][ C1] RAX: 1ffffffff11150ef RBX: 1ffff11015353119 RCX: ffff8880a9a98040 [ 546.211673][ C1] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffffffff888d63c0 [ 546.211675][ C1] RBP: ffff8880a9aa7c58 R08: ffffffff875d80a9 R09: 0000000000000000 [ 546.211678][ C1] R10: fffffbfff117be6d R11: 0000000000000000 R12: ffff8880a9a98040 [ 546.211680][ C1] R13: ffffffff875dffb9 R14: ffff8880a9a988cc R15: ffffffff888d63c0 [ 546.211682][ C1] FS: 0000000000000000(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000 [ 546.211684][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 546.211687][ C1] CR2: ffffffffff600400 CR3: 00000000a8092000 CR4: 00000000001406e0 [ 546.211689][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 546.211691][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 546.211693][ C1] Call Trace: [ 546.211694][ C1] ? rcu_lock_acquire+0x9/0x40 [ 546.211696][ C1] rcu_lock_release+0x26/0x30 [ 546.211697][ C1] batadv_nc_worker+0x281/0x600 [ 546.211699][ C1] process_one_work+0x7ef/0x10e0 [ 546.211701][ C1] worker_thread+0xc01/0x1630 [ 546.211702][ C1] kthread+0x332/0x350 [ 546.211704][ C1] ? rcu_lock_release+0x30/0x30 [ 546.211705][ C1] ? kthread_blkcg+0xe0/0xe0 [ 546.211707][ C1] ret_from_fork+0x24/0x30 [ 546.212544][ T1057] Kernel panic - not syncing: hung_task: blocked tasks [ 546.400951][ T1057] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 5.3.0-rc3+ #72 [ 546.408462][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 546.418492][ T1057] Call Trace: [ 546.421760][ T1057] dump_stack+0x1d8/0x2f8 [ 546.426058][ T1057] panic+0x25c/0x799 [ 546.429921][ T1057] ? nmi_trigger_cpumask_backtrace+0x21a/0x290 [ 546.436058][ T1057] watchdog+0xbcc/0xbd0 [ 546.440192][ T1057] kthread+0x332/0x350 [ 546.444231][ T1057] ? hungtask_pm_notify+0x50/0x50 [ 546.449230][ T1057] ? kthread_blkcg+0xe0/0xe0 [ 546.453946][ T1057] ret_from_fork+0x24/0x30 [ 546.459463][ T1057] Kernel Offset: disabled [ 546.463842][ T1057] Rebooting in 86400 seconds..