nt}]}) 20:22:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 93.354489][ T9019] FAULT_INJECTION: forcing a failure. [ 93.354489][ T9019] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 93.362705][ T9026] FAULT_INJECTION: forcing a failure. [ 93.362705][ T9026] name failslab, interval 1, probability 0, space 0, times 0 [ 93.367762][ T9019] CPU: 0 PID: 9019 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 93.389279][ T9019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.400855][ T9019] Call Trace: [ 93.404796][ T9019] dump_stack_lvl+0xb7/0x103 [ 93.409375][ T9019] dump_stack+0x11/0x1a [ 93.413517][ T9019] should_fail+0x23c/0x250 [ 93.417923][ T9019] __alloc_pages+0x102/0x320 [ 93.422498][ T9019] alloc_pages+0x2e8/0x340 [ 93.426919][ T9019] get_zeroed_page+0x13/0x40 [ 93.431508][ T9019] get_image_page+0x2e/0x420 [ 93.436186][ T9019] memory_bm_create+0xa75/0x1510 [ 93.441207][ T9019] create_basic_memory_bitmaps+0xa3/0x400 [ 93.447560][ T9019] snapshot_open+0x19f/0x240 [ 93.453645][ T9019] ? snapshot_compat_ioctl+0x90/0x90 [ 93.459127][ T9019] misc_open+0x264/0x2a0 [ 93.463465][ T9019] chrdev_open+0x39c/0x420 [ 93.467957][ T9019] ? cd_forget+0x100/0x100 [ 93.472358][ T9019] do_dentry_open+0x529/0x850 [ 93.477284][ T9019] vfs_open+0x43/0x50 [ 93.481274][ T9019] path_openat+0x1787/0x1f20 [ 93.485850][ T9019] ? __alloc_pages+0x194/0x320 [ 93.490619][ T9019] do_filp_open+0xe9/0x200 [ 93.495053][ T9019] ? alloc_fd+0x388/0x3e0 [ 93.499366][ T9019] do_sys_openat2+0xa3/0x250 [ 93.503938][ T9019] ? __cond_resched+0x11/0x40 [ 93.508602][ T9019] __x64_sys_openat+0xef/0x110 [ 93.513344][ T9019] do_syscall_64+0x3d/0x90 [ 93.517765][ T9019] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 93.523646][ T9019] RIP: 0033:0x4665e9 [ 93.527729][ T9019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 93.547403][ T9019] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 93.555797][ T9019] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 93.563748][ T9019] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 93.571991][ T9019] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.579944][ T9019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 93.587935][ T9019] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 93.596329][ T9026] CPU: 1 PID: 9026 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 93.605113][ T9026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.615476][ T9026] Call Trace: [ 93.618759][ T9026] dump_stack_lvl+0xb7/0x103 [ 93.623353][ T9026] dump_stack+0x11/0x1a [ 93.627698][ T9026] should_fail+0x23c/0x250 [ 93.629243][ T9025] loop3: detected capacity change from 0 to 1 [ 93.632171][ T9026] ? __se_sys_memfd_create+0xfb/0x390 [ 93.632200][ T9026] __should_failslab+0x81/0x90 [ 93.646929][ T9024] loop1: detected capacity change from 0 to 1 20:22:10 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5409, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:10 executing program 0 (fault-call:1 fault-nth:44): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0x40000000}, 0x31) [ 93.648541][ T9026] should_failslab+0x5/0x20 [ 93.648564][ T9026] __kmalloc+0x66/0x340 [ 93.663350][ T9026] ? strnlen_user+0x137/0x1c0 [ 93.668034][ T9026] __se_sys_memfd_create+0xfb/0x390 [ 93.673320][ T9026] __x64_sys_memfd_create+0x2d/0x40 [ 93.678620][ T9026] do_syscall_64+0x3d/0x90 [ 93.683060][ T9026] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 93.689005][ T9026] RIP: 0033:0x4665e9 [ 93.692897][ T9026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 93.701576][ T9038] FAULT_INJECTION: forcing a failure. [ 93.701576][ T9038] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 93.712497][ T9026] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 93.712522][ T9026] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 93.712534][ T9026] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 93.712545][ T9026] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 93.712555][ T9026] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 93.766186][ T9026] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 93.774161][ T9038] CPU: 0 PID: 9038 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 93.782835][ T9038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.792897][ T9038] Call Trace: [ 93.796169][ T9038] dump_stack_lvl+0xb7/0x103 [ 93.800804][ T9038] dump_stack+0x11/0x1a 20:22:10 executing program 5 (fault-call:0 fault-nth:1): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0x60000000}, 0x31) [ 93.804956][ T9038] should_fail+0x23c/0x250 [ 93.809454][ T9038] __alloc_pages+0x102/0x320 [ 93.814095][ T9038] alloc_pages+0x2e8/0x340 [ 93.818546][ T9038] get_zeroed_page+0x13/0x40 [ 93.823225][ T9038] get_image_page+0x2e/0x420 [ 93.827906][ T9038] memory_bm_create+0xa75/0x1510 [ 93.832941][ T9038] create_basic_memory_bitmaps+0xa3/0x400 [ 93.838750][ T9038] snapshot_open+0x19f/0x240 [ 93.843423][ T9038] ? snapshot_compat_ioctl+0x90/0x90 [ 93.844535][ T9048] FAULT_INJECTION: forcing a failure. [ 93.844535][ T9048] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 93.848725][ T9038] misc_open+0x264/0x2a0 [ 93.848749][ T9038] chrdev_open+0x39c/0x420 [ 93.848773][ T9038] ? cd_forget+0x100/0x100 [ 93.848817][ T9038] do_dentry_open+0x529/0x850 [ 93.880262][ T9038] vfs_open+0x43/0x50 [ 93.884244][ T9038] path_openat+0x1787/0x1f20 [ 93.888834][ T9038] ? __alloc_pages+0x194/0x320 [ 93.893604][ T9038] do_filp_open+0xe9/0x200 [ 93.898106][ T9038] ? alloc_fd+0x388/0x3e0 [ 93.902421][ T9038] do_sys_openat2+0xa3/0x250 [ 93.906998][ T9038] ? __cond_resched+0x11/0x40 [ 93.911951][ T9038] __x64_sys_openat+0xef/0x110 [ 93.916699][ T9038] do_syscall_64+0x3d/0x90 [ 93.921108][ T9038] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 93.926992][ T9038] RIP: 0033:0x4665e9 [ 93.930890][ T9038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 93.950564][ T9038] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 93.959047][ T9038] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 93.967003][ T9038] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 93.975051][ T9038] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.983083][ T9038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 93.991038][ T9038] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 93.999010][ T9048] CPU: 1 PID: 9048 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 94.007929][ T9048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.017988][ T9048] Call Trace: [ 94.021256][ T9048] dump_stack_lvl+0xb7/0x103 [ 94.025885][ T9048] dump_stack+0x11/0x1a [ 94.030047][ T9048] should_fail+0x23c/0x250 [ 94.034744][ T9048] should_fail_usercopy+0x16/0x20 [ 94.039777][ T9048] _copy_from_user+0x1c/0xd0 [ 94.044570][ T9048] __se_sys_memfd_create+0x137/0x390 [ 94.050114][ T9048] __x64_sys_memfd_create+0x2d/0x40 20:22:10 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x540b, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:10 executing program 0 (fault-call:1 fault-nth:45): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0x97ffffff}, 0x31) [ 94.055342][ T9048] do_syscall_64+0x3d/0x90 [ 94.059769][ T9048] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 94.065676][ T9048] RIP: 0033:0x4665e9 [ 94.069568][ T9048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 94.089185][ T9048] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 94.094706][ T9058] FAULT_INJECTION: forcing a failure. [ 94.094706][ T9058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 94.097591][ T9048] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 94.097606][ T9048] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 94.097619][ T9048] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 94.097630][ T9048] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 94.097642][ T9048] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 94.150674][ T9058] CPU: 0 PID: 9058 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 94.159443][ T9058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.169579][ T9058] Call Trace: [ 94.172858][ T9058] dump_stack_lvl+0xb7/0x103 [ 94.177468][ T9058] dump_stack+0x11/0x1a [ 94.181622][ T9058] should_fail+0x23c/0x250 [ 94.186039][ T9058] __alloc_pages+0x102/0x320 [ 94.190859][ T9058] alloc_pages+0x2e8/0x340 [ 94.195315][ T9058] get_zeroed_page+0x13/0x40 [ 94.199904][ T9058] get_image_page+0x2e/0x420 20:22:10 executing program 5 (fault-call:0 fault-nth:2): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xe0ffffff}, 0x31) [ 94.204500][ T9058] memory_bm_create+0xa75/0x1510 [ 94.209486][ T9058] create_basic_memory_bitmaps+0xa3/0x400 [ 94.215305][ T9058] snapshot_open+0x19f/0x240 [ 94.219895][ T9058] ? snapshot_compat_ioctl+0x90/0x90 [ 94.225174][ T9058] misc_open+0x264/0x2a0 [ 94.229411][ T9058] chrdev_open+0x39c/0x420 [ 94.233871][ T9058] ? cd_forget+0x100/0x100 [ 94.238289][ T9058] do_dentry_open+0x529/0x850 [ 94.242963][ T9058] vfs_open+0x43/0x50 [ 94.246944][ T9058] path_openat+0x1787/0x1f20 [ 94.251533][ T9058] ? __alloc_pages+0x194/0x320 [ 94.256388][ T9058] do_filp_open+0xe9/0x200 [ 94.260922][ T9058] ? alloc_fd+0x388/0x3e0 [ 94.265337][ T9058] do_sys_openat2+0xa3/0x250 [ 94.268148][ T9068] FAULT_INJECTION: forcing a failure. [ 94.268148][ T9068] name failslab, interval 1, probability 0, space 0, times 0 [ 94.270044][ T9058] ? __cond_resched+0x11/0x40 [ 94.287278][ T9058] __x64_sys_openat+0xef/0x110 [ 94.292035][ T9058] do_syscall_64+0x3d/0x90 [ 94.296437][ T9058] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 94.302402][ T9058] RIP: 0033:0x4665e9 [ 94.306279][ T9058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 94.326053][ T9058] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 94.334445][ T9058] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 94.342401][ T9058] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 94.350358][ T9058] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 94.358309][ T9058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 94.366381][ T9058] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 94.374487][ T9068] CPU: 1 PID: 9068 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 94.383164][ T9068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.393220][ T9068] Call Trace: [ 94.396498][ T9068] dump_stack_lvl+0xb7/0x103 [ 94.401126][ T9068] dump_stack+0x11/0x1a [ 94.405458][ T9068] should_fail+0x23c/0x250 [ 94.410045][ T9068] ? shmem_alloc_inode+0x22/0x30 [ 94.414985][ T9068] __should_failslab+0x81/0x90 [ 94.419751][ T9068] ? shmem_match+0xa0/0xa0 [ 94.424146][ T9068] should_failslab+0x5/0x20 [ 94.428626][ T9068] kmem_cache_alloc+0x46/0x2e0 [ 94.433382][ T9068] ? fsnotify_perm+0x59/0x2e0 [ 94.438045][ T9068] ? shmem_match+0xa0/0xa0 [ 94.442506][ T9068] shmem_alloc_inode+0x22/0x30 [ 94.447251][ T9068] new_inode_pseudo+0x38/0x1c0 [ 94.452451][ T9068] new_inode+0x21/0x120 [ 94.456667][ T9068] shmem_get_inode+0xa1/0x480 [ 94.461325][ T9068] __shmem_file_setup+0xf1/0x1d0 [ 94.466308][ T9068] shmem_file_setup+0x37/0x40 [ 94.470965][ T9068] __se_sys_memfd_create+0x1eb/0x390 [ 94.476234][ T9068] __x64_sys_memfd_create+0x2d/0x40 [ 94.481498][ T9068] do_syscall_64+0x3d/0x90 [ 94.485905][ T9068] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 94.491871][ T9068] RIP: 0033:0x4665e9 [ 94.495923][ T9068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 94.515829][ T9068] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 94.524491][ T9068] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 94.532568][ T9068] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 94.540531][ T9068] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 94.548491][ T9068] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 20:22:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:11 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x540c, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:11 executing program 0 (fault-call:1 fault-nth:46): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xf5ffffff}, 0x31) 20:22:11 executing program 5 (fault-call:0 fault-nth:3): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 94.556489][ T9068] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 94.613463][ T9082] FAULT_INJECTION: forcing a failure. [ 94.613463][ T9082] name failslab, interval 1, probability 0, space 0, times 0 [ 94.626411][ T9082] CPU: 0 PID: 9082 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 94.626988][ T9080] FAULT_INJECTION: forcing a failure. [ 94.626988][ T9080] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 94.635347][ T9082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.635360][ T9082] Call Trace: [ 94.635368][ T9082] dump_stack_lvl+0xb7/0x103 [ 94.666732][ T9082] dump_stack+0x11/0x1a [ 94.670961][ T9082] should_fail+0x23c/0x250 [ 94.675413][ T9082] ? security_inode_alloc+0x30/0x180 [ 94.680679][ T9082] __should_failslab+0x81/0x90 [ 94.685426][ T9082] should_failslab+0x5/0x20 [ 94.689907][ T9082] kmem_cache_alloc+0x46/0x2e0 [ 94.694692][ T9082] security_inode_alloc+0x30/0x180 [ 94.699792][ T9082] inode_init_always+0x20b/0x420 [ 94.705102][ T9082] ? shmem_match+0xa0/0xa0 [ 94.709494][ T9082] new_inode_pseudo+0x73/0x1c0 [ 94.714295][ T9082] new_inode+0x21/0x120 [ 94.718525][ T9082] shmem_get_inode+0xa1/0x480 [ 94.723193][ T9082] __shmem_file_setup+0xf1/0x1d0 [ 94.728111][ T9082] shmem_file_setup+0x37/0x40 [ 94.732770][ T9082] __se_sys_memfd_create+0x1eb/0x390 [ 94.738055][ T9082] __x64_sys_memfd_create+0x2d/0x40 [ 94.743368][ T9082] do_syscall_64+0x3d/0x90 [ 94.747857][ T9082] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 94.753995][ T9082] RIP: 0033:0x4665e9 [ 94.757940][ T9082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 94.777552][ T9082] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 94.785947][ T9082] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 94.794018][ T9082] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 94.802056][ T9082] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff 20:22:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xfc000000}, 0x31) [ 94.810051][ T9082] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 94.818176][ T9082] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 94.826131][ T9080] CPU: 1 PID: 9080 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 94.834817][ T9080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 94.844872][ T9080] Call Trace: [ 94.848151][ T9080] dump_stack_lvl+0xb7/0x103 [ 94.852741][ T9080] dump_stack+0x11/0x1a [ 94.856892][ T9080] should_fail+0x23c/0x250 20:22:11 executing program 5 (fault-call:0 fault-nth:4): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 94.861331][ T9080] __alloc_pages+0x102/0x320 [ 94.865956][ T9080] alloc_pages+0x2e8/0x340 [ 94.870420][ T9080] get_zeroed_page+0x13/0x40 [ 94.875096][ T9080] get_image_page+0x2e/0x420 [ 94.879842][ T9080] memory_bm_create+0xa75/0x1510 [ 94.884819][ T9080] create_basic_memory_bitmaps+0xa3/0x400 [ 94.890626][ T9080] snapshot_open+0x19f/0x240 [ 94.895227][ T9080] ? snapshot_compat_ioctl+0x90/0x90 [ 94.899011][ T9099] FAULT_INJECTION: forcing a failure. [ 94.899011][ T9099] name failslab, interval 1, probability 0, space 0, times 0 [ 94.900642][ T9080] misc_open+0x264/0x2a0 [ 94.900677][ T9080] chrdev_open+0x39c/0x420 [ 94.922056][ T9080] ? cd_forget+0x100/0x100 [ 94.926471][ T9080] do_dentry_open+0x529/0x850 [ 94.931136][ T9080] vfs_open+0x43/0x50 [ 94.935156][ T9080] path_openat+0x1787/0x1f20 [ 94.939752][ T9080] ? __alloc_pages+0x194/0x320 [ 94.944595][ T9080] do_filp_open+0xe9/0x200 [ 94.949070][ T9080] ? alloc_fd+0x388/0x3e0 [ 94.953389][ T9080] do_sys_openat2+0xa3/0x250 [ 94.958027][ T9080] ? __cond_resched+0x11/0x40 [ 94.962687][ T9080] __x64_sys_openat+0xef/0x110 [ 94.967441][ T9080] do_syscall_64+0x3d/0x90 [ 94.971838][ T9080] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 94.977747][ T9080] RIP: 0033:0x4665e9 [ 94.981630][ T9080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 95.001245][ T9080] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 95.009646][ T9080] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 95.017607][ T9080] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 95.025563][ T9080] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 95.033564][ T9080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 95.041518][ T9080] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 95.049481][ T9099] CPU: 0 PID: 9099 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 95.058173][ T9099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.068240][ T9099] Call Trace: [ 95.071524][ T9099] dump_stack_lvl+0xb7/0x103 [ 95.076127][ T9099] dump_stack+0x11/0x1a [ 95.080283][ T9099] should_fail+0x23c/0x250 [ 95.084704][ T9099] ? __d_alloc+0x36/0x370 [ 95.089124][ T9099] __should_failslab+0x81/0x90 [ 95.093942][ T9099] should_failslab+0x5/0x20 [ 95.098533][ T9099] kmem_cache_alloc+0x46/0x2e0 [ 95.103329][ T9099] ? __init_rwsem+0x59/0x70 [ 95.107928][ T9099] __d_alloc+0x36/0x370 20:22:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xfe800000}, 0x31) 20:22:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x540d, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:11 executing program 0 (fault-call:1 fault-nth:47): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 95.112304][ T9099] ? current_time+0xdb/0x190 [ 95.116900][ T9099] d_alloc_pseudo+0x1a/0x50 [ 95.121498][ T9099] alloc_file_pseudo+0x63/0x130 [ 95.126361][ T9099] __shmem_file_setup+0x14c/0x1d0 [ 95.131404][ T9099] shmem_file_setup+0x37/0x40 [ 95.136085][ T9099] __se_sys_memfd_create+0x1eb/0x390 [ 95.140889][ T9102] loop1: detected capacity change from 0 to 1 [ 95.141412][ T9099] __x64_sys_memfd_create+0x2d/0x40 [ 95.141441][ T9099] do_syscall_64+0x3d/0x90 [ 95.157255][ T9099] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 95.163256][ T9099] RIP: 0033:0x4665e9 [ 95.167153][ T9099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 95.172204][ T9113] FAULT_INJECTION: forcing a failure. [ 95.172204][ T9113] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 95.186855][ T9099] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 95.186880][ T9099] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 95.186891][ T9099] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 95.186904][ T9099] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 95.232454][ T9099] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 95.240406][ T9099] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 95.248369][ T9113] CPU: 1 PID: 9113 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xfe80ffff}, 0x31) [ 95.257341][ T9113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.267506][ T9113] Call Trace: [ 95.270787][ T9113] dump_stack_lvl+0xb7/0x103 [ 95.275373][ T9113] dump_stack+0x11/0x1a [ 95.279532][ T9113] should_fail+0x23c/0x250 [ 95.283950][ T9113] __alloc_pages+0x102/0x320 [ 95.288545][ T9113] alloc_pages+0x2e8/0x340 [ 95.292965][ T9113] get_zeroed_page+0x13/0x40 [ 95.297553][ T9113] get_image_page+0x2e/0x420 [ 95.302650][ T9113] memory_bm_create+0xa75/0x1510 [ 95.307591][ T9113] create_basic_memory_bitmaps+0xa3/0x400 [ 95.313443][ T9113] snapshot_open+0x19f/0x240 [ 95.318053][ T9113] ? snapshot_compat_ioctl+0x90/0x90 [ 95.323356][ T9113] misc_open+0x264/0x2a0 [ 95.327795][ T9113] chrdev_open+0x39c/0x420 [ 95.332226][ T9113] ? cd_forget+0x100/0x100 [ 95.336693][ T9113] do_dentry_open+0x529/0x850 [ 95.341589][ T9113] vfs_open+0x43/0x50 [ 95.345586][ T9113] path_openat+0x1787/0x1f20 [ 95.350219][ T9113] ? __alloc_pages+0x194/0x320 [ 95.355326][ T9113] do_filp_open+0xe9/0x200 [ 95.359874][ T9113] ? alloc_fd+0x388/0x3e0 [ 95.364377][ T9113] do_sys_openat2+0xa3/0x250 [ 95.369036][ T9113] ? __cond_resched+0x11/0x40 [ 95.373813][ T9113] __x64_sys_openat+0xef/0x110 [ 95.378586][ T9113] do_syscall_64+0x3d/0x90 [ 95.383121][ T9113] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 95.389073][ T9113] RIP: 0033:0x4665e9 [ 95.392945][ T9113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 95.412677][ T9113] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 95.421188][ T9113] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 95.429144][ T9113] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 95.437103][ T9113] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 95.445152][ T9113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 95.453174][ T9113] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:12 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 95.480255][ T9125] loop3: detected capacity change from 0 to 1 20:22:12 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="696e69745f697461626c652c00e507a4b693d4c35e865bc608dd7fc71beacc12c45f31185203b143165316f33be8b8ebc907276c1ecefded18a1344f854f376c0f433fa3410e768e7ef2333f5f2be396a25c0ce188a12a5289f3ed3e88aed047fe5b3d8a748c0d89a47e801317bde04df86bf0d001de4d36263cf8faf7d9db0a61d1581bbf8de9d4"]) 20:22:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5412, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:12 executing program 5 (fault-call:0 fault-nth:5): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xfec0ffff}, 0x31) 20:22:12 executing program 0 (fault-call:1 fault-nth:48): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 95.584908][ T9138] FAULT_INJECTION: forcing a failure. [ 95.584908][ T9138] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 95.592799][ T9142] loop1: detected capacity change from 0 to 4 [ 95.598311][ T9138] CPU: 0 PID: 9138 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 95.613100][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.623320][ T9138] Call Trace: [ 95.627124][ T9138] dump_stack_lvl+0xb7/0x103 [ 95.631761][ T9138] dump_stack+0x11/0x1a [ 95.635986][ T9138] should_fail+0x23c/0x250 [ 95.640390][ T9138] __alloc_pages+0x102/0x320 [ 95.644977][ T9138] alloc_pages+0x2e8/0x340 [ 95.649472][ T9138] get_zeroed_page+0x13/0x40 [ 95.654042][ T9138] get_image_page+0x2e/0x420 [ 95.658695][ T9138] memory_bm_create+0xa75/0x1510 [ 95.663829][ T9138] create_basic_memory_bitmaps+0xa3/0x400 [ 95.669671][ T9138] snapshot_open+0x19f/0x240 [ 95.674253][ T9138] ? snapshot_compat_ioctl+0x90/0x90 [ 95.679632][ T9138] misc_open+0x264/0x2a0 [ 95.683871][ T9138] chrdev_open+0x39c/0x420 [ 95.688287][ T9138] ? cd_forget+0x100/0x100 [ 95.692687][ T9138] do_dentry_open+0x529/0x850 [ 95.697360][ T9138] vfs_open+0x43/0x50 [ 95.701347][ T9138] path_openat+0x1787/0x1f20 [ 95.705956][ T9138] ? __alloc_pages+0x194/0x320 [ 95.710824][ T9138] do_filp_open+0xe9/0x200 [ 95.715365][ T9138] ? alloc_fd+0x388/0x3e0 [ 95.719741][ T9138] do_sys_openat2+0xa3/0x250 [ 95.724310][ T9138] ? __cond_resched+0x11/0x40 [ 95.728971][ T9138] __x64_sys_openat+0xef/0x110 [ 95.733855][ T9138] do_syscall_64+0x3d/0x90 [ 95.738365][ T9138] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 95.744341][ T9138] RIP: 0033:0x4665e9 [ 95.748305][ T9138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 95.768089][ T9138] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 95.776675][ T9138] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 95.784627][ T9138] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 95.792582][ T9138] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 95.800548][ T9138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 95.808658][ T9138] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 95.818233][ T9145] loop3: detected capacity change from 0 to 1 [ 95.827004][ T9143] FAULT_INJECTION: forcing a failure. 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xff000000}, 0x31) 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xffff0000}, 0x31) [ 95.827004][ T9143] name failslab, interval 1, probability 0, space 0, times 0 [ 95.838032][ T9142] EXT4-fs (loop1): bad geometry: block count 128 exceeds size of device (1 blocks) [ 95.839846][ T9143] CPU: 0 PID: 9143 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 95.857857][ T9143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 95.868001][ T9143] Call Trace: [ 95.871368][ T9143] dump_stack_lvl+0xb7/0x103 [ 95.875964][ T9143] dump_stack+0x11/0x1a [ 95.880111][ T9143] should_fail+0x23c/0x250 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xffff80fe}, 0x31) [ 95.884571][ T9143] ? __alloc_file+0x2e/0x1a0 [ 95.889286][ T9143] __should_failslab+0x81/0x90 [ 95.894049][ T9143] should_failslab+0x5/0x20 [ 95.898544][ T9143] kmem_cache_alloc+0x46/0x2e0 [ 95.903310][ T9143] ? inode_doinit_with_dentry+0x382/0x950 [ 95.909034][ T9143] __alloc_file+0x2e/0x1a0 [ 95.913450][ T9143] alloc_empty_file+0xcd/0x1c0 [ 95.918219][ T9143] alloc_file+0x3a/0x280 [ 95.922468][ T9143] alloc_file_pseudo+0xe2/0x130 [ 95.927328][ T9143] __shmem_file_setup+0x14c/0x1d0 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xffffc0fe}, 0x31) [ 95.932364][ T9143] shmem_file_setup+0x37/0x40 [ 95.937045][ T9143] __se_sys_memfd_create+0x1eb/0x390 [ 95.942344][ T9143] __x64_sys_memfd_create+0x2d/0x40 [ 95.947574][ T9143] do_syscall_64+0x3d/0x90 [ 95.952020][ T9143] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 95.957915][ T9143] RIP: 0033:0x4665e9 [ 95.961811][ T9143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xffffff97}, 0x31) 20:22:12 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x5) finit_module(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) ioctl$FITHAW(r2, 0xc0045878) [ 95.981412][ T9143] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 95.990179][ T9143] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 95.998270][ T9143] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 96.006221][ T9143] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 96.014179][ T9143] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 96.022304][ T9143] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 20:22:12 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:12 executing program 5 (fault-call:0 fault-nth:6): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5413, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xffffffe0}, 0x31) 20:22:12 executing program 0 (fault-call:1 fault-nth:49): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 96.118497][ T25] audit: type=1400 audit(1627071732.855:61): avc: denied { module_load } for pid=9174 comm="syz-executor.1" path="/root/syz-executor.1" dev="sda1" ino=13852 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=system permissive=1 [ 96.130556][ T9187] loop3: detected capacity change from 0 to 1 [ 96.147938][ T9185] FAULT_INJECTION: forcing a failure. [ 96.147938][ T9185] name failslab, interval 1, probability 0, space 0, times 0 20:22:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5414, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 96.162900][ T9185] CPU: 0 PID: 9185 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 96.171750][ T9185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.181812][ T9185] Call Trace: [ 96.185089][ T9185] dump_stack_lvl+0xb7/0x103 [ 96.189818][ T9185] dump_stack+0x11/0x1a [ 96.193980][ T9185] should_fail+0x23c/0x250 [ 96.198693][ T9185] ? security_file_alloc+0x30/0x190 [ 96.201770][ T9184] FAULT_INJECTION: forcing a failure. [ 96.201770][ T9184] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 96.203928][ T9185] __should_failslab+0x81/0x90 [ 96.221953][ T9185] should_failslab+0x5/0x20 [ 96.226664][ T9185] kmem_cache_alloc+0x46/0x2e0 [ 96.231573][ T9185] security_file_alloc+0x30/0x190 [ 96.236622][ T9185] __alloc_file+0x83/0x1a0 [ 96.241112][ T9185] alloc_empty_file+0xcd/0x1c0 [ 96.245919][ T9185] alloc_file+0x3a/0x280 [ 96.250143][ T9185] alloc_file_pseudo+0xe2/0x130 [ 96.255049][ T9185] __shmem_file_setup+0x14c/0x1d0 [ 96.260208][ T9185] shmem_file_setup+0x37/0x40 [ 96.264877][ T9185] __se_sys_memfd_create+0x1eb/0x390 [ 96.270156][ T9185] __x64_sys_memfd_create+0x2d/0x40 [ 96.275339][ T9185] do_syscall_64+0x3d/0x90 [ 96.279786][ T9185] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 96.285666][ T9185] RIP: 0033:0x4665e9 [ 96.289543][ T9185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 96.309130][ T9185] RSP: 002b:00007f2d23a98f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 96.317536][ T9185] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004665e9 [ 96.325574][ T9185] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00000000004bee86 [ 96.333524][ T9185] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 96.341617][ T9185] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 96.349596][ T9185] R13: 0000000020000040 R14: 0000000000008000 R15: 0000000020000080 [ 96.357725][ T9184] CPU: 1 PID: 9184 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 20:22:13 executing program 5 (fault-call:0 fault-nth:7): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:13 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote, 0xfffffff5}, 0x31) 20:22:13 executing program 1: sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000004c0)="dbb73c63d6861ee45a15562d01c59f113bed94593c225ceccc0dc34c84c3b02bcf2f193b571dd14bd01e8c21a87c714630b64c65e9d5fadc37769c04ae779d9f01daa5bfe036db9f377ee01aa36f5a81f1ef3140e549162ecb9d0ae5a4d3bfb375b284d4630bbb973a98d773929bb3be1e8cc79f817d8d867c44111d7914249f8d117e77e0e579c3668a78bec2f22a0f2b6f026df19138f95a644c449e22ee5cc45573517e7b53794a448329163f284335ba9035", 0xb4}], 0x1}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(r2, r1, 0x0, 0x100000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) [ 96.366548][ T9184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.376601][ T9184] Call Trace: [ 96.379881][ T9184] dump_stack_lvl+0xb7/0x103 [ 96.384464][ T9184] dump_stack+0x11/0x1a [ 96.388703][ T9184] should_fail+0x23c/0x250 [ 96.393132][ T9184] __alloc_pages+0x102/0x320 [ 96.397723][ T9184] alloc_pages+0x2e8/0x340 [ 96.402133][ T9184] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 96.407775][ T9184] get_zeroed_page+0x13/0x40 [ 96.412451][ T9184] get_image_page+0x2e/0x420 [ 96.417056][ T9184] memory_bm_create+0xa75/0x1510 [ 96.422018][ T9184] create_basic_memory_bitmaps+0xa3/0x400 [ 96.427870][ T9184] snapshot_open+0x19f/0x240 [ 96.432467][ T9184] ? snapshot_compat_ioctl+0x90/0x90 [ 96.437749][ T9184] misc_open+0x264/0x2a0 [ 96.441993][ T9184] chrdev_open+0x39c/0x420 [ 96.446544][ T9184] ? cd_forget+0x100/0x100 [ 96.450962][ T9184] do_dentry_open+0x529/0x850 [ 96.455631][ T9184] vfs_open+0x43/0x50 [ 96.459617][ T9184] path_openat+0x1787/0x1f20 [ 96.464218][ T9184] ? __alloc_pages+0x194/0x320 20:22:13 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x2) 20:22:13 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5415, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 96.468976][ T9184] do_filp_open+0xe9/0x200 [ 96.473397][ T9184] ? alloc_fd+0x388/0x3e0 [ 96.477822][ T9184] do_sys_openat2+0xa3/0x250 [ 96.482440][ T9184] ? __cond_resched+0x11/0x40 [ 96.487128][ T9184] __x64_sys_openat+0xef/0x110 [ 96.492128][ T9184] do_syscall_64+0x3d/0x90 [ 96.496639][ T9184] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 96.502702][ T9184] RIP: 0033:0x4665e9 [ 96.506587][ T9184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 96.526592][ T9184] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 96.535018][ T9184] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 96.543073][ T9184] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 96.546295][ T9209] FAULT_INJECTION: forcing a failure. [ 96.546295][ T9209] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 96.551046][ T9184] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 96.551061][ T9184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 96.580358][ T9184] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 96.588386][ T9209] CPU: 0 PID: 9209 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 96.597166][ T9209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.607222][ T9209] Call Trace: [ 96.610502][ T9209] dump_stack_lvl+0xb7/0x103 [ 96.615162][ T9209] dump_stack+0x11/0x1a [ 96.619362][ T9209] should_fail+0x23c/0x250 [ 96.623780][ T9209] __alloc_pages+0x102/0x320 [ 96.628372][ T9209] alloc_pages_vma+0x513/0x680 [ 96.633132][ T9209] shmem_getpage_gfp+0x954/0x13d0 [ 96.638345][ T9209] ? sidtab_context_to_sid+0x5a/0x740 [ 96.643816][ T9209] ? policydb_context_isvalid+0x135/0x230 [ 96.649573][ T9209] shmem_write_begin+0x7e/0x100 [ 96.654478][ T9209] generic_perform_write+0x196/0x3c0 [ 96.659992][ T9209] __generic_file_write_iter+0x161/0x300 [ 96.665750][ T9209] ? generic_write_checks+0x250/0x290 [ 96.671469][ T9209] generic_file_write_iter+0x75/0x130 [ 96.676844][ T9209] vfs_write+0x69d/0x770 [ 96.681080][ T9209] __x64_sys_pwrite64+0xf5/0x150 [ 96.686011][ T9209] do_syscall_64+0x3d/0x90 [ 96.690488][ T9209] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 96.696523][ T9209] RIP: 0033:0x419787 [ 96.700407][ T9209] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b 20:22:13 executing program 0 (fault-call:1 fault-nth:50): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 96.720001][ T9209] RSP: 002b:00007f2d23a98f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 96.728408][ T9209] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 96.736563][ T9209] RDX: 0000000000000025 RSI: 0000000020010000 RDI: 0000000000000004 [ 96.744541][ T9209] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 96.752532][ T9209] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 [ 96.760499][ T9209] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 96.776739][ T9226] FAULT_INJECTION: forcing a failure. [ 96.776739][ T9226] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 96.790157][ T9226] CPU: 0 PID: 9226 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 96.799103][ T9226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.809084][ T9209] loop5: detected capacity change from 0 to 64 [ 96.809153][ T9226] Call Trace: [ 96.809161][ T9226] dump_stack_lvl+0xb7/0x103 [ 96.818847][ T9209] FAT-fs (loop5): bogus number of reserved sectors [ 96.823380][ T9226] dump_stack+0x11/0x1a [ 96.823433][ T9226] should_fail+0x23c/0x250 [ 96.823452][ T9226] __alloc_pages+0x102/0x320 [ 96.823503][ T9226] alloc_pages+0x2e8/0x340 [ 96.830022][ T9209] FAT-fs (loop5): Can't find a valid FAT filesystem [ 96.834124][ T9226] get_zeroed_page+0x13/0x40 [ 96.858686][ T9226] get_image_page+0x2e/0x420 [ 96.863287][ T9226] memory_bm_create+0xa75/0x1510 [ 96.868270][ T9226] create_basic_memory_bitmaps+0xa3/0x400 [ 96.874000][ T9226] snapshot_open+0x19f/0x240 [ 96.878598][ T9226] ? snapshot_compat_ioctl+0x90/0x90 [ 96.883895][ T9226] misc_open+0x264/0x2a0 [ 96.888140][ T9226] chrdev_open+0x39c/0x420 [ 96.892869][ T9226] ? cd_forget+0x100/0x100 [ 96.897283][ T9226] do_dentry_open+0x529/0x850 [ 96.901994][ T9226] vfs_open+0x43/0x50 [ 96.905991][ T9226] path_openat+0x1787/0x1f20 [ 96.910581][ T9226] ? __alloc_pages+0x194/0x320 [ 96.915432][ T9226] do_filp_open+0xe9/0x200 [ 96.919884][ T9226] ? alloc_fd+0x388/0x3e0 [ 96.924221][ T9226] do_sys_openat2+0xa3/0x250 [ 96.928816][ T9226] ? __cond_resched+0x11/0x40 [ 96.933479][ T9226] __x64_sys_openat+0xef/0x110 [ 96.938248][ T9226] do_syscall_64+0x3d/0x90 [ 96.942708][ T9226] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 96.948687][ T9226] RIP: 0033:0x4665e9 [ 96.952586][ T9226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x0, 0x0) 20:22:13 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x18) 20:22:13 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5416, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 96.972629][ T9226] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 96.981136][ T9226] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 96.989111][ T9226] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 96.997110][ T9226] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 97.005181][ T9226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 97.013156][ T9226] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:13 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x1b) 20:22:13 executing program 0 (fault-call:1 fault-nth:51): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:13 executing program 5 (fault-call:0 fault-nth:8): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:13 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5417, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:13 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x200000f1) [ 97.112030][ T9246] FAULT_INJECTION: forcing a failure. [ 97.112030][ T9246] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.119384][ T9255] FAULT_INJECTION: forcing a failure. [ 97.119384][ T9255] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 97.125327][ T9246] CPU: 1 PID: 9246 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 97.147034][ T9246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.157077][ T9246] Call Trace: [ 97.160407][ T9246] dump_stack_lvl+0xb7/0x103 [ 97.164982][ T9246] dump_stack+0x11/0x1a [ 97.169116][ T9246] should_fail+0x23c/0x250 [ 97.173522][ T9246] __alloc_pages+0x102/0x320 [ 97.178107][ T9246] alloc_pages+0x2e8/0x340 [ 97.182791][ T9246] get_zeroed_page+0x13/0x40 [ 97.187372][ T9246] get_image_page+0x2e/0x420 [ 97.191999][ T9246] memory_bm_create+0xa75/0x1510 [ 97.196922][ T9246] create_basic_memory_bitmaps+0xa3/0x400 [ 97.202981][ T9246] snapshot_open+0x19f/0x240 [ 97.207564][ T9246] ? snapshot_compat_ioctl+0x90/0x90 [ 97.212831][ T9246] misc_open+0x264/0x2a0 [ 97.217058][ T9246] chrdev_open+0x39c/0x420 [ 97.221470][ T9246] ? cd_forget+0x100/0x100 [ 97.225875][ T9246] do_dentry_open+0x529/0x850 [ 97.230764][ T9246] vfs_open+0x43/0x50 [ 97.234890][ T9246] path_openat+0x1787/0x1f20 [ 97.239461][ T9246] ? __alloc_pages+0x194/0x320 [ 97.244206][ T9246] do_filp_open+0xe9/0x200 [ 97.248621][ T9246] ? alloc_fd+0x388/0x3e0 [ 97.252988][ T9246] do_sys_openat2+0xa3/0x250 [ 97.257576][ T9246] ? __cond_resched+0x11/0x40 [ 97.262264][ T9246] __x64_sys_openat+0xef/0x110 [ 97.267018][ T9246] do_syscall_64+0x3d/0x90 [ 97.271504][ T9246] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 97.277694][ T9246] RIP: 0033:0x4665e9 [ 97.281576][ T9246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 97.301168][ T9246] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 97.309665][ T9246] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 97.317717][ T9246] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 97.325734][ T9246] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 97.333689][ T9246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 97.341749][ T9246] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 97.349711][ T9255] CPU: 0 PID: 9255 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 97.358565][ T9255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.368610][ T9255] Call Trace: [ 97.371895][ T9255] dump_stack_lvl+0xb7/0x103 [ 97.376497][ T9255] dump_stack+0x11/0x1a [ 97.380652][ T9255] should_fail+0x23c/0x250 [ 97.385145][ T9255] should_fail_usercopy+0x16/0x20 [ 97.390259][ T9255] copy_page_from_iter_atomic+0x2c1/0xba0 [ 97.395987][ T9255] ? shmem_write_begin+0x7e/0x100 [ 97.401160][ T9255] generic_perform_write+0x1df/0x3c0 [ 97.406516][ T9255] __generic_file_write_iter+0x161/0x300 [ 97.412153][ T9255] ? generic_write_checks+0x250/0x290 [ 97.417696][ T9255] generic_file_write_iter+0x75/0x130 [ 97.423248][ T9255] vfs_write+0x69d/0x770 [ 97.427485][ T9255] __x64_sys_pwrite64+0xf5/0x150 [ 97.432419][ T9255] do_syscall_64+0x3d/0x90 [ 97.436830][ T9255] ? irqentry_exit+0xe/0x30 [ 97.441335][ T9255] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 97.447314][ T9255] RIP: 0033:0x419787 20:22:14 executing program 1: mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000000)='system_u:object_r:cron_log_t:s0\x00', 0x20, 0x3) [ 97.451277][ T9255] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 97.470893][ T9255] RSP: 002b:00007f2d23a98f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 97.479473][ T9255] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 97.487447][ T9255] RDX: 0000000000000025 RSI: 0000000020010000 RDI: 0000000000000004 [ 97.495420][ T9255] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 97.503396][ T9255] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 20:22:14 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f00002e9000/0x2000)=nil, 0x2000, 0x1800003, 0x13, r0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0xc05c5340, &(0x7f0000000040)={0x7ff, 0x4, 0x1, {0x5, 0x5}, 0x10001, 0x8}) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) preadv(r0, &(0x7f0000003840)=[{&(0x7f0000002600)=""/3, 0x3}, {&(0x7f0000002640)=""/214, 0xd6}, {&(0x7f0000002740)=""/9, 0x9}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000003780)=""/23, 0x17}, {&(0x7f00000037c0)=""/86, 0x56}], 0x6, 0xffffff47, 0x9bc5828) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000003e40)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000003e00)={r3, 0x1, r0, 0x200, 0x80000}) sendto$inet6(r1, &(0x7f00000000c0)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008080, &(0x7f0000000100)={0xa, 0x4e24, 0x0, @remote}, 0x64) r4 = openat$cgroup_ro(r0, &(0x7f00000038c0)='cpuset.memory_pressure\x00', 0x0, 0x0) preadv2(r4, &(0x7f0000003d00)=[{&(0x7f0000003900)=""/196, 0xc4}, {&(0x7f0000003a00)=""/103, 0x67}, {&(0x7f0000003a80)=""/253, 0xfd}, {&(0x7f0000003b80)=""/150, 0x96}, {&(0x7f0000003c40)=""/162, 0xa2}], 0x5, 0x5, 0x2, 0x0) r5 = socket(0x21, 0x80000, 0x2) sendto$inet6(r5, &(0x7f0000003ec0)="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", 0x1000, 0x8000, &(0x7f0000003d80)={0xa, 0x4e20, 0x4, @mcast2, 0x4}, 0x1c) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x501000, 0x0) pwritev(r6, &(0x7f0000001580)=[{&(0x7f0000000180)="646d9f6839742182365671521d6411536ff6c2db76018ddae8561b6ce896fd5945a3bced990787d8f6c965347fe754bcd5f4fb1fe61533f415e776071339c4493b402fe585b73c4186c11565c086525650cfb96b8564e1868c0ebf5f04f42e292427cf32508e8f24e9829824e06d9157946faa98fbc72c2d7f9283fbd122372f174b893334e782f11055", 0x8a}, {&(0x7f0000000240)="429b1131b123d2057d8273d99fc4171cc7f86cb6e6b3a9eed4f07a86dd1663da41f3ee8b5d9038443ef4c1370fd5604cf84f77192341024afe727bf77af4f3d5138939b311f4f9d824f07850042e20b5b64d0c1cedf3d04c9a43c80c125c1804bc52e8762a96", 0x66}, {&(0x7f00000002c0)="aa7c78e9a40c47e83b7239ac36810eac2ebd8778dcbbdb728000a754303d7de467c7bc03aa7e8471d2e9f69a21df7faef048047e51606485660505a5e075cbe2d0fc133dd30bad5735315a87465727c028d51ed83de18ef7292b2555521dccca0fc871d11722c96d52a68dd2268131e5d7e88a99e0c907e2ee652d73b263543f2aa8038043e9b85e9d1c0069a551ad7b6c754d8f1dabe03035a9876eb33124149c4b39d55145", 0xa6}, {&(0x7f0000000380)="da3706fde1693a561b60534ed6c066760121855bbe37920634375929964f68e30cb1d95e0200ecaffa7d57060b59229be2adb8f773d2b768745e14f8b15e9be7e76f8b1cfcce03d2b5fbb66acfa57b803e7484869d6813db42687777693ef2ae0ff9ce8cb671bef57ee4bb339ca8362ef044284962c1b61c34ca7990916a40eb2cbad3d4382f4bcec4cc0edd699d4cfde435adbf4b623907867272a76f51e70e3c9f6f4c557b", 0xa6}, {&(0x7f0000000440)="3f7685cc20878cd786bd1c91c7f0454d4b823502d3cc818d99c5bd8b91ee4c451ee2243486dac0c29d50ad9c82bebfbf3ea505c960053c3409e9604c6bdb17217168b5c3d10d1b7211fb888c66e16f825cc39631e4a47a71e9b75439e86055220c4e3b12cc1c1ff7a9f07282454ac0e22a20b252caef909a29f0b7ac4dc7b7efb7cf7d0904e1c0787b5b7159c92d1a2f8c0052d82d9152b22e36eb2c5a54a978caa95b5ff4f9ac1898925d227a5176ab54bfcd86969de73625282d7472598d611f7eda52ab31e0396d", 0xc9}, {&(0x7f0000000540)="f465802c8db91c7f94f7ad4814852a9360333114afbe6d65a4f3799e3eaecdac5c20c31ec8fa2f921feb591ad1297e0ce5a5021498cf8bab2ca4d0846635efe7fb266daab3e482ccb45cf9c684bc3e2b3ef5aeccc5273e107453cc29e2c9023a6ff8b50949c961a8a659c4b75dbe2f2d4b7307c43d90066a4ec70a41d9ea5f2b2e3bd72b5e4474621a063e75f95753b04c8eb78e5a99a524280ecfa0c63cd42004f828c6f42371047f1fc2adc9d071a3671c324b7c0be9ba35b855be0ddb540bec786fbb70fbb93668a1fec0e120ac1fd436a267beaaac3208633bda21e1680f40f6a0e24e1bee24289ad4e41f9574c65cd16cd7ffa3958eed0d9f08bb81e76507788ec4bb48152abb8e3e9113cb8b07bda45ffd8494c575a22fd95b000cf9fd4bc9a88f28a870cb018bdae8295bab9bb02ed5bed432c9d40e9f29ce9e57c7e61fc1e86a8b1039c99ddab4c953f3eb60a6f1a45266e6802a03e34c3deece1e00e15a2a784655b8a8515f7f86fcb60132853dbd81172732fef5a33dfa641c09926753fa7a37e40058515d03a9b02640db1d610417a1e31195eaa6dec53216e91aa091dc0211909b78f0aa9c686583c7660f513d47a91857f8df40e15ffe766df46227dc71f081d44abf71ed5ea86e28bfe70499e02325be8a4383140fbc6aac120144b8fe2b55db91d683d42491751b506f9619ac31892ebb4048917ed49217ba111cb397f7b2f6607d7ea7c8f9732d342cbf6846943952190b7c07b9ed85245534d7d3ecfdd66cf207f5e20791eb385352f4417238830764c5aea4737b877d26ec26da2a7ea1b96072f5d64ef6cccc393fad2207e96663e4fa7e1421535ac4e0c6261e320c82661522b12b61c318627f33136ed936b3bb5c9ccafebe35ca635e52495c857c46ba52ea4ebd0f23e228ef3769679249c2902cfc22e16adfa00d3b028b0cb7fc24b0c6f1e36c63817141270f4e5ea22a4fa110cbbdd47e3267be375fc55a87110ac1fd51a3f73e1d2ea4b8676aec1a01f7eb2311cab3c648089956fbbf2ff7259888d89182f90e670f1bf9a1b8d31398d079049fa6239a6066962049985c0ed0a28eaeda03f65a4e46367fd744672fa2e16d2b18d33db5a44e7f19ac9b7ad9414e6fbbba093ce9da9aa5f98bd63f9296aa08755642cf03e9f9fb7949f2d78f8e27a830fe9992c309f04ed9f759fedacd1430a76e11fe92cfdd31d3b1cd72dd50fe911e73381027ecdf6181842523a2c7d1f80944fc0c2c6dbc16ad48dca39781a77fbde877b32819e165138d280831b8461bc8f2131c5b67eac848b01fd4f3a3838b2e07b0eb345ecb01b32da7de739e7d4eb3a93e215a31a07123823ac6a5f8e2f8f2704b43d035349a44751c4671ae4409b6a18f9e5b5b27c00b0c61e423ff024f3d80157364ed88e4b7b7ffd7d1db362d727f70472b245129bb8a7dbbe4a334486aae3b0f881e28cda57186e00626289b6defbc62f4d1bb3a99a7b3b558b1772b2c9d0531e623cc0e661e457b9efeffd9b23fcf19f95387ada63e43d56ae7723bdff82a676179054a6b0f639f0819bde3e9799017665521aa5ff6abf0f68cc474ad2615daf805fd115d921a130716a3179d9a7af2fdac113496595712207934c400ff27049d18a50f69a28a4fdc1b890b446b8cea2eaf9608523a685286d371a78dbec8621228332307f5d327bd5a066786ac1bd23f8f22abc7d94cdaeaf504927165d5a0e5739320a537f114fd59b43f94bc6e09799a9893ed8ed2a1c3b86996f3045f9ec13e8417f87574f42ee68f2f4c6061805304fbc4e642c4b7d3f58cfc1f56ecd3c99c6678390ae91fe5344544142782ba41f0dd602c6acb0ef211e826ec11e6fb80227674a10393cdb7509d9a3df650cc7aeebd2309264d3da03687d86a3438dd80086e804e5f11576d3b6176db851cc5c8c80f2593036b716faba76bbeec6fea66ac8ca181a45edb93d7f9ef8d8163ca7f468417bef80df35455855ed2a7d763cd97520abf6d98eaa8ca81a91a43ce2aed97131e595b7a1add04c3b90adefd4ff41efd7000ac3842209b0319159fbc5a32f05907d5d467b177bceb24dabfbc43be1ef0a32fedfcefa1bcee0ed66d71010da28a416881da8896a5d871270b6f97235b00ac201596035a0ad331880721ba06ab06ccc818496798b172bd37fd4b96de1e06aef28e203755504440a65d784705690e89fb74d18f17c72c37b45f6b53ef768b22d649b13dbc361b9ec77caf4256a8e3818003e7b7ccb99fda1a526ab5ba03d374db09fd1e19d664fa58db7c6401d1322a0bcc1af5fba184cb251695a4e3f195b5961ae472989747145a7a4f64bc21e625483459b78c0a03268d92b34aee4c54eb350473abf2542e389ea1c0d0b75445f949034203d11b0660a245aa30a4f3e27e2ebdfb83339be7ad339af663a515c95d66ab9d2ecfe40fb13f2b79b4602f02b69aefe86ec71bd489bf55b1b9f0d05287fd87ff1d68d581ef0dfe710f19b3b2f4e3f3d0b7a31fb01ddcb4f69e46b96353e689681dd7cbb160ef516a33e33acf0ec19b3f07c29e18f86a53cf8b2500cacd883f680b2d59e2b5a57bfd5dbb9889b3c1ec88cfe8cb07c1f42369e5ee870978b0a8eb75f525cd0fa3261b7080dac0dbf7f5f8159e5be9eb3a7cd2bebab5c8bab69fc0d113a5d3835044ae4501684a6c35f5eb002940e698f3a7d0d795c151c21f6228d68380bd34264175d08732968828dc0111072aa4401dde5f2d38ab6f5e12824114e1792d996cd67f41d926d593585a5ab03e3291e1e6be0a73f9b31976829a2f6a2fda06a59aa2855c1032b64a01c4873006c8d49d32a3f5f8fbe546c0afa7e23cc44d79a63096b97f5142db12f49671a8e8ea7f9c32dc295fa72cd20c4f5e0daebb66d9bbfbd904eabd442a63ff1ecb88b8dae5c7ffabac9c243c41a4e2294cb7c3aec3f3b726968ea916a4f9bb852f09c81b68b922167d0bff45d9f2349c741e74c03c2fcd64ba8c40ef342a8d46ac457fc8575616c4e1211c87a688f3405d90c7101920e98613b0dcc064bb48d7d6152258e57ae1c98bb3ae0ff245e0068403c756789bf75ffbc04d20e3280bd19fe50d9e1f85b0d583cb796ab4178c1094cecba604bf93889319310c1f4b6710a15aeb45738575e93b81130b50e05f734f5552c2feb7f87b63ee648e68af91670cc80276ef6120e907417ef757ff7f5b7b143a09ee6130e5ede44550d17bc42352d491f3851848f16770d3963b2415379a43c3ee4b21e1dd0ccd538aab00c94be14049a3140c56f13daa0087a2900f9c4d9a6cc88b24f279600dcb26f3dc93cb9714d29837824969e0865efc9da181baa297df490b75b7942696bfb139bde50553173d24dd19e3c3030146a4421ab3f6638311312946a781f8c45beb95682433481f2fdf088373b81139b1a68eecfab0e2036f040d8af5df26464c38c2b33268d56ccfcf176cbe6144e948579993d1f646940bdaadc2accb4604a63945ab0c8526322ab4923f3c65464dcffac6d6ea27e1b500bec8c4c9232e3ce95d7885d54b737995385bf15fc952f8b0b6518812ba3d9049c0aa15a295ba8f74148080dc816c823edf4a0c3f8f13268fb4aee3fe0637344dbe8df2eec8324096a82a947e6fe8d97655d031dfec5005806c002e9af9b5101b5048aeafdb4d4edcb7d2a45597cd54634065bdc8e8725bf211e7a38375085c624c3e671902e832c93a0e9238f3638b825ee63e51e1f3cdc392bd891bf2b40f7e17e0d9f2e7aec046700842397f7e1c5df6f828f2541d1c019d90789171ea0bcdf2d3c0aa0a47bb4f55a0497229baab1fd7be30a173ea268c262af74fa687492c0cfee4d179ee85d97c8127da7d3bc65d6230c4878eec638c4cc239eb6916ed4343d57bc64f16220e33b50eadc13c030de539aa8d54d7dc4bdba3588c5a4e3bcf0dd453515a899f1993de5c59b19f4a2f68455aeb266133f9282b0d90704f3729439fdd94d2a94532aeff16f3a0602379c14302db2a49454be7898a07cec43a9c740dc8ad42dbb594e91c9295a7c1b8860bb16998b71dcb4533b651ffd1ab075e52a295a3b5ccb7abc48dabc6d649994fe86487588072bcc9045e23cad236277acd7fc81b5eae46576f9287d4fd33fdb2922336ca2f91ae48e90118df8719ebe5e91beba25261e843f57a23432985bda304751c2a8a90a5b7edf7220314c19af42a4c76c4c709aad8c6e30ffca3bec46e0a25e1a7d47b342a1b96351d3e014df786a9d7457f52484e21b5e66c348845cd4cc74834d888c8c99c1fafbf90c4ac081a702e89b49b23140d8fd5c161c61e0ae67a92b49544d1f7b327af539f46ab24dc2bf225312b086d3fd43893b7a37aecbc83db43da20783ff884ea3dd55561e142860d260a6633a3c36d5ed57a475a73f7666c91ff3b8b6be5712e4cd2370a78302153ff524691e0c6b492d36c54e9e7a85ee125b6dc5c6b5aa88cb2fe0a9758dcdb53508bc00965f398dd92b2abad7c4aff5fb46c642eb3589d2d808a0d4f4efb41d311187d6d661a8d56afacdb7d2c4aa7e3d414ae53fa2a98fe984b86e709e26c8f1e13bd59dfc680301567a043f8db689e57b894cd3c9550ff02b1b23ddc4ee317c95695c2a5325ed0b49b5b5e43f0af9b2b639c54e6df9a4757573f5638a00c71527b94d81e6ae591d97a3be483c74a12a274da27493f05df7c48abf32a09ca4b0ca21a1d4d79da022d8f66a40d55a1b2801294b7552f79c0a1a9a4e6bdc1374a2b5afd2eabf40732ab7ad862461aec1361fde6b20e461cfab924b61768474ab7c61a9f551f4a42cae0ec1d6673be8b0c7960863fba0cd3440323a47d2d8686f2b4cefb0f0a6b709b2c132184599bdeb67d99d00cf1ee7da0ab57ed47218912aca29022f918cfea32d54142935bff64d98a2fe4c3a11c6c8d275ab439cfcee04a99a1cb5a1888d65fd4e2e5d5cf6e6ac50f91cf865e3ee94a024c8e1a1178a384fd05ffec3ccf1d25fc36af64cfff84ae475a04ddaba64b3d57ce8640485edb51ee8d4bdf496002dd71dd14e35baebd37fce3214cc6168ce9a69a14300fd03d0fd9ab1eb2ee2d4f01823a0d19fd4feb722087d74539e4aef7402edc5d2bb72de732d35be3d90a16e5f42aef7232850a6c22b422c6cacba4c7c27027e17db74976c8fd21fbbf9e1cdd5b7f42c1fde3daff4d0bec960846fa956a279741439eb0b03ea569f47f8e4467fca69d9139b062c9cdd4473a088f56ae71817403c7dfa804c1e4cc73d05e4d531af3b2603f88f6a3abde1c8edf89fd36050c4cbbc47c52632cd0c1c48955af3ff97b449be22db0060076fd37b5c014885edf7a3db1aac1ba50d09b3579f61b7cfcaef90b6410d758f16134b244d9fc9daf0a86fd5f10d296c6c5c86bf738fdfae9324bb38bef42b0669de1460ae25f9b29f7c51dc6c73edc4ab93d00124646a25047de0c0b786f95c76e795a483e2d52b33477e968e167b4c8b5497c7897b463939b8d1f4ddb52584ace2741c273516d3c338028133ff65de7b78c4031af5d7d41fe55aaa8c8c9ebeaa2256b3ac47d982507726dcac82ee7a16828390fe3492824d0cba597e55130c3d35cbe23f84ee510a18d5b5371fa8d24ca03f22f0fc102294ae4ba1eb3f30a02a796dbbaec580677d10a1aa88940bcbe4b333bd82154de232273bf795088ccc4b3107cd05d9ab3629ef97122682064d5fc8507a3265c419b7f64d3d990613f5421dd8c23f796c7d4e9f61b9477bd7ae8135b4c812e0cd1dff29ee1fcc4ea5cc5ab886a8763c52455", 0x1000}, {&(0x7f0000001540)="816b39dc5131f7f9cfe041347e0fcc948b318d4e6d1a3f9b3efb", 0x1a}], 0x7, 0x75, 0x20) write(r0, &(0x7f0000001600)="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", 0x1000) 20:22:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5418, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:14 executing program 0 (fault-call:1 fault-nth:52): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 97.511391][ T9255] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 97.519752][ T9255] loop5: detected capacity change from 0 to 64 [ 97.529027][ T9255] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 97.559262][ T9278] FAULT_INJECTION: forcing a failure. [ 97.559262][ T9278] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.572579][ T9278] CPU: 1 PID: 9278 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 97.581258][ T9278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.591312][ T9278] Call Trace: [ 97.594599][ T9278] dump_stack_lvl+0xb7/0x103 [ 97.599194][ T9278] dump_stack+0x11/0x1a [ 97.603406][ T9278] should_fail+0x23c/0x250 20:22:14 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x0, 0x0) 20:22:14 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x3200c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x14e, 0x2}}, 0x0, 0x2, 0xffffffffffffffff, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x5b) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x6f) sendto$inet(r0, &(0x7f0000000080)="0e2cdd5c77f3cc6a0aa19f2b0f88b01dfbbca9d476b27ab3755eabd0c5bb96b7c2b25d103e8e79c46937a7c7587cc2d4741fc4f6a99e0e77acb8e486957e4986b8f3a599265435672b9c3d2de0c0340b474cfa468717a9baa8c3a8646bd73f8936f4c73f59a1cdea0f0876afc136c42f358cc75e4569947ebdcabead2bb3e293c0e8262684ac738fb046542c319ebed5a98e10fd3b2aff0cbd64d87717b7d670599ab5e8f2762ec163e01cee4b38e571c425aa99482d6c9e48ed01c43a30ba84636f238e3e1630f0ca", 0xc9, 0x20008000, &(0x7f0000000200)={0x2, 0x4e20, @rand_addr=0x64010100}, 0x10) ioctl$KDDELIO(0xffffffffffffffff, 0x4b35, 0x0) r1 = perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x1, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, r1, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, 0x0) ioctl$RNDADDENTROPY(0xffffffffffffffff, 0x40085203, 0x0) unshare(0x60000000) 20:22:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x541b, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:14 executing program 5 (fault-call:0 fault-nth:9): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 97.607948][ T9278] __alloc_pages+0x102/0x320 [ 97.612536][ T9278] alloc_pages+0x2e8/0x340 [ 97.616961][ T9278] get_zeroed_page+0x13/0x40 [ 97.621554][ T9278] get_image_page+0x2e/0x420 [ 97.626167][ T9278] memory_bm_create+0xa75/0x1510 [ 97.631132][ T9278] create_basic_memory_bitmaps+0xa3/0x400 [ 97.636941][ T9278] snapshot_open+0x19f/0x240 [ 97.641621][ T9278] ? snapshot_compat_ioctl+0x90/0x90 [ 97.647002][ T9278] misc_open+0x264/0x2a0 [ 97.651248][ T9278] chrdev_open+0x39c/0x420 20:22:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x541d, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 97.655665][ T9278] ? cd_forget+0x100/0x100 [ 97.660090][ T9278] do_dentry_open+0x529/0x850 [ 97.664879][ T9278] vfs_open+0x43/0x50 [ 97.668892][ T9278] path_openat+0x1787/0x1f20 [ 97.673496][ T9278] ? __alloc_pages+0x194/0x320 [ 97.678357][ T9278] do_filp_open+0xe9/0x200 [ 97.682781][ T9278] ? alloc_fd+0x388/0x3e0 [ 97.687150][ T9278] do_sys_openat2+0xa3/0x250 [ 97.691743][ T9278] ? __cond_resched+0x11/0x40 [ 97.696420][ T9278] __x64_sys_openat+0xef/0x110 [ 97.701177][ T9278] do_syscall_64+0x3d/0x90 [ 97.705584][ T9278] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 97.711468][ T9278] RIP: 0033:0x4665e9 [ 97.715349][ T9278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 97.734945][ T9278] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 97.743452][ T9278] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 97.751500][ T9278] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 97.759631][ T9278] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 97.767617][ T9278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 97.775576][ T9278] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:14 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x84000, 0x0) preadv(r1, &(0x7f0000000680)=[{&(0x7f0000000140)=""/234, 0xea}, {&(0x7f00000004c0)=""/163, 0xa3}, {&(0x7f0000000580)=""/225, 0xe1}], 0x3, 0x10000, 0x9) preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/56, 0x38}, {&(0x7f0000000400)=""/153, 0x99}, {&(0x7f0000000380)=""/90, 0x5a}, {&(0x7f0000000280)=""/197, 0xc5}], 0x4, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = creat(&(0x7f0000000740)='./file0\x00', 0x80) mount$9p_fd(0x0, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), 0x2250814, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_uid={'access', 0x3d, 0xee01}}, {@version_L}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}, {@posixacl}, {@access_user}], [{@subj_role={'subj_role', 0x3d, '/dev/vcs\x00'}}, {@obj_type={'obj_type', 0x3d, '/dev/vcs\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x7}}, {@obj_type={'obj_type', 0x3d, '/.!-(}'}}, {@subj_role={'subj_role', 0x3d, '/dev/vcs\x00'}}, {@audit}]}}) 20:22:14 executing program 1: set_mempolicy(0x1, &(0x7f0000000000)=0x7fff, 0x4) unshare(0x62000200) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0], 0x190) accept$inet(r0, 0x0, &(0x7f0000000080)) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000280)={'ip6gre0\x00', {0x2, 0x0, @broadcast}}) 20:22:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x541e, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:14 executing program 0 (fault-call:1 fault-nth:53): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 97.861482][ T9320] FAULT_INJECTION: forcing a failure. [ 97.861482][ T9320] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.874862][ T9320] CPU: 1 PID: 9320 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 97.883541][ T9320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.883557][ T9320] Call Trace: [ 97.883563][ T9320] dump_stack_lvl+0xb7/0x103 [ 97.883614][ T9320] dump_stack+0x11/0x1a [ 97.883635][ T9320] should_fail+0x23c/0x250 [ 97.883665][ T9320] __alloc_pages+0x102/0x320 [ 97.883686][ T9320] alloc_pages_vma+0x513/0x680 [ 97.883707][ T9320] shmem_getpage_gfp+0x954/0x13d0 [ 97.883730][ T9320] ? policydb_context_isvalid+0x135/0x230 [ 97.883780][ T9320] shmem_write_begin+0x7e/0x100 [ 97.883800][ T9320] generic_perform_write+0x196/0x3c0 [ 97.883829][ T9320] __generic_file_write_iter+0x161/0x300 [ 97.883887][ T9320] ? generic_write_checks+0x250/0x290 20:22:14 executing program 5 (fault-call:0 fault-nth:10): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 97.883907][ T9320] generic_file_write_iter+0x75/0x130 [ 97.883931][ T9320] vfs_write+0x69d/0x770 [ 97.883957][ T9320] __x64_sys_pwrite64+0xf5/0x150 [ 97.883977][ T9320] do_syscall_64+0x3d/0x90 [ 97.883997][ T9320] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 97.884018][ T9320] RIP: 0033:0x419787 [ 97.884029][ T9320] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 97.884042][ T9320] RSP: 002b:00007f2d23a98f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 97.884131][ T9320] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 97.884144][ T9320] RDX: 000000000000000c RSI: 0000000020010500 RDI: 0000000000000004 [ 97.884157][ T9320] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 97.884170][ T9320] R10: 0000000000004000 R11: 0000000000000293 R12: 0000000000000004 [ 97.884183][ T9320] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 97.893938][ T9333] FAULT_INJECTION: forcing a failure. [ 97.893938][ T9333] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.893963][ T9333] CPU: 0 PID: 9333 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 97.894004][ T9333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.894014][ T9333] Call Trace: [ 97.894021][ T9333] dump_stack_lvl+0xb7/0x103 [ 97.894042][ T9333] dump_stack+0x11/0x1a [ 97.894057][ T9333] should_fail+0x23c/0x250 [ 97.894078][ T9333] __alloc_pages+0x102/0x320 [ 97.894105][ T9333] alloc_pages+0x2e8/0x340 [ 97.894125][ T9333] get_zeroed_page+0x13/0x40 [ 97.894260][ T9333] get_image_page+0x2e/0x420 [ 97.894281][ T9333] memory_bm_create+0xa75/0x1510 [ 97.894314][ T9333] create_basic_memory_bitmaps+0xa3/0x400 [ 97.894334][ T9333] snapshot_open+0x19f/0x240 [ 97.894355][ T9333] ? snapshot_compat_ioctl+0x90/0x90 [ 97.894513][ T9333] misc_open+0x264/0x2a0 [ 97.894529][ T9333] chrdev_open+0x39c/0x420 [ 97.894553][ T9333] ? cd_forget+0x100/0x100 [ 97.894651][ T9333] do_dentry_open+0x529/0x850 [ 97.894672][ T9333] vfs_open+0x43/0x50 [ 97.894687][ T9333] path_openat+0x1787/0x1f20 [ 97.923732][ T9320] loop5: detected capacity change from 0 to 64 [ 97.925764][ T9333] ? __alloc_pages+0x194/0x320 [ 97.925790][ T9333] do_filp_open+0xe9/0x200 [ 97.941092][ T9320] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 97.941219][ T9333] ? alloc_fd+0x388/0x3e0 [ 98.203236][ T9333] do_sys_openat2+0xa3/0x250 20:22:14 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x0, 0x0) 20:22:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x541e, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:14 executing program 0 (fault-call:1 fault-nth:54): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 98.203325][ T9333] ? __cond_resched+0x11/0x40 [ 98.203341][ T9333] __x64_sys_openat+0xef/0x110 [ 98.203352][ T9333] do_syscall_64+0x3d/0x90 [ 98.203363][ T9333] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 98.203421][ T9333] RIP: 0033:0x4665e9 [ 98.203432][ T9333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 98.203508][ T9333] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 98.203520][ T9333] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 98.203527][ T9333] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 98.203533][ T9333] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 98.203540][ T9333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 98.203547][ T9333] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 98.275222][ T9352] FAULT_INJECTION: forcing a failure. [ 98.275222][ T9352] name failslab, interval 1, probability 0, space 0, times 0 [ 98.338044][ T9352] CPU: 1 PID: 9352 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 20:22:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}]) 20:22:15 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5421, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 98.338065][ T9352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 20:22:15 executing program 5 (fault-call:0 fault-nth:11): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:15 executing program 0 (fault-call:1 fault-nth:55): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 98.338073][ T9352] Call Trace: [ 98.338080][ T9352] dump_stack_lvl+0xb7/0x103 [ 98.338099][ T9352] dump_stack+0x11/0x1a [ 98.338111][ T9352] should_fail+0x23c/0x250 [ 98.338129][ T9352] ? xas_create+0x3fb/0xb30 [ 98.338142][ T9352] __should_failslab+0x81/0x90 [ 98.338212][ T9352] should_failslab+0x5/0x20 [ 98.338226][ T9352] kmem_cache_alloc+0x46/0x2e0 [ 98.338243][ T9352] xas_create+0x3fb/0xb30 [ 98.338256][ T9352] xas_create_range+0x146/0x360 [ 98.338309][ T9352] shmem_add_to_page_cache+0x3ad/0x650 [ 98.338324][ T9352] shmem_getpage_gfp+0xb8f/0x13d0 [ 98.338343][ T9352] ? policydb_context_isvalid+0x135/0x230 [ 98.338361][ T9352] shmem_write_begin+0x7e/0x100 [ 98.338374][ T9352] generic_perform_write+0x196/0x3c0 [ 98.338429][ T9352] __generic_file_write_iter+0x161/0x300 [ 98.338463][ T9352] ? generic_write_checks+0x250/0x290 [ 98.338478][ T9352] generic_file_write_iter+0x75/0x130 [ 98.338494][ T9352] vfs_write+0x69d/0x770 [ 98.338508][ T9352] __x64_sys_pwrite64+0xf5/0x150 [ 98.338522][ T9352] do_syscall_64+0x3d/0x90 [ 98.338537][ T9352] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 98.338570][ T9352] RIP: 0033:0x419787 [ 98.338582][ T9352] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 98.338595][ T9352] RSP: 002b:00007f2d23a98f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 98.338610][ T9352] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 98.338618][ T9352] RDX: 000000000000000c RSI: 0000000020010500 RDI: 0000000000000004 [ 98.338627][ T9352] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 98.338635][ T9352] R10: 0000000000004000 R11: 0000000000000293 R12: 0000000000000004 [ 98.338722][ T9352] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 98.369121][ T9352] loop5: detected capacity change from 0 to 64 [ 98.377645][ T9352] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 98.391827][ T9360] FAULT_INJECTION: forcing a failure. [ 98.391827][ T9360] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 98.391849][ T9360] CPU: 1 PID: 9360 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 98.391867][ T9360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 98.391875][ T9360] Call Trace: [ 98.391881][ T9360] dump_stack_lvl+0xb7/0x103 [ 98.391898][ T9360] dump_stack+0x11/0x1a [ 98.391915][ T9360] should_fail+0x23c/0x250 [ 98.391939][ T9360] __alloc_pages+0x102/0x320 [ 98.391960][ T9360] alloc_pages+0x2e8/0x340 [ 98.392033][ T9360] get_zeroed_page+0x13/0x40 [ 98.392049][ T9360] get_image_page+0x2e/0x420 [ 98.392070][ T9360] memory_bm_create+0xa75/0x1510 [ 98.392087][ T9360] create_basic_memory_bitmaps+0xa3/0x400 [ 98.392105][ T9360] snapshot_open+0x19f/0x240 [ 98.392234][ T9360] ? snapshot_compat_ioctl+0x90/0x90 [ 98.392261][ T9360] misc_open+0x264/0x2a0 [ 98.392354][ T9360] chrdev_open+0x39c/0x420 [ 98.392523][ T9360] ? cd_forget+0x100/0x100 [ 98.392631][ T9360] do_dentry_open+0x529/0x850 [ 98.392647][ T9360] vfs_open+0x43/0x50 [ 98.392663][ T9360] path_openat+0x1787/0x1f20 [ 98.392684][ T9360] ? __alloc_pages+0x194/0x320 [ 98.392768][ T9360] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 98.392786][ T9360] do_filp_open+0xe9/0x200 [ 98.392802][ T9360] ? alloc_fd+0x388/0x3e0 [ 98.392821][ T9360] do_sys_openat2+0xa3/0x250 [ 98.392996][ T9360] ? __cond_resched+0x11/0x40 [ 98.393025][ T9360] __x64_sys_openat+0xef/0x110 [ 98.393044][ T9360] do_syscall_64+0x3d/0x90 [ 98.393065][ T9360] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 98.393101][ T9360] RIP: 0033:0x4665e9 [ 98.393114][ T9360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 98.393127][ T9360] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 98.393142][ T9360] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 98.393151][ T9360] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 98.393160][ T9360] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 98.393170][ T9360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 98.393178][ T9360] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 98.409459][ T9364] loop3: detected capacity change from 0 to 1 [ 98.431191][ T9367] FAULT_INJECTION: forcing a failure. [ 98.431191][ T9367] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 98.431288][ T9367] CPU: 1 PID: 9367 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 98.431306][ T9367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 98.431315][ T9367] Call Trace: [ 98.431322][ T9367] dump_stack_lvl+0xb7/0x103 [ 98.431342][ T9367] dump_stack+0x11/0x1a [ 98.431357][ T9367] should_fail+0x23c/0x250 [ 98.431380][ T9367] __alloc_pages+0x102/0x320 [ 98.431398][ T9367] alloc_pages+0x2e8/0x340 [ 98.431416][ T9367] get_zeroed_page+0x13/0x40 [ 98.431466][ T9367] get_image_page+0x2e/0x420 [ 98.431485][ T9367] memory_bm_create+0xa75/0x1510 [ 98.431531][ T9367] create_basic_memory_bitmaps+0xa3/0x400 [ 98.431619][ T9367] snapshot_open+0x19f/0x240 [ 98.431637][ T9367] ? snapshot_compat_ioctl+0x90/0x90 [ 98.431658][ T9367] misc_open+0x264/0x2a0 [ 98.431675][ T9367] chrdev_open+0x39c/0x420 [ 98.431697][ T9367] ? cd_forget+0x100/0x100 [ 98.431720][ T9367] do_dentry_open+0x529/0x850 [ 98.431775][ T9367] vfs_open+0x43/0x50 [ 98.431803][ T9367] path_openat+0x1787/0x1f20 [ 98.431825][ T9367] ? __alloc_pages+0x194/0x320 [ 98.431880][ T9367] do_filp_open+0xe9/0x200 [ 98.431900][ T9367] ? alloc_fd+0x388/0x3e0 [ 98.431917][ T9367] do_sys_openat2+0xa3/0x250 [ 98.431929][ T9367] ? __cond_resched+0x11/0x40 [ 98.431952][ T9367] __x64_sys_openat+0xef/0x110 [ 98.431970][ T9367] do_syscall_64+0x3d/0x90 [ 98.432062][ T9367] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 98.432085][ T9367] RIP: 0033:0x4665e9 [ 98.432100][ T9367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 98.432116][ T9367] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 98.432182][ T9367] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 98.432193][ T9367] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 98.432202][ T9367] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 98.432212][ T9367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 98.432221][ T9367] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 98.467420][ T9370] FAULT_INJECTION: forcing a failure. [ 98.467420][ T9370] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 99.093396][ T9370] CPU: 1 PID: 9370 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 99.102345][ T9370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.112581][ T9370] Call Trace: [ 99.115946][ T9370] dump_stack_lvl+0xb7/0x103 [ 99.120553][ T9370] dump_stack+0x11/0x1a [ 99.124761][ T9370] should_fail+0x23c/0x250 [ 99.129230][ T9370] should_fail_usercopy+0x16/0x20 [ 99.134590][ T9370] copy_page_from_iter_atomic+0x2c1/0xba0 [ 99.140388][ T9370] ? shmem_write_begin+0x7e/0x100 [ 99.145411][ T9370] generic_perform_write+0x1df/0x3c0 [ 99.150699][ T9370] __generic_file_write_iter+0x161/0x300 [ 99.156432][ T9370] ? generic_write_checks+0x250/0x290 20:22:15 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fsmount(r0, 0x1, 0x79) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:15 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5423, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:15 executing program 0 (fault-call:1 fault-nth:56): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:15 executing program 1: r0 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x800002, 0x11, r0, 0x0) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000200)='system_u:object_r:auth_cache_t:s0\x00', 0x22, 0x1) setxattr$incfs_metadata(&(0x7f0000000240)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)="524f430b488ac109694d7999840cbcae469e4a9e9eecdc79cf4200115ec33a3324b59c85d176bdff5c509509e40cdfa28e39159befdf73402e1d6cc0d5345727f6d6aef818475626a0545e09b52baa99638e178ca1dd516ba67decced3587e69f1e26762079a1b30aaead78e006ebe75047d20399c65b1a85eb3aa8289238e238c65d8beffbc71ea991df7bea636dbb56be8a1d2a75471b4941aca3dfc863d2ed24694d70cdfc7824c945734", 0xac, 0x1) r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ftruncate(r1, 0x8200) r2 = syz_io_uring_setup(0x3ffe, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000280)) io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)=""/151, 0x97}, {&(0x7f00000001c0)=""/17, 0x11}, {&(0x7f00000003c0), 0xf0000}], 0x3) 20:22:15 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @remote}, 0x1c) 20:22:15 executing program 2: mmap(&(0x7f000033d000/0x2000)=nil, 0x2000, 0x80000e, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r0 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r0, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 99.161818][ T9370] generic_file_write_iter+0x75/0x130 [ 99.167251][ T9370] vfs_write+0x69d/0x770 [ 99.171636][ T9370] __x64_sys_pwrite64+0xf5/0x150 [ 99.176590][ T9370] do_syscall_64+0x3d/0x90 [ 99.181064][ T9370] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 99.187003][ T9370] RIP: 0033:0x419787 [ 99.190899][ T9370] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 99.210744][ T9370] RSP: 002b:00007f2d23a98f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 99.219244][ T9370] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 99.227350][ T9370] RDX: 000000000000000c RSI: 0000000020010500 RDI: 0000000000000004 [ 99.235536][ T9370] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 99.243538][ T9370] R10: 0000000000004000 R11: 0000000000000293 R12: 0000000000000004 [ 99.249172][ T9395] FAULT_INJECTION: forcing a failure. [ 99.249172][ T9395] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 99.251624][ T9370] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 99.273132][ T9395] CPU: 0 PID: 9395 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 99.281904][ T9395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.292064][ T9395] Call Trace: [ 99.295478][ T9395] dump_stack_lvl+0xb7/0x103 [ 99.300062][ T9395] dump_stack+0x11/0x1a [ 99.304213][ T9395] should_fail+0x23c/0x250 [ 99.308629][ T9395] __alloc_pages+0x102/0x320 [ 99.313320][ T9395] alloc_pages+0x2e8/0x340 [ 99.317930][ T9395] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 99.323539][ T9395] get_zeroed_page+0x13/0x40 [ 99.328156][ T9395] get_image_page+0x2e/0x420 [ 99.332773][ T9395] memory_bm_create+0xa75/0x1510 [ 99.337722][ T9395] create_basic_memory_bitmaps+0xa3/0x400 [ 99.343550][ T9395] snapshot_open+0x19f/0x240 [ 99.348152][ T9395] ? snapshot_compat_ioctl+0x90/0x90 [ 99.353711][ T9395] misc_open+0x264/0x2a0 [ 99.357963][ T9395] chrdev_open+0x39c/0x420 [ 99.362503][ T9395] ? cd_forget+0x100/0x100 [ 99.367018][ T9395] do_dentry_open+0x529/0x850 [ 99.371849][ T9395] vfs_open+0x43/0x50 [ 99.375833][ T9395] path_openat+0x1787/0x1f20 [ 99.380563][ T9395] ? __alloc_pages+0x194/0x320 [ 99.385332][ T9395] do_filp_open+0xe9/0x200 [ 99.389809][ T9395] ? alloc_fd+0x388/0x3e0 [ 99.394170][ T9395] do_sys_openat2+0xa3/0x250 [ 99.398935][ T9395] ? __cond_resched+0x11/0x40 [ 99.403618][ T9395] __x64_sys_openat+0xef/0x110 [ 99.408407][ T9395] do_syscall_64+0x3d/0x90 [ 99.412834][ T9395] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 99.418911][ T9395] RIP: 0033:0x4665e9 [ 99.422889][ T9395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 99.442583][ T9395] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 99.451015][ T9395] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}]) 20:22:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5424, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:16 executing program 1: unshare(0x4a060480) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) set_mempolicy(0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') r2 = socket$netlink(0x10, 0x3, 0x4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000300)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r4) sendmsg$IPVS_CMD_DEL_DAEMON(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400a6d0df3762bb000000001f14f94837000032ac67001464c99db583cff61fdafbf14cf1760fff4fd5cae76cc46fb8717c0a15683cd5b3e883df009aa7fa5cc6371ab96229472b6a4af026bd35a7b91725c5b03ae679d07414a528afff44b6a0bbe9df414e5a7d01342bef0ac9fb7ccc811ded3a0316d77991134bfa00"/135, @ANYRES16=r5, @ANYBLOB='!\x00\x00\x00\x00@\x00\x00\x00\x00\t\x00\x00\x00'], 0x14}}, 0x0) r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x71e) close_range(r0, r6, 0x2) r7 = signalfd(0xffffffffffffffff, &(0x7f0000000180)={[0x1f]}, 0x8) ioctl$EVIOCGABS0(r7, 0x80184540, &(0x7f00000001c0)=""/47) sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20020010}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x1c, r5, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1d848abed890e888}, 0x4000040) 20:22:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) timer_create(0x0, &(0x7f0000000100)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) r2 = msgget$private(0x0, 0x0) msgsnd(r2, &(0x7f00000001c0)={0x1, "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"}, 0x2000, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000000000)={{0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}) msgctl$MSG_STAT(r2, 0xb, &(0x7f0000000840)=""/176) r3 = socket$inet6(0xa, 0x2, 0x0) openat$cgroup_ro(r0, &(0x7f0000000040)='memory.swap.current\x00', 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x7, 0x6, &(0x7f00000006c0)=[{&(0x7f0000000140)="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", 0xfa, 0x6}, {&(0x7f0000000280)="555298130f30dbf74ebe8e8f0d0dfb6843216420704914ca664a09772f3f5055cc3555335fb198800b2188ec688f0efee7e0fadd58f1ce9c1f0abb4a12c2752a2b118e20477ce27795a8a87f0f1c9d2964d08e2d276bf7c86b050c2e52322e3089fd68026d3c273db050e576fcacb01c47261e77429a524c806fb91d1e60901e505070124c49ce0c6eb74d539c3c0216ae7c6ce5e59d6e42c60d542b3abe7a1d3ffd984ba6ad8c36df1978fe6d1f451227cca3e1abfa6e09386553f9f55035b66b60fc1390181177239f57fcd4af78dc353383e21914da501e00d36032deccaf7e1936", 0xe3, 0x7f}, {&(0x7f0000000380)="a2afe33c5ec262437b3f1bdc1d33c721a5e78dd20572de01665d62fcbec87d883de413e9f432865d8a8b4dce83dedf546738d8b39568d3924524c9ce22b50d9b8a97650f5c59580f3c75c244ca17db73ff3dfebd93647b69b63191a642cbf3cc0e77ffba2b3e3017ad93864098b8cb5f7a0950e11eaf02f78ec7bd570231f42c3745b6647730d6e00267758e83ec2009640112c73bc03c81a548b9d629cadceec6696c95259d3fa3acd608f44a010919e7a26cc4908daea4d7c495e4b550d1a6909c0ba91b2fbff1d5f3305981a187967d77c1048b936ed686dea365c8ae0ba513f4dc", 0xe3, 0x7}, {&(0x7f0000000480)="16eab81443b5c20bb620dfbc8e08ca5b56fff24bf244c1dd7f1e20fc3da670b1ed899f3e5ff003fa6aaf8c30bb472bd1c9e72cd593dabdca96d757b947467a66ada064ba3d17b23d75b3857874f211efca660d2e17bfbc268c2b6e1cb57ea6c18c0b8912b2e72f46942421540344e5679e7e866e1b4196e663cb445498845525ce67e5de592c0d675a540cc3524047898bd4ff2748d96c7571930382cf7341a29124a10ca9236c879a8299cd6436919be880b00cd8889972fffaa7369e947373e5d8e1e414efb13b9397a7b3be86", 0xce, 0x4}, {&(0x7f0000000580)="183684ccd0951ebad60fce8d01eac27f23d9becd94a784312d2efc31e1a9661884432e94092ba90ab171d92b23d481cc2906a3122dae6519262448da84a10667e0f2c421649c4ba274a5399e1d0d46762d023bfabe1cb947e354fce7cca2173dcc10490d917c2f11674199da024d80cf892af280013854cdd85e8cddd13fbbb712", 0x81, 0x4}, {&(0x7f0000000640)="8d07eb40e966e18e499d88d60a45a478a96f82f3af280ef655971283f3e783987e840043bbb14d90c12824b9683e2355ffe2b8218c2f6366961021514f869221dccb94580fb3df7baf12452907fcd61515970a71b3d9afa734bb", 0x5a, 0x7}], 0x2000a2, &(0x7f0000000780)={[{@jqfmt_vfsold}, {@debug}, {@auto_da_alloc}, {@i_version}, {@nolazytime}, {@data_err_ignore}, {@jqfmt_vfsv1}], [{@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@hash}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@pcr={'pcr', 0x3d, 0x22}}]}) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) fcntl$setown(r3, 0x8, 0xffffffffffffffff) [ 99.459007][ T9395] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 99.467065][ T9395] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 99.475090][ T9395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 99.480828][ T9404] loop5: detected capacity change from 0 to 64 [ 99.483066][ T9395] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 99.495529][ T9408] loop3: detected capacity change from 0 to 1 20:22:16 executing program 0 (fault-call:1 fault-nth:57): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5427, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 99.552617][ T9412] device lo entered promiscuous mode 20:22:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}]) [ 99.588904][ T9404] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 99.602104][ T9423] FAULT_INJECTION: forcing a failure. [ 99.602104][ T9423] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 99.615432][ T9423] CPU: 1 PID: 9423 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 99.624100][ T9423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.634155][ T9423] Call Trace: [ 99.637434][ T9423] dump_stack_lvl+0xb7/0x103 [ 99.642018][ T9423] dump_stack+0x11/0x1a [ 99.646198][ T9423] should_fail+0x23c/0x250 [ 99.650714][ T9423] __alloc_pages+0x102/0x320 [ 99.655499][ T9423] alloc_pages+0x2e8/0x340 [ 99.659952][ T9423] get_zeroed_page+0x13/0x40 [ 99.664731][ T9423] get_image_page+0x2e/0x420 [ 99.669413][ T9423] memory_bm_create+0xa75/0x1510 [ 99.674375][ T9423] create_basic_memory_bitmaps+0xa3/0x400 [ 99.680417][ T9423] snapshot_open+0x19f/0x240 [ 99.685013][ T9423] ? snapshot_compat_ioctl+0x90/0x90 [ 99.690367][ T9423] misc_open+0x264/0x2a0 [ 99.694613][ T9423] chrdev_open+0x39c/0x420 [ 99.699058][ T9423] ? cd_forget+0x100/0x100 [ 99.703621][ T9423] do_dentry_open+0x529/0x850 [ 99.708478][ T9423] vfs_open+0x43/0x50 [ 99.712462][ T9423] path_openat+0x1787/0x1f20 [ 99.717066][ T9423] ? __alloc_pages+0x194/0x320 [ 99.721851][ T9423] do_filp_open+0xe9/0x200 [ 99.726274][ T9423] ? alloc_fd+0x388/0x3e0 [ 99.730772][ T9423] do_sys_openat2+0xa3/0x250 [ 99.735359][ T9423] ? __cond_resched+0x11/0x40 [ 99.740039][ T9423] __x64_sys_openat+0xef/0x110 [ 99.744823][ T9423] do_syscall_64+0x3d/0x90 [ 99.749310][ T9423] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 99.755236][ T9423] RIP: 0033:0x4665e9 [ 99.759185][ T9423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 99.765696][ T9433] device lo entered promiscuous mode 20:22:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 99.778809][ T9423] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 99.778835][ T9423] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 99.778846][ T9423] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 99.778857][ T9423] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 99.778868][ T9423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 99.824666][ T9423] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:16 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r1 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setattr(r1, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setattr(r1, &(0x7f0000000080)={0x38, 0x2, 0x10000015, 0x1, 0x8ac, 0x1f, 0x6, 0x5, 0x8, 0x3}, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/diskstats\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r4, 0x0, 0x4000000000010046) recvmmsg(r0, &(0x7f00000018c0)=[{{&(0x7f00000002c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000380)=""/159, 0x9f}, {&(0x7f0000000440)=""/198, 0xc6}, {&(0x7f0000000540)=""/144, 0x90}, {&(0x7f00000001c0)=""/20, 0x14}, {&(0x7f0000001a00)=""/58, 0x3a}, {&(0x7f0000001a40)=""/77, 0x4d}, {&(0x7f0000001ac0)=""/37, 0x25}], 0x7, &(0x7f0000000640)=""/109, 0x6d}, 0x9}, {{&(0x7f00000006c0)=@qipcrtr, 0x80, &(0x7f0000000900)=[{&(0x7f0000000740)=""/176, 0xb0}, {&(0x7f0000000800)=""/58, 0x3a}, {&(0x7f0000000840)=""/175, 0xaf}], 0x3, &(0x7f0000000940)=""/113, 0x71}, 0x37}, {{0x0, 0x0, &(0x7f0000001c00)=[{&(0x7f00000009c0)=""/211, 0xd3}, {&(0x7f0000000ac0)=""/229, 0xe5}, {&(0x7f0000000bc0)=""/178, 0xb2}, {&(0x7f0000000c80)=""/99, 0x63}, {&(0x7f0000001b80)=""/83, 0x53}], 0x5, &(0x7f0000000d40)=""/85, 0x55}, 0x800}, {{&(0x7f0000000dc0)=@nl=@proc, 0x80, &(0x7f0000001140)=[{&(0x7f0000000e40)=""/206, 0xce}, {&(0x7f0000000f40)=""/89, 0x59}, {&(0x7f0000000fc0)=""/68, 0x44}, {&(0x7f0000001040)=""/50, 0x32}, {&(0x7f0000001080)=""/147, 0x93}], 0x5, &(0x7f00000011c0)=""/58, 0x3a}, 0x3}, {{&(0x7f0000001200)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f0000001800)=[{&(0x7f0000001280)=""/121, 0x79}, {&(0x7f0000001300)=""/217, 0xd9}, {&(0x7f0000001400)=""/29, 0x1d}, {&(0x7f0000001440)=""/139, 0x8b}, {&(0x7f0000001500)=""/223, 0xdf}, {&(0x7f0000001600)=""/242, 0xf2}, {&(0x7f0000001700)=""/40, 0x28}, {&(0x7f0000001740)=""/155, 0x9b}], 0x8, &(0x7f0000001880)=""/23, 0x17}, 0x1}], 0x5, 0x1, 0x0) r5 = getpgid(r1) sched_setattr(r5, &(0x7f0000000180)={0x38, 0x2, 0x8, 0x81, 0x3, 0x80000000, 0x5, 0x6, 0x1, 0x3f}, 0x0) prlimit64(0x0, 0x5, &(0x7f0000000000)={0xfffffffffffff001, 0x2}, &(0x7f0000000040)) sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) unshare(0x40000000) 20:22:16 executing program 0 (fault-call:1 fault-nth:58): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 99.863685][ T9445] loop3: detected capacity change from 0 to 1 [ 99.899105][ T9453] FAULT_INJECTION: forcing a failure. [ 99.899105][ T9453] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 99.901548][ T9456] loop5: detected capacity change from 0 to 64 [ 99.912365][ T9453] CPU: 1 PID: 9453 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 99.912389][ T9453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.912399][ T9453] Call Trace: [ 99.912406][ T9453] dump_stack_lvl+0xb7/0x103 [ 99.926441][ T9456] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 99.927279][ T9453] dump_stack+0x11/0x1a [ 99.958647][ T9453] should_fail+0x23c/0x250 20:22:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 99.963084][ T9453] __alloc_pages+0x102/0x320 [ 99.967677][ T9453] alloc_pages+0x2e8/0x340 [ 99.972188][ T9453] get_zeroed_page+0x13/0x40 [ 99.976824][ T9453] get_image_page+0x2e/0x420 [ 99.981563][ T9453] memory_bm_create+0xa75/0x1510 [ 99.986507][ T9453] create_basic_memory_bitmaps+0xa3/0x400 [ 99.992251][ T9453] snapshot_open+0x19f/0x240 [ 99.996847][ T9453] ? snapshot_compat_ioctl+0x90/0x90 [ 100.002155][ T9453] misc_open+0x264/0x2a0 [ 100.006452][ T9453] chrdev_open+0x39c/0x420 [ 100.010961][ T9453] ? cd_forget+0x100/0x100 [ 100.015383][ T9453] do_dentry_open+0x529/0x850 [ 100.020175][ T9453] vfs_open+0x43/0x50 [ 100.024270][ T9453] path_openat+0x1787/0x1f20 [ 100.029010][ T9453] ? __alloc_pages+0x194/0x320 [ 100.033956][ T9453] do_filp_open+0xe9/0x200 [ 100.038538][ T9453] ? alloc_fd+0x388/0x3e0 [ 100.042959][ T9453] do_sys_openat2+0xa3/0x250 [ 100.047554][ T9453] ? __cond_resched+0x11/0x40 [ 100.052247][ T9453] __x64_sys_openat+0xef/0x110 [ 100.057070][ T9453] do_syscall_64+0x3d/0x90 20:22:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5428, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 100.061492][ T9453] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 100.067484][ T9453] RIP: 0033:0x4665e9 [ 100.071382][ T9453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 100.091249][ T9453] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 100.099800][ T9453] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5437, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5441, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:16 executing program 0 (fault-call:1 fault-nth:59): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 100.108041][ T9453] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 100.116026][ T9453] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 100.124083][ T9453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 100.132058][ T9453] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 100.207737][ T9479] loop5: detected capacity change from 0 to 64 [ 100.249566][ T9479] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 100.289349][ T9488] FAULT_INJECTION: forcing a failure. [ 100.289349][ T9488] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 100.303793][ T9488] CPU: 1 PID: 9488 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 100.312471][ T9488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.322705][ T9488] Call Trace: [ 100.325984][ T9488] dump_stack_lvl+0xb7/0x103 [ 100.330673][ T9488] dump_stack+0x11/0x1a [ 100.334880][ T9488] should_fail+0x23c/0x250 [ 100.339426][ T9488] __alloc_pages+0x102/0x320 [ 100.344287][ T9488] alloc_pages+0x2e8/0x340 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800000, 0x20010, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f0000000040)={0x2000}) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) syncfs(r1) 20:22:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {0x0, 0x0, 0x102}]) [ 100.348794][ T9488] get_zeroed_page+0x13/0x40 [ 100.353729][ T9488] get_image_page+0x2e/0x420 [ 100.358311][ T9488] memory_bm_create+0xa75/0x1510 [ 100.363251][ T9488] create_basic_memory_bitmaps+0xa3/0x400 [ 100.368972][ T9488] snapshot_open+0x19f/0x240 [ 100.373610][ T9488] ? snapshot_compat_ioctl+0x90/0x90 [ 100.378921][ T9488] misc_open+0x264/0x2a0 [ 100.383168][ T9488] chrdev_open+0x39c/0x420 [ 100.387759][ T9488] ? cd_forget+0x100/0x100 [ 100.392180][ T9488] do_dentry_open+0x529/0x850 20:22:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5450, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 100.396945][ T9488] vfs_open+0x43/0x50 [ 100.400939][ T9488] path_openat+0x1787/0x1f20 [ 100.405611][ T9488] ? __alloc_pages+0x194/0x320 [ 100.410456][ T9488] do_filp_open+0xe9/0x200 [ 100.414970][ T9488] ? alloc_fd+0x388/0x3e0 [ 100.419318][ T9488] do_sys_openat2+0xa3/0x250 [ 100.424104][ T9488] ? __cond_resched+0x11/0x40 [ 100.428966][ T9488] __x64_sys_openat+0xef/0x110 [ 100.433853][ T9488] do_syscall_64+0x3d/0x90 [ 100.438275][ T9488] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 100.444263][ T9488] RIP: 0033:0x4665e9 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) accept4$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000080)=0x1c, 0x800) [ 100.448176][ T9488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 100.468400][ T9488] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 100.476860][ T9488] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 100.485125][ T9488] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 100.494315][ T9488] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 100.502308][ T9488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 100.510370][ T9488] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 100.525954][ T9500] loop3: detected capacity change from 0 to 1 [ 100.559979][ T9519] loop5: detected capacity change from 0 to 64 [ 100.576840][ T9519] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000040)="109535192793d3423d43ce9b7283bcd7c9b2c4b154c8e4cb4c3408c3aa8a1e9a7dfd5a5d0b12ed88fffa4f01c20f6d432649045f6df301", 0x37, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3c5}, 0x1c) 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5451, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:17 executing program 0 (fault-call:1 fault-nth:60): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {0x0, 0x0, 0x102}]) 20:22:17 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x64c880, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000002c00)=""/4096, 0x20003c00}], 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) preadv(r1, &(0x7f0000000380)=[{&(0x7f0000001480)=""/281, 0x119}, {&(0x7f00000001c0)=""/154, 0x9a}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000000280)=""/122, 0x7a}, {&(0x7f0000000300)=""/106, 0x6a}], 0x5, 0x9, 0x80000000) r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000180)={0xa82, 0xffffffff}) openat(r0, &(0x7f0000000000)='./file0\x00', 0x240000, 0x1a4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000001880)=[{&(0x7f00000000c0)=""/85, 0x55}, {&(0x7f0000000140)=""/47, 0x2f}, {&(0x7f00000015c0)=""/238, 0xee}, {&(0x7f00000016c0)=""/146, 0x92}, {&(0x7f0000001780)=""/227, 0xe3}, {&(0x7f0000003c00)=""/4096, 0x1000}], 0x6, 0xd9f, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xf) r4 = socket$inet(0x2, 0x5, 0x6) write(r4, &(0x7f0000001900)="ca67855207d6ba96633e658249c36e084ea09bb133e497b6eeafed941883d680aa60cd09903e3f3fc577fc91a459b376f6d4436b640598de8f7f412e4755d9ec26944c", 0x43) 20:22:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x5, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 100.776389][ T9536] loop3: detected capacity change from 0 to 1 [ 100.784013][ T9539] loop5: detected capacity change from 0 to 64 [ 100.789870][ T9541] FAULT_INJECTION: forcing a failure. [ 100.789870][ T9541] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 100.798519][ T9539] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 100.803819][ T9541] CPU: 0 PID: 9541 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) preadv(r1, &(0x7f0000001300), 0x0, 0x3, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = eventfd2(0x1000, 0x80000) preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/247, 0xf7}, {&(0x7f0000000280)=""/122, 0x7a}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x3, 0x0, 0x800) r4 = pidfd_open(0xffffffffffffffff, 0x0) sendfile(r3, r4, &(0x7f0000000040)=0x2000000000007, 0x8) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000200)=0x5) 20:22:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 100.821696][ T9541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.832094][ T9541] Call Trace: [ 100.835378][ T9541] dump_stack_lvl+0xb7/0x103 [ 100.840163][ T9541] dump_stack+0x11/0x1a [ 100.844506][ T9541] should_fail+0x23c/0x250 [ 100.848961][ T9541] __alloc_pages+0x102/0x320 [ 100.853553][ T9541] alloc_pages+0x2e8/0x340 [ 100.858032][ T9541] get_zeroed_page+0x13/0x40 [ 100.862645][ T9541] get_image_page+0x2e/0x420 [ 100.867297][ T9541] memory_bm_create+0xa75/0x1510 [ 100.872314][ T9541] create_basic_memory_bitmaps+0xa3/0x400 [ 100.878273][ T9541] snapshot_open+0x19f/0x240 [ 100.882865][ T9541] ? snapshot_compat_ioctl+0x90/0x90 [ 100.888273][ T9541] misc_open+0x264/0x2a0 [ 100.892518][ T9541] chrdev_open+0x39c/0x420 [ 100.897034][ T9541] ? cd_forget+0x100/0x100 [ 100.901544][ T9541] do_dentry_open+0x529/0x850 [ 100.906228][ T9541] vfs_open+0x43/0x50 [ 100.908202][ T9555] EXT4-fs warning (device sda1): ext4_group_extend:1798: can't shrink FS - resize aborted [ 100.910297][ T9541] path_openat+0x1787/0x1f20 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5452, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x9ae32b9858351396}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYRES64=r2, @ANYRES16=0x0, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x8884}, 0x4000) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 100.910322][ T9541] ? rb_insert_color+0x7e/0x310 [ 100.929597][ T9541] ? enqueue_entity+0x45b/0x630 [ 100.934454][ T9541] ? ___perf_sw_event+0x296/0x2d0 [ 100.939496][ T9541] do_filp_open+0xe9/0x200 [ 100.944112][ T9541] ? alloc_fd+0x388/0x3e0 [ 100.948566][ T9541] do_sys_openat2+0xa3/0x250 [ 100.953163][ T9541] ? __cond_resched+0x11/0x40 [ 100.958130][ T9541] __x64_sys_openat+0xef/0x110 [ 100.962889][ T9541] do_syscall_64+0x3d/0x90 [ 100.967398][ T9541] ? irqentry_exit+0xe/0x30 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x545d, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 100.972258][ T9541] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 100.978166][ T9541] RIP: 0033:0x4665e9 [ 100.982061][ T9541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 101.001794][ T9541] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 101.010214][ T9541] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 101.018190][ T9541] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c 20:22:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff020000000000000000000020000001fe8000000000000000000000000000aa0000000000000000020020"], 0xb8}}, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(r2, r1, 0x0, 0x100000002) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0) write$eventfd(r3, &(0x7f00000000c0)=0x5, 0x8) 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5460, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cgroups\x00', 0x0, 0x0) dup2(r1, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) read(r1, &(0x7f0000000100)=""/198, 0xc6) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) mount(&(0x7f0000000080)=@md0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='adfs\x00', 0x1291400, &(0x7f00000002c0)=':\x00') [ 101.026262][ T9541] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 101.034369][ T9541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 101.042579][ T9541] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:17 executing program 0 (fault-call:1 fault-nth:61): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {0x0, 0x0, 0x102}]) [ 101.126107][ T9587] FAULT_INJECTION: forcing a failure. [ 101.126107][ T9587] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 101.139499][ T9587] CPU: 0 PID: 9587 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 101.148532][ T9587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 101.151037][ T9591] loop3: detected capacity change from 0 to 1 [ 101.158685][ T9587] Call Trace: [ 101.158696][ T9587] dump_stack_lvl+0xb7/0x103 [ 101.158718][ T9587] dump_stack+0x11/0x1a [ 101.176744][ T9587] should_fail+0x23c/0x250 [ 101.181236][ T9587] __alloc_pages+0x102/0x320 [ 101.186017][ T9587] alloc_pages+0x2e8/0x340 [ 101.187836][ T9589] loop5: detected capacity change from 0 to 64 [ 101.190442][ T9587] get_zeroed_page+0x13/0x40 [ 101.190467][ T9587] get_image_page+0x2e/0x420 [ 101.190488][ T9587] memory_bm_create+0xa75/0x1510 [ 101.210777][ T9587] create_basic_memory_bitmaps+0xa3/0x400 [ 101.216892][ T9587] snapshot_open+0x19f/0x240 [ 101.221495][ T9587] ? snapshot_compat_ioctl+0x90/0x90 [ 101.226824][ T9587] misc_open+0x264/0x2a0 [ 101.231076][ T9587] chrdev_open+0x39c/0x420 [ 101.235498][ T9587] ? cd_forget+0x100/0x100 [ 101.239926][ T9587] do_dentry_open+0x529/0x850 [ 101.244604][ T9587] vfs_open+0x43/0x50 [ 101.248578][ T9587] path_openat+0x1787/0x1f20 [ 101.253177][ T9587] ? __alloc_pages+0x194/0x320 [ 101.257932][ T9587] do_filp_open+0xe9/0x200 [ 101.262366][ T9587] ? alloc_fd+0x388/0x3e0 [ 101.266687][ T9587] do_sys_openat2+0xa3/0x250 [ 101.271265][ T9587] ? __cond_resched+0x11/0x40 [ 101.276035][ T9587] __x64_sys_openat+0xef/0x110 [ 101.280856][ T9587] do_syscall_64+0x3d/0x90 [ 101.285329][ T9587] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 101.291207][ T9587] RIP: 0033:0x4665e9 [ 101.295083][ T9587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 101.314789][ T9587] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 20:22:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x40049409, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:17 executing program 1: r0 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff0204000000000100000000000000000000000000000205", 0x18) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000000)={0x0, 'tunl0\x00', {0x3}, 0x7}) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000640), 0x8) set_mempolicy(0x2, &(0x7f0000000040)=0x8001, 0x6) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e1d, 0x0, @remote}, 0x1c) 20:22:18 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x4000812, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000100)="109535192793d3423d43ce9b72c3aa8a1e9a7dfd6d4369c41a2649045f6df30148d54b2d09e6f9f1f8f72b8b6ef0ff406367136bc2436f23ed26ad48c75c0ab5d0882f7c1f7876653c7da8a550f29d2a0a0ab3b4fca6d3ab4e61c13f9630c1e28cf534b7b65436eb8df08fbddaa7b3aad350deac485f90147f09b6ee67a508130894cf10ef29da2a1b80d57f3dbd3a14602b21516bb57073fc332729020a945e27693b98ccf9121c6cc83ac14139a51159c9e1251ff9cb459063aab4f3190c4a43ded077e55d16ec77b87027e94400b394901471c0cb2cf1a6fc11c869fea49d280752548b6d475b3a6699134d29a520577d79d65f6da7", 0xf7, 0x24008080, &(0x7f00000000c0)={0xa, 0x4e22, 0x2000, @mcast2}, 0x1c) [ 101.323373][ T9587] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 101.331789][ T9587] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 101.339742][ T9587] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 101.347743][ T9587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 101.355701][ T9587] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x40086602, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 0 (fault-call:1 fault-nth:62): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) r2 = epoll_create(0x9) vmsplice(r2, &(0x7f0000000200)=[{&(0x7f0000000240)="897b4181515d8f7fd9affa72163c6b4756f7593b0a0ca3cf9d409db6e882e589a3b29fdd6e5932d44f4d1800a1289e6c0b9af7c2b9f83302cd101eb5d2d392170b57ba0f28e5c3a904bb48a8", 0x4c}, {&(0x7f0000000140)="f81b03c061e6f56eddeb285f8b0ce52f08a4992949c1ff529652acf6fe569ce095b01d375e2e328d2ba94d87d9d518df14767082ac8cd8a2c4d4ef3a20e2009f8c6ce341d225967ba88fad7b5fb6291ed9e27cce85376cb7fec3e123d1693d9db9064af526b8ee0aaec091a8f8a60dea30de23d63f8fb0cb717c1b0ad84fba2b9c4c76b1d106af649b4b64c2373bc7b03e9e0782ba3f", 0xffffffffffffff83}, {&(0x7f0000000300)="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", 0x1a2}], 0x3, 0x1) ptrace$setopts(0x4206, r1, 0x0, 0x5) tkill(r1, 0x34) ptrace$cont(0x18, r1, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1}, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) exit_group(0x0) 20:22:18 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0), 0x0, 0x102}]) 20:22:18 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x0, 0xef, 0x10001}) socket$inet6(0xa, 0x80000000000002, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) sendto$inet6(r1, &(0x7f0000000080)="109535192793d3424343ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x40080c0, &(0x7f00000000c0)={0xa, 0x4e24, 0x8, @empty}, 0x75) [ 101.445380][ T9589] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 101.516158][ T9628] loop3: detected capacity change from 0 to 1 [ 101.526375][ T9631] FAULT_INJECTION: forcing a failure. [ 101.526375][ T9631] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 101.539700][ T9631] CPU: 0 PID: 9631 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 101.548424][ T9631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 101.558541][ T9631] Call Trace: [ 101.561826][ T9631] dump_stack_lvl+0xb7/0x103 [ 101.566539][ T9631] dump_stack+0x11/0x1a [ 101.570698][ T9631] should_fail+0x23c/0x250 [ 101.575199][ T9631] __alloc_pages+0x102/0x320 [ 101.579792][ T9631] alloc_pages+0x2e8/0x340 [ 101.584207][ T9631] get_zeroed_page+0x13/0x40 [ 101.588808][ T9631] get_image_page+0x2e/0x420 [ 101.593411][ T9631] memory_bm_create+0xa75/0x1510 [ 101.598581][ T9631] create_basic_memory_bitmaps+0xa3/0x400 [ 101.604314][ T9631] snapshot_open+0x19f/0x240 [ 101.608931][ T9631] ? snapshot_compat_ioctl+0x90/0x90 [ 101.614217][ T9631] misc_open+0x264/0x2a0 [ 101.618539][ T9631] chrdev_open+0x39c/0x420 [ 101.623010][ T9631] ? cd_forget+0x100/0x100 [ 101.627432][ T9631] do_dentry_open+0x529/0x850 [ 101.632112][ T9631] vfs_open+0x43/0x50 [ 101.636091][ T9631] path_openat+0x1787/0x1f20 [ 101.640744][ T9631] ? __alloc_pages+0x194/0x320 [ 101.645505][ T9631] ? __perf_event_task_sched_in+0x7e7/0x850 [ 101.651400][ T9631] do_filp_open+0xe9/0x200 [ 101.655824][ T9631] ? alloc_fd+0x388/0x3e0 [ 101.660169][ T9631] do_sys_openat2+0xa3/0x250 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x40087602, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x401c5820, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000280), 0x97, 0x40000) r4 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) io_submit(0x0, 0x5, &(0x7f00000015c0)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6, 0x2, r2, &(0x7f00000001c0)="7fb8878c335655ab72d68813c5d522fc39442ea0e82e458d07931ad17b82e879c2de96c037628a547c6ccbccc0e959f4564571a69659bf006f568b62e55f7d77cafbcc38df1e149b44790c036eb39ea1120cc60d733a", 0x56, 0x80000001, 0x0, 0x1, r3}, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x1, 0x5, r0, &(0x7f0000000300)="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", 0x1000, 0x1, 0x0, 0x2}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x2, 0x40, r4, &(0x7f0000001340)="328b300108a83f97044d7b915963647b229f90f1c52419b41495c7a69416fb8370ca81bfe1a776a6204146c36b", 0x2d, 0x0, 0x0, 0x1}, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0xffc0, r0, &(0x7f00000013c0)="3378246afed29ac3ddd8b8618acba75dd100d006f93d72d46ca42f55a37dc185e0aed037fdcfae2eea5e1b802881b9f27874a762950c94be8874c564b432b476ba0bcb4150fb0652b0ffb57a27e662b8c3c01e602552f6e704edc5256c050223cae0629ba64ea4b72ec2861693659e3b418eef9d9c604fcd1196415e7fbdc7b362e855f83b4691ef4fb6dd24da8a2f32fe08816718c40d4289830df5ec0a8017517cca3dd11839e4239d0aaa43f02f93a12891", 0xb3, 0x8, 0x0, 0x3, r0}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x5, 0x7fff, r1, &(0x7f00000014c0)="e4e72a97fa69b3365d8a3a0bd8c172a06edd4918a70dabe5ab585ea3282cd1e598991125780b39d82a04662bc745ebe1ff56974fc44b5fdce94f7e944b0cd483c275e2ceae95082df659dc37751fff0572e7c390f31b22811ec1b2c1c7a5af3ae531fad6fa207c1ab1e3a2a581e1960023ab354e9fd4d646d4bdc6976d41a42e565848c01fdb66546f7872acd216d2dcd809a28eacdb2b29f5e06468fe80cd7f531c1a1a0517dc3847df8dd30bf4101809ee4490f6d8", 0xb6, 0x800, 0x0, 0x1, r0}]) r5 = socket$inet_tcp(0x2, 0x1, 0x0) accept4$inet(r5, &(0x7f0000000080)={0x2, 0x0, @initdev}, &(0x7f0000000180)=0x10, 0x80000) write$binfmt_misc(r1, &(0x7f0000000100)={'syz1', "80af64444d6b17908d3996a7a8533dbc5f3b293c29b282fe414a5d528943a4ae0cc7e1a005fb5b26c5beb87a6707dcf40ac8344afbde9b2601abcb7c1594375b7cafbc77acaae3489189eba16206fde5d2ab3cf7dd12bd3dc3844a531185"}, 0x62) r6 = socket$inet6(0xa, 0x80000000000002, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000005f80)={&(0x7f0000001600)=@proc={0x10, 0x0, 0x25dfdbfb, 0x40}, 0xc, &(0x7f0000005c40)=[{&(0x7f0000001640)={0x23c0, 0x38, 0x1, 0x70bd25, 0x25dfdbff, "", [@nested={0xf9, 0x53, 0x0, 0x1, [@typed={0x8, 0x38, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x20, 0x8e, 0x0, 0x0, @binary="5c4b8bc42d243957d8af9e08f8d950e48cbbb6f6d133361f57d842e4"}, @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x44, 0x0, 0x0, @uid}, @generic="beda5b8023ea58f6661a9eb2224a4686173aee2fb50d7b9eac045edd929f4c367d96dc6fa63f304034a1e6ea4d2e5993db0b172f2945b63184909fc75bd02952d831fab729923f4a270f7176c2b9e159ab6757dc1c2a876f15c5c239b10a50d22396112df1af3d8f9d8f6e472e696941500ae9c9b870e0bcbdcbe460228371b78aea12d5abde61fea0f864f4b6b0afa644430ff6960371b45e34d861f6c8c738c67423586cf03d8a996270906f7f78ae12a37e2dd871048c86475a9de3"]}, @typed={0x14, 0x80, 0x0, 0x0, @ipv6=@mcast1}, @generic="bc454697d976087911d2d34c036f6d50982ad82fb5740f0757b5310b4334684cd559ee53c6b9b537a493991cbb6a44f41c60", @generic="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", @typed={0x23, 0x18, 0x0, 0x0, @binary="49b112e049c3ab060ef7b3ee8dbe6bc9bef3f6f337d78e9a7bd3b624bc79d2"}, @generic="3e00bb9cdf4b1a7205877c7fe082f75df20805a3dd824969d2dcefe3515739ee9e592b5e42c18f398d4809e68685e9b8d4163a29750d97be054a644e8cb22abd2a2a49d0cfef8a0eb24fc088bc3e3fe848abf981144fedb77cd36eae8b9e39a7b59ba54b0f0e82aa1019c7a2f14a3b5e58880ef4a5bcc72e06bab51cf29922a44986c8263754afad6e1dd61e8e87a164da", @generic="54a847020a77cd56bfd91a98157d1f384ff7e722171fa1a931538b3241d9885d9dc5494866bbdd25f84e9852a91468bcd7d74d6165ee4f2b6084240dffa4bf85fe11feafe00305dae9746626f641bf8d6bfcdd683e0b22a28657ea3e172e8c7c76dcd55f99c8b59ed1c4979cabdd09b45939fab6d70f3a1f373867fed5aa51ca01ed115002fba4a070ceb62e90b58bc1eba0f807b0a769c1c28970917e38f195d5817fb773dbb69ad66957", @nested={0x10b, 0x92, 0x0, 0x1, [@generic="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", @typed={0x8, 0x86, 0x0, 0x0, @uid}]}, @generic="a0ee577ff1f6caca4d15357462df9c0f866d60ad244ed02b04f65aa650a2a33c2fb87425e7a2ec5b59adde6d64c7737b6bd29c829c06e2424bb944ed30a95bb574f2cf0abfa5d6f69b6b88fb80d6764dce9488ffbf376f0da178eb9ea8fecc2a66d6d69fa627692cf5f8d5b0069cdb891f9e76e969878d4c97c909c42251265d462bc47f9142df9d77edb7deb6b32426de74c77ef968c46d521359a814463c459b53b721478df8342547c211702215576066b0be2a7f71f8fde4f29e1c1c3e3cff2582e74e5771f0b0913e0eef3e19ba76355c4a0534f5d7fabcc5d79542794a2236717772bee1ea63c801bcc51e24a807d8dc6a6e28664d0c6e996fc2b4d981c5902908dfaf9b66c3fcde57aa7fc24ff7448ec84ea8255b7fd9d721145ae64cb6f02f233795df4e63f58c3027d05a1618e5524a8f3e7936f50fb1db5aa14ad8768531ad8277b13bfd27dc9cc727c2ce8e1462ce7796eae788314b1e2ebd80f4ca2a619ce14be23b0a0507ff0757e57ab905388fd22d6adce2ed4f05657bbd49d71588510f82a7fdc0b50a2811267758a594ac2b6e3f3251a35d1da09c87ad4aff5295c446516f970de2add4ca2e924b7949b0a32c1cf9e316309198bdf287feb0583715a62d9071db8ab294180c4493e2f12e246210a71afc3a9faa300ba5c12b3556ab765d09e9f753d824f0c3be2b59122a733d660aa04fd773da8ab5c3ad33ccb5c289be11e283d3b4684b98c6aed84c5a5c6dcfbb6c1ed3da1ec283f2f2d159d65d972f622193ea713c312072fa1ca70a03c60ac91cd3a9ded5f5360f7d54b190e314316ddf1b0b986afe0457a0e2482c7849138f5c5053e3490f142363bce59454c5416038fcbea5aefdcbcc07622bd885eab177e63165ab57a1aa9314322d2b1f31be89c48ac05bb4ccd8f6291b74982557f1c5f2b705a23ad16ddbec4b759e6bd04535cdbc2b589d7613d57cdf875254fbb65e1110f98155d39658f8224fe856cb9549efdbebe19734987ba69d2642a19d337a283ae44fd4e53f698abea771c06742ad1f07b418565d54318435f2b34f143bca5cfc50fced6a2d085a7f10337200369b30e711e8e3fda00c2414e38ae042fab70fc67572d08489d5c5d45b34a8b4debf6cfe5de2ca5ddc3d69282ea3db928c075ddd59c2067eab6b95308d1e7dc2a8f42ce5d566a3f419de1656301cff0b7a7e794db57a5b1fd7851d310b510b27e47953592fab8dc8d1631ba84baee3fdea9de011d3e0ba08e41783f7914e0f1bcaffdadcbd95d327fbc1abfa8578ba5eabf57fd43b9cb55617b06dae4c211a9c092dc21a93a16a61943b6a01ae431501bb2cbefe0849875bf607a0a6402433a0def1691617f888acb81111fe5adfba8435722bdc2bf04612f2e153bc2578512344303bde440d60fb5d980f1e6ad2e0ff9993507c2454b5dd0b9f31d7cbb7f9a083d3d83ea925c61bfd7882a330b4608ffa19b16178a9a6d6849ebd7c4bf9300ed26c929a78098bddc81cb7b7037f97b85bf9bca79e0712d5039d689e7ed91a399b76ffb0b67db3c93dd6c4a85a015ce4cd48430458b0f059b8c611e20bf3a5bd1d5d024d011dc5f4e5865e698b68bedbe3519826344e6d11bbc435747ea845125f0c30ca830f12da7bde332b02951519e4e6d383ba938b093679165d8a688cebcb8a108a6da59ab9aeb793b5dbc56b2d2c667e16fdddb07f85f8f74f9502095762f3287da4b6475227fd6acc7fc60ee417c422cec26f9a3340cc443f297a10790efafcec37dfbc1f091cfdc7544ad042e937e740807edfcdd749e384bdd5a2253566507cd5c2cac9b3877eb82920b3afff95e4d1bffff95d74f69bd28b867ff6d9e9f59d420fde3f512b3be4beec966388faa677e94defca4653da5e28c3e7d9667a0071c0f464670787d25b52cdee5603f8724fada4e8e0d29756d5dccd02937ffd2f55ec3cad9066dcdaf56ceb35a0742d2377bfd2a14ec9aa5ab99e331c9d9a5050f508feab494e25ec63185a3ad21abcea898d898ebd46110ec1497f57bd0e11cca8e95e88a4e84dcf46798974076a45d8c605c8c5723ecbe99f07e6ed50a77fbfadc28ba582e2a0a043fe78fff3f44204fc5d5ebf2b6aabf5fb1a8ee1d9e4f2a0e064959796f5ebc6c9b7e4d8bb6e8ece3788ed35d4cf77cb49e96ee7d970ab517be2ebe07308414a91c7d2d75e52f36558c65c1dc1d0532dbfdc5dc091a168abfcca48acb26f86f4f5b1460bb56805c6208d8922d121a5e7615c0f10db93c4d8eb844a484c625572453008c2806cb7f725c576d26f07385e9e134c6e722adc371c7573bfe558553a86893c5dfcac315ea8ff9312322e235926ee9cf9080c07c89c804baf6a6a80625d3935ec789657f7eefd1bd4aee7b7c36b3d3293d649196da1074053cb930aba69c3a664240552152559dab7406bfa2fdb391f4692646c92d9e3cabcaaf89c347407c5c1d0a240a5f3fb309d614718141fec448b5fff240d870b6f393a099ed6f7902fa8c6bfb8755b73ef9fce100b49513244cfa4457f193cdd22a6e38b622da70e559c133feec24f58936a656c0091e094d12a39517a710a0e0daf45bf3a1fad86eb42d856c3376e6b657cec7fb3c51e70c2c01aaf64f1feff4aa82cee1e6c3cac2c52f9127b05596a63171f9545da2f1bd32ef7e7bc33cde8903f85f785f188bec7fc6e070eaef71c6fd133dbf327c60d093236e6a2cea1b8ded2645d6a07171284008203b37fb1ea6f15f6bd45df8a20200e53f397c8b7e36183db35b91315392b8997cfbb691a45ef202663eae09637c539e32135a70161066a1e1c46ef9bc66fbfbbbf88e352ac851986545256d2a824625c21f235aef2a77aeb86347b2c792716a51beaae9a119a2c7f4c18602076e8edb7d78c605fb9fb94881bdf52c2daa74c3ae91d451e04a294e5ae7501348dfba64492ff9c84dbfe154d050c438f5994c51e7b5677ce69cd391af0b4363a3c67c426caf7a39b0403fc72d8457d7d02487d2ea87e9c79ec351e78a3ba6856aa9306c3a564f6e7454ad72060e0d7a202f23180eb4d14f92a06510fd92545cee57f599dd6b30b783fc82140b9d0e9d90d19be9a3cadc25b2adab0f30945cc6427235f9347dc9f04fc32bc774c308b1093e3a17b0aebbc8e2db5d18a1494582662a79eb37306d8de8e04d5797b9e706ad294c2e61580dea79574389941766cde38c077cbc38724649d5cef8406b7b08f08959df9b318e132cac65661a34a9fb95f0cfe5fbf888bb5da6465c08a068123c6db0df209ecb1ba39713c00824bbb8ce12139b0a77bf729e9c14c8d82e3e909f94fcc488438f298b4785f5d651a2b2fd3e5f3c54388de823ea20743b8c7abc76ae42e84df4052178ba4d10c7e2197b0c2d2edc3aec2ba7a9c9319aadbd06177ab47a645b267b44f7aafb04320f2c06c732c2b83fb5c582207d94b104af9d2cbba2757af600d2277debcb5a0f47fee5a9bcd336eff2dacc2a6d2079e11768179917a1c720f4c360968135252bd2660a6e3c2da89383eb8a41e6c3ac910051c16ee5e15a6c221fdf54d5f38b06da3647e7305cba988e321968567d89504498d7f6338437a7f42390ed4b253adc9e642d1b016e890907cd0c4944ea28c1bb65fd8e4e8a4cd1b28a2d0a5fb8bc9aa6a9cb9e9ffbf2f28b1ee12c0a48f594772e782fba1dcf9388bcea4ae0247a1e0d8b6922e5cabed3bbae7e43f2e64e591e147a556ea8b0faff123ef1c6b21545b18e722b0579c051140a00c131f2cedecd1e471580e0cd6e1f3e0bf1d3178c81fdd05ef73518c39444eeb904d90fcb55063811a00384ba7d9722bc1f040f33cc481330e337f4e22a704a9267ada2f8ee671fdf1a319fcdcec9ca798f7c44aaa5979cc2c0d973ec1d706347b544033b33294c863981543c6d64d38e2aa707c14ee56d4019647fbec59ce9a3dbe6fa0f181577c7297319f07574a3f4c70355ae2dad0adb5a2c3cc8a561e473541902aa0dd55f6d6b45192f37b4c0afe7a66d9b62073ddc280839c17d4f40731d47a7406671bd56f4dabe5d4af06598386f83dd1cfb3511f42736da0815def6b009d864e589068be28cb555f061dedb1ab958f072f309aa6b2554a4a973aa7fd54822bac5add3cadfdbd4aa6f2c2fada7e4f20af38a75dc59291beb452d91dca806abffbab09e6ff3e409a107137e69f09aded62cf7c9355fff4fd8e2fb7f56963f783ac0370499ef361042d63fa1c34ca4ce7adaf7d22bfc390ddab9ea717432c106f267bbaf17873b4ddf0298c55af2b048354a5f3013c8fc4983e222e6f40bcf681c70dc0218e29eef75cfa7b4578fa730f947170b11840caa09f34030ce61e77d46c585c4a3f30bf36dcd78d28af4994e2e7c73dfbda988edaca3234f1286ab42fe9bc3d8acb2095295f39d2e955900d2be1aacc99487419556db8d19cdeea5f8e411b5d33b45886eeece3bb6cc41e544b50349b6118d5105be5dbd7e282ff4d22aabd8f097f8f562266723a0a4cf8df4bd617f79625acbcec7258e0d4ba7e0ea867221f2959676f8bf73f207dcbccc80c9fd4619c145be92dd6cb581c26cd6d927f431621ea3f8a03ac8052a612d5854cdfc4ea92f9f58f66156d03073054f63ad37e94ee7acdd066be9f7f673475a5d98f0380a964ca00ed213e141ca33f28bad4b8270e0174db6b71b14eef5f80af33454840cf540d77109e60a4a2bf532902f5066e6154313da78d3cdc9c04ab69222de6258857d66e810de20b087cf07d47157c90a094efdb54b1176a169c99e7c81d40913f20121b82832dd30fa7c430ffac39273e307a1420acb8f71d0d1445416912c912d6772511450a2af1ad5548f428a52b71166a6704d732e6d55ce8d804421d9a5189022c6ef65a7a6bdfc66de6b2f2ec66e4d192909c79b1645bb3bce0781b733f6cccd40f0d552f8c7e69531665303d20c4dfb14934f3b80ac7bb5d74c2afddbdd43f8ad59be62750fb950031a6bc01988fb6403658d767dd858075a6727bdc5a810c8c84b997bc49e79f34a08498e980e7a465115f5924b425502d8a89504b7c0df571699b28a7b85357045c36b591dfc2b611a473987dd86c0b3ad7b172282d25e50ee845345320c8151a8f9ee8d79efc0bb35eaa9a38ba338174d1ed097dcc3059871a77df87aad2931aaed6de6120680e0a787cfe724c0a1bd3c4701cea3f7efb1ab355afc5de3c85e9b19ac55c084395ae01e8d232da3a41382fbb66a10509a44432360b240e3f1018c2c17fa766721f2b8ca7c843cffcecf14f907f8b34dafd2600486d15904eba42fdfbd54f2898f2bac0f2c8c1f3aad2b4a34b009255f5d53b97240bd53a0915de073252b85d4d2a62f047d5f17349dbe1d7489e5326454ba3b28e39ac215c9429dcc892a535c1f09884c4d9158716afabd475e634fedbd1d23bdcb8754a8293e3accea07236bc98f91ee9eecfb98dd8a4e42121488bd4521d2711779fad2d63450e564561a3fbf54ccd87c59c88956deea9921f913b68fcf8d59cbfb6dcfa5b3b488914177f400bc5f9ccc5cfe72b82c660f716adb62ddf1fa8d920a0329f341dc9cbdf7e3f71bba2a7ef314cca89a6a81697bf4eb4deb116bbe4f4daafcab8894dab4b0736f4e5f9f649a022c0a827d9360252bfc7798ea1aeb97ad8eb942ceb9e88b7bdbcafee1dd2b9408b23a494fcab10c4e7259fbd0400cb1db96f48f2c7dd497671a8c05dd913ca0ae03123e2192025cda4415f7998594ac241d13ab6c194c9350437f7d7dc3f2b3f9d08d41874a1f83bd211"]}, 0x23c0}, {&(0x7f0000003a00)={0x34c, 0x2d, 0x200, 0x70bd25, 0x25dfdbfb, "", [@nested={0x4, 0x22}, @typed={0x8, 0x8d, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="0d582ec174dc2c28e6c599d5912575b2756022737d233f30defc1689f6706c3f83924156f90d3eda0cce3cf30da32480a3e8dc435215e0a33646ff6f5d4abf920fc1551cae0e303f897757291838907c0071d5d14bf553c2d6af15647227d683061ead2cc6e30668f15cbb72f73cb8caa273827f1ec7a88d4596716dcd2bba4ebeecd2fef8f4b180218243eb7b7b4d048f0f1fee1920423ca5dba0cc3316618b0640218e913dbd2c055213546adf341dd825ad41cfecc31616707647636a04bd56f36d9ae60f66a40d11119708fd", @nested={0x25d, 0x18, 0x0, 0x1, [@generic="3af81509ac71d836b569f68488a6306453e9f448fe23e4c716afaa9ab1ba567fd14b2f6861d3470d3ede7acb2533d39e835a767a7b4bb20aea10a30cf66f10d5b4650b0b4dbd6ed15e4ff22d0afbe314ff1d5e14cac28966950ae103277083e962149d970899704d2bad78cbe783ce4cc96590abc646b867ac800cf9a96a6b87128c6fa859445576cc37a5b877781a22cdc6c21aa006f52bdf3f4e5e66172331bd3b39b268f75a7292a5cf49a76e51a4dd55bf21acdcd109a2e0adadc3ad3acecdce4b21706047fbd9b041afc2481c72a72d5f94aca5023abfbafa79256aa9ca8d09d01119ce52", @generic="38657480bfc227355e6c032708bd2111270a2f022d815687823fc85aa72def4af337f4af6b050c089d5668250a328077abc7bf3e67c42d88ee2b3fd5ff24f3554db26fca2ef7770d1e416af6d3ede632440ebb8ff9e4a335616f590866b9397fd3e013d677b6", @typed={0x4, 0x53}, @typed={0x8, 0x27, 0x0, 0x0, @fd}, @typed={0x8, 0x2c, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1f}}, @generic="25d1503020e81d941d0bb9b69840b5c8f8a757163957bc3287e08a886d36395b9c4123f26db148ddd6e89b434fd5f7e4294ba497a34db309e13eec925fbf8fbbde0236b226f6e684b2ec60b9d1abfc3703841ecb870ca0866a30ab21e8ec81dd7f8d5c058600000cc9e370c5721084000e01c655349402892751e6f58f20091cbbb024b0c54103fd8dcdeab64cde641479305447a6d93bb4b7f42c4a530f09e985eb44b9d782f2cd605dae25d23525397585e19f6ebe708846284dc75a81195475609c0bf53a3e5e3d722ea5cc3e4fa032f7beb2ae466970c45bc9e06ccdf41663adfd5817a96ad5", @typed={0x8, 0x20, 0x0, 0x0, @fd}, @typed={0x7, 0x73, 0x0, 0x0, @str='-}\x00'}]}]}, 0x34c}, {&(0x7f0000003d80)={0xec, 0x35, 0x400, 0x70bd25, 0x25dfdbfd, "", [@typed={0x8, 0x94, 0x0, 0x0, @fd=r2}, @typed={0x14, 0x7b, 0x0, 0x0, @ipv6=@loopback}, @generic="82c68b7c22790a549e1cd1b1acc3280b2b3da3cd6b4e5a34088e3b5ac16548394007427eb5732dbf8b38224edab8302f7fa04dbccd07763dd9895aa17aaa09d72b088f04d43fc80d83be08807b664ba9a6e58710672ff277a69aee1ff633636b8b3f64e7f0758f4d298b18dfc7f6bc1db3edf8dd8c1d4777dc43e3bdc042253076b494e038e2c7dc9c1dc544330580f076bf0d931d80856adf74f9e48749d5e269a4c4b94fed137343c7f5b1512a034a1ec2b79610ead09a85b20cdfc55368b2", @generic]}, 0xec}, {&(0x7f0000003e80)={0x198, 0x15, 0x1, 0x70bd2c, 0x25dfdbfd, "", [@generic="ad0d26c40c28693ef2bc7c705637361b5c62a09c4ebae2f285ea0d7377ecf86386b66cf87ac7ccf4a2ccd9188d193de5546fbcd2a8988e84cf67b6564584ce8363e24bb2aac2be11aa6d117feb3ec36802954745dae141ff17d6f7e8b78371f21f2338fe351bde35a5f4f8d72d71af3a8b13d0de024f4e1eb49461b03f65", @generic="6ea09aa7871bc171a3a1bac2d3f395e344820bb23bb727d77e25d018ff71d1c0cfb2b2e3885d1d7841a19dc4af0d9f9a3368cf881de527f986ed72397fa2ee39b02c2d467dabc4c234eaecf7771b", @typed={0x6, 0x17, 0x0, 0x0, @str='+\x00'}, @typed={0x10, 0x40, 0x0, 0x0, @str='/dev/rfkill\x00'}, @nested={0x95, 0x2b, 0x0, 0x1, [@generic="f2a862683ae631ec6d71eefa66be6ea1c4fd53411e34a436a4624ff6f402a6454233c47f0a5f79aad461810edf990a97d4e2650631c392cf0b8c3de7de4cf15e44d7c2c72e993c324402c8f1a5042b363b5b0b433965ca03ee60902f3af8a29ff9f39deb84d8658f64c6f40127af7df0600a25467546f19856b035c38ab47a9db8eed1b495", @typed={0x8, 0x23, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @generic, @generic="51a80810"]}, @typed={0xc, 0x18, 0x0, 0x0, @u64=0x3}]}, 0x198}, {&(0x7f0000004080)={0x12ac, 0x32, 0x200, 0x70bd2b, 0x25dfdbff, "", [@nested={0x117e, 0x90, 0x0, 0x1, [@generic="a0752b5c5e0b25ae855a8eb4c727131c8452a763a02fd02b8b31f70095f8f4699eb615eebc85", @typed={0x5, 0x81, 0x0, 0x0, @str='\x00'}, @generic="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", @typed={0x8, 0x4a, 0x0, 0x0, @fd=r6}, @typed={0x8, 0x93, 0x0, 0x0, @fd}, @generic="f3097a6ad55b9f3d2ef6d7c899b323a1011e0f7b75f1c160d02ec690d787a74ed269201b8530c6e0afddb81c679caf6bbf09e0bdd4eadd61d634112800ab2af03d17cedc60bbdb2ecced32b78dde12e0626f915a24552bfd9a94e8ad53c059d116a23315312481866803c70cbab5dbd37beca4a977acd73d1a6b4245a4fc29c0c9f0dd6e4b7f2fda53a76344bf97202e9333d44a83d7a5a71e", @generic="5ca89b25abf2fdea2a0b942fdd175a77305db7be53819af4086c5ad24be893fb5aff7913fde3a28a94fff99f1db90a9b76b8752b51cb13625407199e346b7d0be29c446d48d093fe264aabbc8ff6d6bc550b46028d529062fc33f2b6ccf06cfa15716bb4c69d7afd4df08ddbf2cdd6178857ad58dbfb1bd67f12b247bd9d8656a41a0aafc7c28162d0a20b7bd9a3b592f55b7f8c4d18b564cbf7f0f28c9f26efdb3bea"]}, @generic="875bd7e89531f69eba16513d13bb1454839a263fad9cffd64c03aa3280508e9b9694a071db4a6177a37a4043d65c2b8089577e62d998bde8e27439fd656809768baa1273f0eea00fd120dfb112128db855c42b792011599753ccc4a9c60b4c1a58322e0d1591f5c9cf21cebf089e6aec89d58309543bdb41737a202da9d4f680932ef19f19489d", @typed={0x8, 0x93, 0x0, 0x0, @pid}, @generic="e028d35f3346121a64d38c4c43172a415ccb7ccf19df29e4ddc49a83e57288bd51b1c679329439333e8623ab24cbd4202da3e1a53b05ab024a1c3a891e71560437355a0975a72e76d1c0be61ac1cc3d6b573e5d7cb2a9ccd8a31315766ea31b318117cc0f44a6fa6065c3b1707cc2c", @typed={0x14, 0x2e, 0x0, 0x0, @ipv6=@mcast2}, @typed={0x8, 0x56, 0x0, 0x0, @ipv4=@private=0xa010101}]}, 0x12ac}, {&(0x7f0000005400)={0x28, 0x1a, 0x800, 0x70bd26, 0x25dfdbff, "", [@typed={0x8, 0x16, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x75, 0x0, 0x0, @uid}, @typed={0x8, 0x95, 0x0, 0x0, @uid=0xee00}]}, 0x28}, {&(0x7f0000005500)={0x3a8, 0x23, 0x4, 0x70bd26, 0x25dfdbfc, "", [@typed={0x8, 0x20, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x29e, 0x4a, 0x0, 0x1, [@generic="5a429483ee0580679129ab831161c68f9332b899208fc756681f2743ff5f46a021bac0488c5531d4aa0b50d38e74f3b31012152e07323f1ae921612f74cea1e6f1d9d033bfaaf64d2ee60bc748b160448417711102b581", @generic="01c6d6774c3c9cdefd9d3005758efca2213b7d66a36d1a50bdaab5c74aa4cb698ad8d10784c9607c68ab3f655fc8bdd84c39f6a6820bd13b43ad0b2ff95eabc54f2cd516777bb7a9638afe71b29343f6e3bbc23eb4abaeea3a54", @generic="c9bcc635e5c7a80d573b883062e40ecd1e9d58e7ec73161f8d49d80555445b75dbc9d84d69433a4b826ebdba3ac5798368cee8b6384bb9b9515faa92e3c04ffdfb45f579b3dc07bf48b23fe4ceb83fddabeede227404ae225098cdbcb5b198da76e724589d222ba963c1e6d03996c8d739335f6527d882f6749f09b07f226d6fa0b4d2df", @typed={0xb, 0x4e, 0x0, 0x0, @str='[-{$*/\x00'}, @generic="ea93830a3a1d35ce89a2f81d3ca701dc224f86b91887bca15b79c631fd2bb025951a3edb0f1f56d18a205a3e4e62a4fba3515491aebf112a9712e1ce540c2d401628112d765bb4d75c63d296a8f9a2fa2afecbfcfd6de4b7ee430337b6add8d9b4ea5fa9d83f1da9aa4b4919be9ab5ff142f405a7a7d0c4800af7ae4c2ee488e0c1fe7e1253899227fb3cf1ec5ceb0c8533acfa77e18314468f6b1626b4750f79158890adec017fb6f2d9c8a4b4677d2cba4fed4e01c3fab5dac3b5def60fbd50f18e1b414b2c283eb27193ef5a2fa048a96fd1cfa36aa72dd6a2b3f", @typed={0x8, 0x96, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x5d, 0x0, 0x0, @pid}, @generic="3a625a9998c4dd4a63bde6c06c7ec63ba45badfc24f2c21f613b06487d430a4601a4ddee76068516058ca0a4d8a52c5409175196eb7342bb6ec33146e2952b25c56d690877c5f9ed969dbe8e859a40833e791135a2d6bdd35d", @typed={0x14, 0x71, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x59}}]}, @typed={0x4, 0x7f}, @nested={0xc1, 0x1c, 0x0, 0x1, [@generic="2a781e4b9be527430be432327d89e4d8abec951e2e8505a33f43c45f456f9cc52cf4d27012ee852a062d2e37c42a0dc9fb04224a62771b6358f0e60a580d375fb4ff67a738dc4687f853b756bfaf2edaab53e1777db78922aaf7cca2e0886fccde0061ed7ed89da37136b6e594157d5e0e8ff1ddb3a5390e441f850eebfa341080", @typed={0x14, 0x7a, 0x0, 0x0, @ipv6=@private2}, @generic="4dbac624114c8f2bd864c60c6127b2ef8acbb67b35ad176227e0ecb8", @typed={0x8, 0x7a, 0x0, 0x0, @pid}, @typed={0x4, 0x1d}]}, @generic="c8a527eae8854ca682260affdff9b5e9e567eef7b3e814094d8692e546", @typed={0x8, 0x6, 0x0, 0x0, @uid}]}, 0x3a8}, {&(0x7f00000058c0)={0x36c, 0x28, 0x8, 0x70bd27, 0x25dfdbfd, "", [@typed={0xc, 0x6b, 0x0, 0x0, @u64=0xdb}, @generic="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", @typed={0x8, 0x36, 0x0, 0x0, @str=',\'.\x00'}, @typed={0x4, 0x7c}, @nested={0x244, 0x43, 0x0, 0x1, [@typed={0x14, 0xd, 0x0, 0x0, @ipv6=@private2}, @generic="a1e1e8f829aff144c6bd789b5ac98a259b6c911d0256338dc28c0ec73dbe8620bd79cf5b2a7d390799c60eabcbfc0cb3fae24cb8bd4d705f4010674feafbed21f7ac5204fdeaf015e926be7bec40c6f48c006a893baa23c677a5b0a91f385ed99a4755eb01312595ecbf3bc15b45429bf988515fc9113ef32cd56ba716442db42ffa90076aa0f54ceb63637b53c53444bd0956537cc1f3147335b58f4a03", @typed={0x4, 0x33}, @generic="111bb761339f21725a15445d7235c2c9dd5ea94130c24b6fc76f1886ca45cf9964a72aa409b7500eb77275450c7fb295b77cba18de7d2c241079428dd2a58c579af99d2e9af02d40054eac6d54106470ae329d1d3ea8de2b0853746927c949598efa5af0d2b5b039012dcf47363b8cd10920b0183759bdbe9365d9f78c1cfc29db96c88edaa6ee4367e169157a52eef88988697add7e2f74b642cd788a8748b809c2146934762fe10b478a4faed4fd5e96a100a1bd671c1ea93ea282b18e6ed924f8ed81f1e6ca26621fdc2553c95819eae0e5814242e11de39ffcc059d86de1", @typed={0x8, 0xe, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1b}}, @generic="c998e6751455b7de91257b803a6eb7b7607589add18eb7c227f2d66a4ebfc16211d3d9f9c8b8c5c79bfb3fc279ad76b45c55efae3adfe484563c000a18d81006664489f89a94e99edad0ce1a76818495a41b7a458bccbf88af86ba29034b638cadd8fbc72ff50f31da5a13e11b8b07b336b2c1dbbdc15bd3d6b83bfd2a930f4bdd5891ac", @typed={0x4, 0x87}, @generic="9f750aa1b1954e5d18dad5657d575734d52d21cf8c287aef1c27"]}]}, 0x36c}], 0x8, &(0x7f0000005f00)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r7, r6, r8]}}], 0x50, 0x800}, 0x24008844) sendto$inet6(r6, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432641045f6df301", 0x2b, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x200, @remote}, 0x1c) 20:22:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {&(0x7f0000000140)='S', 0x1, 0x600}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) perf_event_open(&(0x7f00000004c0)={0x5, 0x80, 0x0, 0x3, 0x1f, 0x1f, 0x0, 0x0, 0x200, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xfffffffffffffffa, 0x1}, 0x42001, 0x15, 0x0, 0x4, 0x4, 0x266, 0x4, 0x0, 0x7fff, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000040)={0x5, {{0x2, 0x0, @multicast1}}}, 0x88) fgetxattr(0xffffffffffffffff, &(0x7f0000000080)=@known='system.sockprotoname\x00', 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRES32, @ANYRESDEC, @ANYRES32]) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000540)={{}, r1, 0xa, @inherit={0x50, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x6, {0x2, 0x0, 0x5, 0x1, 0x2}, [0x2]}}, @devid=r2}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000680)={r2, 0xffffffff, 0x0, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000540)={0x10, 0x0, {0x7, @usage=0xff, r2, 0x0, 0xfffffffffffffffa, 0x1ff, 0xb, 0x7fff, 0x4, @struct={0xb6, 0x9423}, 0x1, 0x6b, [0x6, 0x6, 0xcf0, 0x80000, 0x4, 0xfffffffffffffff9]}, {0x0, @usage=0x5, 0x0, 0x3462fe77, 0x2, 0x2, 0x2, 0x1, 0x401, @struct={0x4, 0x7}, 0x7, 0x8000, [0xffffffffffffff01, 0xfff, 0x3, 0xffff, 0xd2a5, 0x400]}, {0x100000001, @usage=0x9, 0x0, 0x2, 0x80, 0x0, 0x4, 0x2, 0x18, @usage=0xff, 0x80a8, 0x5, [0xffffffffffffffff, 0x8, 0x9, 0x8, 0x6, 0xc796]}, {0xf3ba, 0x7fffffff, 0x8}}) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, &(0x7f0000000440)={@local, @mcast1, @mcast2}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000400)=ANY=[], 0x208e24b) [ 101.664855][ T9631] __x64_sys_openat+0xef/0x110 [ 101.666865][ T9638] loop5: detected capacity change from 0 to 64 [ 101.669713][ T9631] do_syscall_64+0x3d/0x90 [ 101.669737][ T9631] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 101.679102][ T9638] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 101.680372][ T9631] RIP: 0033:0x4665e9 20:22:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 101.699199][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 101.718892][ T9631] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 101.718916][ T9631] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 101.735446][ T9631] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 101.743504][ T9631] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 101.751530][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:18 executing program 0 (fault-call:1 fault-nth:63): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x4020940d, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x8, 0x4, &(0x7f0000000640)=[{&(0x7f0000000400)="e4", 0x1, 0x400}, {&(0x7f0000000440)="a2f135d40a5923c559f9a36e008a5c187a500026d71c154d774f66c9c3ce679cc53f9a4efd4114c3bdd02a81d4082bdacfdcb51166fc564683deb2fbb7961ac39d9d146575213db193bcce4133699a9a7c5d9bceb63e1d84b4dccf686cda46bf9954e370f2079b8fc997bbd2d72caade6f5999ed4670b75fab19dab716711dc6fee9d662ce900711094f904f7c2a1f73ea21b4fa037e314a99f2d42c3081c48e4e7c0e286dd9d015b6a6d1d08d70d9e681cf488c22b43ae98afe07582f4532a60b23caffa3374e9b8e8cb0", 0xcb, 0x4}, {&(0x7f0000000540)="2ebdd2294336a3049c520fd868df6b3da0115ccc3e8738235fe7e288e083e483865501964b03de5432637d157533d4", 0x2f, 0x100000000}, {&(0x7f0000000580)="25f62fd9761df18fc52d661dc73c1f619ae09f48518e6c884a363160f2329ffa0ca2c8327b1d56d706fb1424ba9ec5471a0c1d2f20ad19054a645df7bc7b8444423b531dfe75bbd97da3159bceb0f56cff61582b75d16eae2143ce205e713b680e54728821ea6c4a0b9751e8a6470fb139ed1275eaa0d325d026a32d1a0d8974098dac58c6cb3b91cb88ce4940ed05dc79dd37b0cbe2095e007ce7484687c299f416", 0xa2, 0x3}], 0x8000, &(0x7f00000006c0)={[{@huge_advise}, {@huge_within_size}, {@mode={'mode', 0x3d, 0x8001}}, {@nr_inodes={'nr_inodes', 0x3d, [0xddb1a6745eb8918f, 0x32]}}, {@mpol={'mpol', 0x3d, {'bind', '', @void}}}, {@uid={'uid', 0x3d, 0xee00}}, {@huge_advise}, {@huge_never}], [{@audit}]}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r1) connect$unix(r0, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e24}, 0x6e) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) preadv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/221, 0xdd}], 0x1, 0x10001, 0x4) getpeername$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 101.759753][ T9631] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 101.760352][ T9656] loop1: detected capacity change from 0 to 6 [ 101.792500][ T9656] FAT-fs (loop1): Directory bread(block 6) failed 20:22:18 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0), 0x0, 0x102}]) [ 101.821356][ T9656] FAT-fs (loop1): Directory bread(block 6) failed [ 101.846761][ T9674] loop5: detected capacity change from 0 to 64 [ 101.849389][ T9671] FAULT_INJECTION: forcing a failure. [ 101.849389][ T9671] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 101.856968][ T9672] loop2: detected capacity change from 0 to 264192 [ 101.866674][ T9671] CPU: 0 PID: 9671 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 101.873572][ T9656] FAT-fs (loop1): Directory bread(block 6) failed [ 101.881777][ T9671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 101.881791][ T9671] Call Trace: [ 101.881797][ T9671] dump_stack_lvl+0xb7/0x103 [ 101.881820][ T9671] dump_stack+0x11/0x1a [ 101.896816][ T9674] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 101.898246][ T9671] should_fail+0x23c/0x250 [ 101.923817][ T9671] __alloc_pages+0x102/0x320 [ 101.928414][ T9671] alloc_pages+0x2e8/0x340 [ 101.932905][ T9671] get_zeroed_page+0x13/0x40 [ 101.933948][ T9656] FAT-fs (loop1): Directory bread(block 6) failed [ 101.937485][ T9671] get_image_page+0x2e/0x420 [ 101.937511][ T9671] memory_bm_create+0xa75/0x1510 [ 101.947416][ T9672] tmpfs: Unsupported parameter 'huge' [ 101.948463][ T9671] create_basic_memory_bitmaps+0xa3/0x400 [ 101.964681][ T9671] snapshot_open+0x19f/0x240 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x80045432, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {&(0x7f0000000140)='S', 0x1, 0x600}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) perf_event_open(&(0x7f00000004c0)={0x5, 0x80, 0x0, 0x3, 0x1f, 0x1f, 0x0, 0x0, 0x200, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xfffffffffffffffa, 0x1}, 0x42001, 0x15, 0x0, 0x4, 0x4, 0x266, 0x4, 0x0, 0x7fff, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000040)={0x5, {{0x2, 0x0, @multicast1}}}, 0x88) fgetxattr(0xffffffffffffffff, &(0x7f0000000080)=@known='system.sockprotoname\x00', 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRES32, @ANYRESDEC, @ANYRES32]) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000540)={{}, r1, 0xa, @inherit={0x50, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x6, {0x2, 0x0, 0x5, 0x1, 0x2}, [0x2]}}, @devid=r2}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000680)={r2, 0xffffffff, 0x0, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000540)={0x10, 0x0, {0x7, @usage=0xff, r2, 0x0, 0xfffffffffffffffa, 0x1ff, 0xb, 0x7fff, 0x4, @struct={0xb6, 0x9423}, 0x1, 0x6b, [0x6, 0x6, 0xcf0, 0x80000, 0x4, 0xfffffffffffffff9]}, {0x0, @usage=0x5, 0x0, 0x3462fe77, 0x2, 0x2, 0x2, 0x1, 0x401, @struct={0x4, 0x7}, 0x7, 0x8000, [0xffffffffffffff01, 0xfff, 0x3, 0xffff, 0xd2a5, 0x400]}, {0x100000001, @usage=0x9, 0x0, 0x2, 0x80, 0x0, 0x4, 0x2, 0x18, @usage=0xff, 0x80a8, 0x5, [0xffffffffffffffff, 0x8, 0x9, 0x8, 0x6, 0xc796]}, {0xf3ba, 0x7fffffff, 0x8}}) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, &(0x7f0000000440)={@local, @mcast1, @mcast2}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000400)=ANY=[], 0x208e24b) 20:22:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x9, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 101.969279][ T9671] ? snapshot_compat_ioctl+0x90/0x90 [ 101.974573][ T9671] misc_open+0x264/0x2a0 [ 101.978894][ T9671] chrdev_open+0x39c/0x420 [ 101.983324][ T9671] ? cd_forget+0x100/0x100 [ 101.987795][ T9671] do_dentry_open+0x529/0x850 [ 101.992505][ T9671] vfs_open+0x43/0x50 [ 101.996507][ T9671] path_openat+0x1787/0x1f20 [ 102.001100][ T9671] ? __alloc_pages+0x194/0x320 [ 102.005913][ T9671] do_filp_open+0xe9/0x200 [ 102.010338][ T9671] ? alloc_fd+0x388/0x3e0 [ 102.014665][ T9671] do_sys_openat2+0xa3/0x250 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x80045440, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 102.019259][ T9671] ? __cond_resched+0x11/0x40 [ 102.023991][ T9671] __x64_sys_openat+0xef/0x110 [ 102.028749][ T9671] do_syscall_64+0x3d/0x90 [ 102.033475][ T9671] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 102.034103][ T9675] loop3: detected capacity change from 0 to 1 [ 102.039451][ T9671] RIP: 0033:0x4665e9 [ 102.039468][ T9671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x80086601, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100, 0x61) r0 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r0, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x7, @empty}, 0x1c) r1 = syz_open_dev$vcsn(&(0x7f0000000040), 0x0, 0x20200) setsockopt$inet_tcp_int(r1, 0x6, 0x5, &(0x7f0000000080)=0x80000001, 0x4) [ 102.039485][ T9671] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 102.077942][ T9671] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 102.086274][ T9671] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 102.094249][ T9671] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 102.102302][ T9671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 102.110373][ T9671] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x80087601, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:18 executing program 0 (fault-call:1 fault-nth:64): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 102.184159][ T9715] loop1: detected capacity change from 0 to 6 [ 102.184653][ T9714] FAULT_INJECTION: forcing a failure. [ 102.184653][ T9714] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 102.203493][ T9714] CPU: 0 PID: 9714 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 102.204135][ T9716] loop5: detected capacity change from 0 to 64 [ 102.212176][ T9714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 102.212188][ T9714] Call Trace: [ 102.212196][ T9714] dump_stack_lvl+0xb7/0x103 [ 102.212218][ T9714] dump_stack+0x11/0x1a [ 102.240446][ T9714] should_fail+0x23c/0x250 [ 102.244958][ T9714] __alloc_pages+0x102/0x320 [ 102.249558][ T9714] alloc_pages+0x2e8/0x340 [ 102.253980][ T9714] get_zeroed_page+0x13/0x40 [ 102.258624][ T9714] get_image_page+0x2e/0x420 [ 102.263655][ T9714] memory_bm_create+0xa75/0x1510 [ 102.268576][ T9714] create_basic_memory_bitmaps+0xa3/0x400 [ 102.274329][ T9714] snapshot_open+0x19f/0x240 [ 102.278918][ T9714] ? snapshot_compat_ioctl+0x90/0x90 [ 102.284248][ T9714] misc_open+0x264/0x2a0 [ 102.288493][ T9714] chrdev_open+0x39c/0x420 [ 102.292981][ T9714] ? cd_forget+0x100/0x100 [ 102.297510][ T9714] do_dentry_open+0x529/0x850 [ 102.302456][ T9714] vfs_open+0x43/0x50 [ 102.306543][ T9714] path_openat+0x1787/0x1f20 [ 102.311144][ T9714] ? __alloc_pages+0x194/0x320 [ 102.315925][ T9714] do_filp_open+0xe9/0x200 [ 102.320509][ T9714] ? alloc_fd+0x388/0x3e0 [ 102.324873][ T9714] do_sys_openat2+0xa3/0x250 [ 102.329469][ T9714] ? __cond_resched+0x11/0x40 [ 102.334606][ T9714] __x64_sys_openat+0xef/0x110 [ 102.339559][ T9714] do_syscall_64+0x3d/0x90 [ 102.344035][ T9714] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 102.350005][ T9714] RIP: 0033:0x4665e9 [ 102.353894][ T9714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 102.373650][ T9714] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x801c581f, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 102.382072][ T9714] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 102.390128][ T9714] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 102.398156][ T9714] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 102.406120][ T9714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 102.414173][ T9714] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0), 0x0, 0x102}]) 20:22:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write$sndseq(r1, &(0x7f0000000280)=[{0x0, 0x2, 0x40, 0x59, @time={0x8, 0x2}, {0x48, 0x1}, {0x8, 0x8}, @addr={0x4, 0x3}}, {0x7, 0x0, 0x2, 0x3, @time={0x9, 0x7}, {0x62, 0x4}, {0x3f, 0x40}, @ext={0xe6, &(0x7f0000000100)="9004824924e7828bd92a7bc3b8b846a66032b74f68e273ca0b3ec4a7b371d03a703c49729f751e34a219d820eb4f6cbdbd60720595dac7764dfc640d3e1ee580c748edbd336d4eb92440048e576fdc6cf08705a8a348f68675c18062ef5bfd981cff6acc097d573bf5c21b3825295e22ee0b28949c18436d290cd7e79b4b2568d5d4c36e5ea17f2b8c2c59bade433f8abed27252a423f50609a0e5841da1da2370fbab8a66eb9dd0700c169613b7b2a0d78b18d9571b21b918852563739f4778d43b01aa3bcf6cc42c8dc26d1d5c77b5bd38270e710012b2a0a690e7ae2ab0044881111c7c22"}}, {0x5, 0x2, 0xc0, 0x81, @time={0x8}, {0x80, 0x8}, {0x1f, 0x4}, @time=@time={0x7ff, 0x9}}], 0x54) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 102.445678][ T9716] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 102.456292][ T9715] FAT-fs (loop1): Directory bread(block 6) failed 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0xc0045878, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 102.503622][ T9735] loop3: detected capacity change from 0 to 1 [ 102.552312][ T9749] loop5: detected capacity change from 0 to 64 [ 102.563504][ T9749] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:19 executing program 1: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000600)=[{&(0x7f00000002c0)="eb3c8f000000732e66617400020101000240008080f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000180)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x143042, 0x0) openat(r0, &(0x7f0000000080)='./file0\x00', 0x1000, 0x249) write$P9_RREADLINK(r1, &(0x7f0000000200)=ANY=[], 0x116) sendfile(r1, r1, &(0x7f0000000400), 0x7fff) 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0xc0045878, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136", 0x5f, 0x102}]) 20:22:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$nl_audit(0x10, 0x3, 0x9) mmap(&(0x7f00004b8000/0x4000)=nil, 0x4000, 0x2000009, 0x12, r1, 0xbfacd000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xb, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:19 executing program 0 (fault-call:1 fault-nth:65): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0xc0189436, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 102.800353][ T9769] loop5: detected capacity change from 0 to 64 [ 102.803204][ T9768] loop3: detected capacity change from 0 to 1 [ 102.810279][ T9769] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 102.823150][ T9771] FAULT_INJECTION: forcing a failure. [ 102.823150][ T9771] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 102.836484][ T9771] CPU: 1 PID: 9771 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0xc020660b, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xc, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 102.845359][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 102.855604][ T9771] Call Trace: [ 102.858945][ T9771] dump_stack_lvl+0xb7/0x103 [ 102.863532][ T9771] dump_stack+0x11/0x1a [ 102.867693][ T9771] should_fail+0x23c/0x250 [ 102.872119][ T9771] __alloc_pages+0x102/0x320 [ 102.876890][ T9771] alloc_pages+0x2e8/0x340 [ 102.881319][ T9771] get_zeroed_page+0x13/0x40 [ 102.886390][ T9771] get_image_page+0x2e/0x420 [ 102.890994][ T9771] memory_bm_create+0xa75/0x1510 20:22:19 executing program 2: r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x208001, 0xc0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 102.896019][ T9771] create_basic_memory_bitmaps+0xa3/0x400 [ 102.901752][ T9771] snapshot_open+0x19f/0x240 [ 102.906461][ T9771] ? snapshot_compat_ioctl+0x90/0x90 [ 102.911849][ T9771] misc_open+0x264/0x2a0 [ 102.916452][ T9771] chrdev_open+0x39c/0x420 [ 102.921012][ T9771] ? cd_forget+0x100/0x100 [ 102.925438][ T9771] do_dentry_open+0x529/0x850 [ 102.930118][ T9771] vfs_open+0x43/0x50 [ 102.934319][ T9771] path_openat+0x1787/0x1f20 [ 102.938999][ T9771] ? __alloc_pages+0x194/0x320 [ 102.943960][ T9771] do_filp_open+0xe9/0x200 [ 102.948519][ T9771] ? alloc_fd+0x388/0x3e0 [ 102.952916][ T9771] do_sys_openat2+0xa3/0x250 [ 102.957863][ T9771] ? __cond_resched+0x11/0x40 [ 102.962557][ T9771] __x64_sys_openat+0xef/0x110 [ 102.967415][ T9771] do_syscall_64+0x3d/0x90 [ 102.971843][ T9771] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 102.977745][ T9771] RIP: 0033:0x4665e9 20:22:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000004d00)={0x0, 0x0}) recvmmsg(r0, &(0x7f0000006380)=[{{&(0x7f0000000040)=@rc, 0x80, &(0x7f0000000200)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000000100)=""/235, 0xeb}], 0x2, &(0x7f0000001280)=""/12, 0xc}, 0x6}, {{&(0x7f00000012c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @loopback}}, 0x80, &(0x7f0000001440)=[{&(0x7f0000001340)=""/231, 0xe7}], 0x1}, 0x8001}, {{&(0x7f0000001480)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000002680)=[{&(0x7f0000004d80)=""/107, 0x6b}, {&(0x7f0000001580)=""/212, 0xd4}, {&(0x7f0000001680)=""/4096, 0x1000}], 0x3}, 0x9}, {{&(0x7f00000026c0)=@hci, 0x80, &(0x7f00000029c0)=[{&(0x7f0000002740)=""/88, 0x58}, {&(0x7f00000027c0)=""/239, 0xef}, {&(0x7f00000028c0)=""/147, 0x93}, {&(0x7f0000002980)=""/26, 0x1a}], 0x4, &(0x7f0000002a00)=""/100, 0x64}, 0xa034}, {{&(0x7f0000002a80)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000003000)=[{&(0x7f0000002b00)=""/182, 0xb6}, {&(0x7f0000002bc0)=""/51, 0x33}, {&(0x7f0000002c00)=""/143, 0x8f}, {&(0x7f0000002cc0)=""/229, 0xe5}, {&(0x7f0000002dc0)=""/75, 0x4b}, {&(0x7f0000002e40)=""/179, 0xb3}, {&(0x7f0000002f00)=""/248, 0xf8}], 0x7, &(0x7f0000003080)=""/2, 0x2}, 0x1f}, {{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f00000030c0)=""/155, 0x9b}, {&(0x7f0000004b00)=""/13, 0xd}, {&(0x7f00000031c0)=""/146, 0x92}, {&(0x7f0000003280)=""/234, 0xea}], 0x4, &(0x7f00000033c0)=""/153, 0x99}, 0x9}, {{0x0, 0x0, &(0x7f0000003700)=[{&(0x7f0000003480)=""/82, 0x52}, {&(0x7f0000003500)=""/137, 0x89}, {&(0x7f00000035c0)=""/160, 0xa0}, {&(0x7f0000003680)=""/50, 0x32}, {&(0x7f00000036c0)=""/33, 0x21}], 0x5, &(0x7f0000003780)=""/14, 0xe}, 0x4000005}, {{&(0x7f00000037c0)=@alg, 0x80, &(0x7f0000004a00)=[{&(0x7f0000003840)}, {&(0x7f0000003880)=""/31, 0x1f}, {&(0x7f00000038c0)=""/4096, 0x1000}, {&(0x7f00000048c0)=""/188, 0xbc}, {&(0x7f0000004980)=""/127, 0x7f}], 0x5, &(0x7f0000004a80)=""/82, 0x52}, 0x7fff}, {{&(0x7f0000004e00)=@ieee802154, 0x80, &(0x7f0000005000)=[{&(0x7f0000004e80)=""/78, 0x4e}, {&(0x7f0000004f00)=""/118, 0x76}, {&(0x7f0000004f80)=""/106, 0x6a}], 0x3}, 0x8}, {{0x0, 0x0, &(0x7f0000006300)=[{&(0x7f0000005040)=""/55, 0x37}, {&(0x7f0000005080)=""/4096, 0x1000}, {&(0x7f0000006080)=""/207, 0xcf}, {&(0x7f0000006180)=""/23, 0x17}, {&(0x7f00000061c0)=""/26, 0x1a}, {&(0x7f0000006200)=""/38, 0x26}, {&(0x7f0000006240)=""/130, 0x82}], 0x7}, 0x8}], 0xa, 0x10003, &(0x7f0000004d40)={r1, r2+60000000}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r4 = syz_open_dev$ttys(0xc, 0x2, 0x0) ppoll(&(0x7f0000001540)=[{r3, 0x2}, {r0, 0x2260}, {r3, 0x100}, {r4, 0x40}, {r3, 0x8042}], 0x5, &(0x7f0000003180)={0x0, 0x989680}, &(0x7f0000003840), 0x8) syz_io_uring_setup(0x495a, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000540)=0x0, &(0x7f0000000100)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000008540)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x3, {0x0, r7}}, 0x10001) syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x0, @fd_index}, 0x0) r8 = syz_io_uring_setup(0x495a, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000380)=0x0, &(0x7f0000000100)=0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000008540)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)={0x501043}, &(0x7f0000000280)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r11}}, 0x10001) connect$inet6(r0, &(0x7f0000004b40)={0xa, 0x4e23, 0x5, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x13}}, 0x2}, 0x1c) syz_io_uring_submit(0x0, r6, &(0x7f0000001500)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f000069c000/0x1000)=nil, 0x1000, 0x65, 0x0, {0x0, r11}}, 0x3a) [ 102.981677][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 103.001606][ T9771] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 103.010124][ T9771] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 103.018264][ T9771] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 103.026328][ T9771] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 103.034296][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 103.042393][ T9771] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 103.107035][ T9806] loop1: detected capacity change from 0 to 16 [ 103.118798][ T9807] loop5: detected capacity change from 0 to 64 [ 103.120446][ T9806] attempt to access beyond end of device [ 103.120446][ T9806] loop1: rw=2049, want=17, limit=16 20:22:19 executing program 0 (fault-call:1 fault-nth:66): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136", 0x5f, 0x102}]) 20:22:19 executing program 1: open(&(0x7f0000000200)='./file0\x00', 0x41, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0xfeffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',', @ANYRESHEX=0xee00]) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$TIOCL_SCROLLCONSOLE(0xffffffffffffffff, 0x541c, 0x0) [ 103.148333][ T9807] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 103.151231][ T9816] attempt to access beyond end of device [ 103.151231][ T9816] loop1: rw=2049, want=18, limit=16 20:22:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 103.205472][ T9825] FAULT_INJECTION: forcing a failure. [ 103.205472][ T9825] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 103.218826][ T9825] CPU: 0 PID: 9825 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 103.227489][ T9825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 103.237740][ T9825] Call Trace: [ 103.241001][ T9825] dump_stack_lvl+0xb7/0x103 [ 103.245576][ T9825] dump_stack+0x11/0x1a [ 103.249852][ T9825] should_fail+0x23c/0x250 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x7fff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x800}, 0x1c) [ 103.254278][ T9825] __alloc_pages+0x102/0x320 [ 103.258900][ T9825] alloc_pages+0x2e8/0x340 [ 103.263331][ T9825] get_zeroed_page+0x13/0x40 [ 103.267939][ T9825] get_image_page+0x2e/0x420 [ 103.271375][ T9827] loop3: detected capacity change from 0 to 1 [ 103.272645][ T9825] memory_bm_create+0xa75/0x1510 [ 103.272672][ T9825] create_basic_memory_bitmaps+0xa3/0x400 [ 103.272696][ T9825] snapshot_open+0x19f/0x240 [ 103.294287][ T9825] ? snapshot_compat_ioctl+0x90/0x90 [ 103.299645][ T9825] misc_open+0x264/0x2a0 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x140, 0x0) lseek(r1, 0x1f740000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x2, 0x7147) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e24, 0xbb26, @mcast2, 0x4}, 0x1c) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 103.303925][ T9825] chrdev_open+0x39c/0x420 [ 103.308534][ T9825] ? cd_forget+0x100/0x100 [ 103.312965][ T9825] do_dentry_open+0x529/0x850 [ 103.317961][ T9825] vfs_open+0x43/0x50 [ 103.322120][ T9825] path_openat+0x1787/0x1f20 [ 103.326876][ T9825] ? __alloc_pages+0x194/0x320 [ 103.331978][ T9825] do_filp_open+0xe9/0x200 [ 103.336954][ T9825] ? alloc_fd+0x388/0x3e0 [ 103.341294][ T9825] do_sys_openat2+0xa3/0x250 [ 103.346108][ T9825] ? __cond_resched+0x11/0x40 [ 103.350860][ T9825] __x64_sys_openat+0xef/0x110 [ 103.355618][ T9825] do_syscall_64+0x3d/0x90 [ 103.360121][ T9825] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 103.366006][ T9825] RIP: 0033:0x4665e9 [ 103.369958][ T9825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 103.390802][ T9825] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 20:22:20 executing program 0 (fault-call:1 fault-nth:67): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x20001, 0x102) ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f0000000700)={{0x0, 0x7, 0x6, 0x67, 0x9f6, 0x16, 0x4, 0x1, 0x4, 0x8000, 0x4, 0x2, 0x40000003ff, 0xffffffffffffffff, 0x2}}) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) preadv(r2, &(0x7f0000000680)=[{&(0x7f0000000040)=""/20, 0x14}, {&(0x7f0000000100)=""/130, 0x82}, {&(0x7f00000001c0)=""/92, 0x5c}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/146, 0x92}, {&(0x7f0000000440)=""/188, 0xbc}, {&(0x7f0000000500)=""/195, 0xc3}, {&(0x7f0000000600)=""/102, 0x66}], 0x8, 0x6, 0x9) [ 103.399400][ T9825] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 103.407500][ T9825] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 103.415540][ T9825] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 103.423660][ T9825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 103.431622][ T9825] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 103.508413][ T9856] FAULT_INJECTION: forcing a failure. [ 103.508413][ T9856] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 103.511802][ T9853] loop5: detected capacity change from 0 to 64 [ 103.521881][ T9856] CPU: 1 PID: 9856 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 103.521904][ T9856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 103.521915][ T9856] Call Trace: 20:22:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136", 0x5f, 0x102}]) 20:22:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xe, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:20 executing program 1: pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = socket(0x10, 0x3, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000004800)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="2c95b1f4e0f615b6a102b1b09bd20ff46588bcbf98f45c0ce909a07b8448cde66bfcfb125cd60f84adb246bd5ecdd5c222e3b2066efb13ccc8094b"], 0x1c}], 0x1}, 0x0) setsockopt$netlink_NETLINK_CAP_ACK(r3, 0x10e, 0xa, &(0x7f0000000040)=0x8, 0x4) write$binfmt_misc(r1, &(0x7f00000001c0)=ANY=[], 0x1000000c8) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3000002, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) splice(r0, 0x0, r2, 0x0, 0x30000033fe0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r5) r6 = mmap$IORING_OFF_SQES(&(0x7f00000eb000/0x4000)=nil, 0x4000, 0x3000001, 0x1010, r0, 0x10000000) syz_io_uring_submit(0x0, r6, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x9) sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="00012abd7000fedbdf25490000000c0099000400000066000000"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x40) [ 103.536633][ T9853] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 103.539700][ T9856] dump_stack_lvl+0xb7/0x103 [ 103.539726][ T9856] dump_stack+0x11/0x1a [ 103.556577][ T9865] loop3: detected capacity change from 0 to 1 [ 103.564259][ T9856] should_fail+0x23c/0x250 [ 103.564290][ T9856] __alloc_pages+0x102/0x320 [ 103.588768][ T9856] alloc_pages+0x2e8/0x340 [ 103.593199][ T9856] get_zeroed_page+0x13/0x40 [ 103.597819][ T9856] get_image_page+0x2e/0x420 [ 103.602420][ T9856] memory_bm_create+0xa75/0x1510 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) dup(r2) 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/120, 0x78}, {&(0x7f0000000100)=""/144, 0x90}, {&(0x7f00000001c0)=""/95, 0x5f}], 0x3, 0x89, 0x85d1) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000002c0)={{0x0, 0x0, 0xfff, 0x3, 0xffffffe0}, 0x100000000, 0x8}) [ 103.607371][ T9856] create_basic_memory_bitmaps+0xa3/0x400 [ 103.613106][ T9856] snapshot_open+0x19f/0x240 [ 103.617719][ T9856] ? snapshot_compat_ioctl+0x90/0x90 [ 103.623008][ T9856] misc_open+0x264/0x2a0 [ 103.627376][ T9856] chrdev_open+0x39c/0x420 [ 103.631811][ T9856] ? cd_forget+0x100/0x100 [ 103.636406][ T9856] do_dentry_open+0x529/0x850 [ 103.641087][ T9856] vfs_open+0x43/0x50 [ 103.645078][ T9856] path_openat+0x1787/0x1f20 [ 103.649832][ T9856] ? __alloc_pages+0x194/0x320 [ 103.654772][ T9856] do_filp_open+0xe9/0x200 [ 103.659316][ T9856] ? alloc_fd+0x388/0x3e0 [ 103.663700][ T9856] do_sys_openat2+0xa3/0x250 [ 103.668338][ T9856] ? __cond_resched+0x11/0x40 [ 103.673160][ T9856] __x64_sys_openat+0xef/0x110 [ 103.677919][ T9856] do_syscall_64+0x3d/0x90 [ 103.682532][ T9856] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 103.688462][ T9856] RIP: 0033:0x4665e9 [ 103.692515][ T9856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 103.712216][ T9856] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 103.720751][ T9856] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 103.728751][ T9856] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 103.737062][ T9856] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 103.745732][ T9856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet_icmp(0x2, 0x2, 0x1) clock_gettime(0x0, &(0x7f0000000380)={0x0, 0x0}) recvmmsg(r2, &(0x7f0000001980)=[{{&(0x7f0000000040)=@generic, 0x80, &(0x7f0000000280)=[{&(0x7f0000000100)=""/174, 0xae}, {&(0x7f00000001c0)=""/97, 0x61}], 0x2, &(0x7f0000001a80)=""/175, 0xaf}, 0x802bd8}, {{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000400)=""/218, 0xda}, {&(0x7f0000000500)=""/250, 0xfa}], 0x2, &(0x7f0000000640)=""/47, 0x2f}, 0x1}, {{&(0x7f0000000680)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000001900), 0x0, &(0x7f0000001940)=""/53, 0x35}, 0x8}], 0x3, 0x41, &(0x7f0000001a40)={r3, r4+60000000}) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:20 executing program 0 (fault-call:1 fault-nth:68): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60", 0x8e, 0x102}]) [ 103.753861][ T9856] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 103.802445][ T9885] FAULT_INJECTION: forcing a failure. [ 103.802445][ T9885] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 103.815467][ T9889] loop5: detected capacity change from 0 to 64 [ 103.815679][ T9885] CPU: 0 PID: 9885 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 103.830461][ T9885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 103.840525][ T9885] Call Trace: [ 103.843897][ T9885] dump_stack_lvl+0xb7/0x103 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) sendto$inet6(r0, &(0x7f0000000100)="5132531fa4f544bcd5aa41cdb50329aabbd0314e507bd68582ecf468022c22950038f84c01ca5a30a08933d8303ae5f5d75ae62e216ae63ca9a7a1fd6e46acdeeae5f40355ee083b0e4d658d8e07407620bcc260ea86490eb933402b27448b2dcdce074fcce0db1264ba0666f51d5c4d0df817045539d29a8abbbfd13a6077c1831940017eaacfa131974e784dc25e4914301cc561f95c17d7777fb685d5", 0x9e, 0x4040, 0x0, 0x0) 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000200), 0x0, 0xd9f, 0x3) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_io_uring_setup(0x729b, &(0x7f0000000040)={0x0, 0xcc7f, 0x2, 0x0, 0xc5, 0x0, r0}, &(0x7f00004ff000/0x4000)=nil, &(0x7f0000179000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fdatasync(r1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x6) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 103.848498][ T9885] dump_stack+0x11/0x1a [ 103.853268][ T9885] should_fail+0x23c/0x250 [ 103.857788][ T9885] __alloc_pages+0x102/0x320 [ 103.862628][ T9885] alloc_pages+0x2e8/0x340 [ 103.867096][ T9885] get_zeroed_page+0x13/0x40 [ 103.871743][ T9885] get_image_page+0x2e/0x420 [ 103.876750][ T9885] memory_bm_create+0xa75/0x1510 [ 103.881693][ T9885] create_basic_memory_bitmaps+0xa3/0x400 [ 103.885242][ T9889] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 103.887461][ T9885] snapshot_open+0x19f/0x240 20:22:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xf, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:20 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) mmap(&(0x7f00003b0000/0x4000)=nil, 0x4000, 0x5, 0x80010, r1, 0x3dd1a000) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e20, 0x1, @remote}, 0x1c) [ 103.901146][ T9885] ? snapshot_compat_ioctl+0x90/0x90 [ 103.906616][ T9885] misc_open+0x264/0x2a0 [ 103.911424][ T9885] chrdev_open+0x39c/0x420 [ 103.915851][ T9885] ? cd_forget+0x100/0x100 [ 103.920367][ T9885] do_dentry_open+0x529/0x850 [ 103.925048][ T9885] vfs_open+0x43/0x50 [ 103.929025][ T9885] path_openat+0x1787/0x1f20 [ 103.933637][ T9885] ? __alloc_pages+0x194/0x320 [ 103.938434][ T9885] do_filp_open+0xe9/0x200 [ 103.943012][ T9885] ? alloc_fd+0x388/0x3e0 [ 103.947385][ T9885] do_sys_openat2+0xa3/0x250 [ 103.952236][ T9885] ? __cond_resched+0x11/0x40 [ 103.957003][ T9885] __x64_sys_openat+0xef/0x110 [ 103.961771][ T9885] do_syscall_64+0x3d/0x90 [ 103.966204][ T9885] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 103.972266][ T9885] RIP: 0033:0x4665e9 [ 103.976347][ T9885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 103.996030][ T9885] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 104.004432][ T9885] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 104.012400][ T9885] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 104.020369][ T9885] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 104.028595][ T9885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 104.036713][ T9885] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 104.061930][ T9912] loop3: detected capacity change from 0 to 1 [ 104.097809][ T9920] loop5: detected capacity change from 0 to 64 [ 104.109950][ T9920] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:21 executing program 1: set_mempolicy(0x1, &(0x7f0000000000)=0x9, 0x8) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x4000304) 20:22:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = accept$inet(r0, &(0x7f0000000040)={0x2, 0x0, @private}, &(0x7f0000000080)=0x10) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000100)=0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) quotactl(0x80000000, &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000180)="ab7a899c26d35a00a5de77cf43d55060a301ee55331a28f774c4078481c47fc696684babbfc68fcb59fca0802b8fe6ba8d6fa243093e162e3f23c53eade89efb5dec0b427346d78874e45199dde547e27f6d6c9473d4a03067f9d6b65924295e8868010bd60d5dbfaa7adc0119e9075ad8dc219307f2572afd3dcca96bc440f6ab6269db6095c9cc9b36f491a397eb7b615c6a8bcd6481cae60b4fb97110b88a6ee36c9717") sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = eventfd2(0x8, 0x1) mmap(&(0x7f000004c000/0x4000)=nil, 0x4000, 0x4, 0x2010, r3, 0x5d87000) 20:22:21 executing program 0 (fault-call:1 fault-nth:69): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:21 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x10, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x7) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60", 0x8e, 0x102}]) [ 104.477888][ T9935] loop5: detected capacity change from 0 to 64 [ 104.485516][ T9939] loop3: detected capacity change from 0 to 1 [ 104.492520][ T9944] FAULT_INJECTION: forcing a failure. [ 104.492520][ T9944] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 104.503546][ T9935] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 104.505755][ T9944] CPU: 1 PID: 9944 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 104.523612][ T9944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 104.533667][ T9944] Call Trace: [ 104.536943][ T9944] dump_stack_lvl+0xb7/0x103 [ 104.541605][ T9944] dump_stack+0x11/0x1a [ 104.545762][ T9944] should_fail+0x23c/0x250 [ 104.550196][ T9944] __alloc_pages+0x102/0x320 [ 104.554929][ T9944] alloc_pages+0x2e8/0x340 [ 104.559430][ T9944] get_zeroed_page+0x13/0x40 [ 104.564270][ T9944] get_image_page+0x2e/0x420 [ 104.568860][ T9944] memory_bm_create+0xa75/0x1510 20:22:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1000004, 0x12, r0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x204400, 0x0) r2 = getuid() setresuid(0x0, r2, 0xee01) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=td,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',dfltuid=', @ANYRESHEX=r2, @ANYBLOB=',noextend,debug=0x0000000000000007,loose,cache=fscache,cachetag=!,loose,nodevmap,fscontext=system_u.appraise,\x00']) preadv(r0, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/120, 0x78}, {&(0x7f0000000380)=""/28, 0x1c}, {&(0x7f0000000400)=""/24, 0x18}], 0x3, 0xd9f, 0x0) mlockall(0x2) r3 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) shmat(r3, &(0x7f0000000000/0x13000)=nil, 0x4000) r4 = shmget$private(0x0, 0xc00000, 0x0, &(0x7f0000400000/0xc00000)=nil) sendfile(r0, r0, &(0x7f0000000040)=0x2, 0x7f) r5 = shmat(r4, &(0x7f000059e000/0x4000)=nil, 0x5000) shmdt(r5) shmdt(r5) shmctl$SHM_LOCK(r3, 0xb) ioctl$SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, &(0x7f0000000240)) shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffdfff) shmdt(0x0) shmctl$SHM_UNLOCK(r3, 0xc) [ 104.574434][ T9944] create_basic_memory_bitmaps+0xa3/0x400 [ 104.580163][ T9944] snapshot_open+0x19f/0x240 [ 104.584760][ T9944] ? snapshot_compat_ioctl+0x90/0x90 [ 104.590052][ T9944] misc_open+0x264/0x2a0 [ 104.594287][ T9944] chrdev_open+0x39c/0x420 [ 104.598926][ T9944] ? cd_forget+0x100/0x100 [ 104.603334][ T9944] do_dentry_open+0x529/0x850 [ 104.608096][ T9944] vfs_open+0x43/0x50 [ 104.612077][ T9944] path_openat+0x1787/0x1f20 [ 104.616902][ T9944] ? __alloc_pages+0x194/0x320 [ 104.622150][ T9944] do_filp_open+0xe9/0x200 20:22:21 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x11, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 104.626853][ T9944] ? alloc_fd+0x388/0x3e0 [ 104.631201][ T9944] do_sys_openat2+0xa3/0x250 [ 104.636101][ T9944] ? __cond_resched+0x11/0x40 [ 104.641016][ T9944] __x64_sys_openat+0xef/0x110 [ 104.645779][ T9944] do_syscall_64+0x3d/0x90 [ 104.650281][ T9944] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 104.656259][ T9944] RIP: 0033:0x4665e9 20:22:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x21) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x1f) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 104.660169][ T9944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 104.679858][ T9944] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 104.688396][ T9944] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 104.696363][ T9944] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 104.704328][ T9944] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 104.712294][ T9944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 104.720310][ T9944] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:21 executing program 0 (fault-call:1 fault-nth:70): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60", 0x8e, 0x102}]) [ 104.819974][ T9971] FAULT_INJECTION: forcing a failure. [ 104.819974][ T9971] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 104.826842][ T9973] loop5: detected capacity change from 0 to 64 [ 104.833318][ T9971] CPU: 0 PID: 9971 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 104.848080][ T9971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 104.858252][ T9971] Call Trace: [ 104.861775][ T9971] dump_stack_lvl+0xb7/0x103 [ 104.866364][ T9971] dump_stack+0x11/0x1a [ 104.870516][ T9971] should_fail+0x23c/0x250 [ 104.874951][ T9971] __alloc_pages+0x102/0x320 [ 104.879544][ T9971] alloc_pages+0x2e8/0x340 [ 104.884133][ T9971] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 104.889706][ T9971] get_zeroed_page+0x13/0x40 [ 104.894341][ T9971] get_image_page+0x2e/0x420 [ 104.899124][ T9971] memory_bm_create+0xa75/0x1510 [ 104.904137][ T9971] create_basic_memory_bitmaps+0xa3/0x400 [ 104.904857][ T9978] loop3: detected capacity change from 0 to 1 [ 104.909869][ T9971] snapshot_open+0x19f/0x240 [ 104.909898][ T9971] ? snapshot_compat_ioctl+0x90/0x90 [ 104.925823][ T9971] misc_open+0x264/0x2a0 [ 104.930072][ T9971] chrdev_open+0x39c/0x420 [ 104.934661][ T9971] ? cd_forget+0x100/0x100 [ 104.939087][ T9971] do_dentry_open+0x529/0x850 [ 104.943807][ T9971] vfs_open+0x43/0x50 [ 104.947882][ T9971] path_openat+0x1787/0x1f20 [ 104.952480][ T9971] ? __alloc_pages+0x194/0x320 [ 104.954877][ T9973] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 104.957251][ T9971] do_filp_open+0xe9/0x200 20:22:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='\xd28u\x9d6\xda\xd2\x1a\f\xce\x1f:#\xdaOe\x96\x87\xd39\x1e^g\x1d\xdc\xd3\x7f\x1a-<\xde\xfe\xeaE\"}\x8e\xa3\xdf\xa3\xc0\xf2Y\x88\xe2E\x814\xb5\xe8S\xda-c\x95\xfa\vi\xf2bs|\\\x9d\xe6\xf3\x94\x00x\xa7]B\xb4\x80\xaa\x16V\xeeb\x88,\xbb\xc0\x18\xe4\xd5A^35J\xc2s\x92CJg\x180TF\t\xe4\xee\xb0\xf1\xbe3\x87\x9b\xc4;2\x91\x8aD\xe1\xf4u\xd6\t\x86\a+\x8e>\xad\xc7\xe4\xc4\xe9W>\xa1 S-\xb3\xdf\xca\x82\xa7!\tL\xb8FsI\x7f') prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0003}]}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/158, 0x9e}, {&(0x7f0000000100)=""/21, 0x15}, {&(0x7f0000000400)=""/166, 0xa6}], 0x3, 0xd9f, 0x0) 20:22:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 104.957277][ T9971] ? alloc_fd+0x388/0x3e0 [ 104.975071][ T9971] do_sys_openat2+0xa3/0x250 [ 104.979732][ T9971] ? __cond_resched+0x11/0x40 [ 104.984526][ T9971] __x64_sys_openat+0xef/0x110 [ 104.989299][ T9971] do_syscall_64+0x3d/0x90 [ 104.993726][ T9971] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 104.999628][ T9971] RIP: 0033:0x4665e9 [ 105.003511][ T9971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 105.023481][ T9971] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 105.031998][ T9971] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 105.040167][ T9971] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 105.048192][ T9971] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 105.056162][ T9971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:21 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x12, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:21 executing program 0 (fault-call:1 fault-nth:71): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 105.064267][ T9971] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 105.087056][ T25] audit: type=1326 audit(1627071741.825:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.115835][ T25] audit: type=1326 audit(1627071741.835:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.124933][ T9998] FAULT_INJECTION: forcing a failure. [ 105.124933][ T9998] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 105.155388][ T9998] CPU: 0 PID: 9998 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 105.164112][ T9998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 105.174189][ T9998] Call Trace: [ 105.177640][ T9998] dump_stack_lvl+0xb7/0x103 [ 105.182334][ T9998] dump_stack+0x11/0x1a [ 105.186478][ T9998] should_fail+0x23c/0x250 [ 105.191011][ T9998] __alloc_pages+0x102/0x320 [ 105.195624][ T9998] alloc_pages+0x2e8/0x340 [ 105.200031][ T9998] get_zeroed_page+0x13/0x40 [ 105.204650][ T9998] get_image_page+0x2e/0x420 [ 105.209227][ T9998] memory_bm_create+0xa75/0x1510 [ 105.214190][ T9998] create_basic_memory_bitmaps+0xa3/0x400 [ 105.219897][ T9998] snapshot_open+0x19f/0x240 [ 105.224667][ T9998] ? snapshot_compat_ioctl+0x90/0x90 [ 105.229980][ T9998] misc_open+0x264/0x2a0 [ 105.234300][ T9998] chrdev_open+0x39c/0x420 [ 105.238748][ T9998] ? cd_forget+0x100/0x100 [ 105.243418][ T9998] do_dentry_open+0x529/0x850 [ 105.248137][ T9998] vfs_open+0x43/0x50 [ 105.252192][ T9998] path_openat+0x1787/0x1f20 [ 105.256794][ T9998] ? __alloc_pages+0x194/0x320 [ 105.261663][ T9998] do_filp_open+0xe9/0x200 [ 105.266340][ T9998] ? alloc_fd+0x388/0x3e0 [ 105.270762][ T9998] do_sys_openat2+0xa3/0x250 [ 105.275463][ T9998] ? __cond_resched+0x11/0x40 [ 105.280307][ T9998] __x64_sys_openat+0xef/0x110 [ 105.285237][ T9998] do_syscall_64+0x3d/0x90 [ 105.289818][ T9998] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 105.295813][ T9998] RIP: 0033:0x4665e9 [ 105.299693][ T9998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 105.319598][ T9998] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 105.328009][ T9998] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 105.336081][ T9998] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 105.344103][ T9998] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 105.352056][ T9998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 105.360109][ T9998] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xc) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 105.376367][ T25] audit: type=1326 audit(1627071741.855:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x4665e9 code=0x7ffc0000 20:22:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd18", 0xa6, 0x102}]) [ 105.419997][T10005] loop5: detected capacity change from 0 to 64 [ 105.445599][T10005] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x18, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 105.454543][ T25] audit: type=1326 audit(1627071741.855:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.462836][T10013] loop3: detected capacity change from 0 to 1 [ 105.481172][ T25] audit: type=1326 audit(1627071741.855:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 20:22:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd18", 0xa6, 0x102}]) [ 105.534485][ T25] audit: type=1326 audit(1627071741.855:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x4665e9 code=0x7ffc0000 20:22:22 executing program 2: ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058340)={0x8001, [], 0x0, "30673dc447b580"}) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001400)=ANY=[@ANYRES64, @ANYRES64, @ANYRESOCT, @ANYRES32, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x65) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058340)={0x8001, [{}, {0x0, r3}, {r2}, {r1, r3}, {0x0, r3}, {r1}, {r2}, {r1}, {}, {0x0, r3}, {r2}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {}, {r2, r3}, {}, {r1}, {}, {}, {0x0, r3}, {r2, r3}, {r1, r3}, {}, {}, {}, {r1, r3}, {0x0, r3}, {r2}, {r2, r3}, {}, {0x0, r3}, {}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {r1, r3}, {r1}, {r2, r3}, {r2, r3}, {r2}, {0x0, r3}, {r2}, {r2, r3}, {r2}, {}, {0x0, r3}, {r2}, {}, {}, {r1, r3}, {r2}, {r1}, {r1, r3}, {}, {}, {}, {0x0, r3}, {0x0, r3}, {}, {r2}, {0x0, r3}, {r1}, {}, {r1, r3}, {r2}, {}, {r2}, {r2, r3}, {r1, r3}, {}, {r2}, {r1, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r1}, {0x0, r3}, {r1, r3}, {r1}, {0x0, r3}, {0x0, r3}, {r1}, {0x0, r3}, {}, {r2}, {r2}, {r2}, {r1}, {}, {}, {r1}, {r1, r3}, {}, {r1}, {}, {r2}, {r1}, {}, {0x0, r3}, {r2, r3}, {r1}, {}, {r2}, {r1}, {r1, r3}, {r1}, {0x0, r3}, {r1}, {r1}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r2, r3}, {r2, r3}, {r1, r3}, {r1}, {r2, r3}, {0x0, r3}, {}, {r1}, {r1, r3}, {}, {0x0, r3}, {0x0, r3}, {r2}, {r1}, {}, {}, {r1}, {r1}, {r2, r3}, {}, {}, {r1, r3}, {0x0, r3}, {}, {r2, r3}, {}, {}, {r1, r3}, {0x0, r3}, {0x0, r3}, {r1, r3}, {0x0, r3}, {0x0, r3}, {r1}, {0x0, r3}, {0x0, r3}, {r1}, {r1}, {r2, r3}, {r1}, {0x0, r3}, {r2}, {r1, r3}, {}, {r2}, {r2, r3}, {r1}, {r1, r3}, {r1, r3}, {r1}, {r1}, {r2, r3}, {0x0, r3}, {r2}, {r1, r3}, {r1}, {0x0, r3}, {0x0, r3}, {r2}, {r1}, {0x0, r3}, {r1, r3}, {r1}, {0x0, r3}, {r2}, {}, {0x0, r3}, {r1}, {}, {}, {r2, r3}, {r2}, {r1, r3}, {}, {0x0, r3}, {}, {}, {r2}, {}, {r1, r3}, {r1}, {}, {r2}, {}, {}, {r2, r3}, {r2}, {r2, r3}, {}, {}, {r2, r3}, {}, {r2}, {r2}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r1, r3}, {r1}, {}, {0x0, r3}, {}, {r2, r3}, {r2}, {}, {r1, r3}, {}, {r2, r3}, {}, {0x0, r3}, {r2, r3}, {}, {}, {r2}, {r1}, {}, {r1}, {0x0, r3}, {0x0, r3}, {r2}, {r1, r3}, {r1, r3}, {r2}, {r2}, {}, {r2}, {}, {r2}, {r2}, {0x0, r3}], 0x0, "30673dc447b580"}) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001400)=ANY=[@ANYRES64=r1, @ANYRES64=r0, @ANYRESOCT, @ANYRES32=r3, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x65) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000280)={0x0, r1, "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", "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"}) write$P9_RLOPEN(0xffffffffffffffff, &(0x7f0000000040)={0x18, 0xd, 0x1, {{0x4, 0x3, 0x4}, 0x7}}, 0x18) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000614000/0x4000)=nil, 0x4000, 0x1800003, 0x20010, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r6 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r6, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x12) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:22 executing program 1: r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) r1 = creat(&(0x7f0000000280)='./bus\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000200), 0x175d900f) fallocate(r0, 0x0, 0x0, 0x1fbfc) dup3(r1, r0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) openat(r2, &(0x7f0000000000)='./bus\x00', 0x42000, 0x90) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x110, r2, 0x0) preadv(r2, &(0x7f0000000040), 0x0, 0xd9f, 0x0) [ 105.562650][ T25] audit: type=1326 audit(1627071741.855:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.605047][T10021] loop5: detected capacity change from 0 to 64 [ 105.615288][T10021] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 105.638419][T10036] loop3: detected capacity change from 0 to 1 20:22:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x19, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:22 executing program 0 (fault-call:1 fault-nth:72): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 105.647384][ T25] audit: type=1326 audit(1627071741.855:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.673698][ T25] audit: type=1326 audit(1627071742.115:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=9 compat=0 ip=0x4665e9 code=0x7ffc0000 20:22:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd18", 0xa6, 0x102}]) [ 105.703388][ T25] audit: type=1326 audit(1627071742.115:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=9980 comm=D238759D36DAD21A0CCE1F3A23DA4F exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 105.720419][T10044] FAULT_INJECTION: forcing a failure. [ 105.720419][T10044] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 105.742304][T10044] CPU: 0 PID: 10044 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 105.751126][T10044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 105.761478][T10044] Call Trace: [ 105.764755][T10044] dump_stack_lvl+0xb7/0x103 [ 105.769452][T10044] dump_stack+0x11/0x1a [ 105.773609][T10044] should_fail+0x23c/0x250 [ 105.778144][T10044] __alloc_pages+0x102/0x320 [ 105.782824][T10044] alloc_pages+0x2e8/0x340 [ 105.787253][T10044] get_zeroed_page+0x13/0x40 [ 105.791913][T10044] get_image_page+0x2e/0x420 [ 105.796508][T10044] memory_bm_create+0xa75/0x1510 [ 105.801450][T10044] create_basic_memory_bitmaps+0xa3/0x400 [ 105.807213][T10044] snapshot_open+0x19f/0x240 [ 105.811845][T10044] ? snapshot_compat_ioctl+0x90/0x90 [ 105.817169][T10044] misc_open+0x264/0x2a0 [ 105.821505][T10044] chrdev_open+0x39c/0x420 [ 105.825921][T10044] ? cd_forget+0x100/0x100 [ 105.830675][T10044] do_dentry_open+0x529/0x850 [ 105.835639][T10044] vfs_open+0x43/0x50 [ 105.839837][T10044] path_openat+0x1787/0x1f20 [ 105.844496][T10044] ? __alloc_pages+0x194/0x320 [ 105.849419][T10044] do_filp_open+0xe9/0x200 [ 105.853864][T10044] ? alloc_fd+0x388/0x3e0 [ 105.855778][T10047] loop5: detected capacity change from 0 to 64 [ 105.858366][T10044] do_sys_openat2+0xa3/0x250 [ 105.858389][T10044] ? __cond_resched+0x11/0x40 [ 105.858410][T10044] __x64_sys_openat+0xef/0x110 [ 105.858427][T10044] do_syscall_64+0x3d/0x90 [ 105.858442][T10044] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 105.889354][T10044] RIP: 0033:0x4665e9 [ 105.891883][T10047] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 105.893245][T10044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 105.893265][T10044] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 105.930673][T10044] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 105.938648][T10044] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 105.946626][T10044] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 20:22:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x22, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x18) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:22 executing program 0 (fault-call:1 fault-nth:73): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 105.954598][T10044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 105.962631][T10044] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 105.989465][T10060] loop3: detected capacity change from 0 to 1 [ 106.043583][T10072] loop5: detected capacity change from 0 to 64 [ 106.050620][T10073] FAULT_INJECTION: forcing a failure. [ 106.050620][T10073] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 106.056130][T10072] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 106.064780][T10073] CPU: 1 PID: 10073 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 106.082523][T10073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 106.092629][T10073] Call Trace: [ 106.095944][T10073] dump_stack_lvl+0xb7/0x103 [ 106.100740][T10073] dump_stack+0x11/0x1a [ 106.104901][T10073] should_fail+0x23c/0x250 [ 106.109331][T10073] __alloc_pages+0x102/0x320 [ 106.113929][T10073] alloc_pages+0x2e8/0x340 [ 106.118433][T10073] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 106.124100][T10073] get_zeroed_page+0x13/0x40 [ 106.128694][T10073] get_image_page+0x2e/0x420 [ 106.133293][T10073] memory_bm_create+0xa75/0x1510 [ 106.138241][T10073] create_basic_memory_bitmaps+0xa3/0x400 [ 106.143973][T10073] snapshot_open+0x19f/0x240 [ 106.148624][T10073] ? snapshot_compat_ioctl+0x90/0x90 [ 106.153922][T10073] misc_open+0x264/0x2a0 [ 106.158174][T10073] chrdev_open+0x39c/0x420 [ 106.162664][T10073] ? cd_forget+0x100/0x100 [ 106.167141][T10073] do_dentry_open+0x529/0x850 [ 106.171987][T10073] vfs_open+0x43/0x50 [ 106.175975][T10073] path_openat+0x1787/0x1f20 [ 106.180603][T10073] ? __alloc_pages+0x194/0x320 [ 106.185369][T10073] do_filp_open+0xe9/0x200 [ 106.189794][T10073] ? alloc_fd+0x388/0x3e0 20:22:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x25, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 106.194176][T10073] do_sys_openat2+0xa3/0x250 [ 106.199028][T10073] ? __cond_resched+0x11/0x40 [ 106.203806][T10073] __x64_sys_openat+0xef/0x110 [ 106.208765][T10073] do_syscall_64+0x3d/0x90 [ 106.213189][T10073] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 106.219089][T10073] RIP: 0033:0x4665e9 [ 106.222982][T10073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 106.242665][T10073] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 106.251298][T10073] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 106.259267][T10073] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 106.267260][T10073] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.275236][T10073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 106.283208][T10073] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d2", 0xb2, 0x102}]) 20:22:23 executing program 0 (fault-call:1 fault-nth:74): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 106.352620][T10088] loop5: detected capacity change from 0 to 64 [ 106.373604][T10090] loop3: detected capacity change from 0 to 1 [ 106.375128][T10088] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 106.381419][T10091] FAULT_INJECTION: forcing a failure. [ 106.381419][T10091] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 106.402012][T10091] CPU: 0 PID: 10091 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 106.410776][T10091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 106.420871][T10091] Call Trace: [ 106.424164][T10091] dump_stack_lvl+0xb7/0x103 [ 106.428792][T10091] dump_stack+0x11/0x1a [ 106.433067][T10091] should_fail+0x23c/0x250 [ 106.437576][T10091] __alloc_pages+0x102/0x320 [ 106.442193][T10091] alloc_pages+0x2e8/0x340 [ 106.446739][T10091] get_zeroed_page+0x13/0x40 [ 106.451562][T10091] get_image_page+0x2e/0x420 [ 106.456160][T10091] memory_bm_create+0xa75/0x1510 [ 106.461110][T10091] create_basic_memory_bitmaps+0xa3/0x400 [ 106.466923][T10091] snapshot_open+0x19f/0x240 [ 106.471519][T10091] ? snapshot_compat_ioctl+0x90/0x90 [ 106.476834][T10091] misc_open+0x264/0x2a0 [ 106.481130][T10091] chrdev_open+0x39c/0x420 [ 106.485564][T10091] ? cd_forget+0x100/0x100 [ 106.490042][T10091] do_dentry_open+0x529/0x850 [ 106.494829][T10091] vfs_open+0x43/0x50 [ 106.498809][T10091] path_openat+0x1787/0x1f20 [ 106.503482][T10091] ? __alloc_pages+0x194/0x320 [ 106.508290][T10091] do_filp_open+0xe9/0x200 [ 106.512712][T10091] ? alloc_fd+0x388/0x3e0 [ 106.517057][T10091] do_sys_openat2+0xa3/0x250 [ 106.521659][T10091] ? __cond_resched+0x11/0x40 [ 106.526379][T10091] __x64_sys_openat+0xef/0x110 [ 106.531142][T10091] do_syscall_64+0x3d/0x90 [ 106.535674][T10091] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 106.541569][T10091] RIP: 0033:0x4665e9 [ 106.545458][T10091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 106.565154][T10091] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 106.573629][T10091] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 106.581617][T10091] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 106.589592][T10091] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.597577][T10091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 106.606588][T10091] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000550000/0x4000)=nil, 0x4000, 0x1000009, 0x1010, r0, 0x8000000) syz_io_uring_setup(0x3bec, &(0x7f0000000040)={0x0, 0x4f76, 0x0, 0x3, 0x3e5, 0x0, r0}, &(0x7f000057f000/0x2000)=nil, &(0x7f00003b7000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_POLL_REMOVE={0x7, 0xb, 0x0, 0x0, 0x0, 0x12345}, 0x20) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1e) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x48, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:23 executing program 0 (fault-call:1 fault-nth:75): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d2", 0xb2, 0x102}]) [ 106.673718][T10099] device lo entered promiscuous mode [ 106.682872][T10042] Y­4`Ò˜: renamed from lo [ 106.733043][T10108] FAULT_INJECTION: forcing a failure. [ 106.733043][T10108] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 106.737606][T10109] loop5: detected capacity change from 0 to 64 [ 106.746317][T10108] CPU: 0 PID: 10108 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 106.746337][T10108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 106.746346][T10108] Call Trace: [ 106.774974][T10108] dump_stack_lvl+0xb7/0x103 [ 106.779645][T10108] dump_stack+0x11/0x1a [ 106.783802][T10108] should_fail+0x23c/0x250 [ 106.788216][T10108] __alloc_pages+0x102/0x320 [ 106.793011][T10108] alloc_pages+0x2e8/0x340 [ 106.797580][T10108] get_zeroed_page+0x13/0x40 [ 106.802186][T10108] get_image_page+0x2e/0x420 [ 106.806891][T10108] memory_bm_create+0xa75/0x1510 [ 106.811994][T10108] create_basic_memory_bitmaps+0xa3/0x400 [ 106.817783][T10108] snapshot_open+0x19f/0x240 [ 106.822502][T10108] ? snapshot_compat_ioctl+0x90/0x90 [ 106.828775][T10108] misc_open+0x264/0x2a0 [ 106.833029][T10108] chrdev_open+0x39c/0x420 [ 106.837655][T10108] ? cd_forget+0x100/0x100 [ 106.842126][T10108] do_dentry_open+0x529/0x850 [ 106.846808][T10108] vfs_open+0x43/0x50 [ 106.850959][T10108] path_openat+0x1787/0x1f20 [ 106.855653][T10108] ? __alloc_pages+0x194/0x320 [ 106.860496][T10108] do_filp_open+0xe9/0x200 [ 106.865078][T10108] ? alloc_fd+0x388/0x3e0 [ 106.869543][T10108] do_sys_openat2+0xa3/0x250 [ 106.874135][T10108] ? __cond_resched+0x11/0x40 [ 106.878936][T10108] __x64_sys_openat+0xef/0x110 [ 106.883697][T10108] do_syscall_64+0x3d/0x90 [ 106.888130][T10108] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 106.894030][T10108] RIP: 0033:0x4665e9 [ 106.897959][T10108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 106.917649][T10108] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 106.926158][T10108] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0xc14f3000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$FICLONE(r2, 0x40049409, r0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fremovexattr(r3, &(0x7f0000000200)=@known='trusted.overlay.nlink\x00') sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="26e10fbc700857071746983ac43686e25f0f8afee837947dd2af4fefc5329a8df9684f5861edeede888380c7323432141d6b1ffddcccf0019871886dcc1a7990c3379ef5881bbcd2f1b44aa54b655af092", 0x51, 0x0, 0x0, 0x58) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0xe0000, 0x0) ppoll(&(0x7f0000000080)=[{r4, 0x8}, {r1, 0x4008}, {r1, 0xe604}], 0x3, &(0x7f0000000100), &(0x7f0000000140)={[0x4e36]}, 0x8) [ 106.934143][T10108] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 106.942172][T10108] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.950155][T10108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 106.958131][T10108] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 106.974320][T10109] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:23 executing program 0 (fault-call:1 fault-nth:76): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 106.984414][T10110] loop3: detected capacity change from 0 to 1 [ 107.022676][T10129] FAULT_INJECTION: forcing a failure. [ 107.022676][T10129] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 107.036106][T10129] CPU: 0 PID: 10129 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 107.045025][T10129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 107.055272][T10129] Call Trace: [ 107.058578][T10129] dump_stack_lvl+0xb7/0x103 [ 107.063194][T10129] dump_stack+0x11/0x1a [ 107.067401][T10129] should_fail+0x23c/0x250 [ 107.071831][T10129] __alloc_pages+0x102/0x320 [ 107.076436][T10129] alloc_pages+0x2e8/0x340 [ 107.080947][T10129] get_zeroed_page+0x13/0x40 [ 107.085580][T10129] get_image_page+0x2e/0x420 [ 107.090187][T10129] memory_bm_create+0xa75/0x1510 [ 107.095196][T10129] create_basic_memory_bitmaps+0xa3/0x400 [ 107.100933][T10129] snapshot_open+0x19f/0x240 [ 107.105540][T10129] ? snapshot_compat_ioctl+0x90/0x90 [ 107.110838][T10129] misc_open+0x264/0x2a0 [ 107.115095][T10129] chrdev_open+0x39c/0x420 [ 107.119525][T10129] ? cd_forget+0x100/0x100 [ 107.124018][T10129] do_dentry_open+0x529/0x850 [ 107.128745][T10129] vfs_open+0x43/0x50 [ 107.132850][T10129] path_openat+0x1787/0x1f20 [ 107.137602][T10129] ? __alloc_pages+0x194/0x320 [ 107.141245][T10134] netlink: 4602 bytes leftover after parsing attributes in process `syz-executor.1'. [ 107.142371][T10129] do_filp_open+0xe9/0x200 [ 107.142398][T10129] ? alloc_fd+0x388/0x3e0 [ 107.160547][T10129] do_sys_openat2+0xa3/0x250 [ 107.165244][T10129] ? __cond_resched+0x11/0x40 [ 107.170008][T10129] __x64_sys_openat+0xef/0x110 [ 107.174790][T10129] do_syscall_64+0x3d/0x90 [ 107.179206][T10129] entry_SYSCALL_64_after_hwframe+0x44/0xae 20:22:23 executing program 1: r0 = socket(0x10, 0x3, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYBLOB="000000000000fc370800140000000c000600080001000000110018000200080001df00000000080001fbffffff00040004006c00140054000600080004000000000008000100000000070000020000000000080001000000a5000800030000000000080002002600000008000200000000000800040018000000080003000020000008000200f571ff070000000000006f61646361f3762d6c696f6b0000580005005400388a8e44a20ce41d08000800efff200000000800020000000000088004000000000008000300000000000800030000000000080101a4000400becf000400010000000800020800000000080002000000001e1400060008000100000500000800010000000000ff7f0100080003000000000010000100756470d9027d7a3000000000380004001400010002000000bbc3ffff000000040d78d2002000026e1a00000000000000209ff2c6d22851b4b84ea2e743c1ef660000000008aeede4b4548c98e2184300009e00141f042d297700010002000000ac1413fffff70000000000e61301020002000000ac14140000000009c4f4f6776297ee00080002000000008008000302000100002c0004000c00010002000000ac14140000000000000000001400020002000000ac144d3c8dac06e58c9c16004400010038080400200000000a000000030100000000000000000000000000000000004e230000001400020002000001ac1414bb00000080555104220800030001"], 0x2}}, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000240), r1) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000380)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)={0x38, 0x0, 0x800, 0x70bd29, 0x25dedbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x77}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000) sendmsg$NL802154_CMD_SET_SHORT_ADDR(r1, &(0x7f000001d1c0)={&(0x7f00000015c0), 0xc, &(0x7f0000001980)={&(0x7f0000001600)={0x3c, 0x0, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xaaa0}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xaaa1}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xfffe}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000001}, 0x8000) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r4, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) recvmmsg(r4, &(0x7f0000003e80)=[{{&(0x7f00000000c0)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000140)=""/136, 0x88}, 0x7}, {{&(0x7f00000014c0)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000000200)=[{&(0x7f000001d0c0)=""/201, 0xc9}, {&(0x7f0000001640)=""/145, 0x91}, {&(0x7f0000001700)=""/102, 0x66}], 0x3, &(0x7f0000001780)=""/27, 0x1b}, 0x3}, {{&(0x7f00000017c0)=@generic, 0x80, &(0x7f0000001b40)=[{&(0x7f0000001840)=""/3, 0x3}, {&(0x7f0000001880)=""/247, 0xf7}, {&(0x7f00000040c0)=""/102400, 0x19000}, {&(0x7f00000019c0)=""/53, 0x35}, {&(0x7f0000001a00)=""/36, 0x24}, {&(0x7f0000001a40)=""/19, 0x13}, {&(0x7f0000001a80)=""/131, 0x83}], 0x7, &(0x7f0000001bc0)=""/171, 0xab}, 0xbbd0}, {{&(0x7f0000001c80)=@phonet, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001d00)=""/46, 0x2e}, {&(0x7f0000001d40)=""/54, 0x36}, {&(0x7f0000001d80)=""/170, 0xaa}], 0x3}, 0x4a41}, {{&(0x7f0000001e80)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000002100)=[{&(0x7f0000001f00)=""/31, 0x1f}, {&(0x7f0000001f40)=""/230, 0xe6}, {&(0x7f0000002040)=""/141, 0x8d}], 0x3, &(0x7f0000002140)=""/148, 0x94}, 0x8000}, {{&(0x7f0000002200)=@ethernet={0x0, @multicast}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/180, 0xb4}], 0x1, &(0x7f0000002380)=""/124, 0x7c}, 0xffff}, {{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f0000002400)=""/84, 0x54}, {&(0x7f0000002480)=""/203, 0xcb}, {&(0x7f0000002580)=""/145, 0x91}, {&(0x7f0000002640)=""/230, 0xe6}, {&(0x7f0000002740)=""/85, 0x55}], 0x5, &(0x7f0000002840)=""/224, 0xe0}, 0x2}, {{0x0, 0x0, &(0x7f0000003d80)=[{&(0x7f0000002940)=""/12, 0xc}, {&(0x7f0000002980)=""/247, 0xf7}, {&(0x7f0000002a80)=""/164, 0xa4}, {&(0x7f0000002b40)=""/147, 0x93}, {&(0x7f0000002c00)=""/2, 0x2}, {&(0x7f0000002c40)=""/4096, 0x1000}, {&(0x7f0000003c40)=""/64, 0x40}, {&(0x7f0000003c80)=""/215, 0xd7}], 0x8, &(0x7f0000003e00)=""/119, 0x77}, 0xef14}], 0x8, 0x2, &(0x7f0000004080)) r5 = socket(0x11, 0x800000003, 0x0) r6 = socket(0x11, 0x800000003, 0x0) bind(r6, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c58110308d9123127ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r7, 0x1, 0x6, @link_local}, 0x10) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000100)={r7, 0x1, 0x6, @dev}, 0x10) ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000001540)={@empty, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8001, 0x4, 0x6, 0x0, 0x8, 0x10, r7}) write(r0, &(0x7f0000000240)="5a1400001a0025f00485bc04fef7001d0a0b49ff708800008003280008020100fec0ffff1300000036ede498534108e58342fa94a235a2a441f9", 0xfcae) 20:22:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4c, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x5, {{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3d}}}}, 0x88) read$snapshot(r0, &(0x7f0000000100)=""/254, 0xfe) setxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f0000000200)=@v1={0x1000000, [{0x8, 0x8001}]}, 0xc, 0x3) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) fcntl$lock(r0, 0x5, &(0x7f0000000340)={0x2, 0x0, 0x81, 0x10001}) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x24) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 107.185152][T10129] RIP: 0033:0x4665e9 [ 107.189042][T10129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.208876][T10129] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 107.217296][T10129] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 107.225392][T10129] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c 20:22:23 executing program 2: r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x1618c0, 0x62, 0x15}, 0x18) open(&(0x7f0000000140)='./file0\x00', 0x82002, 0x1) r1 = openat(r0, &(0x7f0000000100)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0xd9f, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) fcntl$setpipe(r2, 0x407, 0x6) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:24 executing program 1: creat(&(0x7f00000002c0)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB='=\x00'/16, @ANYRESHEX=0x0, @ANYBLOB=',fscache,\x00']) [ 107.233464][T10129] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 107.241990][T10129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 107.249968][T10129] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d2", 0xb2, 0x102}]) 20:22:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x60, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:24 executing program 1: syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x1001400, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x20) [ 107.261996][T10149] netlink: 4602 bytes leftover after parsing attributes in process `syz-executor.1'. [ 107.289960][T10158] loop5: detected capacity change from 0 to 64 [ 107.292445][T10158] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000040)={0x5, 0x100000001, 0x0, 0x91a, 0x7}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000000280)="be822e04890094fbd27d21700267ed41000000100000dbaa5806a8", 0x1b, 0x4200}], 0x0, &(0x7f0000013a00)) 20:22:24 executing program 0 (fault-call:1 fault-nth:77): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2a) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 107.293247][T10160] 9pnet: Insufficient options for proto=fd [ 107.331400][T10171] loop3: detected capacity change from 0 to 1 [ 107.360862][T10178] loop5: detected capacity change from 0 to 64 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x47, &(0x7f0000000280)="8d31e183156939000000e28c0b1dd2a357b264c8745b78376e18cd3d3dfcb946cf885a21539a0c4a081ceeb24ac13830c1beaa1b4dc69190f8d2802fab69347b9a915308c4829b"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) wait4(0x0, 0x0, 0x0, 0x0) r2 = gettid() wait4(0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) tkill(r2, 0x34) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r3, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_REG_RULES={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x80800}, 0x20000000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r4, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b", 0xb8, 0x102}]) [ 107.426886][T10178] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 107.439244][T10192] loop1: detected capacity change from 0 to 512 [ 107.452429][T10194] FAULT_INJECTION: forcing a failure. [ 107.452429][T10194] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 107.466031][T10194] CPU: 0 PID: 10194 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 20:22:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x68, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 107.474786][T10194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 107.481501][T10202] loop3: detected capacity change from 0 to 1 [ 107.484912][T10194] Call Trace: [ 107.484922][T10194] dump_stack_lvl+0xb7/0x103 [ 107.484944][T10194] dump_stack+0x11/0x1a [ 107.484956][T10194] should_fail+0x23c/0x250 [ 107.495213][T10192] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 107.498847][T10194] __alloc_pages+0x102/0x320 [ 107.498877][T10194] alloc_pages+0x2e8/0x340 [ 107.517797][T10192] EXT4-fs (loop1): mount failed 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x0, 0xd9c, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) setxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x8, 0x1) [ 107.518398][T10194] get_zeroed_page+0x13/0x40 [ 107.532278][T10194] get_image_page+0x2e/0x420 [ 107.536898][T10194] memory_bm_create+0xa75/0x1510 [ 107.542012][T10194] create_basic_memory_bitmaps+0xa3/0x400 [ 107.547838][T10194] snapshot_open+0x19f/0x240 [ 107.552562][T10194] ? snapshot_compat_ioctl+0x90/0x90 [ 107.557872][T10194] misc_open+0x264/0x2a0 [ 107.562115][T10194] chrdev_open+0x39c/0x420 [ 107.566565][T10194] ? cd_forget+0x100/0x100 [ 107.571012][T10194] do_dentry_open+0x529/0x850 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x4000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) write$binfmt_misc(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="73797a30a8d0c3e8f1b24886b829d1db353d5aa77b2c090b4fe1b4400d65008100"/57], 0x39) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x101c40, 0x0) preadv(r2, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/98, 0x62}, {&(0x7f0000000180)=""/163, 0xa3}, {&(0x7f0000000280)=""/63, 0x3f}, {&(0x7f00000002c0)=""/203, 0xcb}, {&(0x7f00000003c0)=""/251, 0xfb}, {&(0x7f00000004c0)=""/6, 0x6}, {&(0x7f0000000500)=""/144, 0x90}], 0x7, 0x1, 0x8) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r4 = socket(0x11, 0x800000003, 0x0) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c58110308d9123127ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @link_local}, 0x10) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r6, 0x1, 0x6, @dev}, 0x10) r7 = openat$full(0xffffffffffffff9c, &(0x7f00000007c0), 0x1, 0x0) getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000700)={@empty, @broadcast, 0x0}, &(0x7f0000000740)=0xc) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000780)={r8, 0x1, 0x6, @local}, 0x10) ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000640)={@mcast1, @private0, @loopback, 0x17f, 0x87, 0x2, 0x0, 0xc05d, 0x3200004, r6}) [ 107.575691][T10194] vfs_open+0x43/0x50 [ 107.579755][T10194] path_openat+0x1787/0x1f20 [ 107.584425][T10194] ? __alloc_pages+0x194/0x320 [ 107.589195][T10194] do_filp_open+0xe9/0x200 [ 107.593614][T10194] ? alloc_fd+0x388/0x3e0 [ 107.597954][T10194] do_sys_openat2+0xa3/0x250 [ 107.602548][T10194] ? __cond_resched+0x11/0x40 [ 107.607228][T10194] __x64_sys_openat+0xef/0x110 [ 107.611993][T10194] do_syscall_64+0x3d/0x90 [ 107.616529][T10194] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 107.622441][T10194] RIP: 0033:0x4665e9 [ 107.627008][T10194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.646870][T10194] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 107.656165][T10194] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 107.664475][T10194] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c 20:22:24 executing program 0 (fault-call:1 fault-nth:78): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 107.672737][T10194] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 107.680704][T10194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 107.689010][T10194] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x4ad3a000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write(r0, &(0x7f0000000040)="88acbf5adae34ae48f366ae4a86743255c58d5f59a70debcd624b7a3bc3f3568aa60a3e953931e8339065f6ed9c61df8be4abf6190236cf36579b07582d245c19cba135cd9d85bd742b612fbc39bf46a46971b3ba09369b007ff17d508ebe7d0060824431d10ba25a5f5d3d1243c5eb79636530db2040a", 0x77) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) preadv(r1, &(0x7f0000001280)=[{&(0x7f00000000c0)=""/9, 0x9}, {&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/22, 0x16}, {&(0x7f0000001140)=""/19, 0x13}, {&(0x7f0000001180)=""/56, 0x38}, {&(0x7f00000011c0)=""/132, 0x84}], 0x6, 0x5, 0x20) socket$inet6(0xa, 0x80000000000002, 0xffeffffd) [ 107.727915][T10222] FAULT_INJECTION: forcing a failure. [ 107.727915][T10222] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 107.741463][T10222] CPU: 0 PID: 10222 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 107.750567][T10222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 107.760712][T10222] Call Trace: [ 107.764105][T10222] dump_stack_lvl+0xb7/0x103 [ 107.768724][T10222] dump_stack+0x11/0x1a 20:22:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6c, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 107.768896][T10229] loop5: detected capacity change from 0 to 64 [ 107.772877][T10222] should_fail+0x23c/0x250 [ 107.772903][T10222] __alloc_pages+0x102/0x320 [ 107.787724][T10229] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 107.788104][T10222] alloc_pages+0x2e8/0x340 [ 107.801507][T10222] get_zeroed_page+0x13/0x40 [ 107.806116][T10222] get_image_page+0x2e/0x420 [ 107.810821][T10222] memory_bm_create+0xa75/0x1510 [ 107.815774][T10222] create_basic_memory_bitmaps+0xa3/0x400 [ 107.821565][T10222] snapshot_open+0x19f/0x240 [ 107.826156][T10222] ? snapshot_compat_ioctl+0x90/0x90 [ 107.831486][T10222] misc_open+0x264/0x2a0 [ 107.835784][T10222] chrdev_open+0x39c/0x420 [ 107.840271][T10222] ? cd_forget+0x100/0x100 [ 107.844769][T10222] do_dentry_open+0x529/0x850 [ 107.849440][T10222] vfs_open+0x43/0x50 [ 107.853398][T10222] path_openat+0x1787/0x1f20 [ 107.858051][T10222] ? __alloc_pages+0x194/0x320 [ 107.862800][T10222] do_filp_open+0xe9/0x200 [ 107.867198][T10222] ? alloc_fd+0x388/0x3e0 [ 107.871510][T10222] do_sys_openat2+0xa3/0x250 [ 107.876113][T10222] ? __cond_resched+0x11/0x40 [ 107.880806][T10222] __x64_sys_openat+0xef/0x110 [ 107.885616][T10222] do_syscall_64+0x3d/0x90 [ 107.890012][T10222] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 107.896049][T10222] RIP: 0033:0x4665e9 [ 107.900012][T10222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.919752][T10222] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 107.928164][T10222] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 107.936198][T10222] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 107.944157][T10222] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 107.952109][T10222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 107.960146][T10222] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b", 0xb8, 0x102}]) [ 107.989164][T10240] loop1: detected capacity change from 0 to 512 [ 108.014075][T10240] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 108.020868][T10240] EXT4-fs (loop1): mount failed [ 108.026006][T10243] loop5: detected capacity change from 0 to 64 [ 108.030204][T10248] loop3: detected capacity change from 0 to 1 20:22:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000040)={0x5, 0x100000001, 0x0, 0x91a, 0x7}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000000280)="be822e04890094fbd27d21700267ed41000000100000dbaa5806a8", 0x1b, 0x4200}], 0x0, &(0x7f0000013a00)) 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:24 executing program 0 (fault-call:1 fault-nth:79): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x30) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x74, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 108.038842][T10243] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b", 0xb8, 0x102}]) 20:22:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone3(&(0x7f0000000340)={0x38010000, &(0x7f0000000040)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100), {0x40}, &(0x7f0000000140)=""/235, 0xeb, &(0x7f0000000280)=""/127, &(0x7f0000000300)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x6, {r0}}, 0x58) readv(r1, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/207, 0xcf}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000000580)=""/2, 0x2}], 0x3) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 108.104579][T10264] loop1: detected capacity change from 0 to 512 [ 108.110354][T10262] FAULT_INJECTION: forcing a failure. [ 108.110354][T10262] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 108.124159][T10262] CPU: 1 PID: 10262 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 108.133011][T10262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 108.143240][T10262] Call Trace: [ 108.146519][T10262] dump_stack_lvl+0xb7/0x103 [ 108.148194][T10264] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 108.151151][T10262] dump_stack+0x11/0x1a [ 108.151171][T10262] should_fail+0x23c/0x250 [ 108.158180][T10264] EXT4-fs (loop1): mount failed [ 108.162075][T10262] __alloc_pages+0x102/0x320 [ 108.162101][T10262] alloc_pages+0x2e8/0x340 [ 108.180355][T10262] get_zeroed_page+0x13/0x40 [ 108.185028][T10262] get_image_page+0x2e/0x420 [ 108.189681][T10262] memory_bm_create+0xa75/0x1510 [ 108.194634][T10262] create_basic_memory_bitmaps+0xa3/0x400 [ 108.197097][T10275] loop5: detected capacity change from 0 to 64 [ 108.200519][T10262] snapshot_open+0x19f/0x240 [ 108.200548][T10262] ? snapshot_compat_ioctl+0x90/0x90 [ 108.214387][T10275] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 108.216530][T10262] misc_open+0x264/0x2a0 [ 108.216555][T10262] chrdev_open+0x39c/0x420 [ 108.216586][T10262] ? cd_forget+0x100/0x100 [ 108.238646][T10262] do_dentry_open+0x529/0x850 [ 108.243385][T10262] vfs_open+0x43/0x50 [ 108.247456][T10262] path_openat+0x1787/0x1f20 20:22:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x78, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:25 executing program 2: mount(&(0x7f0000000040)=@sr0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='hostfs\x00', 0x57893876f906dbe2, &(0x7f0000000140)='\'\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000040)=""/80, 0x50}, {&(0x7f0000000100)=""/209, 0xd1}, {&(0x7f0000000280)=""/98, 0x62}, {&(0x7f0000000300)=""/147, 0x93}], 0x4, 0x1, 0x800) [ 108.252236][T10262] ? __alloc_pages+0x194/0x320 [ 108.257029][T10262] do_filp_open+0xe9/0x200 [ 108.261471][T10262] ? alloc_fd+0x388/0x3e0 [ 108.265815][T10262] do_sys_openat2+0xa3/0x250 [ 108.270576][T10262] __x64_sys_openat+0xef/0x110 [ 108.275343][T10262] do_syscall_64+0x3d/0x90 [ 108.279777][T10262] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 108.285674][T10262] RIP: 0033:0x4665e9 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0) sendto$inet6(r2, &(0x7f0000000100)="146ee241a360061bc4dbef8654870f13087628690570b6ddf86ccaf57e692ef63412cee9b3aad88f4b1fb53663cc0d377fcab81b32ce8101676ff9b7ead7308fb446738af4a1bfd6b2689fbec21b36fd5206b2ff6e1fada5ec27a2901e81dde10b6974a50ad698705b11ce126485f511ff6b29123bae4ac6a7b8ca7ecd5fab196af79688b727e7841a44877c383c88ae", 0x90, 0x8089, &(0x7f0000000080)={0xa, 0x4e21, 0x20, @local, 0x4}, 0x1c) [ 108.289564][T10262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 108.309256][T10262] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 108.317677][T10262] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 108.325734][T10262] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 108.333965][T10262] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 108.342172][T10262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(r0, &(0x7f0000000100)='./file0\x00', 0x8800, 0x1c) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x94) mkdirat(r1, &(0x7f0000000080)='./file0\x00', 0x1) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 108.350241][T10262] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:25 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000040)={0x5, 0x100000001, 0x0, 0x91a, 0x7}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000000280)="be822e04890094fbd27d21700267ed41000000100000dbaa5806a8", 0x1b, 0x4200}], 0x0, &(0x7f0000013a00)) 20:22:25 executing program 0 (fault-call:1 fault-nth:80): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000001740)=[{&(0x7f0000001400)=""/224, 0xe0}, {&(0x7f0000001500)=""/23, 0x17}, {&(0x7f0000001540)=""/179, 0xb3}, {&(0x7f0000001600)=""/107, 0x6b}, {&(0x7f0000001680)=""/181, 0xb5}], 0x5, 0xd9f, 0x0) preadv(r2, &(0x7f0000001380)=[{&(0x7f0000000100)=""/144, 0x90}, {&(0x7f0000000080)=""/1, 0x1}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/101, 0x65}, {&(0x7f0000001280)=""/1, 0x1}, {&(0x7f00000012c0)=""/30, 0x1e}, {&(0x7f0000001300)=""/95, 0x5f}], 0x7, 0x2, 0x6) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 108.379929][T10296] loop3: detected capacity change from 0 to 1 [ 108.409649][T10304] loop5: detected capacity change from 0 to 64 [ 108.426725][T10304] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 108.444914][T10311] FAULT_INJECTION: forcing a failure. [ 108.444914][T10311] name failslab, interval 1, probability 0, space 0, times 0 [ 108.457809][T10311] CPU: 1 PID: 10311 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 108.466631][T10311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 108.476687][T10311] Call Trace: 20:22:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x36) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7a, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff}, 0x80000) mmap(&(0x7f0000712000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x7a758000) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000040)=""/61, 0x3d}, {&(0x7f0000000280)=""/4096, 0x1000}], 0x2, 0x0, 0xdc9) 20:22:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb", 0xbb, 0x102}]) [ 108.480141][T10311] dump_stack_lvl+0xb7/0x103 [ 108.484831][T10311] dump_stack+0x11/0x1a [ 108.489101][T10311] should_fail+0x23c/0x250 [ 108.493565][T10311] __should_failslab+0x81/0x90 [ 108.498334][T10311] ? create_basic_memory_bitmaps+0xe2/0x400 [ 108.504260][T10311] should_failslab+0x5/0x20 [ 108.508901][T10311] kmem_cache_alloc_trace+0x49/0x310 [ 108.515693][T10311] create_basic_memory_bitmaps+0xe2/0x400 [ 108.521515][T10311] snapshot_open+0x19f/0x240 [ 108.526214][T10311] ? snapshot_compat_ioctl+0x90/0x90 [ 108.531506][T10311] misc_open+0x264/0x2a0 [ 108.535811][T10311] chrdev_open+0x39c/0x420 [ 108.538259][T10317] loop3: detected capacity change from 0 to 1 [ 108.540239][T10311] ? cd_forget+0x100/0x100 [ 108.550803][T10311] do_dentry_open+0x529/0x850 [ 108.555573][T10311] vfs_open+0x43/0x50 [ 108.559638][T10311] path_openat+0x1787/0x1f20 [ 108.562755][T10313] loop1: detected capacity change from 0 to 512 [ 108.564239][T10311] ? __alloc_pages+0x194/0x320 [ 108.564264][T10311] do_filp_open+0xe9/0x200 [ 108.579776][T10311] ? alloc_fd+0x388/0x3e0 [ 108.584181][T10311] do_sys_openat2+0xa3/0x250 [ 108.588754][T10311] ? __cond_resched+0x11/0x40 [ 108.593515][T10311] __x64_sys_openat+0xef/0x110 [ 108.598348][T10311] do_syscall_64+0x3d/0x90 [ 108.602836][T10311] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 108.608715][T10311] RIP: 0033:0x4665e9 [ 108.612595][T10311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 108.632378][T10311] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 108.640817][T10311] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 108.648808][T10311] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 108.656764][T10311] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 108.664979][T10311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 108.672943][T10311] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) preadv(r2, &(0x7f0000000480)=[{&(0x7f0000000100)=""/137, 0x89}, {&(0x7f0000000040)=""/78, 0x4e}, {&(0x7f00000001c0)=""/6, 0x6}, {&(0x7f0000000200)=""/28, 0x1c}, {&(0x7f0000000280)=""/171, 0xab}, {&(0x7f0000000340)=""/23, 0x17}, {&(0x7f0000000380)=""/18, 0x12}, {&(0x7f00000003c0)=""/145, 0x91}], 0x8, 0x5, 0x3) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) [ 108.690580][T10313] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 108.705709][T10313] EXT4-fs (loop1): mount failed 20:22:25 executing program 0 (fault-call:1 fault-nth:81): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 108.740209][T10335] loop5: detected capacity change from 0 to 64 [ 108.771746][T10340] FAULT_INJECTION: forcing a failure. [ 108.771746][T10340] name failslab, interval 1, probability 0, space 0, times 0 [ 108.780465][T10335] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 108.784740][T10340] CPU: 1 PID: 10340 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 108.802746][T10340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 108.812906][T10340] Call Trace: [ 108.816277][T10340] dump_stack_lvl+0xb7/0x103 [ 108.820885][T10340] dump_stack+0x11/0x1a [ 108.825143][T10340] should_fail+0x23c/0x250 [ 108.829590][T10340] __should_failslab+0x81/0x90 [ 108.834477][T10340] ? memory_bm_create+0x247/0x1510 20:22:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x10e, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 108.839654][T10340] should_failslab+0x5/0x20 [ 108.844313][T10340] kmem_cache_alloc_trace+0x49/0x310 [ 108.849769][T10340] memory_bm_create+0x247/0x1510 [ 108.854747][T10340] ? __next_zones_zonelist+0x4f/0x90 [ 108.860045][T10340] ? kmem_cache_alloc_trace+0x20f/0x310 [ 108.865758][T10340] create_basic_memory_bitmaps+0xf9/0x400 [ 108.871600][T10340] snapshot_open+0x19f/0x240 [ 108.876255][T10340] ? snapshot_compat_ioctl+0x90/0x90 [ 108.881542][T10340] misc_open+0x264/0x2a0 [ 108.885795][T10340] chrdev_open+0x39c/0x420 [ 108.890334][T10340] ? cd_forget+0x100/0x100 [ 108.894907][T10340] do_dentry_open+0x529/0x850 [ 108.899586][T10340] vfs_open+0x43/0x50 [ 108.903563][T10340] path_openat+0x1787/0x1f20 [ 108.908181][T10340] ? __alloc_pages+0x194/0x320 [ 108.912983][T10340] do_filp_open+0xe9/0x200 [ 108.917407][T10340] ? alloc_fd+0x388/0x3e0 [ 108.921828][T10340] do_sys_openat2+0xa3/0x250 [ 108.926471][T10340] ? __cond_resched+0x11/0x40 [ 108.931201][T10340] __x64_sys_openat+0xef/0x110 [ 108.936180][T10340] do_syscall_64+0x3d/0x90 [ 108.940635][T10340] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 108.946675][T10340] RIP: 0033:0x4665e9 [ 108.950563][T10340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 108.970214][T10340] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 108.978684][T10340] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb", 0xbb, 0x102}]) [ 108.986717][T10340] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 108.994743][T10340] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 109.002841][T10340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 109.010897][T10340] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000040)={0x8, 0x0, 0x4}) 20:22:25 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x4000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) write$binfmt_misc(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="73797a30a8d0c3e8f1b24886b829d1db353d5aa77b2c090b4fe1b4400d65008100"/57], 0x39) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x101c40, 0x0) preadv(r2, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/98, 0x62}, {&(0x7f0000000180)=""/163, 0xa3}, {&(0x7f0000000280)=""/63, 0x3f}, {&(0x7f00000002c0)=""/203, 0xcb}, {&(0x7f00000003c0)=""/251, 0xfb}, {&(0x7f00000004c0)=""/6, 0x6}, {&(0x7f0000000500)=""/144, 0x90}], 0x7, 0x1, 0x8) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r4 = socket(0x11, 0x800000003, 0x0) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c58110308d9123127ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @link_local}, 0x10) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r6, 0x1, 0x6, @dev}, 0x10) r7 = openat$full(0xffffffffffffff9c, &(0x7f00000007c0), 0x1, 0x0) getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000700)={@empty, @broadcast, 0x0}, &(0x7f0000000740)=0xc) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000780)={r8, 0x1, 0x6, @local}, 0x10) ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000640)={@mcast1, @private0, @loopback, 0x17f, 0x87, 0x2, 0x0, 0xc05d, 0x3200004, r6}) 20:22:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3c) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 109.092055][T10361] loop3: detected capacity change from 0 to 1 [ 109.098570][T10363] loop5: detected capacity change from 0 to 64 [ 109.125220][T10363] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:25 executing program 1: fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000000)=',!-\x00', 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$FIONCLEX(r0, 0x5450) syz_open_dev$evdev(&(0x7f0000000040), 0x5, 0x400) ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, &(0x7f0000000080)) ioctl$TIOCSRS485(0xffffffffffffffff, 0x542f, &(0x7f00000000c0)={0x5, 0x6, 0x1}) setsockopt$inet_tcp_int(r0, 0x6, 0x5, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2282, &(0x7f0000000180)) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x3, &(0x7f00000001c0)=[{0x3ff, 0x1, 0x20, 0x5}, {0x6, 0x40, 0x0, 0xfffffff8}, {0x1, 0x0, 0x6}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000240)={0x0}) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000300)={r2, 0x1, r3, 0xff}) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@mss={0x2, 0xfffffffc}], 0x1) syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), r3) preadv(r1, &(0x7f0000001680)=[{&(0x7f00000003c0)=""/150, 0x96}, {&(0x7f0000000480)=""/8, 0x8}, {&(0x7f00000004c0)=""/47, 0x2f}, {&(0x7f0000000500)=""/99, 0x63}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/205, 0xcd}], 0x6, 0xffffffff, 0x83) r5 = signalfd4(r4, &(0x7f0000001700)={[0x3]}, 0x8, 0x80800) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000001740)=0xffffffffffffffff, 0x4) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000001780)={0x3, 0xff, 0x39, 0x4, 0x1ff}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000001840)={0x0, 0x4, 0x7}) 20:22:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b174cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x24008090, &(0x7f00000000c0)={0xa, 0x4e26, 0x20, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffd}, 0x1c) 20:22:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb", 0xbb, 0x102}]) 20:22:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x139, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x300) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:26 executing program 2: r0 = syz_io_uring_setup(0x2dc1, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x25de03045736fef3, @fd_index, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x302, 0x0, 0x0, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r5, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 109.250574][T10388] loop3: detected capacity change from 0 to 1 [ 109.267407][T10393] loop5: detected capacity change from 0 to 64 [ 109.287157][T10393] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:26 executing program 0 (fault-call:1 fault-nth:82): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x204, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x88000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={{r0}, 0xc9, 0x1, 0xffffffffffffffff}) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 109.407631][T10419] FAULT_INJECTION: forcing a failure. [ 109.407631][T10419] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 109.420947][T10419] CPU: 0 PID: 10419 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 109.421142][T10422] loop5: detected capacity change from 0 to 64 [ 109.429828][T10419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 109.446021][T10419] Call Trace: [ 109.449305][T10419] dump_stack_lvl+0xb7/0x103 [ 109.449327][T10422] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 109.454088][T10419] dump_stack+0x11/0x1a [ 109.454120][T10419] should_fail+0x23c/0x250 [ 109.471747][T10419] __alloc_pages+0x102/0x320 [ 109.476370][T10419] alloc_pages+0x2e8/0x340 [ 109.480827][T10419] get_zeroed_page+0x13/0x40 [ 109.485572][T10419] get_image_page+0x2e/0x420 [ 109.490170][T10419] memory_bm_create+0x5e4/0x1510 [ 109.495131][T10419] ? __next_zones_zonelist+0x4f/0x90 [ 109.500501][T10419] ? kmem_cache_alloc_trace+0x20f/0x310 [ 109.506449][T10419] create_basic_memory_bitmaps+0xf9/0x400 [ 109.512264][T10419] snapshot_open+0x19f/0x240 [ 109.516884][T10419] ? snapshot_compat_ioctl+0x90/0x90 [ 109.522172][T10419] misc_open+0x264/0x2a0 [ 109.526414][T10419] chrdev_open+0x39c/0x420 [ 109.530860][T10419] ? cd_forget+0x100/0x100 [ 109.535414][T10419] do_dentry_open+0x529/0x850 [ 109.540194][T10419] vfs_open+0x43/0x50 [ 109.544176][T10419] path_openat+0x1787/0x1f20 [ 109.548910][T10419] ? __alloc_pages+0x194/0x320 [ 109.553679][T10419] do_filp_open+0xe9/0x200 [ 109.558111][T10419] ? alloc_fd+0x388/0x3e0 [ 109.562451][T10419] do_sys_openat2+0xa3/0x250 [ 109.567173][T10419] ? __cond_resched+0x11/0x40 [ 109.571923][T10419] __x64_sys_openat+0xef/0x110 [ 109.576688][T10419] do_syscall_64+0x3d/0x90 [ 109.581134][T10419] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 109.587061][T10419] RIP: 0033:0x4665e9 [ 109.591012][T10419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.610686][T10419] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 109.619178][T10419] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 109.627161][T10419] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 109.635172][T10419] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 109.643148][T10419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) preadv(r1, &(0x7f0000000200)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000000180)=""/112, 0x70}], 0x2, 0x7, 0x7271) mmap(&(0x7f0000723000/0x2000)=nil, 0x2000, 0x1, 0x402c110, r0, 0xbd592000) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = mq_open(&(0x7f0000000100)='$)}\x00', 0x40, 0x145, &(0x7f0000000140)={0x1, 0x80000001, 0x5, 0xb9}) mmap(&(0x7f0000735000/0x1000)=nil, 0x1000, 0x1000000, 0x30, r2, 0x3e9aa000) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, &(0x7f0000000040)={{0x7, 0x5}, {0x0, 0x3}, 0x1, 0x1}) 20:22:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2c5, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11", 0xbc, 0x102}]) 20:22:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x600) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 109.651228][T10419] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:26 executing program 0 (fault-call:1 fault-nth:83): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_io_uring_setup(0x495a, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000380)=0x0, &(0x7f0000000100)=0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x8, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x0, @fd_index}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD, 0x0) r4 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r4, &(0x7f0000000140)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x76d4, &(0x7f00000003c0)={0x0, 0xd597, 0x8, 0x1, 0x8a, 0x0, r1}, &(0x7f000032b000/0x2000)=nil, &(0x7f0000729000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000340)=0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000480)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x80, &(0x7f0000000440)=[r0], 0x1, 0x0, 0x1}, 0x2) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000008540)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)={0x501043}, &(0x7f0000000280)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r6}}, 0x10001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001900)={&(0x7f00000004c0)=@ipx, 0x80, &(0x7f0000001880)=[{&(0x7f0000000540)=""/251, 0xfb}, {&(0x7f0000000640)=""/173, 0xad}, {&(0x7f0000000700)=""/202, 0xca}, {&(0x7f0000000800)=""/57, 0x39}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/8, 0x8}], 0x6}, 0x0, 0x2060, 0x0, {0x2}}, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r7 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r7, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 109.717463][T10438] loop3: detected capacity change from 0 to 1 [ 109.727095][T10443] loop5: detected capacity change from 0 to 64 [ 109.751597][T10443] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 109.766804][T10448] FAULT_INJECTION: forcing a failure. [ 109.766804][T10448] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 109.780237][T10448] CPU: 1 PID: 10448 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 109.789090][T10448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 109.799407][T10448] Call Trace: [ 109.802708][T10448] dump_stack_lvl+0xb7/0x103 [ 109.807365][T10448] dump_stack+0x11/0x1a [ 109.811527][T10448] should_fail+0x23c/0x250 [ 109.816094][T10448] __alloc_pages+0x102/0x320 [ 109.820704][T10448] alloc_pages+0x2e8/0x340 [ 109.825153][T10448] get_zeroed_page+0x13/0x40 [ 109.829834][T10448] get_image_page+0x2e/0x420 [ 109.834464][T10448] memory_bm_create+0xa75/0x1510 [ 109.839407][T10448] ? kmem_cache_alloc_trace+0x20f/0x310 [ 109.845026][T10448] create_basic_memory_bitmaps+0xf9/0x400 [ 109.850915][T10448] snapshot_open+0x19f/0x240 [ 109.855590][T10448] ? snapshot_compat_ioctl+0x90/0x90 [ 109.860885][T10448] misc_open+0x264/0x2a0 [ 109.865219][T10448] chrdev_open+0x39c/0x420 [ 109.869705][T10448] ? cd_forget+0x100/0x100 [ 109.874216][T10448] do_dentry_open+0x529/0x850 [ 109.878987][T10448] vfs_open+0x43/0x50 [ 109.883084][T10448] path_openat+0x1787/0x1f20 [ 109.887718][T10448] ? __alloc_pages+0x194/0x320 [ 109.893037][T10448] do_filp_open+0xe9/0x200 [ 109.897462][T10448] ? alloc_fd+0x388/0x3e0 [ 109.901889][T10448] do_sys_openat2+0xa3/0x250 [ 109.906813][T10448] ? __cond_resched+0x11/0x40 [ 109.911761][T10448] __x64_sys_openat+0xef/0x110 [ 109.916575][T10448] do_syscall_64+0x3d/0x90 [ 109.921095][T10448] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 109.926998][T10448] RIP: 0033:0x4665e9 [ 109.930931][T10448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.950640][T10448] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 109.959317][T10448] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x300, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 109.967381][T10448] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 109.975351][T10448] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 109.983435][T10448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 109.991430][T10448] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:26 executing program 0 (fault-call:1 fault-nth:84): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11", 0xbc, 0x102}]) 20:22:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x700) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 110.093427][T10464] loop3: detected capacity change from 0 to 1 [ 110.100448][T10466] FAULT_INJECTION: forcing a failure. [ 110.100448][T10466] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 110.111857][T10470] loop5: detected capacity change from 0 to 64 [ 110.113693][T10466] CPU: 0 PID: 10466 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 110.113713][T10466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 110.138823][T10466] Call Trace: [ 110.142105][T10466] dump_stack_lvl+0xb7/0x103 [ 110.146680][T10466] dump_stack+0x11/0x1a [ 110.150817][T10466] should_fail+0x23c/0x250 [ 110.155218][T10466] __alloc_pages+0x102/0x320 [ 110.159792][T10466] alloc_pages+0x2e8/0x340 [ 110.164216][T10466] get_zeroed_page+0x13/0x40 [ 110.168789][T10466] get_image_page+0x2e/0x420 [ 110.173366][T10466] memory_bm_create+0x879/0x1510 [ 110.178382][T10466] ? kmem_cache_alloc_trace+0x20f/0x310 [ 110.183939][T10466] create_basic_memory_bitmaps+0xf9/0x400 [ 110.189657][T10466] snapshot_open+0x19f/0x240 [ 110.194276][T10466] ? snapshot_compat_ioctl+0x90/0x90 [ 110.199550][T10466] misc_open+0x264/0x2a0 [ 110.203774][T10466] chrdev_open+0x39c/0x420 [ 110.208177][T10466] ? cd_forget+0x100/0x100 [ 110.212596][T10466] do_dentry_open+0x529/0x850 [ 110.217253][T10466] vfs_open+0x43/0x50 [ 110.221213][T10466] path_openat+0x1787/0x1f20 [ 110.225791][T10466] ? __alloc_pages+0x194/0x320 [ 110.230737][T10466] do_filp_open+0xe9/0x200 [ 110.235135][T10466] ? alloc_fd+0x388/0x3e0 [ 110.239666][T10466] do_sys_openat2+0xa3/0x250 [ 110.244441][T10466] ? __cond_resched+0x11/0x40 [ 110.249126][T10466] __x64_sys_openat+0xef/0x110 [ 110.253906][T10466] do_syscall_64+0x3d/0x90 [ 110.258345][T10466] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 110.264256][T10466] RIP: 0033:0x4665e9 [ 110.268131][T10466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 110.287835][T10466] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 110.296315][T10466] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 110.304290][T10466] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 110.312248][T10466] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 110.320265][T10466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 110.328232][T10466] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) accept4(r0, &(0x7f0000000040)=@can, &(0x7f0000000100)=0x80, 0x800) r1 = socket$inet6(0xa, 0x5, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:27 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xc00) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11", 0xbc, 0x102}]) [ 110.368810][T10470] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x385, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:27 executing program 0 (fault-call:1 fault-nth:85): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 110.453910][T10491] FAULT_INJECTION: forcing a failure. [ 110.453910][T10491] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 110.454074][T10489] loop3: detected capacity change from 0 to 1 [ 110.467319][T10491] CPU: 1 PID: 10491 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 110.482125][T10491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 110.492189][T10491] Call Trace: [ 110.495483][T10491] dump_stack_lvl+0xb7/0x103 [ 110.500139][T10491] dump_stack+0x11/0x1a [ 110.504395][T10491] should_fail+0x23c/0x250 [ 110.508839][T10491] __alloc_pages+0x102/0x320 [ 110.513439][T10491] alloc_pages+0x2e8/0x340 [ 110.517951][T10491] get_zeroed_page+0x13/0x40 [ 110.522582][T10491] get_image_page+0x2e/0x420 [ 110.527191][T10491] memory_bm_create+0xa75/0x1510 [ 110.532276][T10491] ? kmem_cache_alloc_trace+0x20f/0x310 [ 110.538003][T10491] create_basic_memory_bitmaps+0xf9/0x400 [ 110.543736][T10491] snapshot_open+0x19f/0x240 [ 110.548340][T10491] ? snapshot_compat_ioctl+0x90/0x90 [ 110.553641][T10491] misc_open+0x264/0x2a0 [ 110.557890][T10491] chrdev_open+0x39c/0x420 [ 110.562428][T10491] ? cd_forget+0x100/0x100 [ 110.566915][T10491] do_dentry_open+0x529/0x850 [ 110.571597][T10491] vfs_open+0x43/0x50 [ 110.575577][T10491] path_openat+0x1787/0x1f20 [ 110.580173][T10491] ? __alloc_pages+0x194/0x320 [ 110.585086][T10491] do_filp_open+0xe9/0x200 [ 110.589507][T10491] ? alloc_fd+0x388/0x3e0 [ 110.593939][T10491] do_sys_openat2+0xa3/0x250 [ 110.598667][T10491] ? __cond_resched+0x11/0x40 [ 110.603351][T10491] __x64_sys_openat+0xef/0x110 [ 110.608169][T10491] do_syscall_64+0x3d/0x90 [ 110.612677][T10491] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 110.618705][T10491] RIP: 0033:0x4665e9 [ 110.622606][T10491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 110.642313][T10491] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 20:22:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x110) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000040)={0x10001, 0xfff, 0x3, 0x0, 0x1, [0xfff, 0xffff]}) [ 110.650824][T10491] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 110.658898][T10491] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 110.667330][T10491] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 110.675308][T10491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 110.683285][T10491] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:27 executing program 0 (fault-call:1 fault-nth:86): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd}]) [ 110.722553][T10501] loop5: detected capacity change from 0 to 64 [ 110.738748][T10501] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 110.784144][T10510] FAULT_INJECTION: forcing a failure. [ 110.784144][T10510] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 110.797485][T10510] CPU: 1 PID: 10510 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 110.806250][T10510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 110.816309][T10510] Call Trace: [ 110.819591][T10510] dump_stack_lvl+0xb7/0x103 [ 110.824257][T10510] dump_stack+0x11/0x1a [ 110.828426][T10510] should_fail+0x23c/0x250 20:22:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x388, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:27 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1200) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 110.832946][T10510] __alloc_pages+0x102/0x320 [ 110.837610][T10510] alloc_pages+0x2e8/0x340 [ 110.842071][T10510] get_zeroed_page+0x13/0x40 [ 110.846751][T10510] get_image_page+0x2e/0x420 [ 110.851440][T10510] memory_bm_create+0xa75/0x1510 [ 110.856597][T10510] create_basic_memory_bitmaps+0xf9/0x400 [ 110.862446][T10510] snapshot_open+0x19f/0x240 [ 110.867219][T10510] ? snapshot_compat_ioctl+0x90/0x90 [ 110.872515][T10510] misc_open+0x264/0x2a0 [ 110.876766][T10510] chrdev_open+0x39c/0x420 [ 110.881198][T10510] ? cd_forget+0x100/0x100 [ 110.885623][T10510] do_dentry_open+0x529/0x850 [ 110.890440][T10510] vfs_open+0x43/0x50 [ 110.894423][T10510] path_openat+0x1787/0x1f20 [ 110.899020][T10510] ? __alloc_pages+0x194/0x320 [ 110.903845][T10510] do_filp_open+0xe9/0x200 [ 110.908427][T10510] ? alloc_fd+0x388/0x3e0 [ 110.912829][T10510] do_sys_openat2+0xa3/0x250 [ 110.917658][T10510] ? __cond_resched+0x11/0x40 [ 110.922347][T10510] __x64_sys_openat+0xef/0x110 [ 110.927211][T10510] do_syscall_64+0x3d/0x90 [ 110.931637][T10510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 110.934964][T10508] loop3: detected capacity change from 0 to 1 [ 110.937714][T10510] RIP: 0033:0x4665e9 [ 110.937732][T10510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 110.967390][T10510] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 110.975798][T10510] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:27 executing program 0 (fault-call:1 fault-nth:87): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:27 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x408200, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x0, &(0x7f0000000100)={0x6, {{0xa, 0x4e21, 0xffffff83, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x101}}, {{0xa, 0x4e20, 0x1, @remote, 0x1}}}, 0x108) r2 = dup3(r1, r0, 0x80000) ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f00000002c0)={{r0}, 0x3, &(0x7f0000000280)=[0x7, 0x8, 0x9f], 0x7, 0x6, [0x40, 0x1, 0x5, 0x1]}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fcntl$addseals(r0, 0x409, 0x1) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000080)) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 110.984011][T10510] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 110.991989][T10510] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.000069][T10510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 111.008046][T10510] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 111.065537][T10525] FAULT_INJECTION: forcing a failure. [ 111.065537][T10525] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 111.078881][T10525] CPU: 1 PID: 10525 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 111.087736][T10525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.098150][T10525] Call Trace: [ 111.101952][T10525] dump_stack_lvl+0xb7/0x103 [ 111.106553][T10525] dump_stack+0x11/0x1a [ 111.110742][T10525] should_fail+0x23c/0x250 20:22:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) mmap(&(0x7f00007ef000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 111.115167][T10525] __alloc_pages+0x102/0x320 [ 111.119762][T10525] alloc_pages+0x2e8/0x340 [ 111.124292][T10525] get_zeroed_page+0x13/0x40 [ 111.128890][T10525] get_image_page+0x2e/0x420 [ 111.133557][T10525] memory_bm_create+0xa75/0x1510 [ 111.138498][T10525] create_basic_memory_bitmaps+0xf9/0x400 [ 111.144339][T10525] snapshot_open+0x19f/0x240 [ 111.148935][T10525] ? snapshot_compat_ioctl+0x90/0x90 [ 111.154223][T10525] misc_open+0x264/0x2a0 [ 111.158669][T10525] chrdev_open+0x39c/0x420 20:22:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = accept$unix(r0, &(0x7f0000000040), &(0x7f0000000100)=0x6e) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 111.163094][T10525] ? cd_forget+0x100/0x100 [ 111.167519][T10525] do_dentry_open+0x529/0x850 [ 111.172193][T10525] vfs_open+0x43/0x50 [ 111.176192][T10525] path_openat+0x1787/0x1f20 [ 111.180791][T10525] ? __alloc_pages+0x194/0x320 [ 111.185570][T10525] do_filp_open+0xe9/0x200 [ 111.190002][T10525] ? alloc_fd+0x388/0x3e0 [ 111.194340][T10525] do_sys_openat2+0xa3/0x250 [ 111.198930][T10525] ? __cond_resched+0x11/0x40 [ 111.203617][T10525] __x64_sys_openat+0xef/0x110 [ 111.208380][T10525] do_syscall_64+0x3d/0x90 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r2, 0x8008f512, &(0x7f0000000040)) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x80000001, @local, 0x2}, 0x1c) [ 111.212906][T10525] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 111.218801][T10525] RIP: 0033:0x4665e9 [ 111.222684][T10525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 111.242314][T10525] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 111.250733][T10525] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:28 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1800) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd}]) 20:22:28 executing program 0 (fault-call:1 fault-nth:88): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 111.258932][T10525] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 111.267011][T10525] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.274994][T10525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 111.277502][T10543] loop5: detected capacity change from 0 to 64 [ 111.283033][T10525] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 111.346640][T10543] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 111.359723][T10552] loop3: detected capacity change from 0 to 1 [ 111.377482][T10558] FAULT_INJECTION: forcing a failure. [ 111.377482][T10558] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 111.390736][T10558] CPU: 0 PID: 10558 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 111.399499][T10558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.409558][T10558] Call Trace: [ 111.412837][T10558] dump_stack_lvl+0xb7/0x103 [ 111.417434][T10558] dump_stack+0x11/0x1a [ 111.421592][T10558] should_fail+0x23c/0x250 [ 111.426048][T10558] __alloc_pages+0x102/0x320 [ 111.430704][T10558] alloc_pages+0x2e8/0x340 [ 111.435123][T10558] get_zeroed_page+0x13/0x40 [ 111.439719][T10558] get_image_page+0x2e/0x420 [ 111.444410][T10558] memory_bm_create+0xa75/0x1510 [ 111.449355][T10558] create_basic_memory_bitmaps+0xf9/0x400 [ 111.455131][T10558] snapshot_open+0x19f/0x240 [ 111.459725][T10558] ? snapshot_compat_ioctl+0x90/0x90 [ 111.465065][T10558] misc_open+0x264/0x2a0 [ 111.469493][T10558] chrdev_open+0x39c/0x420 [ 111.473910][T10558] ? cd_forget+0x100/0x100 [ 111.478330][T10558] do_dentry_open+0x529/0x850 [ 111.483102][T10558] vfs_open+0x43/0x50 [ 111.487352][T10558] path_openat+0x1787/0x1f20 [ 111.492029][T10558] ? __alloc_pages+0x194/0x320 [ 111.496877][T10558] do_filp_open+0xe9/0x200 [ 111.501321][T10558] ? alloc_fd+0x388/0x3e0 [ 111.505658][T10558] do_sys_openat2+0xa3/0x250 [ 111.510246][T10558] ? __cond_resched+0x11/0x40 [ 111.515016][T10558] __x64_sys_openat+0xef/0x110 [ 111.519884][T10558] do_syscall_64+0x3d/0x90 [ 111.524309][T10558] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 111.530210][T10558] RIP: 0033:0x4665e9 [ 111.534102][T10558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 111.553717][T10558] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 111.562206][T10558] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 111.570184][T10558] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 111.578545][T10558] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.586521][T10558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000080)={'veth0_to_bond\x00', &(0x7f0000000040)=@ethtool_ts_info}) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) linkat(r0, &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38a, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 111.594536][T10558] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10010, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x20000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x8400) statx(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0, 0x10, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$security_capability(r3, &(0x7f0000000140), &(0x7f00000001c0)=@v3={0x3000000, [{0x4, 0x3}, {0x80000000, 0x4}], r4}, 0x18, 0x1) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = eventfd(0x9) ioctl$FIBMAP(r5, 0x1, &(0x7f0000000080)=0x7fffffff) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) fchdir(r2) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:28 executing program 0 (fault-call:1 fault-nth:89): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd}]) [ 111.684371][T10578] loop5: detected capacity change from 0 to 64 [ 111.706943][T10578] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 111.716917][T10577] FAULT_INJECTION: forcing a failure. [ 111.716917][T10577] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 111.723307][T10585] loop3: detected capacity change from 0 to 1 [ 111.730167][T10577] CPU: 1 PID: 10577 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 111.744958][T10577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.755014][T10577] Call Trace: [ 111.758291][T10577] dump_stack_lvl+0xb7/0x103 [ 111.762884][T10577] dump_stack+0x11/0x1a [ 111.767040][T10577] should_fail+0x23c/0x250 [ 111.771472][T10577] __alloc_pages+0x102/0x320 [ 111.776065][T10577] alloc_pages+0x2e8/0x340 20:22:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38b, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:28 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1e00) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 111.780487][T10577] get_zeroed_page+0x13/0x40 [ 111.785118][T10577] get_image_page+0x2e/0x420 [ 111.789863][T10577] memory_bm_create+0xa75/0x1510 [ 111.794823][T10577] create_basic_memory_bitmaps+0xf9/0x400 [ 111.800560][T10577] snapshot_open+0x19f/0x240 [ 111.805164][T10577] ? snapshot_compat_ioctl+0x90/0x90 [ 111.810605][T10577] misc_open+0x264/0x2a0 [ 111.814857][T10577] chrdev_open+0x39c/0x420 [ 111.819303][T10577] ? cd_forget+0x100/0x100 [ 111.823832][T10577] do_dentry_open+0x529/0x850 [ 111.828519][T10577] vfs_open+0x43/0x50 [ 111.832547][T10577] path_openat+0x1787/0x1f20 [ 111.837154][T10577] ? __alloc_pages+0x194/0x320 [ 111.842008][T10577] do_filp_open+0xe9/0x200 [ 111.846435][T10577] ? alloc_fd+0x388/0x3e0 [ 111.850845][T10577] do_sys_openat2+0xa3/0x250 [ 111.855435][T10577] ? __cond_resched+0x11/0x40 [ 111.860225][T10577] __x64_sys_openat+0xef/0x110 [ 111.864991][T10577] do_syscall_64+0x3d/0x90 [ 111.869422][T10577] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 111.875373][T10577] RIP: 0033:0x4665e9 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$netlink(0x10, 0x3, 0x9) r2 = gettid() tkill(r2, 0x7) gettid() fcntl$setownex(r1, 0xf, &(0x7f0000000040)={0x0, r2}) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_open_dev$ptys(0xc, 0x3, 0x1) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x4080, 0x0) ioctl$TIOCGPGRP(r5, 0x540f, &(0x7f0000000280)) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) sendto$inet6(r0, &(0x7f0000000100)="4c463fd4be8f3e15c5f0dfaeaeebb2a045c372f9a1b91586e2f55e63d18a6526b405db49695ec75f4a9550a09f484f30cc1e469e204ef8ddf7570df2301e6d892c4b2580ca70aad5caeacdeaf72013d957fd2545067ca674fe9b3c55f6bf777c4394d84d258351b0fbb632788ed4bdd5c324f04d604609def924ccceede1c0a64fa12bf14df390ca3fab1d64fcffc66f7adf5642c7cdeb3a0ba5faa6190a18fbbe75f36d01b923f110b072f964ee4cae226ad6eda3e8938c8098cba126dadb162e69fd51fc8620e0c7ddde96d946f68830bb260d642c1009e2fbc81ff9", 0xdd, 0x4000000, &(0x7f0000000200)={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x9}, 0x1c) [ 111.879326][T10577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 111.898962][T10577] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 111.907379][T10577] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 111.915353][T10577] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 111.923328][T10577] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 20:22:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) move_mount(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 111.931420][T10577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 111.939480][T10577] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:28 executing program 0 (fault-call:1 fault-nth:90): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:28 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2400) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 112.007644][T10606] loop5: detected capacity change from 0 to 64 [ 112.044184][T10606] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38c, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 112.075356][T10618] loop3: detected capacity change from 0 to 1 [ 112.083141][T10619] FAULT_INJECTION: forcing a failure. [ 112.083141][T10619] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 112.096419][T10619] CPU: 1 PID: 10619 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 112.105175][T10619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 112.115326][T10619] Call Trace: [ 112.118608][T10619] dump_stack_lvl+0xb7/0x103 [ 112.123215][T10619] dump_stack+0x11/0x1a [ 112.127379][T10619] should_fail+0x23c/0x250 [ 112.131897][T10619] __alloc_pages+0x102/0x320 [ 112.136500][T10619] alloc_pages+0x2e8/0x340 [ 112.140928][T10619] get_zeroed_page+0x13/0x40 [ 112.145525][T10619] get_image_page+0x2e/0x420 [ 112.150168][T10619] memory_bm_create+0xa75/0x1510 [ 112.155162][T10619] create_basic_memory_bitmaps+0xf9/0x400 [ 112.160896][T10619] snapshot_open+0x19f/0x240 [ 112.165508][T10619] ? snapshot_compat_ioctl+0x90/0x90 [ 112.170824][T10619] misc_open+0x264/0x2a0 [ 112.175144][T10619] chrdev_open+0x39c/0x420 [ 112.179584][T10619] ? cd_forget+0x100/0x100 [ 112.184068][T10619] do_dentry_open+0x529/0x850 [ 112.188768][T10619] vfs_open+0x43/0x50 [ 112.192761][T10619] path_openat+0x1787/0x1f20 [ 112.197425][T10619] ? __alloc_pages+0x194/0x320 [ 112.202198][T10619] do_filp_open+0xe9/0x200 [ 112.206629][T10619] ? alloc_fd+0x388/0x3e0 [ 112.210970][T10619] do_sys_openat2+0xa3/0x250 [ 112.215563][T10619] ? __cond_resched+0x11/0x40 [ 112.220252][T10619] __x64_sys_openat+0xef/0x110 20:22:28 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000240), r0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000006c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000e0019000854"], 0x24}}, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000380)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)={0x38, 0x0, 0x800, 0x70bd29, 0x25dedbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x77}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x6c, r1, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x5}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x6c}, 0x1, 0x0, 0x0, 0x810}, 0x4842) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r5, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10) setsockopt$inet_tcp_int(r5, 0x6, 0xa, &(0x7f00000005c0)=0xffffffff, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000200), 0x88) [ 112.225299][T10619] do_syscall_64+0x3d/0x90 [ 112.229729][T10619] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 112.235903][T10619] RIP: 0033:0x4665e9 [ 112.239809][T10619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 112.259601][T10619] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 112.268017][T10619] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x3, 0x6) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x24af42, 0x0) ioctl$SNAPSHOT_ATOMIC_RESTORE(r2, 0x3304) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f0000000080)={0x2, [0x0, 0x0]}) sendto$inet6(r1, &(0x7f0000000100)="c978613e0dbc9447d43cbef76241892a8ba125ad62c990fef9399437035ad717bdfae41b70fab7385d3d3f692bf8c3755585c2c748a0956364c4f99a185040ad4beee9cb353d25bb63f68d6308abc7dbdf6b00c0babaf5bf02be7d181fbf19f91443cee6f9b7e95bcdc5fd36f5d39067374a56d2a7b9", 0x76, 0x8841, &(0x7f0000000180)={0xa, 0x4e24, 0x6, @local, 0x7}, 0x1c) [ 112.276071][T10619] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 112.284046][T10619] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 112.292021][T10619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.300170][T10619] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:29 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1200) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:29 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2a00) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:29 executing program 0 (fault-call:1 fault-nth:91): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) socket$inet6(0xa, 0x80000000000002, 0x0) r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x202601, 0x180) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x48090, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @remote, 0x200}, 0x1c) [ 112.335206][T10645] loop5: detected capacity change from 0 to 64 20:22:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:29 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38d, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 112.378539][T10645] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 112.398456][T10658] loop3: detected capacity change from 0 to 1 [ 112.412037][T10660] FAULT_INJECTION: forcing a failure. [ 112.412037][T10660] name fail_page_alloc, interval 1, probability 0, space 0, times 0 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4e) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000100)="15f751670789c8645588b36f6e66f1f537eb1712590b53c0762882eedc6a9eb913ebbc9f6d8c91d0cadb20c7cc08e98c990ff8dd246f271cdf0096e0df947f75f7bee95aed12c5d4a48f3f034fde18d2fafb9240e266d34fa5bc1ddce27d711a6e1ee17fb9acb7781f9ef173abfe567ab476a1c7c26db447d9406090ce678db583760f9ec1a76a512d37bcb6b4360924f9b45331664c5b37225f753a43cc385e958a80c9a0ded50593968e32c7255c81bb8a40d5e9c7e92610d70d84eb317462f1a5f6938115190cc6280902a47fe4e850564cf2bbc423ff118e6aaf6e2733520e15f923fa2cf395e03e20637c9534be7b6ac1e6fc69908dfa503f", 0xfb, 0x80, &(0x7f0000000040)={0xa, 0x4e24, 0x476, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 112.425307][T10660] CPU: 1 PID: 10660 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 112.434196][T10660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 112.444256][T10660] Call Trace: [ 112.447537][T10660] dump_stack_lvl+0xb7/0x103 [ 112.452149][T10660] dump_stack+0x11/0x1a [ 112.456367][T10660] should_fail+0x23c/0x250 [ 112.460791][T10660] __alloc_pages+0x102/0x320 [ 112.465387][T10660] alloc_pages+0x2e8/0x340 [ 112.469796][T10660] get_zeroed_page+0x13/0x40 [ 112.474398][T10660] get_image_page+0x2e/0x420 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat$incfs(r0, &(0x7f0000000340)='.pending_reads\x00', 0x101000, 0x3) openat(r1, &(0x7f0000000380)='./file0\x00', 0x108c0, 0x100) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x131080, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000200)={r2, 0xff, 0x9, 0x8}) ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f00000003c0)) openat(r0, &(0x7f0000000400)='./file0\x00', 0xea80, 0x50) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r6, 0x0) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$unix(r0, &(0x7f0000000300)={&(0x7f0000000040)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000100)="01c91ec513c1b679c9b96ae0a7b3fa84ff55cc6d89beadee4ab68d09821148407081f2f4c28b17e4d24ca5b1e4fe964eed821b1c847a0859f4a8e1e23b54a5f47ea21bcf2fb7a22d8854a68043117edba95d975b88e57076f4add45bc59a795d0c174139b0f06367cd3784b7c7b3d77d04032406625861221de27271", 0x7c}], 0x1, &(0x7f0000000280)=[@rights={{0x24, 0x1, 0x1, [r3, r2, r2, r2, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x20, 0x1, 0x1, [r4, r5, r6, r2]}}], 0x68}, 0x91) [ 112.479010][T10660] memory_bm_create+0xa75/0x1510 [ 112.484025][T10660] create_basic_memory_bitmaps+0xf9/0x400 [ 112.489865][T10660] snapshot_open+0x19f/0x240 [ 112.494491][T10660] ? snapshot_compat_ioctl+0x90/0x90 [ 112.499882][T10660] misc_open+0x264/0x2a0 [ 112.504131][T10660] chrdev_open+0x39c/0x420 [ 112.508552][T10660] ? cd_forget+0x100/0x100 [ 112.512983][T10660] do_dentry_open+0x529/0x850 [ 112.517723][T10660] vfs_open+0x43/0x50 [ 112.521797][T10660] path_openat+0x1787/0x1f20 [ 112.526509][T10660] ? __alloc_pages+0x194/0x320 [ 112.531271][T10660] do_filp_open+0xe9/0x200 [ 112.535796][T10660] ? alloc_fd+0x388/0x3e0 [ 112.540350][T10660] do_sys_openat2+0xa3/0x250 [ 112.549255][T10660] ? __cond_resched+0x11/0x40 [ 112.553942][T10660] __x64_sys_openat+0xef/0x110 [ 112.558818][T10660] do_syscall_64+0x3d/0x90 [ 112.563297][T10660] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 112.563978][T10680] loop2: detected capacity change from 0 to 264192 [ 112.569194][T10660] RIP: 0033:0x4665e9 [ 112.569260][T10660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 112.599383][T10660] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 112.607807][T10660] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 112.615772][T10660] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x40, 0xad) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001680)={{{@in=@broadcast, @in6=@ipv4={""/10, ""/2, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000200)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001780)={{{@in6=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@initdev}}, &(0x7f0000001880)=0xe8) r5 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x7, 0x8, &(0x7f00000015c0)=[{&(0x7f0000000140)="e7c6e9a8", 0x4, 0x74447bf5}, {&(0x7f0000000280)="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", 0x1000, 0x7}, {&(0x7f0000001280)="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", 0xfe, 0x7fff}, {&(0x7f0000000180)="9a1b12e14eae238194bde1d98618f0f7108ada3bb23fd6fef76fba00f64fa1b3f79e", 0x22, 0x5}, {&(0x7f0000001380)="e000a061c90d89170955323bb3c69eaa2efbe83d486f59b843a82779eecef8df418ccfa51bf2236842818bbd7f1751f7e26670d8e42bb0813f17ee18f89ad507f8780423de293acd5d95026cf9c841246647c313ea526738f9ee014e1942e1e72dcc90189a6a37db537016b5c22c68b82679650e3ce57fa31f60696c572b2ae9e500f0a08ac08089aa22766c79698d4abe70b359656df2f52fc46f96fd303c56bd2c09378962e8b125b72616105d44b1add5f57ec0edc54b5374066190d9b3848bd79b7155f44f8071a2c523b1c99f5d73f6e456252e0df7081b64f6e0a018ff4abd01ac210e69ba890d2025f043b40de4c3ed4ca6889d0913e349", 0xfb, 0x952}, {&(0x7f00000001c0)="c04120bd33bd886b0fe798e8243ddb5ff18b497041af6cd25f54cdeb174ec0eec08dc1e8f8402b4029cc926c3fae07a5d9", 0x31, 0x91}, {&(0x7f0000001480)="6df2ed0e28bbb1aace1c5e2097c8889c98e46ec9533ef282f800677cb2b6f56b446423a0b7c3e4fc773acd33c53e37172b1cc1694f6c3d03e5c78aca41088d081e67442c75d19870c1d55951a267453f1fc4e6e45a807c80b1098fd66dc8d3544b59861395bdf709ae5d", 0x6a, 0x4}, {&(0x7f0000001500)="f9bba60a0659bef6876cb428cbdf747fb138c87706a0707b115cf2dccae88f4de1d4bc8491e928e62f1eaa1b3ff9a44085b7e51a155439035b8fe5496ad70be4332da974a8d9f1a77476095ea7983aa0f2208e8b3e35e7644d345d08402a299d97ae276f45df3794c7e5458e101d20daba5703c4b1838e4fd9365f2e0f6c31d7e3062eb80f115ba9d4c947ef4fc2bd", 0x8f, 0xffffffff}], 0x1a010, &(0x7f00000018c0)=ANY=[@ANYBLOB='utf8=0,utf8=0,euid<', @ANYRESDEC, @ANYBLOB=',smaroot0\a,euid>\x00\x00\x00@', @ANYRESDEC=r3, @ANYBLOB=',func=KEXEC_KERNEL_CHECK,fowner>', @ANYRESDEC, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB="000000000500", @ANYRESDEC, @ANYBLOB=',fscontext=root,uid<', @ANYRESDEC=r4, @ANYBLOB=',\x00']) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f000077f000/0x1000)=nil, 0x1000, 0x1000000, 0x40010, 0xffffffffffffffff, 0xb79a8000) r6 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r6, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r7 = dup(r5) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000019c0)={@private1, 0x17, r2}) setsockopt$inet6_int(r7, 0x29, 0xe, &(0x7f0000001a00)=0x51ff, 0x4) 20:22:29 executing program 0 (fault-call:1 fault-nth:92): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 112.623742][T10660] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 112.631709][T10660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.639724][T10660] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 112.672543][T10685] FAULT_INJECTION: forcing a failure. [ 112.672543][T10685] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 112.685824][T10685] CPU: 0 PID: 10685 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 112.694617][T10685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 112.704794][T10685] Call Trace: [ 112.708058][T10685] dump_stack_lvl+0xb7/0x103 [ 112.712636][T10685] dump_stack+0x11/0x1a [ 112.716872][T10685] should_fail+0x23c/0x250 [ 112.721327][T10685] __alloc_pages+0x102/0x320 [ 112.725900][T10685] alloc_pages+0x2e8/0x340 [ 112.730303][T10685] get_zeroed_page+0x13/0x40 [ 112.734879][T10685] get_image_page+0x2e/0x420 [ 112.739474][T10685] memory_bm_create+0xa75/0x1510 [ 112.744421][T10685] create_basic_memory_bitmaps+0xf9/0x400 [ 112.750164][T10685] snapshot_open+0x19f/0x240 [ 112.754804][T10685] ? snapshot_compat_ioctl+0x90/0x90 [ 112.760077][T10685] misc_open+0x264/0x2a0 [ 112.764319][T10685] chrdev_open+0x39c/0x420 [ 112.768743][T10685] ? cd_forget+0x100/0x100 [ 112.773189][T10685] do_dentry_open+0x529/0x850 [ 112.778002][T10685] vfs_open+0x43/0x50 [ 112.781967][T10685] path_openat+0x1787/0x1f20 [ 112.786686][T10685] ? __alloc_pages+0x194/0x320 [ 112.791451][T10685] do_filp_open+0xe9/0x200 [ 112.796074][T10685] ? alloc_fd+0x388/0x3e0 [ 112.800508][T10685] do_sys_openat2+0xa3/0x250 [ 112.805194][T10685] ? __cond_resched+0x11/0x40 [ 112.809953][T10685] __x64_sys_openat+0xef/0x110 [ 112.814726][T10685] do_syscall_64+0x3d/0x90 [ 112.819255][T10685] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 112.825303][T10685] RIP: 0033:0x4665e9 [ 112.829393][T10685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 112.849017][T10685] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 112.857473][T10685] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 112.865437][T10685] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c 20:22:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/fib_trie\x00') r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f0000000000)) preadv2(r0, &(0x7f0000002480)=[{&(0x7f00000000c0)=""/181, 0xb5}], 0x1, 0x6, 0x0, 0x0) 20:22:29 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 112.873653][T10685] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 112.881932][T10685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.889914][T10685] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 112.905064][T10683] loop2: detected capacity change from 0 to 264192 20:22:29 executing program 0 (fault-call:1 fault-nth:93): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) syz_open_dev$vcsn(&(0x7f0000000040), 0x100000000, 0x200000) [ 112.951814][T10694] loop5: detected capacity change from 0 to 64 [ 112.983770][T10702] FAULT_INJECTION: forcing a failure. [ 112.983770][T10702] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 112.997030][T10702] CPU: 0 PID: 10702 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 113.005785][T10702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.015871][T10702] Call Trace: [ 113.019145][T10702] dump_stack_lvl+0xb7/0x103 [ 113.023772][T10702] dump_stack+0x11/0x1a [ 113.027968][T10694] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 113.028162][T10702] should_fail+0x23c/0x250 [ 113.041752][T10702] __alloc_pages+0x102/0x320 [ 113.046426][T10702] alloc_pages+0x2e8/0x340 20:22:29 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:29 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38e, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 113.050852][T10702] get_zeroed_page+0x13/0x40 [ 113.055501][T10702] get_image_page+0x2e/0x420 [ 113.060100][T10702] memory_bm_create+0xa75/0x1510 [ 113.065626][T10702] create_basic_memory_bitmaps+0xf9/0x400 [ 113.071427][T10702] snapshot_open+0x19f/0x240 [ 113.074834][T10717] loop3: detected capacity change from 0 to 1 [ 113.076138][T10702] ? snapshot_compat_ioctl+0x90/0x90 [ 113.087496][T10702] misc_open+0x264/0x2a0 [ 113.091752][T10702] chrdev_open+0x39c/0x420 [ 113.096168][T10702] ? cd_forget+0x100/0x100 20:22:29 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.100595][T10702] do_dentry_open+0x529/0x850 [ 113.105269][T10702] vfs_open+0x43/0x50 [ 113.109340][T10702] path_openat+0x1787/0x1f20 [ 113.112602][T10723] tmpfs: Bad value for 'mpol' [ 113.113937][T10702] ? __alloc_pages+0x194/0x320 [ 113.113962][T10702] do_filp_open+0xe9/0x200 [ 113.119779][T10725] tmpfs: Bad value for 'mpol' [ 113.123456][T10702] ? alloc_fd+0x388/0x3e0 [ 113.123488][T10702] do_sys_openat2+0xa3/0x250 [ 113.141530][T10702] ? __cond_resched+0x11/0x40 [ 113.146225][T10702] __x64_sys_openat+0xef/0x110 20:22:29 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) preadv(r0, &(0x7f0000000500)=[{&(0x7f0000000280)=""/243, 0xf3}, {&(0x7f0000000040)=""/98, 0x62}, {&(0x7f0000000380)=""/105, 0x69}, {&(0x7f0000000400)=""/97, 0x61}, {&(0x7f0000000480)=""/105, 0x69}], 0x5, 0xa8f1, 0x88) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000100)="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") [ 113.151084][T10702] do_syscall_64+0x3d/0x90 [ 113.155503][T10702] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 113.161442][T10702] RIP: 0033:0x4665e9 [ 113.165507][T10702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.185327][T10702] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 113.193752][T10702] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:29 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.201833][T10702] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 113.205688][T10730] tmpfs: Bad value for 'mpol' [ 113.209932][T10702] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.209949][T10702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 113.209960][T10702] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 0 (fault-call:1 fault-nth:94): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 113.252590][T10738] tmpfs: Bad value for 'mpol' 20:22:30 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3600) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{0x0, 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 113.277027][T10744] loop5: detected capacity change from 0 to 64 [ 113.295758][T10744] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 113.310649][T10745] tmpfs: Bad value for 'mpol' [ 113.317150][T10754] FAULT_INJECTION: forcing a failure. 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x48c501, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x4010, r0, 0x87a8a000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f00000001c0)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df30109932bbbfd83ff800114a1a7b93fa5466791e21e169306e99ad79ccc27be19b665d7747746a08abf2a041d7fcfdf24c06b6478f61bb7cd670c542ade9bc9334ec7b0c26ab3b27d719c8f4da59681f6ace4", 0x7c, 0x0, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x1c) creat(&(0x7f0000000040)='./file0\x00', 0x4) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000140)={{'\x00', 0x3}, {0x7}, 0x2, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)="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", 0x12d, 0x0, &(0x7f00000003c0)={0x2, 0xec, {0x0, 0xc, 0x4a, "a7fa062cd24864082844d2836d92adce2260d3736b27d6237afec474c751909f41d540ef1776570b071a4e55b5099d7928c8b6ffeca71f8432d18679e4c6b78c9ca82d8d04f56acb3549", 0x95, "03d0f7b07683d6e3ece67944a258c6b56f46d7fcd787ef85dc6f1589306cb27b4277ea93bdf79badaa3c51adf7c968772e20d3045503ee6b858699de2a598da60aec8e2cc93e45ad3185cb64d5f0cc0e0e56d96a3ae7490461130b061b61efd56d7b300995a0609a3d6de05ea31d650eca789bf9b8ed9f88b1c49f03fbbc6c4b68d2d2c18119dd253ef5b1fb885d25bd48ab7a18e4"}, 0xa, "a297e84aa0a6689df259"}, 0x102}) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.317150][T10754] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 113.326450][T10757] loop3: detected capacity change from 0 to 1 [ 113.330530][T10754] CPU: 0 PID: 10754 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 113.345569][T10754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.355622][T10754] Call Trace: [ 113.358895][T10754] dump_stack_lvl+0xb7/0x103 [ 113.363490][T10754] dump_stack+0x11/0x1a [ 113.367740][T10754] should_fail+0x23c/0x250 [ 113.372251][T10754] __alloc_pages+0x102/0x320 [ 113.376841][T10754] alloc_pages+0x2e8/0x340 [ 113.381353][T10754] get_zeroed_page+0x13/0x40 [ 113.385945][T10754] get_image_page+0x2e/0x420 [ 113.390546][T10754] memory_bm_create+0xa75/0x1510 [ 113.395505][T10754] create_basic_memory_bitmaps+0xf9/0x400 [ 113.401237][T10754] snapshot_open+0x19f/0x240 [ 113.405830][T10754] ? snapshot_compat_ioctl+0x90/0x90 [ 113.407200][T10768] tmpfs: Bad value for 'mpol' [ 113.411196][T10754] misc_open+0x264/0x2a0 [ 113.411222][T10754] chrdev_open+0x39c/0x420 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2000000, 0x20010, r0, 0xcb537000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000100)="03000000b2c4b154cbe4cb4c3408c3aa8a1e9a7d1f00432659045f6dc75aa8174703f27fae8508c5ab2df30100"/57, 0x39, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x1c) sendto$inet6(r1, &(0x7f0000000040)="b2b4c77a01c9f5eb748f0c95324b2fb20c5ba2459e87d141ef068f244e8a3edcd77b53ba9b77bebca8f51f", 0x2b, 0x2c00c814, &(0x7f0000000080)={0xa, 0x4e24, 0x81, @dev={0xfe, 0x80, '\x00', 0x12}, 0x9}, 0x1c) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.424580][T10754] ? cd_forget+0x100/0x100 [ 113.429165][T10754] do_dentry_open+0x529/0x850 [ 113.433852][T10754] vfs_open+0x43/0x50 [ 113.437867][T10754] path_openat+0x1787/0x1f20 [ 113.442536][T10754] ? __alloc_pages+0x194/0x320 [ 113.447337][T10754] do_filp_open+0xe9/0x200 [ 113.451762][T10754] ? alloc_fd+0x388/0x3e0 [ 113.456103][T10754] do_sys_openat2+0xa3/0x250 [ 113.460696][T10754] ? __cond_resched+0x11/0x40 [ 113.465512][T10754] __x64_sys_openat+0xef/0x110 [ 113.470275][T10754] do_syscall_64+0x3d/0x90 20:22:30 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x38f, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:30 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3c00) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 113.474789][T10754] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 113.480691][T10754] RIP: 0033:0x4665e9 [ 113.484586][T10754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.504278][T10754] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 113.512746][T10754] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FIONCLEX(r1, 0x5450) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 2: ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001740)={0x0, 0xfffffffffffffffe, 0x30, 0x81, @scatter={0x4, 0x0, &(0x7f00000015c0)=[{&(0x7f0000001380)=""/161, 0xa1}, {&(0x7f0000000040)=""/83, 0x53}, {&(0x7f0000001440)=""/67, 0x43}, {&(0x7f00000014c0)=""/242, 0xf2}]}, &(0x7f0000001600)="2c70d7785c785001f47dd9f22459f3f83519beac85e818d4069f0a0ce7943c94b66e8a377756ddc183318f46c583f2ce", &(0x7f0000001640)=""/160, 0x8, 0x10, 0x0, &(0x7f0000001700)}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/113, 0x71}, {&(0x7f0000000100)=""/75, 0x4b}, {&(0x7f0000001280)=""/246, 0xf6}], 0x4, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 0 (fault-call:1 fault-nth:95): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 113.520711][T10754] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 113.528561][T10780] tmpfs: Bad value for 'mpol' [ 113.529002][T10754] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.529018][T10754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 113.549569][T10754] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 113.565457][T10783] tmpfs: Bad value for 'mpol' 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.605486][T10788] tmpfs: Bad value for 'mpol' 20:22:30 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3f00) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{0x0, 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000100)={0x1, 0x0, 'client0\x00', 0xffffffff80000000, "ee3f441484e596d1", "fb4f80e5074c8ed621d219c6ec60625e9e977b145e3ac7e43570fcd834fb5385", 0x3ff, 0x9}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 113.654021][T10801] FAULT_INJECTION: forcing a failure. [ 113.654021][T10801] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 113.667468][T10802] loop5: detected capacity change from 0 to 64 [ 113.667542][T10801] CPU: 0 PID: 10801 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 113.682545][T10801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.688171][T10802] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 113.692600][T10801] Call Trace: [ 113.692610][T10801] dump_stack_lvl+0xb7/0x103 [ 113.709703][T10801] dump_stack+0x11/0x1a [ 113.713870][T10801] should_fail+0x23c/0x250 [ 113.718297][T10801] __alloc_pages+0x102/0x320 [ 113.722888][T10801] alloc_pages+0x2e8/0x340 [ 113.727496][T10801] get_zeroed_page+0x13/0x40 [ 113.732101][T10801] get_image_page+0x2e/0x420 [ 113.737201][T10801] memory_bm_create+0xa75/0x1510 [ 113.742233][T10801] create_basic_memory_bitmaps+0xf9/0x400 [ 113.748170][T10801] snapshot_open+0x19f/0x240 20:22:30 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x390, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 113.752765][T10801] ? snapshot_compat_ioctl+0x90/0x90 [ 113.758072][T10801] misc_open+0x264/0x2a0 [ 113.762336][T10801] chrdev_open+0x39c/0x420 [ 113.766762][T10801] ? cd_forget+0x100/0x100 [ 113.771285][T10801] do_dentry_open+0x529/0x850 [ 113.776225][T10801] vfs_open+0x43/0x50 [ 113.780216][T10801] path_openat+0x1787/0x1f20 [ 113.783303][T10820] loop3: detected capacity change from 0 to 1 [ 113.784811][T10801] ? __alloc_pages+0x194/0x320 [ 113.784835][T10801] do_filp_open+0xe9/0x200 [ 113.800204][T10801] ? alloc_fd+0x388/0x3e0 [ 113.804570][T10801] do_sys_openat2+0xa3/0x250 [ 113.809219][T10801] ? __cond_resched+0x11/0x40 [ 113.813974][T10801] __x64_sys_openat+0xef/0x110 [ 113.818809][T10801] do_syscall_64+0x3d/0x90 [ 113.823209][T10801] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 113.829142][T10801] RIP: 0033:0x4665e9 [ 113.833119][T10801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fcntl$setflags(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000002500)=[{&(0x7f0000000100)=""/131, 0x83}, {&(0x7f00000001c0)=""/196, 0xc4}, {&(0x7f00000002c0)=""/211, 0xd3}, {&(0x7f00000003c0)=""/169, 0xa9}, {&(0x7f0000000480)=""/65, 0x41}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x7, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000040)="109535092793d3423d43ce9b7283bcd7c9b2c4c34faa8a1e9a7dfd6d432649045f6df3a9a3684cdddea13eef599fcc9a925c0daa050c06999fb6e4162a098d08517ce73a126e1f48c25ac313f0ae4bdff86f2ebe70b130", 0x57, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0xb, &(0x7f0000002580)=0xfffffffd, 0x4) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 113.852804][T10801] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 113.861421][T10801] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 113.869387][T10801] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 113.877637][T10801] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.885728][T10801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 113.893873][T10801] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:30 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x40000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 0 (fault-call:1 fault-nth:96): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 113.952550][T10835] loop5: detected capacity change from 0 to 64 [ 113.961811][T10836] tmpfs: Bad value for 'mpol' [ 113.981972][T10835] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{0x0, 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:30 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x391, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 114.003317][T10848] tmpfs: Bad value for 'mpol' 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x240400, 0x18a) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$FIBMAP(r2, 0x1, &(0x7f0000000080)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f000038f000/0x4000)=nil, 0x4000, 0x180000a, 0x10, r3, 0x15782000) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xa, 0x11, r2, 0x4a54b000) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000100)={0xdea, 0x2, 0x200, 0x6, 0xd, "2f7d26dca59cfd56d1b92c2fc90e3bd9b65b87"}) close_range(r1, r2, 0x2) preadv(r2, &(0x7f00000001c0), 0x0, 0xd9f, 0x200) r4 = socket$inet6(0xa, 0x800, 0x0) sendto$inet6(r4, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0x2b, 0x4008040, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @remote}, 0x1c) open(&(0x7f0000000040)='./file0\x00', 0x200, 0x14) [ 114.034690][T10854] tmpfs: Bad value for 'mpol' [ 114.040280][T10855] FAULT_INJECTION: forcing a failure. [ 114.040280][T10855] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 114.053530][T10855] CPU: 0 PID: 10855 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 114.062397][T10855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.072465][T10855] Call Trace: [ 114.075739][T10855] dump_stack_lvl+0xb7/0x103 [ 114.080546][T10855] dump_stack+0x11/0x1a 20:22:30 executing program 2: setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000001c0)={0x0, @rand_addr=0x64010100, @private=0xa010100}, 0xc) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) getsockname(r0, &(0x7f0000000100)=@ipx, &(0x7f0000000080)=0x80) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet(0x2, 0x2, 0x308) sendto$inet(r2, &(0x7f0000000200)="98ab56873fabdadaa664887d0be2bae01ec6a2e5fb905ea6d38fdad4f9cc9ece64958f5593ea74a633bb8801941275cf8d394bba12ea396e9d2d7e973308e6b80eff1a836c921dfa6f046d6dafdc17ca205afc3885c2ab50cd2cc3cd921f90497984f7", 0x63, 0x40000, &(0x7f0000000280)={0x2, 0x4e22, @local}, 0x10) pipe(&(0x7f0000000180)) sendto$inet6(r1, &(0x7f0000000040)="109535192793d3423d43ea20f15c878a15ce9b728370647b854fbcd7c9b2080054cbe4cb4c3408000000000000006d43", 0x30, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x1c) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 114.084700][T10855] should_fail+0x23c/0x250 [ 114.089331][T10855] __alloc_pages+0x102/0x320 [ 114.093918][T10855] alloc_pages+0x2e8/0x340 [ 114.098340][T10855] get_zeroed_page+0x13/0x40 [ 114.100444][T10868] loop3: detected capacity change from 0 to 1 [ 114.103066][T10855] get_image_page+0x2e/0x420 [ 114.113860][T10855] memory_bm_create+0xa75/0x1510 [ 114.118883][T10855] create_basic_memory_bitmaps+0xf9/0x400 [ 114.124613][T10855] snapshot_open+0x19f/0x240 [ 114.129302][T10855] ? snapshot_compat_ioctl+0x90/0x90 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 114.131438][T10872] tmpfs: Bad value for 'mpol' [ 114.134725][T10855] misc_open+0x264/0x2a0 [ 114.134749][T10855] chrdev_open+0x39c/0x420 [ 114.148144][T10855] ? cd_forget+0x100/0x100 [ 114.152790][T10855] do_dentry_open+0x529/0x850 [ 114.157543][T10855] vfs_open+0x43/0x50 [ 114.161532][T10855] path_openat+0x1787/0x1f20 [ 114.166156][T10855] ? __alloc_pages+0x194/0x320 [ 114.170927][T10855] do_filp_open+0xe9/0x200 [ 114.171125][T10877] tmpfs: Bad value for 'mpol' [ 114.175432][T10855] ? alloc_fd+0x388/0x3e0 20:22:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) fstat(r1, &(0x7f0000000040)) preadv(r0, &(0x7f0000000280), 0x0, 0x26e, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 114.184442][T10855] do_sys_openat2+0xa3/0x250 [ 114.189041][T10855] ? __cond_resched+0x11/0x40 [ 114.193726][T10855] __x64_sys_openat+0xef/0x110 [ 114.198521][T10855] do_syscall_64+0x3d/0x90 [ 114.203147][T10855] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 114.209243][T10855] RIP: 0033:0x4665e9 [ 114.213139][T10855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.222272][T10881] tmpfs: Bad value for 'mpol' [ 114.233048][T10855] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 114.233074][T10855] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 114.233086][T10855] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 114.233098][T10855] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.270740][T10855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 114.278701][T10855] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:31 executing program 1: mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000040)='\x00', &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:31 executing program 0 (fault-call:1 fault-nth:97): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 114.307554][T10889] loop5: detected capacity change from 0 to 64 [ 114.319871][T10889] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180), 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:31 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x392, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x1c9180, 0xc0, 0x4}, 0x18) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x82b00, 0x0) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e21, 0x58e9, @empty, 0x7}, 0x1c) 20:22:31 executing program 1: mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 114.369464][T10900] FAULT_INJECTION: forcing a failure. [ 114.369464][T10900] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 114.382682][T10904] tmpfs: Bad value for 'mpol' [ 114.382951][T10900] CPU: 0 PID: 10900 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 114.396306][T10900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.406531][T10900] Call Trace: [ 114.409910][T10900] dump_stack_lvl+0xb7/0x103 [ 114.414705][T10900] dump_stack+0x11/0x1a [ 114.418878][T10900] should_fail+0x23c/0x250 [ 114.423307][T10900] __alloc_pages+0x102/0x320 [ 114.425002][T10910] loop3: detected capacity change from 0 to 1 [ 114.428004][T10900] alloc_pages+0x2e8/0x340 [ 114.428030][T10900] get_zeroed_page+0x13/0x40 [ 114.443336][T10900] get_image_page+0x2e/0x420 [ 114.448007][T10900] memory_bm_create+0xa75/0x1510 [ 114.452943][T10900] create_basic_memory_bitmaps+0xf9/0x400 [ 114.458666][T10900] snapshot_open+0x19f/0x240 [ 114.463261][T10900] ? snapshot_compat_ioctl+0x90/0x90 20:22:31 executing program 1: mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x245c2, 0x101) mmap(&(0x7f00004ee000/0x3000)=nil, 0x3000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x1, 0x421b) close(r1) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000200)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa030000e096b120fd6d432649045fe6e6a2b96df3016dec3194851936811ebb712a5ed0980b24a1b768e28132b704d03c05f42c350037ec0cfc29c6eacbe729dd6998c88b59493ba32236eb0d4450e1ac4aeec24ab68576c42b5a5cd7ffcae340308ca626d70c15df777a0fea754cb15bb6a685bdd1339e590b6aa1ba1a9e42f60c10eedef6d231f841faba850b5ca10f440429821a6fc4f6089fac17bfdc1c75bb1e2d2cc64e74c4ed456ddb0b4ea8c958924b0a15aea4f6626143b4", 0xd9, 0x4048085, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x1e}}, 0x1c) [ 114.464059][T10911] tmpfs: Bad value for 'mpol' [ 114.468549][T10900] misc_open+0x264/0x2a0 [ 114.468575][T10900] chrdev_open+0x39c/0x420 [ 114.481954][T10900] ? cd_forget+0x100/0x100 [ 114.486424][T10900] do_dentry_open+0x529/0x850 [ 114.491213][T10900] vfs_open+0x43/0x50 [ 114.495220][T10900] path_openat+0x1787/0x1f20 [ 114.499810][T10900] ? __alloc_pages+0x194/0x320 [ 114.504587][T10900] do_filp_open+0xe9/0x200 [ 114.509010][T10900] ? alloc_fd+0x388/0x3e0 [ 114.513370][T10900] do_sys_openat2+0xa3/0x250 20:22:31 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000744000/0x2000)=nil, 0x2000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x4, @local}, 0x1c) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 114.516039][T10917] tmpfs: Bad value for 'mpol' [ 114.518051][T10900] ? __cond_resched+0x11/0x40 [ 114.527818][T10900] __x64_sys_openat+0xef/0x110 [ 114.532589][T10900] do_syscall_64+0x3d/0x90 [ 114.537019][T10900] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 114.543000][T10900] RIP: 0033:0x4665e9 [ 114.546927][T10900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.567055][T10900] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 114.571816][T10924] tmpfs: Bad value for 'mpol' [ 114.575528][T10900] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 114.575546][T10900] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 114.575558][T10900] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.575570][T10900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:22:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:31 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r3 = openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)=ANY=[@ANYRESOCT=r4, @ANYRES32, @ANYRESDEC, @ANYRES32]) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000540)={{}, r4, 0xa, @inherit={0x50, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x6, {0x2, 0x0, 0x5, 0x1, 0x2}, [0x2]}}, @devid=r5}) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000280)={{r3}, r4, 0x2, @unused=[0x7, 0xbf, 0xbaae, 0x101], @name="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"}) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:31 executing program 0 (fault-call:1 fault-nth:98): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 114.614538][T10900] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 114.631470][T10932] loop5: detected capacity change from 0 to 64 [ 114.641982][T10932] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180), 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:31 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3a0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 114.704482][T10947] FAULT_INJECTION: forcing a failure. [ 114.704482][T10947] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 114.717861][T10947] CPU: 0 PID: 10947 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 114.726670][T10947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.737676][T10947] Call Trace: [ 114.741035][T10947] dump_stack_lvl+0xb7/0x103 [ 114.741604][T10951] loop3: detected capacity change from 0 to 1 [ 114.745740][T10947] dump_stack+0x11/0x1a [ 114.745764][T10947] should_fail+0x23c/0x250 [ 114.760507][T10947] __alloc_pages+0x102/0x320 [ 114.765307][T10947] alloc_pages+0x2e8/0x340 [ 114.769733][T10947] get_zeroed_page+0x13/0x40 [ 114.774329][T10947] get_image_page+0x2e/0x420 [ 114.778932][T10947] memory_bm_create+0xa75/0x1510 [ 114.783977][T10947] create_basic_memory_bitmaps+0xf9/0x400 [ 114.789716][T10947] snapshot_open+0x19f/0x240 [ 114.794502][T10947] ? snapshot_compat_ioctl+0x90/0x90 [ 114.799805][T10947] misc_open+0x264/0x2a0 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000700000/0x2000)=nil, 0x2000, 0x1000000, 0x110, r1, 0xf6ee1000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r3 = getuid() setresuid(0x0, r3, 0xffffffffffffffff) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000003c0)=0x0) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0xffffffffffffffff, r6, 0xffffffffffffffff) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000280)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000200)=[{&(0x7f0000000100)="45403b5b3896ab2b9568dc635da0d3d7bc448af6067ef310132b65bd7bc322573a516b1d3a7bc739d79042455b4542e42de1eee78d0ae269f57436b9691a25d54bb6b267f12f382e9919831f3aec26c06839077ed85dc8d81b2d185f442e3133961990e83c29c98fdbe40b00165d99e07d246c33136540762862b2d16799a6c582664766919fdf1d872ce9994461d04e9000d58b70d7f77f3a9f9d216f44e482f8019662159aa38427122eef0667ac04", 0xb0}, {&(0x7f00000001c0)="8cdf8f5ab4f6c3fd571cfc0a150c28da9e74d7569bdc580e519c76d644415cd9757f50db89ed21b134e187e5c89303c81008", 0x32}], 0x2, &(0x7f0000000400)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=r3, @ANYRES32, @ANYBLOB="000000001c000000000000000108000002000000", @ANYRES32=0x0, @ANYRES32=r4, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00'], 0x100, 0x4008010}], 0x1, 0x14) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r7 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r7, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 114.804093][T10947] chrdev_open+0x39c/0x420 [ 114.808568][T10947] ? cd_forget+0x100/0x100 [ 114.813085][T10947] do_dentry_open+0x529/0x850 [ 114.817931][T10947] vfs_open+0x43/0x50 [ 114.821936][T10947] path_openat+0x1787/0x1f20 [ 114.826547][T10947] ? __alloc_pages+0x194/0x320 [ 114.831378][T10947] do_filp_open+0xe9/0x200 [ 114.835815][T10947] ? alloc_fd+0x388/0x3e0 [ 114.840336][T10947] do_sys_openat2+0xa3/0x250 [ 114.845032][T10947] ? __cond_resched+0x11/0x40 [ 114.849865][T10947] __x64_sys_openat+0xef/0x110 [ 114.854724][T10947] do_syscall_64+0x3d/0x90 [ 114.859182][T10947] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 114.865100][T10947] RIP: 0033:0x4665e9 [ 114.869186][T10947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.888978][T10947] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 114.897614][T10947] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f0000000080)=0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xd0800, 0x155) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000001600)={0x1, 0x3ff, 0x9}) preadv(r1, &(0x7f0000000040), 0x0, 0xd9f, 0x0) r3 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r3, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x1, 0x2, 0xff, 0xa, 0xc043, 0x6}, 0x20) preadv(r4, &(0x7f0000001680)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/240, 0xf0}, {&(0x7f0000000040)=""/14, 0xe}, {&(0x7f0000000180)=""/87, 0x57}, {&(0x7f0000001380)=""/231, 0xe7}, {&(0x7f0000001480)=""/163, 0xa3}, {&(0x7f0000000200)=""/38, 0x26}, {&(0x7f0000001540)=""/143, 0x8f}, {&(0x7f0000001600)}, {&(0x7f0000001640)=""/10, 0xa}], 0xa, 0xd9f, 0x0) ioctl$sock_TIOCOUTQ(r4, 0x5411, &(0x7f0000000140)) r5 = openat(r1, &(0x7f0000001740)='./file0\x00', 0x40, 0x48) ioctl$LOOP_CHANGE_FD(r5, 0x4c06, r4) 20:22:31 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 114.905595][T10947] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 114.913569][T10947] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.921553][T10947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 114.929725][T10947] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 [ 114.938840][T10941] tmpfs: Bad value for 'mpol' 20:22:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 114.960035][T10966] tmpfs: Bad value for 'mpol' 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0xfffffffffffffff9, 0x60980) vmsplice(r2, &(0x7f0000000080)=[{&(0x7f0000000100)="028bcc19c484078d297cec5556389d7514bd1d3df43ef4c063f3ebc28bc7c0cf5fcf9a194a3b0d0909a2650b00f16a69dd9612809e553ea08edf7192e94959a6f8b6d654263883e1db8e51beed3773", 0x4f}, {&(0x7f0000000280)="e2a11185fd1f2fca993801abbe28e7af5d24b43178b4c79f122557aa17432c6d8fd3157804ab1798b0dd5291f823f04545b13fc59ab86a43bdf684b184f3aebe4eafcc8ebc675c201ea9a74b37304b0f194545aee81885bb7ba4315fd1a5c91c1f4282f89da5c2ad254b0007da7757d733630de2d91f6ca08795ac9d11cdc37ac15b8b1b4df21af12ec4f97d0b59ea77c25153751017afb32c02ff0149903f826ccfde0cffc500e85c5b23b18f47bdfc05db4cbb5bc4bf32faee6a38a63edab82cd16a8fb13134745ac1dfd01a1c7670840ff9", 0xd3}, {&(0x7f0000000180)="9b6b743997e9aa4d2240e73d97d26a31314465a409dca97c52512eff62ef1617e9e64528d17871957974cae34dbd4e995dce89426d63aa61665567599e34dee3be075454d8606152c55979ad66539c6a9448ac67712951dd631773209f28392aa80f06bb78e6d7dcfdcb76d91873b93356bd", 0x72}], 0x3, 0x4b718e280a2e8f53) 20:22:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180), 0x0, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:31 executing program 0 (fault-call:1 fault-nth:99): set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) [ 114.997732][T10970] loop5: detected capacity change from 0 to 64 20:22:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) fstat(r1, &(0x7f0000000040)) [ 115.045630][T10970] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 115.057933][T10984] loop3: detected capacity change from 0 to 1 [ 115.069796][T10985] FAULT_INJECTION: forcing a failure. [ 115.069796][T10985] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 115.083381][T10985] CPU: 0 PID: 10985 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 115.092226][T10985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.102466][T10985] Call Trace: [ 115.105746][T10985] dump_stack_lvl+0xb7/0x103 [ 115.110347][T10985] dump_stack+0x11/0x1a [ 115.114510][T10985] should_fail+0x23c/0x250 [ 115.118967][T10985] __alloc_pages+0x102/0x320 [ 115.123559][T10985] alloc_pages+0x2e8/0x340 [ 115.128054][T10985] get_zeroed_page+0x13/0x40 [ 115.132679][T10985] get_image_page+0x2e/0x420 [ 115.138611][T10985] memory_bm_create+0xa75/0x1510 20:22:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800000, 0x13, r1, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 115.143635][T10985] create_basic_memory_bitmaps+0xf9/0x400 [ 115.149380][T10985] snapshot_open+0x19f/0x240 [ 115.154158][T10985] ? snapshot_compat_ioctl+0x90/0x90 [ 115.159864][T10985] misc_open+0x264/0x2a0 [ 115.164105][T10985] chrdev_open+0x39c/0x420 [ 115.168775][T10985] ? cd_forget+0x100/0x100 [ 115.173256][T10985] do_dentry_open+0x529/0x850 [ 115.177945][T10985] vfs_open+0x43/0x50 [ 115.181962][T10985] path_openat+0x1787/0x1f20 [ 115.186601][T10985] ? __alloc_pages+0x194/0x320 [ 115.191528][T10985] do_filp_open+0xe9/0x200 [ 115.196024][T10985] ? alloc_fd+0x388/0x3e0 [ 115.200364][T10985] do_sys_openat2+0xa3/0x250 [ 115.204962][T10985] ? __cond_resched+0x11/0x40 [ 115.209792][T10985] __x64_sys_openat+0xef/0x110 [ 115.214564][T10985] do_syscall_64+0x3d/0x90 [ 115.218981][T10985] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 115.225010][T10985] RIP: 0033:0x4665e9 [ 115.228902][T10985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.249247][T10985] RSP: 002b:00007f7b85a06188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 115.257846][T10985] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 115.266167][T10985] RDX: 0000000000103401 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 115.274168][T10985] RBP: 00007f7b85a061d0 R08: 0000000000000000 R09: 0000000000000000 [ 115.282236][T10985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 115.290291][T10985] R13: 00007ffe31918a7f R14: 00007f7b85a06300 R15: 0000000000022000 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x402, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @empty, 0xfffffffc}, 0x1c) fcntl$setstatus(r1, 0x4, 0x6800) syz_mount_image$nfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x6, 0x7, &(0x7f00000014c0)=[{&(0x7f0000000140)="0c92c55d03dc57dc5ed429f97d54bd89dbeea2f95df5f468fe5f2f406c19abef556e5c163d2b79d5ff65df926bbd1cdef70084f7972175c43afa4d56e91b655f250b4aec88b99fd78d0e33bb9dc720c6e72f969b4b90b864dffbfcff7f", 0x5d, 0x5}, {&(0x7f0000000280)="800a68d2c208667af4d471c66c9cf5f6d02d5159ea386309419066b5997616fabc9cad3881b87ca1984815615d6130964678c482070691c03fcc56d45690fa876f2be3a48d8152bf3ee85074f91f604fbf4e8425614495308d0fe3b8391725b52cbcb9f2d5bfeaec0cd4ac5493d952aac9233618273b70bf8a91c9f466c071ca74704c70fb0b9c0c783ece4bb78916f67be9d7fbb1a962d39cf38cdca7f10a2f3bcecafae5666d00b3d64e816aead2d40695dcca", 0xb4, 0xd0}, {&(0x7f0000000340)="c9d5446c252cc680d3420aed90f70077457f6e7284067c306ea1fe386c07e62309151d13e83b70410e6e5d05ca9be38ba0813336d4b45e913daac44e00d1ca84fd7aaa7ae094d8aefb66f042f0878b0f18b951c5361d213e56c511073f2b7a50cc199dcd6c9a9ed1fd19175ae95f4dc81c0c06c3e4d1ad866f73de0cd00bc29b3c158546ef68a7c47c309f6b633fbaa0bd32a0bfb198", 0x96}, {&(0x7f0000000400)="b9fba31c25d963d7720766e0e6dc618260756f5ed7b359428dd7bb9889134a6897746902922221658ca5709e551158b3427595ded6b5763f14908eb28ea3ffa00bf0fdf6635312b6663918525ae09fd5a8782bd70b250be365f1d84c67f67bc419d6105fe9b902dd705029603bb7688335d52e09f71a94b83c673b0e85d1f291e98f8e9000b8965bd19d29", 0x8b, 0x5}, {&(0x7f00000004c0)="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", 0x1000, 0x2}, {&(0x7f00000001c0)="ebf75fa748bfca479f4e4ec5a3606b9386866fc81daeb4c6ad4ec160", 0x1c, 0xb67b}, {&(0x7f0000000200)="655522767dd56b1f0e0c4d969c574a05dd58932cb76d7409d679b6e0224386f50ff72299f5a7a8319a344e8116708871fb9f2c692d", 0x35}], 0x800, &(0x7f0000001580)=ANY=[@ANYBLOB='{&$,\x00,\x00,fsname=\x00,s\x00bj_type=!,obj_role=%%:{^^=\\^}@!,func=KEXEC_KERNEL_CHECK,\x00']) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x0) 20:22:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x6000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 115.419774][T11015] loop2: detected capacity change from 0 to 182 [ 115.439128][T11015] nfs: Unknown parameter '{&$' [ 115.452218][T11018] tmpfs: Bad value for 'mpol' [ 115.462577][T11021] loop5: detected capacity change from 0 to 64 20:22:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f00000000080005000000", 0x20, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) fsetxattr$security_evm(r0, &(0x7f0000000040), &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0xc0, 0x1) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x406, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 115.481742][T11021] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x7000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 2: open(&(0x7f0000000040)='./file0\x00', 0x60a041, 0x20) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r1, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 115.526297][T11037] loop3: detected capacity change from 0 to 1 [ 115.527664][T11032] tmpfs: Bad value for 'mpol' [ 115.564816][T11044] loop5: detected capacity change from 0 to 64 20:22:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f00000000080005000000", 0x20, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103402, 0x0) 20:22:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = getuid() setresuid(0x0, r1, 0xee01) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0xfff, 0x6, &(0x7f0000004280)=[{&(0x7f0000000280)="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", 0x1000, 0x6}, {&(0x7f0000000100)="1992a294c75216bf3eabbfa811bf12f5b9ace3fbc6f1942769a5", 0x1a, 0x5}, {&(0x7f0000000140)="8a1d4a72330c47691661ef4745c97e6277361f6c7a590781cd081ed09ff86b0af08e0e1c1a46b53020c1f18a2e25c880cc96b978be59f092140c09b1d21a17db090810f621be1b50fa2e07e188412c874f4da75a46ae0d04a36f64df73531181bb971bbb96975df88c6ea81093752343a3bda26e06206798bc1a5ee55b754f", 0x7f, 0x200}, {&(0x7f0000001280)="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", 0x1000, 0xdc}, {&(0x7f0000002280)="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", 0x1000, 0x4}, {&(0x7f0000003280)="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", 0x1000, 0x2}], 0x100000, &(0x7f0000004340)={[{}, {@nr_blocks={'nr_blocks', 0x3d, [0x70]}}, {@mode={'mode', 0x3d, 0x5}}, {@huge_never}, {@huge_within_size}, {@huge_always}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x36, 0x6d, 0x39, 0x37]}}, {@mode={'mode', 0x3d, 0x8}}, {@nr_inodes={'nr_inodes', 0x3d, [0x2d]}}, {@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x2d, 0x39]}}}}], [{@euid_gt}, {@obj_role}, {@pcr={'pcr', 0x3d, 0x23}}, {@uid_eq={'uid', 0x3d, r1}}]}) r2 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r2, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 115.619974][T11044] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 115.639293][T11056] tmpfs: Bad value for 'mpol' [ 115.640627][T11058] loop3: detected capacity change from 0 to 1 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x500, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 115.675288][T11063] tmpfs: Bad value for 'mpol' 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103403, 0x0) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 115.697476][T11071] loop2: detected capacity change from 0 to 8 [ 115.705366][T11072] tmpfs: Bad value for 'mpol' 20:22:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x8000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 115.765285][T11079] tmpfs: Bad value for 'mpol' [ 115.772194][T11086] loop5: detected capacity change from 0 to 64 [ 115.783338][T11071] loop2: detected capacity change from 0 to 8 [ 115.793252][T11086] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103405, 0x0) 20:22:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r1, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r1, 0x4018f50b, &(0x7f0000000200)={0x0, 0x8, 0x9}) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={0x101000, 0x8}, 0x18) unlinkat(r2, &(0x7f00000001c0)='./file1\x00', 0x200) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000040)={r4, 0x1, 0x6, @link_local}, 0x10) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000100)={r4, 0x1, 0x6, @dev}, 0x10) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000280)={@private1={0xfc, 0x1, '\x00', 0x1}, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x40, 0x8000, 0x1, 0x500, 0x4, 0xc00000, r4}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='devtmpfs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x24b6422, &(0x7f0000000240)=ANY=[@ANYBLOB="82"]) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = socket$inet6(0xa, 0x80000000000002, 0x0) sendto$inet6(r5, &(0x7f0000000240)="109535192793d3423d43ce9b7283bcd7c9b2c4b154cbe4cb4c3408c3aa8a1e9a7dfd6d432649045f6df301", 0xfe02, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @remote}, 0x31) [ 115.826906][T11098] tmpfs: Bad value for 'mpol' 20:22:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f00000000080005000000", 0x20, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x600, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xc000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103406, 0x0) [ 115.901631][T11109] loop3: detected capacity change from 0 to 1 [ 115.934275][T11107] tmpfs: Bad value for 'mpol' 20:22:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100"/48, 0x30, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103407, 0x0) [ 115.974994][T11121] loop5: detected capacity change from 0 to 64 [ 115.982591][T11119] devtmpfs: Unknown parameter '‚' [ 115.990794][T11121] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 116.004351][T11123] tmpfs: Bad value for 'mpol' 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x604, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 116.031295][T11119] devtmpfs: Unknown parameter '‚' 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x1c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x4, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) pwrite64(r2, &(0x7f0000000280)="1d", 0x1, 0x0) 20:22:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x12000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 116.062041][T11137] loop3: detected capacity change from 0 to 1 [ 116.076614][T11140] tmpfs: Bad value for 'mpol' 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, 0x0, 0x0, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x700, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100"/48, 0x30, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 116.128927][T11152] loop5: detected capacity change from 0 to 64 [ 116.150663][T11152] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 116.156823][T11159] tmpfs: Bad value for 'mpol' 20:22:32 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103409, 0x0) 20:22:32 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1, 0x0, 0x0) write$binfmt_script(r0, &(0x7f00000004c0)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) accept$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000180)=0x14) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@loopback, 0x0, 0x0, 0x0, 0xffff, 0x2, 0x20, 0x20, 0x84, r3, 0xee01}, {}, {}, 0x40000000}}, 0xb8}}, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(r4, r2, 0x0, 0x100000002) 20:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 116.212072][T11167] tmpfs: Bad value for 'mpol' [ 116.219794][T11171] loop3: detected capacity change from 0 to 1 [ 116.258566][T11179] loop5: detected capacity change from 0 to 64 [ 116.286518][T11179] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x18000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x900, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x10340b, 0x0) 20:22:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100"/48, 0x30, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 116.352226][T11182] tmpfs: Bad value for 'mpol' 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 116.412681][T11203] loop5: detected capacity change from 0 to 64 [ 116.423157][T11204] tmpfs: Bad value for 'mpol' 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x10340e, 0x0) 20:22:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1e000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103425, 0x0) [ 116.456329][T11203] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 116.479506][T11212] loop3: detected capacity change from 0 to 1 [ 116.513904][T11219] tmpfs: Bad value for 'mpol' 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 2: r0 = memfd_create(&(0x7f0000000140)='\x00th1\x00\xcf\x84\x94\xc6\xcd\x14\xe8\x00\x00\x00n*\x02\x00\x00\x00\xe3\x89\xc0\x9a\x01\x00\x00\x00\xb8s\xb8\xda=\xf3\x90mA\xea\xc2\xec\xc7*o\vX\xfdC\xe3\x1651\x90oe\xc2\xa5\x99\x014\xc4f\x8e\xfe|+\xe6\x9d\x1d\xcf\xa0,\x05\x80\xe4\\\xeek\xcc\x19\xea\x1b0gM\r\xd0ZN\xb5\x86\xe3\xad\xf9\xc0\x14\x87(\xbf\x8e\x94\x05\xd8\xd5\xa5\xbf\xbd#Cy\xa3\xbf', 0x7) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000141000/0x4000)=nil, 0x4000, 0x180000b, 0x100010, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) eventfd(0x0) close_range(r1, 0xffffffffffffffff, 0x2) fcntl$addseals(r0, 0x409, 0x0) 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x10349f, 0x0) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 116.631701][T11241] loop5: detected capacity change from 0 to 64 [ 116.645304][T11241] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000", 0x38, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xb00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x24000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:33 executing program 2: r0 = io_uring_setup(0x89d, &(0x7f0000000440)={0x0, 0x10, 0x2, 0x0, 0x1}) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = fsopen(&(0x7f00000002c0)='proc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = signalfd4(r2, &(0x7f0000000040)={[0x7]}, 0x8, 0x800) getsockname(0xffffffffffffffff, &(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000080)=0xffffffffffffff00) r7 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000140), 0x2, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f00000001c0)=[r3, r4, r2, r5, r6, r7, r8, r0], 0x8) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 116.721219][T11256] loop3: detected capacity change from 0 to 1 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5c4c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) r0 = request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\trust\xe3c*sgrVid:De', 0x0) request_key(&(0x7f0000000180)='blacklist\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000001080)='\b7\x95a\xbb\xf2%+V\t\x7f\b[z\xff@\xe2lK\xfa5\x10,\x1f\xb6\x9e\xe4\x8f\t&\xd2\x915\xaah\xcaE\xb4\x1av\xb4P\xdc\"m\xe7\xa5yP\xceZg\x85o\xaf[\xee3Co\xdc\x91{W \x8b\x9f\x98At\x86\xc7\xb7. \x1d\x8e\x83\xf9\xb2\x8d\b\x17Q\xdb\xfa\x819\x7f\x1c\x8el\xeb\xb2D\x17\xb8O-\x1e\x9c\x85>(\x87>\x89\xee\xf5\xfam\xd7\xe2\xd8\x94\n\x00%\x0f\v\xff\xa0\xa1\x0fY\xb39\x9e!t0\xc1\x85~`\xb0\xd0\x8b\xdf\xae\xe7\xab\xf6.m\xd4I\x85\xc6Lq\xf9\a\r\x19\xeb\x00\xe8\xd1*JN\xad^\x06\ni.Z\xe6\x1e[\xdc\xbe\xa2\x9e\xf8\xe3\xac\x9b}\x14\x19\xf4\xd2\xa7w\xdd[\xcb\xa8\xd8>\x9c\xe4\xff\xffO\x9eV\xea\xe1 \xb4s\xdfIr\xef\x94\xb8)h.\xf6\xa7\x05\xb8\xd6\xd8O;b\xe9O<\xa7\"\x00\x10T\xf1\xc3e\xb5\xe0\t\x97\xbc\xf7.6\xa71C\xf8\xc9\xd6\xdc\xb9\xea&\xd3\x00L\xd9\x1b5T\x1d\xae\x8e\xf3\xab\xb4\x81\x99\xd0k\x827\xb1\xee\xe4\xc2\xb6\xa8*g\xcb\x9f\x1c\x0e\x99\xcca\xa8\x12\">\x8d\xa6\x9aGp\x97?\xca\x9b\xafYqE\xd7\xb1\xf6ZX\xf5\x1b\'\xfcS\v\xf9\x11\xc0&\xdf=-\xeeQ\xfc\xd8r\x13={t\x80\xdc\xc82\x98\xec\xd4\xc6\'\xe7\x16F\x02!\x95\x8e$\xb7m\xcc\x85\xbaY{\xd3u\xa1\x1b~\xc2\x97\x1a\xcc\xc5\xc1L\xecY\xd5!q#\x80\n\xdfv\xabz]\x16\xb6\x01d\xcd\x0e*\xa1D\x1bq\x16\xfe)\x0f\x8a\xcc\x89!a3\xcb\x8cp\x9c\x8a\xdf\xe9\xeaO\xfc\xef\xf1\xd74Q{', r0) r1 = open(&(0x7f0000000100)='./bus\x00', 0x1c30c2, 0x0) recvmmsg(r1, &(0x7f0000000d80)=[{{&(0x7f0000000300)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000000380), 0x0, &(0x7f00000003c0)=""/138, 0x8a}}, {{0x0, 0x0, &(0x7f0000000d00)=[{0x0}, {&(0x7f0000000940)}, {&(0x7f0000000a00)=""/159, 0x9f}, {0x0}, {0x0}, {&(0x7f0000000c40)=""/179, 0xb3}], 0x6}}], 0x2, 0x40002000, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x4000000000010046) getpgid(0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff}) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(0xffffffffffffffff, 0xf505, 0x0) r4 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0xb, r4, &(0x7f00000002c0)='ceph\x00', &(0x7f0000001380)=@chain) request_key(&(0x7f0000000380)='cifs.idmap\x00', &(0x7f0000000500)={'syz', 0x0}, &(0x7f0000000900)='.}]\x00', r4) perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x852d8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xbd55, 0x8}, 0x48181, 0x0, 0x8, 0x3, 0x1, 0x7fffffff, 0x0, 0x0, 0xffffffff, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0xa) r5 = open$dir(&(0x7f0000000280)='./bus\x00', 0x0, 0x40) r6 = openat$cgroup_ro(r3, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r6, 0x2403, 0x1) ioctl$int_in(r5, 0x5421, &(0x7f00000002c0)=0x7) 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xc00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 116.796061][T11274] loop5: detected capacity change from 0 to 64 [ 116.803075][T11262] tmpfs: Bad value for 'mpol' [ 116.806894][T11274] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a0, 0x0) 20:22:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000", 0x38, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2a000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 116.889658][T11284] tmpfs: Bad value for 'mpol' 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a1, 0x0) [ 116.927990][T11297] loop5: detected capacity change from 0 to 64 [ 116.951295][T11303] loop3: detected capacity change from 0 to 1 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xd00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:33 executing program 2: mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4002, &(0x7f0000000080)=0xbe, 0x3, 0x2) [ 116.974281][T11297] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 116.980939][T11307] tmpfs: Bad value for 'mpol' 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 2: set_mempolicy(0x1, &(0x7f0000000040)=0xa1, 0xe2c) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="0b00007f457fb59cf12979a29bd23327c29e051c68016a3335f5ce8db19223045a6daf43f4b23ce13d0090c6fa69a3775c81dbcb980192d7ff1c19caf800b41253eb2ba3bd28ff664c1e038c6989833b71c9c6a045f84ffc536e1f273fdd0bb248f088507643ccf79290714f769cde868f16151c29786cc0fabb12fcc164480052ced84dc79f0a4f7235411b933abeec7f03559ac89f"], 0xb) r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) io_setup(0x7, &(0x7f00000004c0)=0x0) io_submit(r2, 0x1, &(0x7f00000005c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)='\n', 0x1}]) 20:22:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000", 0x38, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a2, 0x0) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a3, 0x0) 20:22:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x30000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xe00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 2: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup\x00', 0x0, &(0x7f0000000540)='pids') r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000480)='tasks\x00', 0x2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000100)={0x141, 0x29, 0x1, {0x2000, [{{0x20, 0x0, 0x3}, 0x2, 0xff, 0x7, './file0'}, {{0x20, 0x4, 0x3}, 0x250, 0x3b, 0x7, './file0'}, {{0x2, 0x3, 0x5}, 0x7, 0xff, 0x7, './file0'}, {{0x10, 0x3, 0x1}, 0x2, 0x3, 0x7, './file0'}, {{0x10, 0x1, 0x8}, 0x8001, 0x40, 0x7, './file0'}, {{0x4}, 0x6, 0xa7, 0x7, './file0'}, {{0x80, 0x1, 0x2}, 0x4, 0x2, 0x7, './file0'}, {{0x20, 0x3, 0x3}, 0x1, 0x24, 0x7, './file0'}, {{0x40, 0x3, 0x6}, 0x1, 0x4, 0x7, './file0'}, {{0x4, 0x1, 0x3}, 0xca, 0x5, 0x7, './file0'}]}}, 0x141) [ 117.109311][T11334] loop5: detected capacity change from 0 to 64 [ 117.116177][T11337] loop3: detected capacity change from 0 to 1 [ 117.144887][T11334] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:33 executing program 2: syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0xffc00007, 0x2, &(0x7f0000000240)=[{&(0x7f0000000040)="040800090000ff01e66174000404090a0200027400f8", 0x16}, {&(0x7f0000000180)="040008003081a46bf52244bc000093", 0xf, 0x1f}], 0x1008, &(0x7f0000000100)={[{@fat=@fmask}]}) open(&(0x7f0000000080)='./file0\x00', 0x20000, 0x73) 20:22:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000", 0x3c, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a4, 0x0) 20:22:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xe01, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 117.250273][T11364] loop2: detected capacity change from 0 to 264192 [ 117.260571][T11366] loop5: detected capacity change from 0 to 64 [ 117.286383][T11366] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a5, 0x0) 20:22:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x36000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) [ 117.361041][T11385] loop3: detected capacity change from 0 to 1 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 20:22:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xf00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 117.403499][T11387] loop5: detected capacity change from 0 to 64 [ 117.415669][T11387] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 117.431400][T11364] loop2: detected capacity change from 0 to 264192 20:22:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3c000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:34 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfffff004}, {0x6}]}, 0x10) r2 = socket$inet6(0xa, 0x100000003, 0x3b) setsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f00000001c0)="99e1f403e9e4c44ec0b9397d0552d7cdc7ea2837f76b39ef463e52ad573e103e8ba5d4ed1434c699b81152138149bf5d0daaee7d098b35abeed71b1894e043d390357c43bc0eb2ec680d17b7271d83189bbb996480e3194bb4e58a513124ee3abebf3ebf54d30175d386d2d281a22ed214ed74b9eff6107a615f37ddc74e3e03c081ee37f11c11715a26a3093f5767f25bfc827777ebb4974403f3852e1aaee0bd", 0xa1) sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0x0, 0xac141409}}, 0x1c) 20:22:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000", 0x3c, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a6, 0x0) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[], [], 0xc}) [ 117.514085][T11417] loop5: detected capacity change from 0 to 64 [ 117.545503][T11425] tmpfs: Unknown parameter ' ELF' [ 117.551656][T11417] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[], [], 0xc}) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a7, 0x0) [ 117.561520][T11426] loop3: detected capacity change from 0 to 1 20:22:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xff5, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:34 executing program 2: sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYBLOB="00ea13891b0200000000000000"], 0xe8}}, 0x0) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000380)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000323c0)=""/102384, 0xfffffffffffffeb0}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0xe) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() rt_sigqueueinfo(r1, 0x3a, &(0x7f00000002c0)={0x38}) r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x404000, 0x102) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)=ANY=[@ANYRESOCT=r3, @ANYRES32, @ANYRESDEC, @ANYRES32]) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000540)={{}, r3, 0xa, @inherit={0x50, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x6, {0x2, 0x0, 0x5, 0x1, 0x2}, [0x2]}}, @devid=r4}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f00000003c0)={{}, r3, 0x10, @unused=[0xffffffff, 0x3f, 0x0, 0x8], @subvolid=0x1}) 20:22:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[], [], 0xc}) [ 117.623330][T11439] tmpfs: Unknown parameter ' ELF' 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a8, 0x0) 20:22:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000", 0x3c, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3f000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:34 executing program 2: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fork() msgsnd(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0300000000000000a9041f1d8b95c1fc2425dc24602f6c421a91136e7167fbc2d9fbd2287b85fd8304a8f263b18c3f75cea5ca3305c7f3bbe23035b86166cfb1635692820d44c7ae76f2e2da2a8f6f3c61baf33a004ca820f9e941fc5ba90ca8ede3135e7d60efecf1a3d3862fe3a57faa800fa68035d90561d8dff9a4d9a26f67246e10847a5c4809477a0ad8234625bdc34ad8d8ab90fa19e98859460b9c3581c501a82941663957861363e647f5328041c405568124538869777a246555d91696b4025ec5cfd009b1b5ffe4233cc4d78eec520000000000000000"], 0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x185}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8}) msgrcv(0x0, &(0x7f0000001340)={0x0, ""/4096}, 0x1008, 0x3, 0x2800) 20:22:34 executing program 1 (fault-call:5 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034a9, 0x0) [ 117.703374][T11455] tmpfs: Unknown parameter ' ELF' [ 117.725730][T11462] loop5: detected capacity change from 0 to 64 [ 117.734644][T11463] loop3: detected capacity change from 0 to 1 [ 117.759749][T11462] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 117.772330][T11468] FAULT_INJECTION: forcing a failure. [ 117.772330][T11468] name failslab, interval 1, probability 0, space 0, times 0 [ 117.785087][T11468] CPU: 1 PID: 11468 Comm: syz-executor.1 Not tainted 5.14.0-rc2-syzkaller #0 [ 117.793849][T11468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 117.793865][T11468] Call Trace: 20:22:34 executing program 2: r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x49) openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x10880, 0x40) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="b800000019e5e0029b0000000000000000007f000101000000000000000000000000fc01000000000000000000000000000000000000000000000ac596fe6c8a81d8591581d807e329f06b5d3b9758d2e3ddfc03ea59cb093e0f8a81c667ae05e94b119c91c7acb7aab1d37ddfa14b644d9596b58e3f2a12b7aa46f5246caffa8e296a1272c6143b244c7aa8b8cbaebe50d836e28a1ca71ea68549b051f198458f60cda45fce7f75f3db29432bd2d3d7d32a1ea9ea1d16a589ccc30123d870c28869c98c2f772751114f26cb89d5efbcf60788dbf348921e31ef4d7a12"], 0xb8}}, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x49, 0x0, 0x0) 20:22:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000000000002000", 0x3e, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 117.793872][T11468] dump_stack_lvl+0xb7/0x103 [ 117.811939][T11468] dump_stack+0x11/0x1a [ 117.816089][T11468] should_fail+0x23c/0x250 [ 117.820496][T11468] ? __se_sys_mount+0x4e/0x2e0 [ 117.825452][T11468] __should_failslab+0x81/0x90 [ 117.830288][T11468] should_failslab+0x5/0x20 [ 117.834772][T11468] __kmalloc_track_caller+0x64/0x340 [ 117.844560][T11468] ? strnlen_user+0x137/0x1c0 [ 117.849237][T11468] strndup_user+0x73/0x120 [ 117.853715][T11468] __se_sys_mount+0x4e/0x2e0 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034aa, 0x0) [ 117.858299][T11468] ? fput+0x2d/0x130 [ 117.862300][T11468] ? ksys_write+0x157/0x180 [ 117.866947][T11468] __x64_sys_mount+0x63/0x70 [ 117.871626][T11468] do_syscall_64+0x3d/0x90 [ 117.876047][T11468] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 117.882034][T11468] RIP: 0033:0x4665e9 [ 117.885933][T11468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1020, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xfeffffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 117.905585][T11468] RSP: 002b:00007fbef8479188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 117.914084][T11468] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 117.922230][T11468] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000000000000 [ 117.930230][T11468] RBP: 00007fbef84791d0 R08: 0000000020000000 R09: 0000000000000000 [ 117.938206][T11468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 117.946169][T11468] R13: 00007fff0167255f R14: 00007fbef8479300 R15: 0000000000022000 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ab, 0x0) [ 117.962509][T11490] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=58649 sclass=netlink_xfrm_socket pid=11490 comm=syz-executor.2 [ 117.997376][T11490] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=58649 sclass=netlink_xfrm_socket pid=11490 comm=syz-executor.2 20:22:34 executing program 1 (fault-call:5 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.003206][T11498] loop3: detected capacity change from 0 to 1 20:22:34 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYBLOB="a2dbedbd8f73b92165927f1f9489d63e770c6d0100000000000000"], 0xe8}}, 0x0) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000380)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102385, 0xfff7}], 0x3, 0x0, 0x0, 0x0) tkill(r1, 0x40) fcntl$setstatus(r0, 0x4, 0x4800) gettid() wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) exit_group(0x0) [ 118.069838][T11509] loop5: detected capacity change from 0 to 64 [ 118.074752][T11510] FAULT_INJECTION: forcing a failure. [ 118.074752][T11510] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 118.089121][T11510] CPU: 1 PID: 11510 Comm: syz-executor.1 Not tainted 5.14.0-rc2-syzkaller #0 [ 118.097188][T11509] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 118.097879][T11510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.097891][T11510] Call Trace: [ 118.120226][T11510] dump_stack_lvl+0xb7/0x103 [ 118.124829][T11510] dump_stack+0x11/0x1a [ 118.128999][T11510] should_fail+0x23c/0x250 [ 118.133527][T11510] should_fail_usercopy+0x16/0x20 [ 118.138562][T11510] _copy_from_user+0x1c/0xd0 [ 118.138584][T11510] strndup_user+0xb0/0x120 [ 118.138601][T11510] __se_sys_mount+0x4e/0x2e0 [ 118.152436][T11510] ? fput+0x2d/0x130 [ 118.156441][T11510] ? ksys_write+0x157/0x180 [ 118.160937][T11510] __x64_sys_mount+0x63/0x70 [ 118.165620][T11510] do_syscall_64+0x3d/0x90 20:22:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1100, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 118.170039][T11510] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 118.175924][T11510] RIP: 0033:0x4665e9 [ 118.180072][T11510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.199764][T11510] RSP: 002b:00007fbef8479188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 118.208178][T11510] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ac, 0x0) 20:22:34 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x6) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0}}, {{&(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=[@tclass={{0x14, 0x29, 0x43, 0x1f5}}], 0x18}}], 0x2, 0x8004) 20:22:34 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ad, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.216155][T11510] RDX: 0000000020000080 RSI: 0000000020000040 RDI: 0000000000000000 [ 118.224200][T11510] RBP: 00007fbef84791d0 R08: 0000000020000000 R09: 0000000000000000 [ 118.232168][T11510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 118.240229][T11510] R13: 00007fff0167255f R14: 00007fbef8479300 R15: 0000000000022000 [ 118.314726][T11533] tmpfs: Bad value for 'mpol' 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000000000002000", 0x3e, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x7, &(0x7f00000013c0)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000018000000c28500002b02", 0x66, 0x400}, {&(0x7f0000010100)="00000000000900000c000000dff4ef821ec34de5a68f275e28ea4831010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="0000000000000000000000000000000000000000000000000000000020002000010000000200050040", 0x29, 0x540}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x5}, {&(0x7f00000000c0)="ed41000000040000d7f4655fd8f4449b45bc4432854ee85f4ae9655fd8", 0x1d, 0x1500}, {&(0x7f0000000180)="504d4d00504d4dff", 0x8, 0x10000}, {0x0, 0x0, 0x100000000}], 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="04"]) symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00') creat(&(0x7f0000000240)='./file0\x00', 0xa0) creat(&(0x7f0000000140)='./file0/file0\x00', 0x153) umount2(&(0x7f0000000280)='./file1\x00', 0x0) faccessat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x40) fcntl$lock(r0, 0x25, &(0x7f00000002c0)={0x2, 0x4, 0x61837870, 0x2, 0xffffffffffffffff}) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ae, 0x0) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xfffffffe) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.339858][T11539] loop5: detected capacity change from 0 to 64 [ 118.355238][T11539] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 118.371150][T11546] loop3: detected capacity change from 0 to 1 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034af, 0x0) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1200, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e041000000000000000000000000000004180000000000000000002000", 0x3e, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x5, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.403693][T11548] loop2: detected capacity change from 0 to 264192 [ 118.429389][T11548] EXT4-fs (loop2): Unrecognized mount option "" or missing value 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.502861][T11548] loop2: detected capacity change from 0 to 264192 [ 118.514208][T11548] EXT4-fs (loop2): Unrecognized mount option "" or missing value [ 118.529998][T11595] loop3: detected capacity change from 0 to 1 [ 118.536524][T11596] loop5: detected capacity change from 0 to 64 20:22:35 executing program 2: r0 = getuid() setresuid(0x0, r0, 0xee01) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000200000006000000000008000080000020000000e2f4655fe2f4655f0100ffff53ef010001000000e2f4655f000000000000000001000000000000000b0000000001000008000000d24201001283", 0x66, 0x400}, {&(0x7f00000002c0)="00000000000000000600000000000002a6f9d2ed2d493e41e3061970120dc8c9148281efd0347bf57c41341ec4af23c2eee1c4d18e00a6dada0df592998d6b20b11efb11f7f98cf1041c536bbcace973d95d677bc599cb3689f1875bdeff5ee99fe85f2bd68120b6037ed00bd9c28715b475c3410c161b5526a6eaa399a2e045e89da64502fdfc70d230314355a20793b0e5212b044c36a571337048f143a62c42a1b7ff4d8decc42698420e0b0926b62562176783552e96d76c", 0xba, 0x4e0}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x1004}, {&(0x7f0000012600)="ed41000000100000e2f4655fe2f4655fe2f4655f000000000000040080", 0x1d, 0x4100}, {&(0x7f0000012800)="8081000000180000e2f4655fe2f4655fe2f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4200}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}, {&(0x7f0000000080)='q', 0x1, 0x30400}], 0x0, &(0x7f0000000380)={[], [{@fowner_eq={'fowner', 0x3d, r0}}]}) setxattr$incfs_size(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0) uselib(&(0x7f0000000140)='./file0\x00') fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r0, 0xffffffffffffffff, 0x100) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055", 0x3f, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x8, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.550559][T11596] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1800, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b0, 0x0) 20:22:35 executing program 2: r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r0, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) r1 = socket$inet6_udp(0xa, 0x2, 0x0) sendto$inet(r0, &(0x7f0000000140)="a286329424464d0cebd81b20ec240b07cd8b81437d6291059a316621b807aeca823b6c249440f55ff4c6e2448dcfd617f95cf5e4915ba3cef8db8d21c0ac95e723e80b250276688ea6e0f04f0b45ecb1a04579d1c1577c0e46ee18292aeeac7eebaf86381907bf07b6f3bbfd1e362c87faf856f6cdbb512e2815347c8d15079368f056462032f8", 0x87, 0x20004055, &(0x7f0000000200)={0x2, 0x4e21, @empty}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) r3 = fcntl$dupfd(r0, 0x0, r1) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e20, 0x19c1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xfffffff8}, 0x1c) recvfrom$inet(0xffffffffffffffff, &(0x7f00000000c0)=""/38, 0x26, 0x20, &(0x7f0000000100)={0x2, 0x4e23, @multicast2}, 0x10) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000002c0)={@mcast2, @local, @loopback={0xfe80000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20d20002, r5}) r6 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r6, 0x0, 0xcb, &(0x7f0000000080)=0x8, 0x4) ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000340)={@loopback, @mcast2, @remote, 0xfffffe9a, 0x7f, 0xa5, 0x0, 0x1ff, 0xdcc0abbe32de7ef4, r5}) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x9, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x4000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xa, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 2: r0 = socket(0x400000000010, 0x3, 0x0) write(r0, &(0x7f0000000040)="3a03000019002551075c0165ff0ffc02802000030011000500e1000c1e0302008000a000", 0x24) [ 118.665378][T11617] loop3: detected capacity change from 0 to 1 [ 118.694953][T11633] loop5: detected capacity change from 0 to 64 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055", 0x3f, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b1, 0x0) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1900, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xb, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 2: perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x18, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) pwrite64(r0, &(0x7f0000000280)="1d", 0x1, 0x0) [ 118.728190][T11633] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x100000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 118.775882][T11656] loop3: detected capacity change from 0 to 1 [ 118.815761][T11671] loop5: detected capacity change from 0 to 64 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xc, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055", 0x3f, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xd, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 118.824155][T11671] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:35 executing program 2: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0xc0200, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000004a80a4342f3ac2f601958beb16bb8f6ff37f57b70a337a76265f5fbc", @ANYRES16=0x0, @ANYBLOB="00002bbd7000fedbdf253a00000008000300", @ANYRES32=0x0, @ANYBLOB="0600650008000000"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0xc000) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x4}, {0x20}, {0x6, 0x0, 0x0, 0x7fff7ffe}]}) r1 = socket$inet6(0xa, 0x8000000000080001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff000000000000000000000000000001000000000000000001000000000000000000000000008fa8505800000000000000000900"/144], 0x90) ptrace$setregs(0xd, 0x0, 0x4, &(0x7f00000002c0)="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") openat$vcs(0xffffffffffffff9c, &(0x7f0000000200), 0x800, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000012c0)) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x200000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b2, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xe, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 2: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x104}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYBLOB="c5b8aa09a2a73d8b7dd699"], 0xe8}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x6, &(0x7f0000000180)=[{0x7f, 0x0, 0x0, 0x7ffc0001}, {0x2, 0x0, 0x6}, {0x3, 0x4, 0x20, 0x2}, {0x9, 0x19, 0x4, 0x1}, {0xff, 0x9, 0xed, 0x6}, {0x1f, 0x8, 0x9, 0x1000}]}) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000380)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0, 0xffffffffffffff9b}, {&(0x7f00000193c0)=""/102385, 0xfff7}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x33) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() rt_sigqueueinfo(r1, 0xa, &(0x7f00000002c0)) r2 = clone3(&(0x7f0000000400)={0x40880080, &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000240), {0xfffffffe}, &(0x7f0000000280)=""/48, 0x30, &(0x7f0000000340)=""/43, &(0x7f00000003c0)=[r0, r0, r1, r0, r0, r1], 0x6}, 0x58) process_vm_writev(r2, &(0x7f0000001740)=[{&(0x7f0000000480)=""/232, 0xe8}, {&(0x7f0000000580)=""/91, 0x5b}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/27, 0x1b}, {&(0x7f0000001640)=""/225, 0xe1}], 0x5, &(0x7f0000002940)=[{&(0x7f00000017c0)=""/22, 0x16}, {&(0x7f0000001800)=""/68, 0x44}, {&(0x7f0000001880)=""/15, 0xf}, {&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/107, 0x6b}], 0x5, 0x0) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b3, 0x0) [ 118.951129][T11700] loop5: detected capacity change from 0 to 64 [ 118.959578][T11696] loop3: detected capacity change from 0 to 1 [ 118.966007][T11700] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x300000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b4, 0x0) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2010, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x10, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 2: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0xce, &(0x7f0000000340)="8d31e183156939000000e28c0b1dd2a357b264c8745b78376e18cd3d3dfcb946cf885a21539a0c4a081ceeb24ac13830c190f8d2802fab69347b9a915308c4829b4b43353c485f8bb2965cd7e1292aaa6394b40cc2ff91a7cf6d403d3a82d09ec2e57d3c3ec2117496b2dd4837334f73c37edfd46003eb96a9c79d3de0cab4645adde76e8ac90dba5bdc53cdc3235210b2e21df4f23e22471e2d53415f8f4151d0b915d0c68769a73778513261f1e9a548b33b5e8a96381e1d1ff7adcc95d49b4e5a7f1497d726ba6d35a1c89c4b"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) clone(0x1080, &(0x7f0000000140)="3b0221be6252c8a1e26f773288dedcd7b45dc16628e3ee57fb390a2dd7b9078933a416e39bfb9598f4a4fd1ef31139fb41349a6361d247980d94a8eed7091e7f4e4f7de05a8162a0eb4f8ab9ca1b34cd0d861e567264d6b6a4ff3fdc55fe67e6d77cf79509b1f5f1fea63da76fbdb15be360873cb75c70ba46d6d8b139eb23dcac033bfe548a6850d0afd96f87132ef98370632d9810c30db79bd349c83f36ed77975ab56dfa97c66cd1e0f9f58be98f947ec2", &(0x7f0000000080), &(0x7f0000000200), &(0x7f0000000240)="4b700342e9d910bad1d06b6bd9f3e7c2ad435041d9896274") vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x18, r0, 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) r1 = gettid() getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r2, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003bc0)=[{&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000900)=[{&(0x7f0000000440)="1d763982726015bafdd3cde65ceedd918eb4df5e56c460db7ac1b10e07cb9d1401514e2c17ec57950097fcf7cc83e308f8e6dcf3027219680e1018f6dcdcbdb4ee4eed1ae3eb0bddbb609395c49ca02fcf69c8c0a8d4c3b0cbf57cf792fe21b9c1822db6264b73aa52408b6fbb8c6f3678ef618df5cb38199172591697129feb8189ce35bc392fb391de6a970adb0ad6c8a9bee9ef8d927f8a70848cd35032f59f70a23955d73b443899366a3613029cb962ec9b4344f214bba03da69b9030a6c362c9dba3f67ae3a4854dc3b7688e318a6cb019dc5810de2178afd7c5df7a3c1d88c9a4c52839867b40e332c02d114a4ab7da32ba6e3149", 0xf8}, {&(0x7f0000000300)="dfbec8793f9ebb20731069aac0ce6f97481ed345f51fadb7fdff9774cda8b0833cc337d75853c9cb854711e1726ee737c6f68655ff5fcff78c84fe1f0f7604cd", 0x40}, {&(0x7f0000000540)="267c86fe8c7244848e85c90cc13eb8f58e95a70d8f6f319ba7ddadfe5931745273226c95d4ad81ed59a36307f89db5f550ea5aa3f1a4e8af2a5082069e4dd5e46f5d8d73286bbacc853fa2c4166ff9330e3483762ecb53b04a68afd31205fa6cae516fd53e66d8c696b1ffd9", 0x6c}, {&(0x7f00000005c0)="2ed194968bc02df21ff26f11451f55c0a977d9535e612c78994359fa921c343ba4422597c208068312b42c3e87e6d4006fc4ffecd04289ca154334bbce7bebd51a69e38ded38a3134d3b6780ffb04660583ed4570152ad7c82ad6737c69f9b942bc211060a8c006c06f5945063", 0x6d}, {&(0x7f0000000640)="8ed68e0e6a1eba3fe87185887a81eea79c2abe1b000c1cc7219b44e7f0c9114b10ff0a206579127b5f0ac1cfff875d8a179fc44f82c52cbbc8823b2087892fd7e8edac0be08f02d04656a4b17ae4b52052e302d74cf32b72e2c9d3641416ff69520a523ba9d008913f442ae87efe6ad0b8ec684369672bded435934fbabaf34c", 0x80}, {&(0x7f00000006c0)="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", 0xfc}, {&(0x7f00000007c0)="7367d0dbabaf6d5aff9f11f973e8db4b8e0913e1c1ad5e3c3b042273dd2916bd08148fe617d4953fda689e19864851784137086829", 0x35}, {&(0x7f0000000800)="4c4c4eea8abf518d6c63f120a7247cf05498e3c3a2e7550f133add324a768b1c75191daf1a5d5f5cb562e81192f9ac0f94a86441c87d0c9ca693145d19ad6dbea2b9210d2a90d13c48579870162f35c891fb24a8a8de6eea69487cd56942ab13292100722715870fad323d474e105785816178222661360566357f88b91f7f682916361183e17e30b34b14a814b62d15e02068ab7371e8155c480c7063dc8bf9d9b59a124f36d9abec78787d1d770bca9c79d6235e4418", 0xb7}, {&(0x7f00000008c0)="d8bf985dd7983c2884ad261d85c972cf9b46b1b312721fbab712e4db76bb85f52dfd967431a97b862941d05cd687576f9915b2080402ee", 0x37}], 0x9, &(0x7f0000000f40)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}], 0x118, 0x4800}, {&(0x7f0000001080)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000014c0)=[{&(0x7f0000001100)="441fd797fcffbdf4e3b943dc880bc34a0800d871812573293d79e0e7f4a8d1713a1b16b8bb18b2252bce12496c2fe40ef742292ad95d1e0d95a728226ecb896e680396d8319d0f876547beda6da31286d388a27fc13160d243ca51bc6284d4f759b3318c8ef77d2def74fa591ebf6022a08b0c77195bb97536b3b2f15bff56c8ad03598c896183c455b24311729c97878d462efec5ad19a292b714dda2defca71ae1d3dde6f189193143870232b45463b0fc63176af0e8e4c1929d2f294d97557ebfa6c6deb0a31c4f87573a8592548c8679a607639f8d7e3fb47c05007d89af", 0xe0}, {&(0x7f0000001200)="fae1167428966356c22c665c51de2ccc8cb20d3dd39b84bb67eea7b396095c4269363588169fd7c710c14a72ce36c98d7df5a4dbfe595c88f26ef25ca51c7fc7d9cbd25ff69337b7c0b90e250994c2bafe074cffcc5df18fb1ad7190ff63bd0d66de6f219aed9aa7210d25cf788afa5459b2f18ae87e", 0x76}, {&(0x7f0000001280)="ceabb20eb7840fb6112ba36754297fcb00f33ccd961de832921db73ab5e91ae365410b1d5e37a16a26c479c87558a5ddeabfeffbf893d6c51dcdde91496d3591eab353759c833f2a6b0596a0d6a5440d4dae19f7b89ebe4b325e1555", 0x5c}, {&(0x7f0000001300)="dc2ec531244fe53e4a039d2d57ae0d4170d18e974509edd0242539", 0x1b}, {&(0x7f0000001340)="1cbd62f337b843c057a7d78626da441bc052ba4e074142d2689fa799415a2cff4de86a39078816a5b42dea7463157ac035a8311b4823532a5c62dc082db7b0b25a", 0x41}, {&(0x7f00000013c0)="5c961da9d20cfcb2836646004e05144cb4b4377fc7eee7041bff217a55ddf22e3f64f979935426e28ba11e7c9d6b53eb99f3d91e9887d5de1d3263b4443d4f216a061398619250586fe56ea1c1f44f6882f5ba0e8ff690db598565028170718455e1e034107473d16c76e8acd5a44b4443e208c83287134a50035f88627ac745d20e709e7b13a8732d58fe8f6b07632d5544d90847a334fd3926fd3e03015ccbd7d96a2861a79121a573abe92a4d42b08c04c9d9893a9c8ee8d1b05b5d58a5bc13640a", 0xc3}], 0x6, &(0x7f0000001540)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x200008c0}, {&(0x7f0000001580)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001c80)=[{&(0x7f0000001600)="996f4d1090c1c62eb39bd933af6ce1def9d5677ca71998c7554e7d548a81bd6f6facdd7acfb491d9bbe35f303c46db434d087cbbff9f708d4580d211ac9d656bc739ca85ef4f2fa61f0dc9fd98108916a0e55be07cb9d5f5fb665ca16085f69cdff0801bf5160b84d0b78fd52887c0e5673daf80863c97a90a5cd9ac4fbdef5cca0c353ca20c073323009e5d8d76743c8e83c43b5800e59474d2a85315f0403debc4592a60961a9eea63bc2a8c1f1ada7b571bb10e3dd60eaf987d76187a96ccf1bfd5ce5bc6914b", 0xc8}, {&(0x7f0000001700)="ac0c51eb3a62b0f086b0797c50b339dfcf6fad960b588e001a24cc0c8e0827625896cae18b29f84463c2ca46426f3e9ee61e8f9ac4106102fefc16132dcf8b58deb7fec36230405c07d6126fd4fb1969e3c9c8a6ea0f4ff8a69a2824c1f09fd411a03208011ce74fcdc20a", 0x6b}, {&(0x7f0000001780)="1947e1", 0x3}, {&(0x7f00000017c0)="50152064c678110e473f54bf60156e3c0f94810eb72311667b2d2d21342051f7b09edcc43f60261ad79ddaa39bf165905bef1d27358211dd9b99c085cea14d9192ba9e289c405760f843a2af4993753c418ea70b740491f40cb99eb98489656e2d4ec1303acc6807f2aac2cf801cdd26dd008c7952de8c878445a19168a30c782ef8ffb5adc5aab5b2e733d19de24f15f94e3bbe9cd4c3eed807daeb9bbf7f423baff13e1f", 0xa5}, {&(0x7f0000001880)="d20dbb20e93b5569d8917547e1b7e1588bda4c7d0c1aac364e04fae90148aca6", 0x20}, {&(0x7f00000018c0)="8887c44f33867a173ce7ab43fdce9bffa823b50b4b1b2fe32a1bcd2c601cf3648fdf7ab28489b82ec5301e8e62f6cc90ad683daf2fb4d40a15ccaa2e1bdcc5874a8a53be0c547962a98c4be85c5d44de6ccb955236d57fe2929e79ea3f19170761d0a0022ff08605596b", 0x6a}, {&(0x7f0000001940)="70261a2f2e1daed4ff07cc97f6e913eb997ef9f0c1147d91df9b375a283bb1e4a57815b35be7f8e0047a582dfbc433381419829b5294137b0e13a9a1adf4a25d025907643005127a06ce81a86f69ea11573bd476b9f064f1e06ca7803be95c53bf0fc0df215bd2abe006847761a8dcf611d9a638791234bbd0be732c961f549395a4b60f35da7b92559ceb9fa878d17f42ef9776092c3586b1a61facf73f1ebb56cc80e1a1015b1b254550e598ae3c8e569907acb474a146adcb2069da94497d1456d333fe8c11bedc17b848e9fc2b1c6b1d2fe843331e3a59ad196ed897f1708a1a646e6919ee821cb57c60a5a3", 0xee}, {&(0x7f0000001a40)="e99cbd24ca58b46616dcea68b1e9be3b3380eb2a9947ed3f3f7fabf3937cb9df0ffa2bd06125b0f1e7579a59", 0x2c}, {&(0x7f0000001a80)="efb3c5da79d3bacda6fffffdd2394af924fa3876c9c9230875858910500c2aaf66413bb6bca38bc319ebd7e902d30f7afaddfda35596956d6924f6b62a804685ab17c0a2180781f6ac7e9544c09349559762bf0a72969713398711f87cf39de8afb0922bc1df80610991efaef9fe27473d5774362b13015992e1163d7e350055c4e480ff1a15a4647eb15bcc71a2f4d1a2899e1ec3f01755696004ecb95b9c15963185a36b34b6dcf59f0a3fd8d8b51c8ad076bd6f54f6e950525f9affca54b6f7b89a3c03ef696c3f54961bb6843d2573f4a2eb33b84c74fc33f2630ce9a12db12b91c073301573e44940f8b7951105b19fc26066", 0xf5}, {&(0x7f0000001b80)="a56d05afc982f672866fbc63687f90da84fbfd2344881c8ebb76fd4f2e37df0e4709a88c49ba96a83d0366030b1c00f9885818278a3a4c44c76da20b57bfd37c491f444341fac27fa1150d2bc0036a957536bbec9f3e6ce003a50882b795986192e4d8bd7f7178efceac161af16b779b8e92b40dbdb02bb101324ce4c0d45a8f75b3339da29c5c29a145bba43b3d8e0828138a85a668475790995a3aef7e0784d0263197b5cef6b4e06368bf79959cf75bedd865959552aeee3d69feb5a0ef879b68cba05f2c6b4bc040dfac97ebe64c", 0xd0}], 0xa, 0x0, 0x0, 0x800}, {&(0x7f0000001d40)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000003540)=[{&(0x7f0000001dc0)="5ad53f93f2f4d544ed8fd472ba4d188a124978f7c6b9d845351576c23f05b31a8d0112255c85d3c1ed779cfae85eb6eeacf49e6190b658009687baea879e6ad5ba36f8a6a81fe567681cb9fcc4c36a4e30a8d0c291dac08bcd64d0660f644281d873f988774859cda59ead13bbc9ca38d7beb4a18f9b41de8ce6b35b7cccd015ee51345b93c880825671633f6192", 0x8e}, {&(0x7f0000001e80)="ca6b9de90623e0e41573ed2117a3051ae76091f23de808884c98747b4c9c3570b11656079ee8113bd1abf82c1ec9b406edeef36f513b73427175b403656af12bff238d169f6ddb5510a8d67e6de65458327d015f81692add3601f8198b17c59e8673a9a335770abf9844782e9c79703e12260e7b268e49ba0d9df5cc6f2b72304fa6e21d9012983504e43ed2be39d2e6af5f0f284b5c437aecf16b6149448bf2421d9df5d2424215e460ec4d48f8b6b901ab95192bf25cf0fff3f93e1eb92159f85c6b9a4b0b181fb591b62fb6277638d1d681ee229a34bbe3d8b5b04f5cfa16ea79ab2739a9bfaac36e5380c07894bacd313b114cffa9", 0xf7}, {&(0x7f0000001f80)="385779f0159d0adfefd29118aeb93680ab480a1f2b658d72a8a0500a2ffce50ffb453a3f2d40672b27ff954940c85cc8e294bf90de303331b76c15caa914a566202ee80b68f372cdf19878d4f309dbd30798db22ea63a3eef23a2dba5f46cdac3769337aa30583e37f33ab6529ff38c676ac4c28ba61fab015ee5fdab2474ea06d8cb8211fd9856ab7a7d6617ec8c1926d1cfd06e14126038745854f8b2ed1fc402cab24ce67385e4d4d924a12e369738dd42deaa4b85d8ededdd47fd92efc30e6", 0xc1}, {&(0x7f0000002080)="0b870398512448d05b95661a07583fac14f6998c4e5f708ff9a7f4274b0348413abfb1c89c3ac668cf4931a518ba636ae9fb2910d530fbfb963646be57b137af2589592fc2f16a4c9530180749d6c24e", 0x50}, {&(0x7f0000002100)="b0870fb7f880cb7332446eb2594fd33550048261dcd793cc4b1f5f88bb18a13aefa3705863eede756f84ab5ef8689ce5d4c053adf3578fc801e3edfffdf9ba28ce60ba18fa2b646d1a349a7a861ab4ce40d8f85d0d9f75b9bace4f0c39958b6515d6bd1cb3ee7697ad41c34882996c7851b7b3d7701584f246cc8b556c280dc778da08e349a3ef3e7695d386ef31e065b31926b260", 0x95}, {&(0x7f00000021c0)="a87aad12007d01e53abdceb6bc2849e5628c18ecf2882a2c06311454df3f7173745e82a1b08e1ead121378b2928a69325ce67683b1dc639d7ba9df7109c4fd8c32fa0a3d1a27e91fc0f1e8970ae2bb3a9d0762ffef5c2c19c606a8723e107a96330b9fa9ed682634ef48eee4c63c942412466790e3a8a3a8014bd31bd018365c2962fb96299120a9b73e261c9597bb6b82fb6fbc82d2021be517dc19170db14dc9f04423f3b336cd20e60c535751745101595cdd149b039917a0f2d2c7b461e518633fb9a5eba82777e029028c098484b400098e3a79fc", 0xd7}, {&(0x7f00000022c0)="6c065c7c4a3e7941015427b3cc9d30bdcd7e8085bbea1375b497be609adab91153ddd6537fc3460e71f67152d5cf57ee46e112a773490e11ae28b60501e4656d6834e0bc600f5c0ed940a65483da41f590ee07268d12e00116a4c189148964bae9da305b4cfca078e37d64f3036624c02f2ffd3796f9cc5ea52f0c8260476c0d8333aaee4c2fc871344ca3a7babaf7a4db274c6c0caa7c5c4aefb5746cbf861391be3f5ba3af2c6a8514a4da422ff761bb6214780c5da82daa3cd0e943e946f2058fecdec960843c5fd9a67efb13f11612d8af4d546fa47a27f4497c0c6590125058e888697c9ad81cab886131b4212758ea539227942a871598087821f82bf94105da20d6d0a31488c4a6dcb3eb5afd6ccff43bf2bac224a0f9bcc398a05d846bc1d5104dbdcd0074b2907888693b73294e083bc199f8e088f710252115a74f4c548087602d175d1de8bd416a16bb228a1c2356530e5020575bd912cdd592f4cc01048c19d3df6c5683cccf518d636d9e337e209ac29273fed2af4558b7804b7390d4990e3e747a71a5ac0d689a043bc4405bf3d4aebbe05d27d5cdd3c1ec0bf9ba67bedf8108fffefa7ed3217fd2fec62448a98eff95a2ee37f10878bed9d6d3c52712043e58b36ac564b90803da2f8a0f71a8196768e63c4e36d297c11a998951e82ae3887a4424145c6fb0fbae7ef616947dad7bc2026800542b0932fff442290289ee51f6251d3f2a2822d9365116d69c958c58cc12d10b96a9f79903371684dda688bbaa074893acf391b98769d7c2124a614f172add894e9411a00a2d46f0026a21d9fc37992de3b84c98f6d052d95d050c152e20ec5861baf8f72b2728e6986e94cd5052747e0ea5affe935f734c86c0762c49940315e367a90a9eb74b7586fde3e0d1036970258414b0a5c72c853748e21d4f23a227abaef1cd086c70a4fdbc0230bd9421047c59a814b67dfa00e1f4d0bf821fa3c084935c8539bcd9f68094a52f77791f532af46e9d7e0805d0fcbd0cd19dfee27748c40175115e6234fdbed7e1d99d32dff5f08d8f65f5c1d5bdf5d560e4c534d988c92f370f403c3672382dd9e647170ddb965b0194bb5756a10fe7967fa162ee286d1169cb3be003b566f610952bec778991bde8af150fc6d132152d35d1fb910fb95822cbd7c2c04b7cc7fc2733d666ea7f4833c7621899822afe4b6112cfa1a604b0779238d52df933d5b02ab6e5933415a553f598f61d228a2857f1f04c3142a7460c82fe21485dd47d442dbd47948d6cd0e57ec70554b14796dcc159fa7a95479abbfff11bad0d9875fa7b6d0b606915c5acf0928893fa50ca535015f0fa164a2e3a09837eff8cfac8af2cd9a2708fd620c0f3d8ef57171a5737a3764cce9883acefe9f298da6a0bfc804c0ea38f84b05f05b0d59fbe27d16c93c237c408adc9b1799b5eb029939d77de5fe2c0b2aca9480136d66485df0037c27bd47e0915535434d767807e69a64e4049ea67c6a73071ec99564b52abcecd5ef7d17a224a2153d7823866f7f1b5ba90715ae65801c0b507a0c2ed573ef8f889ff90332a92f4b248270a8b1b23717bf5707e51facac9dee7c9a90f72c2868ba1c3fbc27b3c2cafa88a0c1cd4c3aa45d35e3a84f924d460cd765ac13393be24946f0b4695289f0dda13c4b807bed22193135a87de33e2e0908c52ca78b21aada41b67c66d1a620df0d4187921018f1e1aa5c594ffa0c648c19a7ccf05bf032711442fee86d739e0be773e4d7654fbfb283b0de67253ac3351b61678d0224c284ca4ef364f3d767d6772217a9c7a2a022928e33b416155de68f7955f911e645cfafd03a24545092f82be0fcde419842fae3c9b27a9fe84f1d33ddc377d3c7577eb3e2c61af8ba8a6834bfc8a491083afa7fb2ab07012d7b0b8cd440e24edc6169f56a5336e2130f7c547dcf8608f6bd1ded1179e0ec0edf546037f612d2a0b08fb97d26d7a67dc32aa23aaacc4d9b99620cdaf724b0dfa145fbe99d2ee06d9d87ba459cb94b27df62ca5381b0caf5abb4bc84571311471d3d53d2b5e3b31bd1d82a6e3fc2ee3e35a73c9617fc4ab88cad85a00fafa83c0b50289cb369bab2ae6100bf2f6d6a6e7d3cac0bbc52cd93c4855cf8bc37cf3a81e5f867c92febeead7bc8136877cbaed683343d2c386689847a3bab04f9f6402236df9fbb575ed457d523e18de518b8f8fe8eb7695ec8ce61388d3a073311b65c9225bae66e4ff71bcd224886ac02caa73dac6d6b7a28839f5c4fae2bbe55feaae5659eabab11a7d1772dec0325d39c4514c177d6da1c164a475811658e0186a322e9bac61d760c62e4cb35020b4621522ccad84fdcad3784c52e5fe9914abd8c8cc006efd5893a7178df147d1bc6d61d197982591c4a3c16a4ad58ab2cd55688597ee938f5904a7e4bbdcfb6f0325c7b9fadfc94682adadb38e01f8ddc7f7c1cb231cd8d4424a372a8dd31c7c372633693f0ea59ff946f1fd454a8feb1bab06b4492582ef58ebfed1b8601620eb1c008332233e8451d1e07eea170914ba5f9a7ef4850e4a76a0163c620b801e6a0271f3f786731cb7040b602318d2177e18d3512a64bb7b54f0b4f857b8c2264b6afc244061a824badffa99f7e00bfabd6c5ffc2af03ea6d9eeb1859ab33031f85cdd512178d38735dc1da73f55190293b2172d48e1770f8b051e5fa179245b9eea47edf13d68917b5b90756ae7dbf91e3853e860a9e5013a3f4b648a7e46ae24bd515c14c88ab70edb424e13b8a2b7e4941d1a9edca64a7e8ab960c0ef09f9d4fe4d2dcc73e6f31fc4d586b5d27b0a30f11a0dbd7941f6718db5a84a616e7244a32a6beecec89cadfbe157f73d46688a313b9228d9e194a5d31e6ca29e16249d99a2335a82408e9eb3a74999fed247345cefd5c05d817ab50eee6324ce1437f79eb90d475505d2f6ff6aee9762067aa12bb7747cc2bc0ec8e1eb1b6b150ea9bd65eb9e11e62ae85591390ac8e27b3f19f3895baabdf3a7e3a5b7b61b2d6787b4abd4923ffcb4c40e7236553f4a02d096fb7f4b4b1c2d48747a5970e657336b8d2342ff18be77649c7219a73241ed567604b36a489fa34c90ec18639af2529b26c8ab2eae3660888a73350f5e6c392c0d0e6ca8b5fe823cd28bf2b42cd4eafff0a9e569311c4a480be32e2fe2d748ea113e317bc879d5bd53e5f2223906f22f6c4514e7bb41770cc9eada078d49fa831e1d6cf66c5ccb202f54126f493e0e03d5eb03d32a4e6aa537673d69422d51e379051e3921ed12999346976226956dd66cfc16eab58aa4042763c17d651cabdb2fb869dd291f29471d2d29f8c2b4df3da1d495f7832162b655b9df3065fb002a55c41a35c393d582d35362f16ade03675b1a76bb7ee9414478c324a2cd244122e74f29c9184d472b6525ae9860bf686dd207ee77d1be38e54d7fda7d88b96eb28361756d64d339cb54506b715ff56838c17328f4ccf1c45d2c8a860f43a5ed0f0886c4d51feddc3a763bf9d0c28e9e3288eb608d208885b718ef33320a45d67eb208d62e4ba92bd64e2a42cfa90633e6d4592c22b8300a5019e45a5c0a14001067c02d7490a143b24b154e6485d4f71e416f7980bef713d9fc72a22627ebf6f398f305a1afd198e92ff1c7fe584c2625e2c632eaad07e0315e69cd4d34a19f9dc78709d364f6801692dc0b0cded38ff07e5a2457abf2bcd742fe852035091c696edc67bed164b60789742681cf7c1f9ec3f8f774b7032274367b9dfcef3c2538c44bef37190063f75367274870e15c38c0a05d701f1d203d2ad01345fb66390a998a7c6a398ecd00c6389b469397632c186eff87538ebb8f5c8e5a3354db34822c4aced3b2c099a703e441a13dab2da2badd1804d2d3b2ebacad90381bc55e342e0836aba94ed1fa31725f19893eb164a2f508efecc20dc84968d17511965caaea88c375c15b7d9a3d3148f44f5cb026d913efdcabf129cd268124acd1bf01052dae182f7f4133e565ef27cefa11ebe79d7d5d37befa1aa4cc5e21a9d6a03637641341fb6482c43417518c065327d00ce3dc6ec515db024a006ce49955d857ad0eeb5190b47612ec2b556dcf5f440df25471af920c3b0aed6ec7dd68ae206098a4e1321862c99db6bacdddc3915d129234da35a4c2be058b5a14e58c651cbd8cf12a7d879048643d6b53c8d6fadaa4dbdf2e82ff8c9b4422baa568014294c1b8f133a4c31b28118fe2be80c5115742909ca3064dbcf304126b27860fc67fcd14f2e4a6315219ff17105a45f1f78432303c1c7f0769e2331e7a0cefe7d2f8f034c517626dc2268e6219b4d9316a79ce1d1d137d8f6785b9aa25c3418b9a3d6cb8ac9ee90ec9872ba0091f51e63a6ff289f08e3b38b705f84cd598213214d1909eef73aca9e0ead068cf0f2dcaaf09870b909035f92b6ed3de1872ad961b543738cd1151ff66588e4e5f4ed06a6e4df7991d886c1087c7500f5fce7b95ba5538a5e55a135f63a5243adf36c636b5d445425ed7ccdf2042fbfb1f871a116531fbda1a3eae9a9b42d497686621c360f40c3ce7158228794d20a73cf174fedf164313b746ed536442a3ce96e027377d623284b1e8a85bc73d9c470a7fbb7002378f06dc8bda204e20eb58799270f7f123b88eb54f55c54e72562ae724a04058318eccbbb887b99536e3fa561553837e362408a3c59eb5fb7eb6eaf073e72e0c9ffbfb68ebe62f4f002dbc8e66657f36c8df2696c5a2bbe27b73d74d9a576cac99a421922639e58789ff2abe34b2ab70c6353294f862996ceeb219d0a0853e610cb371945406f754a80911106067fdf3cc7b114bbcedfcf09026b4d084faa22a6f52254735b7eb51bbadb5ff879d76a7a63cd5234391d15a7d4af19801df9cd6eb0ba955a0d23062e576124dab8e6e39363edeb78903c3759e8dd5034c00769cb8a21b2738a6369f8c3a4bfcaac0d342ec08988467d9fa8f6f3012967349d557ddfbd666e3010a2564f45715e8434dcd14cac4e111309cde53ac466d5f1fd513aeb0a9b832d6e50eb3b0c27db0fa9a1afc0c6efa3db81355da599da0bf16961740ef153c4888b9de0d0e98a97039f9854f2f979e6e39a222541298e414752bfe04dcd10b3cf7f4d4e1928332928b4ff0dec9e03d122ea3c7baa77937ae1c85a360fbfb4af66525bffa50cbcdaad2f0b82f2ad08411e46e7c0e522ed551ec013a5f8428af35cab6841b302fd3226b35121df943b3836e6ff04a07824e20b9b24737452c48cfec72bc2ae61901c6cb8fa55df79c3a8b99fd9e35c38e85fa42aac3706f0bef08886a1c03eded23d4b76ec39451bfa393492efdf09b9a1a783f7b287a92eef298c73c9fb3a90f485ca9fea99d1f5aae32c2224c216013df30faa97ec9efe40290abccdfb3ea14ad8e227fca20ea97bf3b5b4f332e5aecb3f2aedab15e0fc4b5e8911d56f9a8ef7dc7f794f849c4a0fee4a350f77b55191864e03b3115550b23798f87c30ead8c2b540c664fb6929121600245672b0b7aa8d2d3e4807fab8599c4ccc4daaab5fe8e8a319bbbc7699fc0e8ac61a475e5403fb5d8de8fb32b93bc6a40346eaacbe1953ad022c91a861aed52f0ac31f7f37ec92a8f17ceb63e8b6aed68f5f8ef74c6b700cb29787c6ad925ab6858606e44b6ba86052c9c59cf8bf04082eea6a746d3efecf835763e82bbc7dd0479fa42b8bd711e76e1dd16ba99f55b7f9aeaaba69a21b7eee621654fb531836a21baeaa5421028f980eab54675fa80622407c333adbf6e9f33dfbca8a66e0553216a6d89", 0x1000}, {&(0x7f00000032c0)="04bf376d3b11d06671fadb6e7a579773c5f1c7baf6942c8ee2208c860c3e63c69c4f72f3202a8300eec9b5ebd26a015cb1ae50fbd9371d54166ddb6f541aeb4a2a1f14ff604bc4f74610f918ed892aa36deee08deda5c252d8219f334855bda52149dbaadda5e749a28b6fb20e8eb178af5d2dbe4bc902f50d63888142aff50a66cf27a6eb9157e446c58ec47b2511557980f598977b9e999130b0a069ac75d4856e8a7377b4cf8ad12853b039", 0xad}, {&(0x7f0000003380)="76bd5cc729549dd4affffdf9d61c25dbed3395fb6631f0929389952b728bdfdc5389ffd6596e1c63ca6fe5f22df4bbdb69361e669298851ef5264ca004a708dcb89fdee1528101937e015acb52b9a8021862a44fc798aff6707025585aacc2191cc854892ddfa519946feb770894cfd6eeee6c59a8e82cf3ca81d43696559b0dc446ec914dce5d46223bea15ff", 0x8d}, {&(0x7f0000003440)="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", 0xfc}], 0xa, &(0x7f0000003640)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20, 0x20040040}, {&(0x7f0000003680)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003980)=[{&(0x7f0000003700)="9c1441ca45d842847e307074fbb52786878cb903ac0cb3cbcedd78534e86d92fcd83a54105dc4cbbe8c258ff5841c650fab92e2186b5e605fd04376a24c6de2469c765d31a88ed46e082198cfd9f23bb5c9e58f04beb1499f98140075b28adc7a2f177969ac5bc515cdbcd4191a0ec78d076bcc5255e39ac6d39cba5cd89fbadbb912fefe9b9d7b9005cedb50863c9062eb97bf68f542a3c0f411516ca05cea2b74ca4ca651c22020a1871", 0xab}, {&(0x7f00000037c0)="80bdc41c92d4cc890858fa21093d04962569f5a71ec2f9d1377c3f85049499", 0x1f}, {&(0x7f0000003800)="cd04b4f4db76e65494f861be61267020808436336d904fb408dbcdc1c5f550d76cc1399dd334b5b99645518b11e3bc5776fecb75228b8f5ab6821b67059aef4d7b720330379f812ab172fbf248314c7c21955100f03e5a812814ffb43d64858bcaca88d5b945bd2882b2e34e211ec5c7f809842361854d068c1c4bb1a978cb7f9f4345831f", 0x85}, {&(0x7f00000038c0)="d534f248a745c3e9d711d87183ec36f023831bda0d1ff4d4ba35a658091d8f2a93ee589eb3c7ae5b7cd2e7724bdf97469ec763799668c81fa5a0cb2aef8ad708fa6bba59906e02c13dd529bc2d836663da8b2d8ab503f6476af0b8aa3bed7608c1e8218f2d47faeb13ba1b4a21e89f5cdcdb61cebd8d41611f649a40033733fbd8c4ddc7f4f32a2d7b550a96a763b69d", 0x90}], 0x4, &(0x7f0000003b40)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, r3]}}], 0x58, 0x24008041}], 0x5, 0x20004001) wait4(0x0, 0x0, 0x0, 0x0) tkill(r1, 0x34) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x600000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b5, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x11, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 119.115679][T11731] loop5: detected capacity change from 0 to 64 [ 119.142478][T11731] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 119.144394][T11737] loop3: detected capacity change from 0 to 1 20:22:35 executing program 2: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = fcntl$dupfd(r0, 0x406, r0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e24, 0xc522, @remote, 0x4}, {0xa, 0x4e24, 0xfffffff8, @mcast1, 0xa4a1}, 0x5, [0x200, 0x8, 0x9, 0x7, 0x23, 0x2, 0x96, 0xfffffff7]}, 0x5c) ftruncate(r1, 0xc99) r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x12, &(0x7f0000002240), &(0x7f0000000080)=0x4) socket$inet6(0xa, 0x6, 0xf3) splice(r2, &(0x7f00000001c0)=0x4, r3, &(0x7f0000000340)=0x1000, 0x53, 0x8) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000000140)="20000000000100000c000000500000000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b82", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000016d7fb4ca540446e9e3afc5ae1325600010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x1560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000000000)="ed41000080108700d5f4e55fd5f4655fd5f4655f000080d2dab919fb4e", 0x1d, 0x4080}, {&(0x7f0000013000)="504d4d00504d4dff", 0x8, 0x40000}, {0x0, 0x0, 0x80000}], 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="e49b30ef854cd54169547428dd3aa4aa779a56c92501000000ff1d5dfb7da007c8ecd0f08a3a0f109dcf967844970cff8f92bfbb09c0fd5f21933ac7ccefa17665be1ca30f6cdf7738e4ebe536b4b67802026c21ef22d2ceb0791c491d71dbf1cbf1"]) 20:22:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2200, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x700000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x12, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:35 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b6, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x22, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 119.281477][ T25] kauditd_printk_skb: 1 callbacks suppressed [ 119.281491][ T25] audit: type=1400 audit(1627071756.015:73): avc: denied { create } for pid=11762 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 20:22:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x800000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b7, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x25, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 119.328511][T11782] loop5: detected capacity change from 0 to 64 [ 119.340393][T11784] loop2: detected capacity change from 0 to 2048 [ 119.369881][T11791] loop3: detected capacity change from 0 to 1 [ 119.377014][T11782] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2500, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 119.410322][T11784] EXT4-fs (loop2): Unrecognized mount option "ä›0ï…LÕAiTt(Ý:¤ªwšVÉ%" or missing value 20:22:36 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x42604, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) syz_open_procfs(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x100) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x110, 0xffffffffffffffff, 0xc9217000) preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/49, 0x31}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/49, 0x31}], 0x3, 0x80, 0x0) r1 = fork() syz_open_procfs(0x0, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) ptrace(0x1, r1) r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2200040, 0x4, &(0x7f0000000280)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f00000000c0)="000000000000000000000000e2aa000000000000846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000000680)="ed41000010001200000004008000000000000800050000000af3010004000000000000000000010009", 0x29, 0x4400}], 0x803040, &(0x7f00000000c0)=ANY=[]) getdents64(r2, 0x0, 0x19) getdents64(r2, &(0x7f0000000140)=""/153, 0x99) 20:22:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xc00000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b8, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x48, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x268e, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 119.496699][T11818] loop5: detected capacity change from 0 to 64 [ 119.515894][T11818] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034b9, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x60, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1200000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x68, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 119.563341][T11833] loop2: detected capacity change from 0 to 69632 [ 119.583013][T11834] loop3: detected capacity change from 0 to 1 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 119.649212][T11859] loop5: detected capacity change from 0 to 64 [ 119.689917][T11859] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 119.693974][T11833] loop2: detected capacity change from 0 to 69632 20:22:36 executing program 2: r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) r1 = fsmount(0xffffffffffffffff, 0x0, 0xe4) setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000680), 0x4) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0xb}, 0xffffffc1, 0x0, 0x2, 0xf, 0x5, 0x1}, &(0x7f00000000c0)=0x20) sendmmsg$inet(r0, &(0x7f0000001400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001380)=[@ip_retopts={{0x14, 0x0, 0x7, {[@ssrr={0x89, 0x3, 0xa8}]}}}], 0x18}}], 0x2, 0x0) 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ba, 0x0) 20:22:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1800000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x74, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 3 (fault-call:3 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x26ac, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034bb, 0x0) [ 119.780335][T11891] FAULT_INJECTION: forcing a failure. [ 119.780335][T11891] name failslab, interval 1, probability 0, space 0, times 0 [ 119.793089][T11891] CPU: 1 PID: 11891 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 119.794023][T11892] loop5: detected capacity change from 0 to 64 [ 119.801973][T11891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 119.801988][T11891] Call Trace: [ 119.801995][T11891] dump_stack_lvl+0xb7/0x103 [ 119.802018][T11891] dump_stack+0x11/0x1a [ 119.802040][T11891] should_fail+0x23c/0x250 [ 119.802066][T11891] ? __se_sys_memfd_create+0xfb/0x390 [ 119.802094][T11891] __should_failslab+0x81/0x90 [ 119.827865][T11892] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 119.830882][T11891] should_failslab+0x5/0x20 [ 119.860042][T11891] __kmalloc+0x66/0x340 [ 119.864257][T11891] ? strnlen_user+0x137/0x1c0 [ 119.868932][T11891] __se_sys_memfd_create+0xfb/0x390 [ 119.874191][T11891] __x64_sys_memfd_create+0x2d/0x40 [ 119.879402][T11891] do_syscall_64+0x3d/0x90 [ 119.883809][T11891] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 119.889865][T11891] RIP: 0033:0x4665e9 [ 119.893932][T11891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 119.913793][T11891] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 119.913813][T11891] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 20:22:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x26b1, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:36 executing program 3 (fault-call:3 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7a, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x1e00000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 119.930207][T11891] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 119.938202][T11891] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 119.946394][T11891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 119.946407][T11891] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 [ 120.009266][T11917] FAULT_INJECTION: forcing a failure. [ 120.009266][T11917] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 120.022571][T11917] CPU: 1 PID: 11917 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 120.026679][T11921] loop5: detected capacity change from 0 to 64 [ 120.032008][T11917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 120.048396][T11917] Call Trace: [ 120.051705][T11917] dump_stack_lvl+0xb7/0x103 [ 120.056377][T11917] dump_stack+0x11/0x1a [ 120.060611][T11917] should_fail+0x23c/0x250 [ 120.065035][T11917] should_fail_usercopy+0x16/0x20 [ 120.070052][T11917] _copy_from_user+0x1c/0xd0 [ 120.074630][T11917] __se_sys_memfd_create+0x137/0x390 [ 120.079909][T11917] __x64_sys_memfd_create+0x2d/0x40 [ 120.085094][T11917] do_syscall_64+0x3d/0x90 [ 120.089494][T11917] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 120.097911][T11917] RIP: 0033:0x4665e9 [ 120.101881][T11917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.122439][T11917] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 120.131975][T11917] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 [ 120.140123][T11917] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 120.148264][T11917] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034bc, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x300, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:36 executing program 2: r0 = open$dir(&(0x7f0000000140)='./file1\x00', 0x901540, 0x44) mount$9p_fd(0x0, &(0x7f0000000580)='./file1\x00', &(0x7f00000005c0), 0x18, &(0x7f0000000600)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_none}, {@uname={'uname', 0x3d, 'ext4\x00'}}, {@cachetag={'cachetag', 0x3d, 'security.evm\x00'}}, {@uname={'uname', 0x3d, 'ext4\x00'}}, {@mmap}, {@loose}, {@cache_fscache}], [{@hash}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@euid_eq={'euid', 0x3d, 0xee00}}]}}) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000180)=0x80000000) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x15, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000500000000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b8200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e37363838323433383400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000016d7fb4ca540446e9e3afc5ae1325600010040000c00000000000000d4f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000006e00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000005000f0003000400"/32, 0x20, 0x1000}, {&(0x7f0000010400)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d5f4655fd5f4655fd5f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f00000001c0)="ed41000000100000d5f4655fd5f4655fd5f4655f00000000000004008000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x4080}, {&(0x7f0000012600)="8081000000c04000d5f4655fd5f4655fd5f4655f000000000000010080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000100"/128, 0x80, 0x4300}, {&(0x7f0000012700)="c041000000400000000000000000020080000000000008000036ca000af301000400000000000000000000f7ad6322000400"/64, 0x40, 0x4500}, {&(0x7f0000012800)="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"/768, 0x300, 0x4580}, {&(0x7f0000012b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x10000}, {&(0x7f0000012c00)="0b0000000c0001022e00000002000000f40f02022e2e00"/32, 0x20, 0x6}, {&(0x7f0000012d00)="00000000001000"/32, 0x20, 0x21000}, {&(0x7f0000000500)="0000000000100000000000800000000000000000000000c1b31c8c0000000000d16f763608a77d932f2f251f6c78b821e6e1567c192d1855618185352d8dc0a8fc84a259677faf36d6472cc23abba8cd7457eb8840a3e87cd6114c12039d6cad29d9", 0x62, 0x22000}, {&(0x7f0000012f00)="00000000001000"/32, 0x20, 0x23000}, {&(0x7f0000013000)="504d4d00504d4dffd5f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x40000}, {&(0x7f0000013100)="0c000000000c0002022e2e00000d0000011000050166696c65300000000e000000d80f050766696c653100260200"/64, 0x40, 0x50000}, {&(0x7f0000013200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x60000}, {&(0x7f0000013700)='syzkallers\x00'/32, 0x20, 0x70002}, {&(0x7f0000013800)="000002ea0100000001000000270f240c000000000000000000000000000000000601f80f0000000006000000779b539778617474723100000601f00f00000000060000007498539778617474723200"/96, 0x60, 0x80000}, {&(0x7f0000000400)="00000000000000000000000000000002786174747232000078617474723100004129c24593ae1b62400e432e32de86296b328ef24f562fd1f6d42dc0d9ba6828f97c54a66f0603c69e40aa9f759bf4456f3cc5f5a7b97c27909d471482418df2196587cdbe4cb81b4409551b72a3ddfd8b24659afecb567ac5fdad41c3185abdc45de26f55415a3a236c8ab703837162595a6b88007b693b2403941aaf98a50d92395050f20fabb47b05d6f4b28e119d7e387c7950db415b55e4533cfde3e18dd82396ac6ddaf06ba255", 0xca, 0x80fe0}, {&(0x7f0000013a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xa0000}], 0x0, &(0x7f0000013b00)=ANY=[@ANYBLOB="be"]) lsetxattr$security_evm(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), &(0x7f00000000c0)=@md5={0x1, "062acab3e2d5410ac3f5fafecc760690"}, 0x11, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) futimesat(r1, &(0x7f0000000700)='./file1/file0\x00', &(0x7f0000000740)) [ 120.156244][T11917] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 120.164399][T11917] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 20:22:36 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034bd, 0x0) 20:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x500, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2400000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:37 executing program 3 (fault-call:3 fault-nth:2): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 120.248328][T11946] 9pnet: Insufficient options for proto=fd [ 120.284309][T11946] loop2: detected capacity change from 0 to 2560 [ 120.317497][T11946] EXT4-fs (loop2): Unrecognized mount option "¾" or missing value [ 120.321154][T11963] FAULT_INJECTION: forcing a failure. [ 120.321154][T11963] name failslab, interval 1, probability 0, space 0, times 0 [ 120.327771][T11946] 9pnet: Insufficient options for proto=fd [ 120.338298][T11963] CPU: 0 PID: 11963 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 120.353388][T11963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 120.363747][T11963] Call Trace: [ 120.364122][T11921] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 120.367221][T11963] dump_stack_lvl+0xb7/0x103 [ 120.367243][T11963] dump_stack+0x11/0x1a [ 120.381522][T11963] should_fail+0x23c/0x250 [ 120.390471][T11963] ? shmem_alloc_inode+0x22/0x30 [ 120.395424][T11963] __should_failslab+0x81/0x90 [ 120.400374][T11963] ? shmem_match+0xa0/0xa0 [ 120.404777][T11963] should_failslab+0x5/0x20 [ 120.409289][T11963] kmem_cache_alloc+0x46/0x2e0 [ 120.414101][T11963] ? fsnotify_perm+0x59/0x2e0 [ 120.418830][T11963] ? shmem_match+0xa0/0xa0 [ 120.423232][T11963] shmem_alloc_inode+0x22/0x30 [ 120.427994][T11963] new_inode_pseudo+0x38/0x1c0 [ 120.432909][T11963] new_inode+0x21/0x120 [ 120.437099][T11963] shmem_get_inode+0xa1/0x480 [ 120.441946][T11963] __shmem_file_setup+0xf1/0x1d0 [ 120.446876][T11963] shmem_file_setup+0x37/0x40 [ 120.451631][T11963] __se_sys_memfd_create+0x1eb/0x390 [ 120.456914][T11963] __x64_sys_memfd_create+0x2d/0x40 [ 120.462205][T11963] do_syscall_64+0x3d/0x90 [ 120.466630][T11963] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 120.472534][T11963] RIP: 0033:0x4665e9 [ 120.476428][T11963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.496323][T11963] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 120.504744][T11963] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034be, 0x0) 20:22:37 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3901, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:37 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034bf, 0x0) [ 120.512761][T11963] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 120.520728][T11963] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 120.520743][T11963] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 120.520755][T11963] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 [ 120.554065][ C0] sd 0:0:1:0: [sg0] tag#5146 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s 20:22:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x600, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x2a00000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 120.564420][ C0] sd 0:0:1:0: [sg0] tag#5146 CDB: opcode=0xe5 (vendor) [ 120.571269][ C0] sd 0:0:1:0: [sg0] tag#5146 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 120.580811][ C0] sd 0:0:1:0: [sg0] tag#5146 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 120.590397][ C0] sd 0:0:1:0: [sg0] tag#5146 CDB[20]: ba 20:22:37 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:37 executing program 3 (fault-call:3 fault-nth:3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c0, 0x0) 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c1, 0x0) 20:22:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x700, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 120.637232][ C0] sd 0:0:1:0: [sg0] tag#5147 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 120.647639][ C0] sd 0:0:1:0: [sg0] tag#5147 CDB: opcode=0xe5 (vendor) [ 120.654684][ C0] sd 0:0:1:0: [sg0] tag#5147 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 120.664225][ C0] sd 0:0:1:0: [sg0] tag#5147 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 120.673810][ C0] sd 0:0:1:0: [sg0] tag#5147 CDB[20]: ba [ 120.711034][T11997] FAULT_INJECTION: forcing a failure. [ 120.711034][T11997] name failslab, interval 1, probability 0, space 0, times 0 [ 120.723788][T11997] CPU: 1 PID: 11997 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 120.732704][T11997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 120.742956][T11997] Call Trace: [ 120.746235][T11997] dump_stack_lvl+0xb7/0x103 [ 120.750912][T11997] dump_stack+0x11/0x1a [ 120.755113][T11997] should_fail+0x23c/0x250 20:22:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3000000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x900, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 120.759529][T11997] ? security_inode_alloc+0x30/0x180 [ 120.764939][T11997] __should_failslab+0x81/0x90 [ 120.769698][T11997] should_failslab+0x5/0x20 [ 120.774228][T11997] kmem_cache_alloc+0x46/0x2e0 [ 120.779012][T11997] security_inode_alloc+0x30/0x180 [ 120.784135][T11997] inode_init_always+0x20b/0x420 [ 120.789301][T11997] ? shmem_match+0xa0/0xa0 [ 120.793904][T11997] new_inode_pseudo+0x73/0x1c0 [ 120.798686][T11997] new_inode+0x21/0x120 [ 120.802847][T11997] shmem_get_inode+0xa1/0x480 [ 120.807552][T11997] __shmem_file_setup+0xf1/0x1d0 [ 120.812538][T11997] shmem_file_setup+0x37/0x40 [ 120.817216][T11997] __se_sys_memfd_create+0x1eb/0x390 [ 120.822783][T11997] __x64_sys_memfd_create+0x2d/0x40 [ 120.828053][T11997] do_syscall_64+0x3d/0x90 [ 120.832547][T11997] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 120.838507][T11997] RIP: 0033:0x4665e9 [ 120.842451][T11997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.863713][T11997] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 120.872128][T11997] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 [ 120.880095][T11997] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 120.888227][T11997] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 120.896185][T11997] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 120.904150][T11997] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 [ 120.925179][T11979] loop5: detected capacity change from 0 to 64 [ 120.936578][T11979] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 120.937883][ C0] sd 0:0:1:0: [sg0] tag#5148 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s 20:22:37 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3f00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c2, 0x0) 20:22:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xa00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3600000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:37 executing program 3 (fault-call:3 fault-nth:4): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 120.956088][ C0] sd 0:0:1:0: [sg0] tag#5148 CDB: opcode=0xe5 (vendor) [ 120.963640][ C0] sd 0:0:1:0: [sg0] tag#5148 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 120.973209][ C0] sd 0:0:1:0: [sg0] tag#5148 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 120.982769][ C0] sd 0:0:1:0: [sg0] tag#5148 CDB[20]: ba [ 121.011896][T12029] FAULT_INJECTION: forcing a failure. [ 121.011896][T12029] name failslab, interval 1, probability 0, space 0, times 0 [ 121.024641][T12029] CPU: 1 PID: 12029 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 121.033499][T12029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.043654][T12029] Call Trace: [ 121.047081][T12029] dump_stack_lvl+0xb7/0x103 [ 121.051783][T12029] dump_stack+0x11/0x1a [ 121.056179][T12029] should_fail+0x23c/0x250 [ 121.060643][T12029] ? __d_alloc+0x36/0x370 [ 121.067144][T12029] __should_failslab+0x81/0x90 [ 121.071909][T12029] should_failslab+0x5/0x20 [ 121.076481][T12029] kmem_cache_alloc+0x46/0x2e0 [ 121.081245][T12029] ? __init_rwsem+0x59/0x70 [ 121.085746][T12029] __d_alloc+0x36/0x370 [ 121.089956][T12029] ? current_time+0xdb/0x190 [ 121.094535][T12029] d_alloc_pseudo+0x1a/0x50 [ 121.099029][T12029] alloc_file_pseudo+0x63/0x130 [ 121.103928][T12029] __shmem_file_setup+0x14c/0x1d0 [ 121.108941][T12029] shmem_file_setup+0x37/0x40 [ 121.113607][T12029] __se_sys_memfd_create+0x1eb/0x390 [ 121.118937][T12029] __x64_sys_memfd_create+0x2d/0x40 [ 121.124299][T12029] do_syscall_64+0x3d/0x90 [ 121.128706][T12029] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 121.134669][T12029] RIP: 0033:0x4665e9 [ 121.138633][T12029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:37 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="8ef4efc5170ed4657f52309844e5093e0a5e429a7c9db150b7ab2be36fcbc0560475f48f6372ff45c68f64136d1aa7ac558a4f4a39ef2a07785284d60e57192909dee45c2b2ee3226f86dc673a4e3c3a32a61bef249b3969a19f86a0634caa761557eb8c2a57cf5e3ff3312df50892dac5efab1324e4cbcd4052ff90932f479795a7896fc798b03a7fac4596242f28721eb1191e85e4fe0f19bef9bd1c8cd4d57b921d4eabe710b50011bd729baa0f18caaa9f8c2677a5f257fdba4c19cae5555fac9a7278a9f1a94343dd1e2ec53d406d35c045d72b746498900f9c0f593359570982afcd5669444f333a223a81fb99dfebbcf1038d54f20120eafc6a2d3b045b09334df28bc72d8aadcdf40d34a98154e3a681c26b5862b0eeeebbb29e7b01f1cadd845facca37d5a2d4e6e9137633ec54d31cc20252781fa6036c46bb"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:37 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c3, 0x0) 20:22:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xb00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3c00000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:37 executing program 3 (fault-call:3 fault-nth:5): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 121.158351][T12029] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 121.166793][T12029] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 [ 121.174762][T12029] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 121.182889][T12029] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 121.190857][T12029] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 121.198808][T12029] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 [ 121.252985][T12055] FAULT_INJECTION: forcing a failure. [ 121.252985][T12055] name failslab, interval 1, probability 0, space 0, times 0 [ 121.265822][T12055] CPU: 1 PID: 12055 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 121.267350][ C0] sd 0:0:1:0: [sg0] tag#5149 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 121.274580][T12055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.274593][T12055] Call Trace: [ 121.274650][T12055] dump_stack_lvl+0xb7/0x103 [ 121.284956][ C0] sd 0:0:1:0: [sg0] tag#5149 CDB: opcode=0xe5 (vendor) [ 121.295129][T12055] dump_stack+0x11/0x1a [ 121.295149][T12055] should_fail+0x23c/0x250 [ 121.295170][T12055] ? __alloc_file+0x2e/0x1a0 [ 121.298528][ C0] sd 0:0:1:0: [sg0] tag#5149 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 121.303083][T12055] __should_failslab+0x81/0x90 [ 121.303103][T12055] should_failslab+0x5/0x20 [ 121.309958][ C0] sd 0:0:1:0: [sg0] tag#5149 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 121.314059][T12055] kmem_cache_alloc+0x46/0x2e0 [ 121.318535][ C0] sd 0:0:1:0: [sg0] tag#5149 CDB[20]: ba [ 121.323062][T12055] ? inode_doinit_with_dentry+0x382/0x950 [ 121.367389][T12055] __alloc_file+0x2e/0x1a0 [ 121.371891][T12055] alloc_empty_file+0xcd/0x1c0 [ 121.376646][T12055] alloc_file+0x3a/0x280 [ 121.380879][T12055] alloc_file_pseudo+0xe2/0x130 [ 121.385720][T12055] __shmem_file_setup+0x14c/0x1d0 [ 121.390866][T12055] shmem_file_setup+0x37/0x40 [ 121.395653][T12055] __se_sys_memfd_create+0x1eb/0x390 [ 121.400995][T12055] __x64_sys_memfd_create+0x2d/0x40 [ 121.406186][T12055] do_syscall_64+0x3d/0x90 [ 121.410658][T12055] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 121.416540][T12055] RIP: 0033:0x4665e9 [ 121.420483][T12055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.440153][T12055] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 121.448561][T12055] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 [ 121.456519][T12055] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 121.464498][T12055] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 121.472513][T12055] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 121.480664][T12055] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 20:22:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xc00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:38 executing program 3 (fault-call:3 fault-nth:6): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 121.499949][T12067] loop5: detected capacity change from 0 to 64 [ 121.535900][T12074] FAULT_INJECTION: forcing a failure. [ 121.535900][T12074] name failslab, interval 1, probability 0, space 0, times 0 [ 121.548943][T12074] CPU: 1 PID: 12074 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 121.557803][T12074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.567875][T12074] Call Trace: [ 121.571139][T12074] dump_stack_lvl+0xb7/0x103 [ 121.575809][T12074] dump_stack+0x11/0x1a [ 121.580030][T12074] should_fail+0x23c/0x250 [ 121.584493][T12074] ? security_file_alloc+0x30/0x190 [ 121.589675][T12074] __should_failslab+0x81/0x90 [ 121.594430][T12074] should_failslab+0x5/0x20 [ 121.598914][T12074] kmem_cache_alloc+0x46/0x2e0 [ 121.603674][T12074] security_file_alloc+0x30/0x190 [ 121.608864][T12074] __alloc_file+0x83/0x1a0 [ 121.613334][T12074] alloc_empty_file+0xcd/0x1c0 [ 121.618085][T12074] alloc_file+0x3a/0x280 [ 121.622379][T12074] alloc_file_pseudo+0xe2/0x130 [ 121.627215][T12074] __shmem_file_setup+0x14c/0x1d0 [ 121.632219][T12074] shmem_file_setup+0x37/0x40 [ 121.636980][T12074] __se_sys_memfd_create+0x1eb/0x390 [ 121.642300][T12074] __x64_sys_memfd_create+0x2d/0x40 [ 121.647598][T12074] do_syscall_64+0x3d/0x90 [ 121.652015][T12074] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 121.657891][T12074] RIP: 0033:0x4665e9 [ 121.661764][T12074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.681356][T12074] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 121.689990][T12074] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00000000004665e9 [ 121.697947][T12074] RDX: 0000000000000204 RSI: 0000000000000000 RDI: 00000000004bee86 [ 121.705958][T12074] RBP: 0000000000000002 R08: 0000000000000102 R09: 0000000000000000 [ 121.713914][T12074] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 121.721868][T12074] R13: 00007ffc50d58f1f R14: 0000000000000380 R15: 0000000000022000 20:22:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c4, 0x0) 20:22:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xd00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x3f00000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:38 executing program 3 (fault-call:3 fault-nth:7): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 121.742347][T12067] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c5, 0x0) 20:22:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xe00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 121.818847][ C1] sd 0:0:1:0: [sg0] tag#5150 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 121.829379][ C1] sd 0:0:1:0: [sg0] tag#5150 CDB: opcode=0xe5 (vendor) [ 121.836607][ C1] sd 0:0:1:0: [sg0] tag#5150 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 121.846172][ C1] sd 0:0:1:0: [sg0] tag#5150 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 121.855737][ C1] sd 0:0:1:0: [sg0] tag#5150 CDB[20]: ba [ 121.862993][T12101] FAULT_INJECTION: forcing a failure. [ 121.862993][T12101] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 121.876242][T12101] CPU: 0 PID: 12101 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 121.885006][T12101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.895062][T12101] Call Trace: [ 121.898336][T12101] dump_stack_lvl+0xb7/0x103 [ 121.902928][T12101] dump_stack+0x11/0x1a [ 121.907084][T12101] should_fail+0x23c/0x250 [ 121.911597][T12101] __alloc_pages+0x102/0x320 [ 121.916251][T12101] alloc_pages_vma+0x513/0x680 [ 121.921015][T12101] shmem_getpage_gfp+0x954/0x13d0 [ 121.926037][T12101] ? sidtab_context_to_sid+0x5a/0x740 [ 121.931405][T12101] ? policydb_context_isvalid+0x135/0x230 [ 121.937122][T12101] shmem_write_begin+0x7e/0x100 [ 121.941980][T12101] generic_perform_write+0x196/0x3c0 [ 121.947294][T12101] __generic_file_write_iter+0x161/0x300 [ 121.952979][T12101] ? generic_write_checks+0x250/0x290 [ 121.958470][T12101] generic_file_write_iter+0x75/0x130 [ 121.963935][T12101] vfs_write+0x69d/0x770 [ 121.968266][T12101] __x64_sys_pwrite64+0xf5/0x150 [ 121.973197][T12101] do_syscall_64+0x3d/0x90 [ 121.977637][T12101] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 121.983592][T12101] RIP: 0033:0x419787 [ 121.987478][T12101] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 122.007102][T12101] RSP: 002b:00007f4863a7ce70 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c6, 0x0) 20:22:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x8000000000000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 122.015614][T12101] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 122.023588][T12101] RDX: 0000000000000040 RSI: 0000000020000180 RDI: 0000000000000005 [ 122.031720][T12101] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 [ 122.039707][T12101] R10: 00000000000001c0 R11: 0000000000000293 R12: 0000000000000005 [ 122.047666][T12101] R13: 0000000000000005 R14: 0000000020000000 R15: 0000000000000000 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c7, 0x0) 20:22:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x1020, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 122.096770][T12101] loop3: detected capacity change from 0 to 1 [ 122.121154][T12123] loop5: detected capacity change from 0 to 64 20:22:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4800, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c8, 0x0) 20:22:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xfeffffff00000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x1100, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:38 executing program 3 (fault-call:3 fault-nth:8): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 122.144556][T12123] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:38 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034c9, 0x0) [ 122.227118][T12153] loop5: detected capacity change from 0 to 64 [ 122.234519][ C1] sd 0:0:1:0: [sg0] tag#5151 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 122.244893][ C1] sd 0:0:1:0: [sg0] tag#5151 CDB: opcode=0xe5 (vendor) [ 122.251741][ C1] sd 0:0:1:0: [sg0] tag#5151 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 122.254629][T12153] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ca, 0x0) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x1200, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x17d3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 122.261478][ C1] sd 0:0:1:0: [sg0] tag#5151 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 122.261495][ C1] sd 0:0:1:0: [sg0] tag#5151 CDB[20]: ba [ 122.297308][T12159] FAULT_INJECTION: forcing a failure. [ 122.297308][T12159] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.310550][T12159] CPU: 0 PID: 12159 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 20:22:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xffffffff00000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 122.319406][T12159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.329552][T12159] Call Trace: [ 122.332848][T12159] dump_stack_lvl+0xb7/0x103 [ 122.337536][T12159] dump_stack+0x11/0x1a [ 122.341852][T12159] should_fail+0x23c/0x250 [ 122.346383][T12159] should_fail_usercopy+0x16/0x20 [ 122.351493][T12159] copy_page_from_iter_atomic+0x2c1/0xba0 [ 122.357233][T12159] ? shmem_write_begin+0x7e/0x100 [ 122.362546][T12159] generic_perform_write+0x1df/0x3c0 [ 122.368041][T12159] __generic_file_write_iter+0x161/0x300 [ 122.373673][T12159] ? generic_write_checks+0x250/0x290 [ 122.379449][T12159] generic_file_write_iter+0x75/0x130 [ 122.384809][T12159] vfs_write+0x69d/0x770 [ 122.389038][T12159] __x64_sys_pwrite64+0xf5/0x150 [ 122.393962][T12159] do_syscall_64+0x3d/0x90 [ 122.398643][T12159] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 122.404711][T12159] RIP: 0033:0x419787 [ 122.408593][T12159] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 122.428855][T12159] RSP: 002b:00007f4863a7ce70 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 122.437325][T12159] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 [ 122.445308][T12159] RDX: 0000000000000040 RSI: 0000000020000180 RDI: 0000000000000005 [ 122.453564][T12159] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 [ 122.462158][T12159] R10: 00000000000001c0 R11: 0000000000000293 R12: 0000000000000005 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 122.470239][T12159] R13: 0000000000000005 R14: 0000000020000000 R15: 0000000000000000 20:22:39 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4c00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2010, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034cb, 0x0) 20:22:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="8ef4efc5170ed4657f52309844e5093e0a5e429a7c9db150b7ab2be36fcbc0560475f48f6372ff45c68f64136d1aa7ac558a4f4a39ef2a07785284d60e57192909dee45c2b2ee3226f86dc673a4e3c3a32a61bef249b3969a19f86a0634caa761557eb8c2a57cf5e3ff3312df50892dac5efab1324e4cbcd4052ff90932f479795a7896fc798b03a7fac4596242f28721eb1191e85e4fe0f19bef9bd1c8cd4d57b921d4eabe710b50011bd729baa0f18caaa9f8c2677a5f257fdba4c19cae5555fac9a7278a9f1a94343dd1e2ec53d406d35c045d72b746498900f9c0f593359570982afcd5669444f333a223a81fb99dfebbcf1038d54f20120eafc6a2d3b045b09334df28bc72d8aadcdf40d34a98154e3a681c26b5862b0eeeebbb29e7b01f1cadd845facca37d5a2d4e6e9137633ec54d31cc20252781fa6036c46bb"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0xffffffffffffffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 122.596632][ C1] sd 0:0:1:0: [sg0] tag#5152 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 122.607303][ C1] sd 0:0:1:0: [sg0] tag#5152 CDB: opcode=0xe5 (vendor) [ 122.613575][T12214] loop5: detected capacity change from 0 to 64 [ 122.614156][ C1] sd 0:0:1:0: [sg0] tag#5152 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 122.627931][T12214] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 122.630916][ C1] sd 0:0:1:0: [sg0] tag#5152 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 122.649739][ C1] sd 0:0:1:0: [sg0] tag#5152 CDB[20]: ba [ 122.678531][T12159] loop3: detected capacity change from 0 to 1 20:22:39 executing program 3 (fault-call:3 fault-nth:9): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034cc, 0x0) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2200, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:39 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) [ 122.776734][T12238] loop5: detected capacity change from 0 to 64 [ 122.783673][T12239] FAULT_INJECTION: forcing a failure. [ 122.783673][T12239] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.791374][ C0] sd 0:0:1:0: [sg0] tag#5153 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 122.796904][T12239] CPU: 1 PID: 12239 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 122.807406][ C0] sd 0:0:1:0: [sg0] tag#5153 CDB: opcode=0xe5 (vendor) [ 122.816101][T12239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.816113][T12239] Call Trace: [ 122.822955][ C0] sd 0:0:1:0: [sg0] tag#5153 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 122.835089][T12239] dump_stack_lvl+0xb7/0x103 [ 122.835111][T12239] dump_stack+0x11/0x1a [ 122.838395][ C0] sd 0:0:1:0: [sg0] tag#5153 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 122.847902][T12239] should_fail+0x23c/0x250 [ 122.847924][T12239] should_fail_usercopy+0x16/0x20 [ 122.852673][ C0] sd 0:0:1:0: [sg0] tag#5153 CDB[20]: ba [ 122.856807][T12239] copy_page_from_iter_atomic+0x2c1/0xba0 [ 122.887234][T12239] ? shmem_write_begin+0x7e/0x100 [ 122.892338][T12239] generic_perform_write+0x1df/0x3c0 [ 122.897669][T12239] __generic_file_write_iter+0x161/0x300 [ 122.903293][T12239] ? generic_write_checks+0x250/0x290 [ 122.908732][T12239] generic_file_write_iter+0x75/0x130 [ 122.914128][T12239] vfs_write+0x69d/0x770 [ 122.918364][T12239] __x64_sys_pwrite64+0xf5/0x150 [ 122.923336][T12239] do_syscall_64+0x3d/0x90 [ 122.927747][T12239] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 122.933630][T12239] RIP: 0033:0x419787 [ 122.937510][T12239] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 122.957194][T12239] RSP: 002b:00007f4863a7ce70 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 122.965609][T12239] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000419787 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034cd, 0x0) 20:22:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x400000, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) io_uring_setup(0x4b7c, &(0x7f0000000080)={0x0, 0x519f, 0x8, 0x1, 0x182, 0x0, r1}) close_range(r1, 0xffffffffffffffff, 0x0) [ 122.973568][T12239] RDX: 00000000000000bd RSI: 00000000200000c0 RDI: 0000000000000005 [ 122.981582][T12239] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 [ 122.989542][T12239] R10: 0000000000000102 R11: 0000000000000293 R12: 0000000000000005 [ 122.997518][T12239] R13: 0000000000000005 R14: 0000000020000018 R15: 0000000000000001 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2500, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 123.027063][T12239] loop3: detected capacity change from 0 to 1 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ce, 0x0) 20:22:39 executing program 3 (fault-call:3 fault-nth:10): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2c00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x23df, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x301800, 0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xb4, 0x2, 0x5, 0x5, 0x70bd26, 0x25dfdbfb, {0x5, 0x0, 0x6}, [@typed={0x9a, 0x2c, 0x0, 0x0, @binary="ce7b1436cde55fa62ba1bd1bc69ae6c6d71593e97734c28ba5183e2b04e71fbe9a6d127b1547052cd4564e405fe08c11cba1b553ef894d08f069c9cdf34c033e1b9107f5227ea8f30a4f6b34c2bca5cca015c729fd29e0817b4f5469fe4b1334186d9ada2c68b53ab2cab3e29f5ab9aa30908b3578cef41ce340d4cc5c0954199f52d21a85e453effb3a6f151e8ccf556c47ba913e1d"}, @typed={0x4, 0x33}]}, 0xb4}, 0x1, 0x0, 0x0, 0x10}, 0x8000) ioctl$TCSBRKP(r2, 0x5425, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x2, 0xb1) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 123.051935][T12238] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:39 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x400000, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) io_uring_setup(0x4b7c, &(0x7f0000000080)={0x0, 0x519f, 0x8, 0x1, 0x182, 0x0, r1}) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:39 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034cf, 0x0) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4800, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 123.123104][T12269] FAULT_INJECTION: forcing a failure. [ 123.123104][T12269] name failslab, interval 1, probability 0, space 0, times 0 [ 123.135902][T12269] CPU: 0 PID: 12269 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 123.144706][T12269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.154800][T12269] Call Trace: [ 123.158081][T12269] dump_stack_lvl+0xb7/0x103 [ 123.162668][T12269] dump_stack+0x11/0x1a [ 123.166860][T12269] should_fail+0x23c/0x250 [ 123.171286][T12269] ? getname_flags+0x84/0x3d0 [ 123.176067][T12269] __should_failslab+0x81/0x90 [ 123.183785][T12269] should_failslab+0x5/0x20 [ 123.188296][T12269] kmem_cache_alloc+0x46/0x2e0 [ 123.193103][T12269] getname_flags+0x84/0x3d0 [ 123.197611][T12269] ? vfs_write+0x50c/0x770 [ 123.202146][T12269] getname+0x15/0x20 [ 123.206125][T12269] do_sys_openat2+0x5b/0x250 [ 123.210714][T12269] __x64_sys_openat+0xef/0x110 [ 123.215568][T12269] do_syscall_64+0x3d/0x90 20:22:39 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6800, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="8ef4efc5170ed4657f52309844e5093e0a5e429a7c9db150b7ab2be36fcbc0560475f48f6372ff45c68f64136d1aa7ac558a4f4a39ef2a07785284d60e57192909dee45c2b2ee3226f86dc673a4e3c3a32a61bef249b3969a19f86a0634caa761557eb8c2a57cf5e3ff3312df50892dac5efab1324e4cbcd4052ff90932f479795a7896fc798b03a7fac4596242f28721eb1191e85e4fe0f19bef9bd1c8cd4d57b921d4eabe710b50011bd729baa0f18caaa9f8c2677a5f257fdba4c19cae5555fac9a7278a9f1a94343dd1e2ec53d406d35c045d72b746498900f9c0f593359570982afcd5669444f333a223a81fb99dfebbcf1038d54f20120eafc6a2d3b045b09334df28bc72d8aadcdf40d34a98154e3a681c26b5862b0eeeebbb29e7b01f1cadd845facca37d5a2d4e6e9137633ec54d31cc20252781fa6036c46bb"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4c00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d0, 0x0) [ 123.220004][T12269] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 123.225911][T12269] RIP: 0033:0x4196d4 [ 123.229812][T12269] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 123.249481][T12269] RSP: 002b:00007f4863a7ce20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 123.258100][T12269] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196d4 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d1, 0x0) [ 123.266252][T12269] RDX: 0000000000000002 RSI: 00007f4863a7cf40 RDI: 00000000ffffff9c [ 123.274425][T12269] RBP: 00007f4863a7cf40 R08: 0000000000000000 R09: 0000000000000000 [ 123.282390][T12269] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 123.290376][T12269] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 123.314814][ C0] sd 0:0:1:0: [sg0] tag#5154 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 123.325270][ C0] sd 0:0:1:0: [sg0] tag#5154 CDB: opcode=0xe5 (vendor) [ 123.332131][ C0] sd 0:0:1:0: [sg0] tag#5154 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 123.341700][ C0] sd 0:0:1:0: [sg0] tag#5154 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 123.351542][ C0] sd 0:0:1:0: [sg0] tag#5154 CDB[20]: ba 20:22:40 executing program 3 (fault-call:3 fault-nth:11): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d2, 0x0) [ 123.382083][T12315] loop5: detected capacity change from 0 to 64 [ 123.407830][T12315] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 123.425762][T12327] FAULT_INJECTION: forcing a failure. [ 123.425762][T12327] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 123.438831][T12327] CPU: 1 PID: 12327 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 123.447678][T12327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.457834][T12327] Call Trace: [ 123.461115][T12327] dump_stack_lvl+0xb7/0x103 [ 123.465695][T12327] dump_stack+0x11/0x1a [ 123.469862][T12327] should_fail+0x23c/0x250 [ 123.474341][T12327] should_fail_usercopy+0x16/0x20 [ 123.479455][T12327] strncpy_from_user+0x21/0x250 [ 123.484405][T12327] getname_flags+0xb8/0x3d0 [ 123.489003][T12327] ? vfs_write+0x50c/0x770 [ 123.493464][T12327] getname+0x15/0x20 [ 123.497440][T12327] do_sys_openat2+0x5b/0x250 [ 123.502016][T12327] __x64_sys_openat+0xef/0x110 [ 123.506758][T12327] do_syscall_64+0x3d/0x90 [ 123.511152][T12327] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 123.517071][T12327] RIP: 0033:0x4196d4 [ 123.521098][T12327] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 123.541256][T12327] RSP: 002b:00007f4863a7ce20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 123.549684][T12327] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196d4 [ 123.557669][T12327] RDX: 0000000000000002 RSI: 00007f4863a7cf40 RDI: 00000000ffffff9c [ 123.565624][T12327] RBP: 00007f4863a7cf40 R08: 0000000000000000 R09: 0000000000000000 [ 123.573573][T12327] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 123.581758][T12327] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x1, 0x0, r0}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6800, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:40 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d3, 0x0) 20:22:40 executing program 3 (fault-call:3 fault-nth:12): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6c00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 123.668830][ C0] sd 0:0:1:0: [sg0] tag#5155 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 123.671458][T12350] FAULT_INJECTION: forcing a failure. [ 123.671458][T12350] name failslab, interval 1, probability 0, space 0, times 0 [ 123.679333][ C0] sd 0:0:1:0: [sg0] tag#5155 CDB: opcode=0xe5 (vendor) [ 123.691881][T12350] CPU: 1 PID: 12350 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 123.698806][ C0] sd 0:0:1:0: [sg0] tag#5155 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c [ 123.698826][ C0] sd 0:0:1:0: [sg0] tag#5155 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d [ 123.707652][T12350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.707671][T12350] Call Trace: [ 123.707679][T12350] dump_stack_lvl+0xb7/0x103 [ 123.717320][ C0] sd 0:0:1:0: [sg0] tag#5155 CDB[20]: ba [ 123.726805][T12350] dump_stack+0x11/0x1a [ 123.752861][T12354] loop5: detected capacity change from 0 to 64 [ 123.754462][T12350] should_fail+0x23c/0x250 [ 123.765023][T12350] ? __alloc_file+0x2e/0x1a0 [ 123.769646][T12350] __should_failslab+0x81/0x90 [ 123.774400][T12350] should_failslab+0x5/0x20 [ 123.778895][T12350] kmem_cache_alloc+0x46/0x2e0 [ 123.783803][T12350] __alloc_file+0x2e/0x1a0 [ 123.788291][T12350] alloc_empty_file+0xcd/0x1c0 [ 123.793207][T12350] path_openat+0x6a/0x1f20 [ 123.797846][T12350] ? copy_page_from_iter_atomic+0x44b/0xba0 [ 123.803917][T12350] ? __set_page_dirty_no_writeback+0x96/0xc0 [ 123.809899][T12350] ? unlock_page+0x4d/0x70 [ 123.814398][T12350] ? shmem_write_end+0x37d/0x3d0 [ 123.819527][T12350] ? balance_dirty_pages_ratelimited+0xb1/0x280 [ 123.825949][T12350] ? generic_perform_write+0x34d/0x3c0 [ 123.831884][T12350] do_filp_open+0xe9/0x200 [ 123.836457][T12350] ? __virt_addr_valid+0x15a/0x1a0 [ 123.841560][T12350] ? _find_next_bit+0x16a/0x190 [ 123.846462][T12350] ? alloc_fd+0x388/0x3e0 [ 123.851318][T12350] do_sys_openat2+0xa3/0x250 [ 123.855903][T12350] __x64_sys_openat+0xef/0x110 [ 123.860657][T12350] do_syscall_64+0x3d/0x90 [ 123.865166][T12350] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 123.871060][T12350] RIP: 0033:0x4196d4 [ 123.874967][T12350] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 123.895345][T12350] RSP: 002b:00007f4863a7ce20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 123.903759][T12350] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196d4 [ 123.911893][T12350] RDX: 0000000000000002 RSI: 00007f4863a7cf40 RDI: 00000000ffffff9c 20:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6c00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d4, 0x0) 20:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7400, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 123.920067][T12350] RBP: 00007f4863a7cf40 R08: 0000000000000000 R09: 0000000000000000 [ 123.928077][T12350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 123.936095][T12350] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 123.948449][T12354] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = io_uring_setup(0x4894, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x4000008d, 0x0, r1}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r3, r4, 0x2) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r5, 0x5425, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 20:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7a00, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:40 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d5, 0x0) 20:22:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7400, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:40 executing program 3 (fault-call:3 fault-nth:13): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 124.074054][T12393] loop5: detected capacity change from 0 to 64 [ 124.081197][T12394] FAULT_INJECTION: forcing a failure. [ 124.081197][T12394] name failslab, interval 1, probability 0, space 0, times 0 [ 124.093893][T12394] CPU: 0 PID: 12394 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 124.102657][T12394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.112806][T12394] Call Trace: [ 124.116082][T12394] dump_stack_lvl+0xb7/0x103 [ 124.120750][T12394] dump_stack+0x11/0x1a [ 124.125010][T12394] should_fail+0x23c/0x250 [ 124.129496][T12394] ? security_file_alloc+0x30/0x190 [ 124.134689][T12394] __should_failslab+0x81/0x90 [ 124.139527][T12394] should_failslab+0x5/0x20 [ 124.144101][T12394] kmem_cache_alloc+0x46/0x2e0 [ 124.148928][T12394] security_file_alloc+0x30/0x190 [ 124.153943][T12394] __alloc_file+0x83/0x1a0 [ 124.158359][T12394] alloc_empty_file+0xcd/0x1c0 [ 124.163145][T12394] path_openat+0x6a/0x1f20 [ 124.167590][T12394] ? copy_page_from_iter_atomic+0x44b/0xba0 [ 124.173561][T12394] ? __set_page_dirty_no_writeback+0x96/0xc0 [ 124.179619][T12394] ? unlock_page+0x4d/0x70 [ 124.184132][T12394] ? shmem_write_end+0x37d/0x3d0 [ 124.189099][T12394] ? balance_dirty_pages_ratelimited+0xb1/0x280 [ 124.195412][T12394] ? generic_perform_write+0x34d/0x3c0 [ 124.200890][T12394] do_filp_open+0xe9/0x200 [ 124.205485][T12394] ? __virt_addr_valid+0x15a/0x1a0 [ 124.210592][T12394] ? _find_next_bit+0x16a/0x190 [ 124.215741][T12394] ? alloc_fd+0x388/0x3e0 [ 124.220068][T12394] do_sys_openat2+0xa3/0x250 [ 124.224675][T12394] __x64_sys_openat+0xef/0x110 [ 124.231523][T12394] do_syscall_64+0x3d/0x90 [ 124.235932][T12394] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 124.242116][T12394] RIP: 0033:0x4196d4 [ 124.246191][T12394] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 124.267069][T12394] RSP: 002b:00007f4863a7ce20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 124.275563][T12394] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196d4 [ 124.283519][T12394] RDX: 0000000000000002 RSI: 00007f4863a7cf40 RDI: 00000000ffffff9c [ 124.291475][T12394] RBP: 00007f4863a7cf40 R08: 0000000000000000 R09: 0000000000000000 [ 124.299433][T12394] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 124.307390][T12394] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xd317, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d6, 0x0) 20:22:41 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7800, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:41 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) close(r0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:41 executing program 3 (fault-call:3 fault-nth:14): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 124.325163][T12393] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 124.403885][T12415] FAULT_INJECTION: forcing a failure. [ 124.403885][T12415] name failslab, interval 1, probability 0, space 0, times 0 [ 124.416911][T12415] CPU: 1 PID: 12415 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 124.425726][T12415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.435809][T12415] Call Trace: [ 124.439182][T12415] dump_stack_lvl+0xb7/0x103 [ 124.443792][T12415] dump_stack+0x11/0x1a [ 124.447962][T12415] should_fail+0x23c/0x250 [ 124.452342][T12424] loop5: detected capacity change from 0 to 64 [ 124.452387][T12415] ? kzalloc+0x16/0x20 [ 124.462586][T12415] __should_failslab+0x81/0x90 [ 124.467367][T12415] should_failslab+0x5/0x20 [ 124.471975][T12415] __kmalloc+0x66/0x340 [ 124.476126][T12415] ? __d_lookup_rcu+0x39e/0x3e0 [ 124.481377][T12415] kzalloc+0x16/0x20 [ 124.485313][T12415] alloc_workqueue+0x11e/0xaf0 [ 124.490244][T12415] ? blkdev_get_whole+0x308/0x350 [ 124.495344][T12415] ? bd_prepare_to_claim+0x1e5/0x270 [ 124.500693][T12415] loop_configure+0x54c/0xd10 [ 124.505360][T12415] ? mntput+0x45/0x70 [ 124.509340][T12415] lo_ioctl+0x558/0x1210 [ 124.513589][T12415] ? path_openat+0x18e4/0x1f20 [ 124.518428][T12415] ? putname+0xa5/0xc0 [ 124.522589][T12415] ? ___cache_free+0x3c/0x300 [ 124.527256][T12415] ? blkdev_common_ioctl+0x9c3/0x1040 [ 124.532739][T12415] ? selinux_file_ioctl+0x8e0/0x970 [ 124.537962][T12415] ? lo_release+0x120/0x120 [ 124.542489][T12415] blkdev_ioctl+0x1d0/0x3c0 [ 124.547053][T12415] block_ioctl+0x6d/0x80 [ 124.551368][T12415] ? blkdev_iopoll+0x70/0x70 [ 124.556133][T12415] __se_sys_ioctl+0xcb/0x140 [ 124.560718][T12415] __x64_sys_ioctl+0x3f/0x50 [ 124.565307][T12415] do_syscall_64+0x3d/0x90 [ 124.569834][T12415] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 124.576036][T12415] RIP: 0033:0x4663a7 [ 124.579909][T12415] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d7, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xedc0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d8, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xe0ffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 124.599537][T12415] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 124.607929][T12415] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 124.616087][T12415] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 124.624075][T12415] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 124.632036][T12415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 124.640075][T12415] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034d9, 0x0) 20:22:41 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffc}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = io_uring_setup(0x4894, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x4000008d, 0x0, r1}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r3, r4, 0x2) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r5, 0x5425, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x1000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034da, 0x0) [ 124.702531][T12442] tmpfs: Bad value for 'mpol' [ 124.708145][T12424] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:41 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7a00, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:41 executing program 3 (fault-call:3 fault-nth:15): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034db, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x3000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 124.757608][T12455] tmpfs: Bad value for 'mpol' 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034dc, 0x0) [ 124.809733][T12472] FAULT_INJECTION: forcing a failure. [ 124.809733][T12472] name failslab, interval 1, probability 0, space 0, times 0 [ 124.822494][T12472] CPU: 0 PID: 12472 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 124.824375][T12480] loop5: detected capacity change from 0 to 64 [ 124.831801][T12472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.831817][T12472] Call Trace: [ 124.831824][T12472] dump_stack_lvl+0xb7/0x103 [ 124.831845][T12472] dump_stack+0x11/0x1a 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034dd, 0x0) 20:22:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 124.859990][T12472] should_fail+0x23c/0x250 [ 124.864435][T12472] __should_failslab+0x81/0x90 [ 124.869198][T12472] ? alloc_workqueue+0x14c/0xaf0 [ 124.870726][T12480] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 124.874197][T12472] should_failslab+0x5/0x20 [ 124.887725][T12472] kmem_cache_alloc_trace+0x49/0x310 [ 124.893019][T12472] alloc_workqueue+0x14c/0xaf0 [ 124.897791][T12472] ? blkdev_get_whole+0x308/0x350 [ 124.902920][T12472] ? bd_prepare_to_claim+0x1e5/0x270 [ 124.908304][T12472] loop_configure+0x54c/0xd10 [ 124.912988][T12472] ? mntput+0x45/0x70 [ 124.917013][T12472] lo_ioctl+0x558/0x1210 [ 124.921338][T12472] ? path_openat+0x18e4/0x1f20 [ 124.926108][T12472] ? putname+0xa5/0xc0 [ 124.930172][T12472] ? ___cache_free+0x3c/0x300 [ 124.934842][T12472] ? blkdev_common_ioctl+0x9c3/0x1040 [ 124.940391][T12472] ? selinux_file_ioctl+0x8e0/0x970 [ 124.945584][T12472] ? lo_release+0x120/0x120 [ 124.950102][T12472] blkdev_ioctl+0x1d0/0x3c0 [ 124.954734][T12472] block_ioctl+0x6d/0x80 [ 124.958967][T12472] ? blkdev_iopoll+0x70/0x70 [ 124.963550][T12472] __se_sys_ioctl+0xcb/0x140 [ 124.968178][T12472] __x64_sys_ioctl+0x3f/0x50 [ 124.972747][T12472] do_syscall_64+0x3d/0x90 [ 124.977160][T12472] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 124.983032][T12472] RIP: 0033:0x4663a7 [ 124.986916][T12472] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:22:41 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034de, 0x0) [ 125.006515][T12472] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.014993][T12472] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 125.023107][T12472] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 125.031076][T12472] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 125.039243][T12472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 125.047270][T12472] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x0, 0x0}) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8042f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) close(r2) r3 = syz_io_uring_setup(0x89, &(0x7f0000000080), &(0x7f0000ee6000/0x4000)=nil, &(0x7f00006d5000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x15b4, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000040)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x6) mmap(&(0x7f0000ee6000/0x2000)=nil, 0x2000, 0x9, 0x6fca2066d474fc3e, r2, 0xe321f000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000400)=ANY=[@ANYBLOB="8ef4efc5170ed4657f52309844e5093e0a5e429a7c9db150b7ab2be36fcbc0560475f48f6372ff45c68f64136d1aa7ac558a4f4a39ef2a07785284d60e57192909dee45c2b2ee3226f86dc673a4e3c3a32a61bef249b3969a19f86a0634caa761557eb8c2a57cf5e3ff3312df50892dac5efab1324e4cbcd4052ff90932f479795a7896fc798b03a7fac4596242f28721eb1191e85e4fe0f19bef9bd1c8cd4d57b921d4eabe710b50011bd729baa0f18caaa9f8c2677a5f257fdba4c19cae5555fac9a7278a9f1a94343dd1e2ec53d406d35c045d72b746498900f9c0f593359570982afcd5669444f333a223a81fb99dfebbcf1038d54f20120eafc6a2d3b045b09334df28bc72d8aadcdf40d34a98154e3a681c26b5862b0eeeebbb29e7b01f1cadd845facca37d5a2d4e6e9137633ec54d31cc20252781fa6036c46bb"]) fallocate(r1, 0x30, 0x8003, 0x8020001) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x88, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9c}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1a7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}]}]}, 0x88}}, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 20:22:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8503, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x5000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:42 executing program 3 (fault-call:3 fault-nth:16): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:42 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r4, &(0x7f0000000140)=[{&(0x7f0000000080)=""/190, 0xbe}], 0x1, 0x1, 0xeb) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034df, 0x0) [ 125.380320][T12517] loop5: detected capacity change from 0 to 66 [ 125.387531][T12519] FAULT_INJECTION: forcing a failure. [ 125.387531][T12519] name failslab, interval 1, probability 0, space 0, times 0 [ 125.400173][T12519] CPU: 0 PID: 12519 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 125.409074][T12519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.416529][T12517] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8803, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e0, 0x0) [ 125.419129][T12519] Call Trace: [ 125.419139][T12519] dump_stack_lvl+0xb7/0x103 [ 125.419157][T12519] dump_stack+0x11/0x1a [ 125.419169][T12519] should_fail+0x23c/0x250 [ 125.444665][T12519] ? kzalloc+0x16/0x20 [ 125.448775][T12519] __should_failslab+0x81/0x90 [ 125.453604][T12519] should_failslab+0x5/0x20 [ 125.458178][T12519] __kmalloc+0x66/0x340 [ 125.462328][T12519] ? number+0xa03/0xb50 [ 125.466474][T12519] kzalloc+0x16/0x20 [ 125.470373][T12519] apply_wqattrs_prepare+0x3a/0x630 [ 125.476230][T12519] ? vsnprintf+0xe8f/0xed0 [ 125.480648][T12519] apply_workqueue_attrs+0x9e/0x100 [ 125.485858][T12519] alloc_workqueue+0x77d/0xaf0 [ 125.490629][T12519] ? bd_prepare_to_claim+0x1e5/0x270 [ 125.495947][T12519] loop_configure+0x54c/0xd10 [ 125.500627][T12519] ? mntput+0x45/0x70 [ 125.504600][T12519] lo_ioctl+0x558/0x1210 [ 125.508948][T12519] ? path_openat+0x18e4/0x1f20 [ 125.513737][T12519] ? putname+0xa5/0xc0 [ 125.517810][T12519] ? ___cache_free+0x3c/0x300 [ 125.522587][T12519] ? blkdev_common_ioctl+0x9c3/0x1040 [ 125.527952][T12519] ? selinux_file_ioctl+0x8e0/0x970 [ 125.533237][T12519] ? lo_release+0x120/0x120 [ 125.537830][T12519] blkdev_ioctl+0x1d0/0x3c0 [ 125.542384][T12519] block_ioctl+0x6d/0x80 [ 125.546647][T12519] ? blkdev_iopoll+0x70/0x70 [ 125.551246][T12519] __se_sys_ioctl+0xcb/0x140 [ 125.555827][T12519] __x64_sys_ioctl+0x3f/0x50 [ 125.560407][T12519] do_syscall_64+0x3d/0x90 [ 125.564909][T12519] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 125.570795][T12519] RIP: 0033:0x4663a7 [ 125.574675][T12519] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.594513][T12519] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.602909][T12519] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 125.610868][T12519] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 125.618824][T12519] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 20:22:42 executing program 3 (fault-call:3 fault-nth:17): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 125.626781][T12519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 125.634823][T12519] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:42 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x31a8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, r0}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) io_uring_register$IORING_UNREGISTER_FILES(r1, 0x3, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) io_uring_register$IORING_UNREGISTER_FILES(r3, 0x3, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x20) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:42 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r4, &(0x7f0000000140)=[{&(0x7f0000000080)=""/190, 0xbe}], 0x1, 0x1, 0xeb) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e1, 0x0) [ 125.705236][T12546] loop5: detected capacity change from 0 to 68 [ 125.736670][T12546] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 125.737842][T12552] FAULT_INJECTION: forcing a failure. 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e2, 0x0) 20:22:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8a03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e3, 0x0) [ 125.737842][T12552] name failslab, interval 1, probability 0, space 0, times 0 [ 125.758764][T12552] CPU: 0 PID: 12552 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 125.767538][T12552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.777781][T12552] Call Trace: [ 125.781054][T12552] dump_stack_lvl+0xb7/0x103 [ 125.785682][T12552] dump_stack+0x11/0x1a [ 125.789830][T12552] should_fail+0x23c/0x250 [ 125.794247][T12552] __should_failslab+0x81/0x90 [ 125.799016][T12552] ? apply_wqattrs_prepare+0x5f/0x630 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e4, 0x0) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x8000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e5, 0x0) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x9000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 125.804400][T12552] should_failslab+0x5/0x20 [ 125.808910][T12552] kmem_cache_alloc_trace+0x49/0x310 [ 125.814203][T12552] apply_wqattrs_prepare+0x5f/0x630 [ 125.819447][T12552] ? vsnprintf+0xe8f/0xed0 [ 125.823928][T12552] apply_workqueue_attrs+0x9e/0x100 [ 125.829129][T12552] alloc_workqueue+0x77d/0xaf0 [ 125.833991][T12552] ? bd_prepare_to_claim+0x1e5/0x270 [ 125.839379][T12552] loop_configure+0x54c/0xd10 [ 125.844060][T12552] ? mntput+0x45/0x70 [ 125.848041][T12552] lo_ioctl+0x558/0x1210 [ 125.852400][T12552] ? path_openat+0x18e4/0x1f20 [ 125.857161][T12552] ? putname+0xa5/0xc0 [ 125.861232][T12552] ? ___cache_free+0x3c/0x300 [ 125.865906][T12552] ? blkdev_common_ioctl+0x9c3/0x1040 [ 125.871446][T12552] ? selinux_file_ioctl+0x8e0/0x970 [ 125.876657][T12552] ? lo_release+0x120/0x120 [ 125.881171][T12552] blkdev_ioctl+0x1d0/0x3c0 [ 125.885770][T12552] block_ioctl+0x6d/0x80 [ 125.890187][T12552] ? blkdev_iopoll+0x70/0x70 [ 125.894774][T12552] __se_sys_ioctl+0xcb/0x140 [ 125.899422][T12552] __x64_sys_ioctl+0x3f/0x50 [ 125.903999][T12552] do_syscall_64+0x3d/0x90 [ 125.908580][T12552] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 125.914505][T12552] RIP: 0033:0x4663a7 [ 125.918387][T12552] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.938244][T12552] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.946815][T12552] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 20:22:42 executing program 3 (fault-call:3 fault-nth:18): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 125.954858][T12552] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 125.962814][T12552] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 125.971066][T12552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 125.979041][T12552] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 126.022759][T12590] FAULT_INJECTION: forcing a failure. [ 126.022759][T12590] name failslab, interval 1, probability 0, space 0, times 0 [ 126.035497][T12590] CPU: 0 PID: 12590 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 126.044335][T12590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.054392][T12590] Call Trace: [ 126.057698][T12590] dump_stack_lvl+0xb7/0x103 [ 126.062468][T12590] dump_stack+0x11/0x1a [ 126.066626][T12590] should_fail+0x23c/0x250 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e6, 0x0) 20:22:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xa000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:42 executing program 2: creat(&(0x7f0000000280)='./file0\x00', 0x80) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x1850800, &(0x7f0000000100)="bba42dcb9e3b8db0a29534e155817b90cd6b47c1b7c55b258a8e871636076dfca32f3adbc1488e184a31fe69756ceb9de9108aa761d26092900ed5149a47447f3f3715ee85906c0d34c2619262094925766565355a0089df562777a5fa47d4d0d6f418eb847fd744875aa6ebdad49e14ef5bc8e3f7abcba28f8b5323fdcd853f7eab5e56fea5117e4563656e75f957b60b70d9ac055c5a", &(0x7f0000000000), &(0x7f00000001c0), &(0x7f0000000200)) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='N\x00'/15]) exit_group(0x3c9) [ 126.071283][T12590] __should_failslab+0x81/0x90 [ 126.076752][T12590] ? apply_wqattrs_prepare+0xbe/0x630 [ 126.082202][T12590] should_failslab+0x5/0x20 [ 126.086706][T12590] kmem_cache_alloc_trace+0x49/0x310 [ 126.091994][T12590] ? apply_wqattrs_prepare+0x5f/0x630 [ 126.097376][T12590] apply_wqattrs_prepare+0xbe/0x630 [ 126.102590][T12590] ? vsnprintf+0xe8f/0xed0 [ 126.107112][T12590] apply_workqueue_attrs+0x9e/0x100 [ 126.112320][T12590] alloc_workqueue+0x77d/0xaf0 [ 126.117092][T12590] ? bd_prepare_to_claim+0x1e5/0x270 20:22:42 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = io_uring_setup(0x2ead, &(0x7f0000000080)={0x0, 0x9a6f, 0x20, 0x30, 0x32a, 0x0, r0}) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r3, 0x5425, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r6, 0x0) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) io_submit(0x0, 0x7, &(0x7f0000000840)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x8, 0x9, r0, &(0x7f0000000100)="455bd0e4e04aceec69752a03402a77ee7c821609b8eefee490b9e396dc40a0cfb0bea49931a9d63576c68467cb2ee6bac792a60a7c405e920fd791b889fbcf839fd0797664eaff8ea7b671ef13f8f61d739dd71a3e74b19dffdaacf5977e5cb8614bdab84c1ee1d0ac5ffbcb3ccf21ce0ae8c20d2bb37414bf4a8cebfcc62ab1bfa037655e3bdefd0dd9ba06f996c47fb096dceee1f2b01f24cb7896e965f82a3f0b3e475b67ea3f4ed1f24f279c283a2dd00d75fdd39fa39068c4331e89e07b2a829d1e46ab", 0xc6, 0x6, 0x0, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x7, 0x0, r2, &(0x7f0000000200)="0d165bc06fae9900b52c6ab562ab9aff559eafd3ad2c63e13b4829cde456ecea4d18c2d1ef95a0f13b069c9310fe36b803747584724242d8393d96d8fe4529e36c248a8f1674acd9cbce73087952f8f401b3ff914a64e55cc23f41d1ab9c3ffb7ddabdf511f876a63d45e625a51f54a0cb4d41ee2d77e72fb7e5ba26f58fa7582d6d71e28bc1270bb5b346d399cb0e6e16a71e961c4060ad101c4e1b68b24571db2a334fe8fe418fef6ac5e03afebdf8c85394187f", 0xb5, 0xffffffffffffffff, 0x0, 0x3, r1}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x5, 0x6, 0xffffffffffffffff, &(0x7f0000000300)="60141691a8", 0x5, 0xa4, 0x0, 0x0, r4}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0xd, 0x1, r0, &(0x7f0000000380)="bcfc5b7e974052046465367d2c489592376cf627eeea668fa8a991723bc62a85d8d37451c02bc23957553e5d0a53e4e7fb638bfc8d8688ffdcd81ba004bca059444cf048a3e567b7918410d94cf266c1a837a1508af4e1", 0x57, 0x8, 0x0, 0x3}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000440)="bf9d743333a69280a61b040f10dac3695a809c938ad47792b6abfb6924f93dc5b932cb2cd58c2e00843fa07abb335c3e2e7fa28f14ea237d0f83c43f7652785c05c9c6212cec714116e719885d5ee3dc7702501ec3399c466a7c10d4b066d0d8fd7e099f2f51008d01fb795f6be2b563e51ca1a50e4145cf0c2dd08dce8c2898dfd78d2bce48977860352266966bbd75a7bbad90c6862fb0f9dcce91750b1a6ce6cba3f1877511cd40680a1619ca049e1b18e98df3bfffffb8d8a7ea40e5f1bfda424ad07fde", 0xc6, 0x2, 0x0, 0x1}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x7, 0x3, 0xffffffffffffffff, &(0x7f0000000680)="a87692ac611dc1fd4b06cf9147c85a9614d961fc2bf9b7608f7d706d623c7b56146c734b0971f150ae410f6f22665dc918996a4877de66892ac7e6ea7a5ac8b179875ad7f39e306e7431ed5319baf7ed525250b007636e700b0252a7af09957aa2c1e56fb6a0bd0bf2e06d3c94de4e27f2191fc7088367b0db9bfbc36172a360de20b8ed79664af9c8323b02e92280f452a98d75aa96d1f08f386ff1709a8d1cb61559cbb424e298d01f9f6ceaebfdacb276d3", 0xb3, 0x3, 0x0, 0x2}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x6, 0x6, r4, &(0x7f0000000780)="618b0002a82d67f8601bb5c638383451bba7f8b68f1b828a90fb6870e35a6be7aab8ecbd43724ad11483a2bf22c46f9ddc3c53a5ed44c6080c7fc8bce224e93f026e9f50", 0x44, 0x8000000000, 0x0, 0x0, r6}]) close_range(r2, 0xffffffffffffffff, 0x0) 20:22:42 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e7, 0x0) [ 126.122424][T12590] loop_configure+0x54c/0xd10 [ 126.127183][T12590] ? mntput+0x45/0x70 [ 126.131193][T12590] lo_ioctl+0x558/0x1210 [ 126.135476][T12590] ? path_openat+0x18e4/0x1f20 [ 126.140351][T12590] ? putname+0xa5/0xc0 [ 126.144421][T12590] ? ___cache_free+0x3c/0x300 [ 126.149113][T12590] ? blkdev_common_ioctl+0x9c3/0x1040 [ 126.154558][T12590] ? selinux_file_ioctl+0x8e0/0x970 [ 126.159697][T12605] tmpfs: Unknown parameter 'N' [ 126.159757][T12590] ? lo_release+0x120/0x120 [ 126.168994][T12590] blkdev_ioctl+0x1d0/0x3c0 [ 126.173517][T12590] block_ioctl+0x6d/0x80 [ 126.178073][T12590] ? blkdev_iopoll+0x70/0x70 [ 126.182670][T12590] __se_sys_ioctl+0xcb/0x140 [ 126.187311][T12590] __x64_sys_ioctl+0x3f/0x50 [ 126.191942][T12590] do_syscall_64+0x3d/0x90 [ 126.196360][T12590] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 126.202266][T12590] RIP: 0033:0x4663a7 [ 126.206234][T12590] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.225842][T12590] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 126.234278][T12590] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 126.242388][T12590] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 126.250567][T12590] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 126.258626][T12590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 20:22:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8b03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:43 executing program 2: perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x31, 0x1, 0x4, 0x0, 0x0, 0x7f, 0x120, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0x2181, 0xc8e, 0x401, 0x3, 0x40000000, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x20, 0x0, 0x8a, 0x0, 0x0, 0xfffffffe}, 0x0, 0x5, 0xffffffffffffffff, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x2, "0000ffffffea00100020f96bb2c1517600"}) r0 = syz_open_pts(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x1, @perf_config_ext={0x6, 0x9}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000640)={"9cee5a05d174f0dfa3a69fc4e5095546", 0x0, 0x0, {0x46, 0xfffbfeff}, {0x40000000000004, 0x1ff}, 0x8, [0x7, 0x4, 0x400a, 0x3, 0x8, 0x3, 0x200003, 0x82, 0x2, 0xffffffffffffab8a, 0x1, 0x8, 0x20, 0x6, 0x0, 0x1]}) clock_gettime(0x3, &(0x7f00000003c0)={0x0, 0x0}) futex(&(0x7f0000000380)=0x8, 0x3, 0x1, &(0x7f0000000400)={r3, r4+60000000}, &(0x7f0000000440), 0x2) sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40200}, 0xc, &(0x7f0000000500)={&(0x7f0000000740)=ANY=[@ANYBLOB="000251f8", @ANYRESOCT=r2, @ANYBLOB="000629bd7000fedbdf25680000002800c700d90407000000010507070303040303052001000000034003240027843d5a222a044f48c30c819bc50da0881f45c20d6a398a9f2d8aa608312414a0d9181a587a40f8cd76721ce4a0c6d21e85274d421a9707f3f53ec3ac1c5381a228b0c5a9eafa1adf34a129dfc3aa314ce3b8cdf55fb984afd41961057bfdddff4088aca6e7fef7c06cd97f71a6708f63164a298e11cd3e00000000"], 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x800c084) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f00000004c0)={@multicast2, @loopback}, 0xc) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x14) ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000080)) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000100)="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") mount(0x0, 0x0, 0x0, 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000240)=[{&(0x7f00000000c0)="390000001300034700bb65e1c3e4ffff06000000010000005600000025000000190004000400000007fd17e5ff8e0606040000000000000300", 0x39}], 0x1) socket$netlink(0x10, 0x3, 0x5) socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x7) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e8, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xb000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 3 (fault-call:3 fault-nth:19): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 126.266657][T12590] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 126.275163][T12593] loop5: detected capacity change from 0 to 69 [ 126.282707][T12593] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) syz_io_uring_setup(0x6d20, &(0x7f0000000080)={0x0, 0xbabe, 0x2, 0x3, 0x12b}, &(0x7f0000701000/0x4000)=nil, &(0x7f000077b000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 126.342311][T12630] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 126.352817][T12631] FAULT_INJECTION: forcing a failure. [ 126.352817][T12631] name failslab, interval 1, probability 0, space 0, times 0 [ 126.365618][T12631] CPU: 1 PID: 12631 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 126.374641][T12631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.384697][T12631] Call Trace: 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xc000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034e9, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xd000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ea, 0x0) [ 126.387975][T12631] dump_stack_lvl+0xb7/0x103 [ 126.392839][T12631] dump_stack+0x11/0x1a [ 126.397000][T12631] should_fail+0x23c/0x250 [ 126.401425][T12631] __should_failslab+0x81/0x90 [ 126.406200][T12631] should_failslab+0x5/0x20 [ 126.410709][T12631] kmem_cache_alloc_node+0x58/0x2b0 [ 126.415914][T12631] ? alloc_unbound_pwq+0x3e6/0x770 [ 126.421199][T12631] alloc_unbound_pwq+0x3e6/0x770 [ 126.426205][T12631] apply_wqattrs_prepare+0x1ed/0x630 [ 126.431497][T12631] ? vsnprintf+0xe8f/0xed0 [ 126.435916][T12631] apply_workqueue_attrs+0x9e/0x100 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034eb, 0x0) [ 126.441111][T12631] alloc_workqueue+0x77d/0xaf0 [ 126.445874][T12631] ? bd_prepare_to_claim+0x1e5/0x270 [ 126.451231][T12631] loop_configure+0x54c/0xd10 [ 126.455913][T12631] ? mntput+0x45/0x70 [ 126.459938][T12631] lo_ioctl+0x558/0x1210 [ 126.464267][T12631] ? path_openat+0x18e4/0x1f20 [ 126.469038][T12631] ? putname+0xa5/0xc0 [ 126.473105][T12631] ? ___cache_free+0x3c/0x300 [ 126.477787][T12631] ? blkdev_common_ioctl+0x9c3/0x1040 [ 126.483173][T12631] ? selinux_file_ioctl+0x8e0/0x970 [ 126.488439][T12631] ? lo_release+0x120/0x120 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ec, 0x0) [ 126.492961][T12631] blkdev_ioctl+0x1d0/0x3c0 [ 126.497535][T12631] block_ioctl+0x6d/0x80 [ 126.501790][T12631] ? blkdev_iopoll+0x70/0x70 [ 126.506398][T12631] __se_sys_ioctl+0xcb/0x140 [ 126.511348][T12631] __x64_sys_ioctl+0x3f/0x50 [ 126.515944][T12631] do_syscall_64+0x3d/0x90 [ 126.520548][T12631] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 126.526529][T12631] RIP: 0033:0x4663a7 [ 126.530424][T12631] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.550565][T12631] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 126.559355][T12631] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 126.567794][T12631] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 126.575879][T12631] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 126.583832][T12631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 126.591790][T12631] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 126.630850][T12676] loop5: detected capacity change from 0 to 69 20:22:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8c03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ed, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xe000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 3 (fault-call:3 fault-nth:20): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:43 executing program 2: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000180)=0x8) r2 = creat(&(0x7f0000000300)='./bus\x00', 0x0) io_setup(0x3, &(0x7f0000000040)=0x0) io_submit(r3, 0xf10, &(0x7f0000000540)=[&(0x7f00000000c0)={0x5000000, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x200a00}]) fallocate(r0, 0x100000003, 0xf002, 0x80019c) 20:22:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = getuid() setresuid(0x0, r2, 0xee01) r3 = getuid() getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000300)=0xe8) lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000340)={{}, {0x1, 0x1}, [{0x2, 0x4, r1}, {0x2, 0x5, r2}, {0x2, 0x7, 0xee00}, {0x2, 0x4, r3}, {0x2, 0x5, r4}], {0x4, 0x1}, [{0x8, 0x1, 0xee01}, {0x8, 0x1}], {}, {0x20, 0x2}}, 0x5c, 0x2) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r5 = io_uring_setup(0x2eac, &(0x7f0000000000)) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r6, 0x5425, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r7, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) [ 126.631559][T12630] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 126.658578][T12676] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x10000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ee, 0x0) [ 126.708582][T12690] FAULT_INJECTION: forcing a failure. [ 126.708582][T12690] name failslab, interval 1, probability 0, space 0, times 0 [ 126.721262][T12690] CPU: 0 PID: 12690 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 126.730030][T12690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.740256][T12690] Call Trace: [ 126.743570][T12690] dump_stack_lvl+0xb7/0x103 [ 126.748174][T12690] dump_stack+0x11/0x1a [ 126.752426][T12690] should_fail+0x23c/0x250 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034ef, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x11000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f0, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x12000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 126.756897][T12690] ? __kernfs_new_node+0x6a/0x330 [ 126.762094][T12690] __should_failslab+0x81/0x90 [ 126.766856][T12690] should_failslab+0x5/0x20 [ 126.771361][T12690] kmem_cache_alloc+0x46/0x2e0 [ 126.776133][T12690] __kernfs_new_node+0x6a/0x330 [ 126.780992][T12690] ? _raw_spin_lock_irqsave+0x25/0x80 [ 126.786501][T12690] ? _raw_spin_unlock_irqrestore+0x27/0x40 [ 126.792315][T12690] ? pwq_adjust_max_active+0x491/0x4b0 [ 126.797786][T12690] kernfs_create_dir_ns+0x5e/0x140 [ 126.803063][T12690] internal_create_group+0x138/0x850 [ 126.808550][T12690] ? bd_prepare_to_claim+0x1e5/0x270 [ 126.814022][T12690] sysfs_create_group+0x1b/0x20 [ 126.819907][T12690] loop_configure+0xa77/0xd10 [ 126.824605][T12690] lo_ioctl+0x558/0x1210 [ 126.828848][T12690] ? path_openat+0x18e4/0x1f20 [ 126.833632][T12690] ? putname+0xa5/0xc0 [ 126.837718][T12690] ? ___cache_free+0x3c/0x300 [ 126.842436][T12690] ? blkdev_common_ioctl+0x9c3/0x1040 [ 126.847822][T12690] ? selinux_file_ioctl+0x8e0/0x970 [ 126.853171][T12690] ? lo_release+0x120/0x120 [ 126.857663][T12690] blkdev_ioctl+0x1d0/0x3c0 [ 126.862151][T12690] block_ioctl+0x6d/0x80 [ 126.866490][T12690] ? blkdev_iopoll+0x70/0x70 [ 126.871189][T12690] __se_sys_ioctl+0xcb/0x140 [ 126.875863][T12690] __x64_sys_ioctl+0x3f/0x50 [ 126.880618][T12690] do_syscall_64+0x3d/0x90 [ 126.885050][T12690] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 126.891229][T12690] RIP: 0033:0x4663a7 [ 126.895102][T12690] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.914789][T12690] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 126.923496][T12690] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 126.931455][T12690] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 126.939435][T12690] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 126.948084][T12690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 126.956129][T12690] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 126.964123][T12690] loop3: detected capacity change from 0 to 1 20:22:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8d03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:43 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f1, 0x0) 20:22:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x20000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x10140, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r1, &(0x7f0000000080)=[{&(0x7f00000005c0)=""/4096, 0x1000}], 0x1, 0x20, 0x7) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x40010, r2, 0x88c25000) preadv(r3, &(0x7f00000000c0)=[{&(0x7f00000015c0)=""/4096}, {&(0x7f00000045c0)=""/4100}, {&(0x7f00000035c0)=""/4096}], 0x25, 0x100d9c, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:43 executing program 3 (fault-call:3 fault-nth:21): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 127.002513][T12730] loop5: detected capacity change from 0 to 70 [ 127.021945][T12730] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.076132][T12742] FAULT_INJECTION: forcing a failure. [ 127.076132][T12742] name failslab, interval 1, probability 0, space 0, times 0 [ 127.081129][T12745] tmpfs: Bad value for 'mpol' [ 127.089353][T12742] CPU: 1 PID: 12742 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 127.102904][T12742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 127.113147][T12742] Call Trace: [ 127.116535][T12742] dump_stack_lvl+0xb7/0x103 [ 127.121125][T12742] dump_stack+0x11/0x1a [ 127.125279][T12742] should_fail+0x23c/0x250 [ 127.130073][T12742] ? __kernfs_new_node+0x6a/0x330 [ 127.135225][T12742] __should_failslab+0x81/0x90 [ 127.139972][T12742] should_failslab+0x5/0x20 [ 127.144461][T12742] kmem_cache_alloc+0x46/0x2e0 [ 127.149217][T12742] ? __cond_resched+0x11/0x40 [ 127.153896][T12742] __kernfs_new_node+0x6a/0x330 [ 127.158807][T12742] ? idr_alloc_cyclic+0x249/0x2d0 [ 127.163837][T12742] ? rb_insert_color+0x7e/0x310 [ 127.168799][T12742] kernfs_new_node+0x5b/0xd0 [ 127.173465][T12742] __kernfs_create_file+0x45/0x1a0 [ 127.178590][T12742] sysfs_add_file_mode_ns+0x1c1/0x250 [ 127.184109][T12742] internal_create_group+0x2e4/0x850 [ 127.189375][T12742] sysfs_create_group+0x1b/0x20 [ 127.194208][T12742] loop_configure+0xa77/0xd10 [ 127.198931][T12742] lo_ioctl+0x558/0x1210 [ 127.203356][T12742] ? path_openat+0x18e4/0x1f20 [ 127.208195][T12742] ? putname+0xa5/0xc0 [ 127.212436][T12742] ? ___cache_free+0x3c/0x300 [ 127.217207][T12742] ? blkdev_common_ioctl+0x9c3/0x1040 [ 127.222844][T12742] ? selinux_file_ioctl+0x8e0/0x970 [ 127.228241][T12742] ? lo_release+0x120/0x120 [ 127.232743][T12742] blkdev_ioctl+0x1d0/0x3c0 [ 127.237243][T12742] block_ioctl+0x6d/0x80 [ 127.241521][T12742] ? blkdev_iopoll+0x70/0x70 [ 127.246090][T12742] __se_sys_ioctl+0xcb/0x140 [ 127.250794][T12742] __x64_sys_ioctl+0x3f/0x50 [ 127.255476][T12742] do_syscall_64+0x3d/0x90 [ 127.260045][T12742] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 127.266004][T12742] RIP: 0033:0x4663a7 [ 127.269891][T12742] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.289514][T12742] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 127.297939][T12742] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 127.306043][T12742] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 127.314003][T12742] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 20:22:44 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000480)={0x2, 0x1004e20, @dev}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x4008800, &(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @empty}, 0x10) r2 = accept4(r1, &(0x7f0000000040)=@ax25={{0x3, @bcast}, [@remote, @default, @default, @default, @null, @rose, @null, @null]}, &(0x7f0000000140)=0x80, 0x800) sendmsg$inet(r2, &(0x7f00000005c0)={&(0x7f0000000180)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10, &(0x7f0000000400)=[{&(0x7f00000001c0)="abe60cdd4641b3339b3a8698c6d0b1d4a2734f3c85d726557ff79b35e2d31f128d1e69865e6af7a58eaf7140f398731cfb65681c58784dd3cf463280cb96ebdfa1def079134e9851cc0bbbb51c9f7e073f1eda2125352438b40a3e7bb9fd57c2f6a89413ef7d57e4f68749c74f4cf8d58ff7c784f076982ec45e3048c22024318d7ca16c497340143adf566224ad69195a99b18758da8f9d6a7a035cac9d80dddcd681b730e870c97811c12084926f27dea1f127b90f4560de56181e9d4a165b9de397c6e34ba8db9389fe756b5b12903f49e146aff4aa85ad3c23fb", 0xdc}, {&(0x7f0000000300)="5de3da3e487a0adb2349aeff5f8d471ae0caf56f73149c5f48ab2c846e077b3736c5be45790d", 0x26}, {&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000004c0)="6fcdce87b21753b4563cb4269eb2e797fe29dc588ebe5628deea6da4542c82e48eba4a608e308883c26a6237c1453b09057ad499f6e99834698d0ee5216080a0d1b391a63157cc26f82a47e729188bb1d59f3a77f8cbcfced4ef52088bf0ae2593b32fba5457378001736a06415272401d836975e15658c88daa516790ab5a7ed7a9ba11cfbc53f293f00772d695bd8d4ab644afbc9c", 0x96}, {&(0x7f0000000340)="70cc291f0ee6d1011851e706d0f874a331b9abbdd545e4494c69a26a19fc0249cf219c54314b35577c9d00b05f5e817348cf9aded5ef2ed764d99f3d5fb33b3ea5a6", 0x42}], 0x5, &(0x7f0000000580)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x8}}], 0x18}, 0x5) write(r1, &(0x7f0000001d00)="2d89dbe28eb02cba0010a90000000000fd00fa088bfc6f073ca182aa4fc2d2e9418f33a82a63e781d3794b1b8d7ce54a2d1f92e15ae19ef86595f01e4e4b2055fbb2dc808fa739220db0a1d044d5ba51", 0x50) recvmmsg(r1, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f00000000c0)=""/79, 0x4f}, {&(0x7f0000002680)=""/4102, 0x1006}], 0x2}}], 0x1, 0x0, 0x0) 20:22:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x20100000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:44 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f2, 0x0) [ 127.321980][T12742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 127.330058][T12742] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 127.343748][T12742] loop3: detected capacity change from 0 to 1 [ 127.364150][T12759] loop5: detected capacity change from 0 to 70 20:22:44 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f3, 0x0) 20:22:44 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8e03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:44 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f4, 0x0) [ 127.373159][T12759] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x22000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:44 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f5, 0x0) 20:22:44 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_io_uring_setup(0x495a, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000540)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000008540)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x10001) syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x0, @fd_index}, 0x0) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r6, 0x0, &(0x7f00000000c0)="fa6572a2c89533311f3be81bf1ef1d1896ca5133b8aef278fb14392b78af22e3fbec945b51ccf4686eca6a469a41ec6b2c4c5794bcf299672bd817660dd50a7f870ae32b9c4b0c295fc180ec490a6422734f3f05538eff5c111a87106ea2136ba7e6c9c43a826cad6aaeea0ec06d558c629cc339d8a1218fdff98dc570f9e1453fb4a91ad6e532daf1c033d2b94ef9fd98392fe01d0e624838229bdcaf2ff7c0ad3c9cd26f640a37", 0xa8, 0x1, 0x1}, 0x81) close_range(r1, 0xffffffffffffffff, 0x0) [ 127.420946][T12763] tmpfs: Bad value for 'mpol' 20:22:44 executing program 3 (fault-call:3 fault-nth:22): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) [ 127.475722][T12783] loop5: detected capacity change from 0 to 71 [ 127.486559][T12786] FAULT_INJECTION: forcing a failure. [ 127.486559][T12786] name failslab, interval 1, probability 0, space 0, times 0 [ 127.499621][T12786] CPU: 1 PID: 12786 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 127.508476][T12786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 127.518615][T12786] Call Trace: [ 127.521892][T12786] dump_stack_lvl+0xb7/0x103 [ 127.526488][T12786] dump_stack+0x11/0x1a [ 127.530623][T12786] should_fail+0x23c/0x250 [ 127.535022][T12786] ? __kernfs_new_node+0x6a/0x330 [ 127.540119][T12786] __should_failslab+0x81/0x90 [ 127.544865][T12786] should_failslab+0x5/0x20 [ 127.549485][T12786] kmem_cache_alloc+0x46/0x2e0 [ 127.554336][T12786] __kernfs_new_node+0x6a/0x330 [ 127.559232][T12786] ? __cond_resched+0x11/0x40 [ 127.564089][T12786] ? mutex_lock+0x9/0x30 [ 127.568465][T12786] kernfs_new_node+0x5b/0xd0 [ 127.573060][T12786] __kernfs_create_file+0x45/0x1a0 [ 127.578197][T12786] sysfs_add_file_mode_ns+0x1c1/0x250 [ 127.583561][T12786] internal_create_group+0x2e4/0x850 [ 127.588889][T12786] sysfs_create_group+0x1b/0x20 [ 127.593733][T12786] loop_configure+0xa77/0xd10 [ 127.598480][T12786] lo_ioctl+0x558/0x1210 [ 127.602750][T12786] ? path_openat+0x18e4/0x1f20 [ 127.607498][T12786] ? putname+0xa5/0xc0 [ 127.611681][T12786] ? ___cache_free+0x3c/0x300 [ 127.616380][T12786] ? blkdev_common_ioctl+0x9c3/0x1040 [ 127.621738][T12786] ? selinux_file_ioctl+0x8e0/0x970 [ 127.626994][T12786] ? lo_release+0x120/0x120 [ 127.631479][T12786] blkdev_ioctl+0x1d0/0x3c0 [ 127.635974][T12786] block_ioctl+0x6d/0x80 [ 127.640207][T12786] ? blkdev_iopoll+0x70/0x70 [ 127.644838][T12786] __se_sys_ioctl+0xcb/0x140 [ 127.649407][T12786] __x64_sys_ioctl+0x3f/0x50 [ 127.654235][T12786] do_syscall_64+0x3d/0x90 [ 127.658755][T12786] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 127.664954][T12786] RIP: 0033:0x4663a7 [ 127.668953][T12786] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.688560][T12786] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 127.696979][T12786] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 127.705012][T12786] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 127.713195][T12786] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 20:22:44 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f6, 0x0) 20:22:44 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8e26, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 127.721151][T12786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 127.729111][T12786] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 127.744761][T12783] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.754864][T12786] loop3: detected capacity change from 0 to 1 [ 127.816738][T12805] loop5: detected capacity change from 0 to 71 [ 127.826448][T12805] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f7, 0x0) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x25000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)={0x0, 0xfb, 0xfb, 0x6, 0x3, "95dec677d8a1526e32c0df1cc2a5acfb", "1a721ffb6c3270ba58370e1531a4a9e81ef83e604700cb9846177bf1b3218d88194a6d9e194da080d27828e7d897e8bb26b30ac49f868ce2734f8f160bb1e96eb11902d077369c1e795bbf3fd3723d2d96ff49f699c9564792e3c251b40adfa42f6fe044181264023711e748d1d91e689930d2533b37248945ad9b1132168bcadb191a4571311a7830f91179206e9db602f7c62abb33640ce64eb5f223010ba5128eeebb9cf4868624cf70c965d4afafb0e5a7647167d75ca6258426e0e93877d8e129465637abe01f49989d60de1735fd1abb9fe6ed2934077a5c3e27a8de1bb5a58c651d64"}, 0xfb, 0x2) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:45 executing program 3 (fault-call:3 fault-nth:23): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:45 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8f03, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 128.342560][T12823] FAULT_INJECTION: forcing a failure. [ 128.342560][T12823] name failslab, interval 1, probability 0, space 0, times 0 [ 128.352987][T12826] loop5: detected capacity change from 0 to 71 [ 128.355315][T12823] CPU: 1 PID: 12823 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 128.365444][T12826] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 128.370278][T12823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 128.389338][T12823] Call Trace: 20:22:45 executing program 2: mlockall(0x1) clone(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000080), 0x9, 0x84040) r3 = openat(r2, &(0x7f0000000040)='./file0\x00', 0x48041, 0x1fe) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r3, 0x0) 20:22:45 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x9003, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 128.392616][T12823] dump_stack_lvl+0xb7/0x103 [ 128.397210][T12823] dump_stack+0x11/0x1a [ 128.401477][T12823] should_fail+0x23c/0x250 [ 128.405930][T12823] ? __kernfs_new_node+0x6a/0x330 [ 128.410956][T12823] __should_failslab+0x81/0x90 [ 128.415801][T12823] should_failslab+0x5/0x20 [ 128.420897][T12823] kmem_cache_alloc+0x46/0x2e0 [ 128.425760][T12823] __kernfs_new_node+0x6a/0x330 [ 128.430729][T12823] ? kcsan_setup_watchpoint+0x231/0x3e0 [ 128.436310][T12823] ? __cond_resched+0x11/0x40 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x2c000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x48000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 128.441042][T12823] ? mutex_lock+0x9/0x30 [ 128.445277][T12823] kernfs_new_node+0x5b/0xd0 [ 128.450010][T12823] __kernfs_create_file+0x45/0x1a0 [ 128.455122][T12823] sysfs_add_file_mode_ns+0x1c1/0x250 [ 128.460495][T12823] internal_create_group+0x2e4/0x850 [ 128.465909][T12823] sysfs_create_group+0x1b/0x20 [ 128.470771][T12823] loop_configure+0xa77/0xd10 [ 128.475637][T12823] lo_ioctl+0x558/0x1210 [ 128.479920][T12823] ? path_openat+0x18e4/0x1f20 [ 128.484686][T12823] ? putname+0xa5/0xc0 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x4c000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x60000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 128.488817][T12823] ? ___cache_free+0x3c/0x300 [ 128.493569][T12823] ? blkdev_common_ioctl+0x9c3/0x1040 [ 128.498954][T12823] ? selinux_file_ioctl+0x8e0/0x970 [ 128.504289][T12823] ? lo_release+0x120/0x120 [ 128.508794][T12823] blkdev_ioctl+0x1d0/0x3c0 [ 128.513327][T12823] block_ioctl+0x6d/0x80 [ 128.517599][T12823] ? blkdev_iopoll+0x70/0x70 [ 128.522273][T12823] __se_sys_ioctl+0xcb/0x140 [ 128.526942][T12823] __x64_sys_ioctl+0x3f/0x50 [ 128.531525][T12823] do_syscall_64+0x3d/0x90 [ 128.535959][T12823] entry_SYSCALL_64_after_hwframe+0x44/0xae 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x68000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 128.541967][T12823] RIP: 0033:0x4663a7 [ 128.545873][T12823] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 128.565561][T12823] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 128.574064][T12823] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 128.582034][T12823] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f8, 0x0) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x6c000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 128.590004][T12823] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 128.598004][T12823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 128.606145][T12823] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 128.654805][T12823] loop3: detected capacity change from 0 to 1 [ 128.682960][T12891] loop5: detected capacity change from 0 to 72 [ 128.691423][T12891] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x8}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x74000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034f9, 0x0) 20:22:45 executing program 2: r0 = shmget$private(0x0, 0x2000, 0x400, &(0x7f0000ffd000/0x2000)=nil) shmctl$SHM_UNLOCK(r0, 0xc) mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x1, 0x3) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="02000000030000000400000030", 0xd, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1000, 0x2000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='nouid3x,\x00']) setxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0), &(0x7f0000001280)=ANY=[], 0x638, 0x0) 20:22:45 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x9103, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:45 executing program 3 (fault-call:3 fault-nth:24): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034fa, 0x0) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x7a000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000000)) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000080)) ioctl$TCSBRKP(r2, 0x5425, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:22:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x8cffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 129.071608][T12927] FAULT_INJECTION: forcing a failure. [ 129.071608][T12927] name failslab, interval 1, probability 0, space 0, times 0 [ 129.083621][T12937] loop2: detected capacity change from 0 to 512 [ 129.084666][T12927] CPU: 1 PID: 12927 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 129.099708][T12927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 129.109767][T12927] Call Trace: [ 129.113047][T12927] dump_stack_lvl+0xb7/0x103 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034fb, 0x0) 20:22:45 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034fc, 0x0) [ 129.114516][T12936] loop5: detected capacity change from 0 to 72 [ 129.117720][T12927] dump_stack+0x11/0x1a [ 129.117739][T12927] should_fail+0x23c/0x250 [ 129.132420][T12927] ? __kernfs_new_node+0x6a/0x330 [ 129.137546][T12927] __should_failslab+0x81/0x90 [ 129.142313][T12927] should_failslab+0x5/0x20 [ 129.146835][T12927] kmem_cache_alloc+0x46/0x2e0 [ 129.151656][T12927] __kernfs_new_node+0x6a/0x330 [ 129.151873][T12937] EXT4-fs (loop2): Unrecognized mount option "nouid3x" or missing value [ 129.156520][T12927] ? __cond_resched+0x11/0x40 [ 129.165902][T12936] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 129.169705][T12927] ? mutex_lock+0x9/0x30 [ 129.169725][T12927] kernfs_new_node+0x5b/0xd0 [ 129.187607][T12927] __kernfs_create_file+0x45/0x1a0 [ 129.192799][T12927] sysfs_add_file_mode_ns+0x1c1/0x250 [ 129.198185][T12927] internal_create_group+0x2e4/0x850 [ 129.203735][T12927] sysfs_create_group+0x1b/0x20 [ 129.208595][T12927] loop_configure+0xa77/0xd10 [ 129.213423][T12927] lo_ioctl+0x558/0x1210 [ 129.217660][T12927] ? path_openat+0x18e4/0x1f20 [ 129.222425][T12927] ? putname+0xa5/0xc0 [ 129.226547][T12927] ? ___cache_free+0x3c/0x300 [ 129.231228][T12927] ? blkdev_common_ioctl+0x9c3/0x1040 [ 129.236677][T12927] ? selinux_file_ioctl+0x8e0/0x970 [ 129.241878][T12927] ? lo_release+0x120/0x120 [ 129.246480][T12927] blkdev_ioctl+0x1d0/0x3c0 [ 129.251014][T12927] block_ioctl+0x6d/0x80 [ 129.255355][T12927] ? blkdev_iopoll+0x70/0x70 [ 129.259973][T12927] __se_sys_ioctl+0xcb/0x140 [ 129.264557][T12927] __x64_sys_ioctl+0x3f/0x50 [ 129.269199][T12927] do_syscall_64+0x3d/0x90 [ 129.273614][T12927] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 129.279582][T12927] RIP: 0033:0x4663a7 [ 129.283459][T12927] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.303054][T12927] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 129.311630][T12927] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 20:22:46 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x9203, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 129.319589][T12927] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 129.327608][T12927] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 129.335558][T12927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 129.343681][T12927] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:46 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034fd, 0x0) 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xc0ed0000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 129.368215][T12927] loop3: detected capacity change from 0 to 1 20:22:46 executing program 2: shmctl$IPC_RMID(0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f0000000000000001000000010000000040007a0040000020000000d5f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000028", 0x5d, 0x400}], 0x0, &(0x7f0000012c00)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000240)=""/230, 0xe6}], 0x1, 0x8, 0x1) getdents64(r0, &(0x7f0000000040)=""/169, 0xa9) r1 = accept$inet6(r0, 0x0, &(0x7f0000000140)) mmap(&(0x7f000026a000/0x4000)=nil, 0x4000, 0x8, 0x10010, r1, 0xa66bf000) 20:22:46 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1034fe, 0x0) 20:22:46 executing program 3 (fault-call:3 fault-nth:25): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xd3170000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = getuid() setresuid(0x0, r1, 0xffffffffffffffff) fstat(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x80000001, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000100)="5ca4a2216d6ebc73ef3d5629fe6b5ed8d480d7f2915e7f76737399bd4a9fa8be1bb07d86a86b67fca0a493b489837edcd218c9faabac01057bd29414793ff2882ff9babf4134e4c3b9f54ece220fef0f7063dd291d46698ddd7cb79f70907d5f2bf9255af4ec683845d4276e53f64891b00f3f36cddbc58cc6cdcea480ad096885e4b746cbe91ad7d0a8257cf01427ecca40f184d375737d8bf8870c921dec6e2a55b2847c2e952cfceedd", 0xab}], 0x4401, &(0x7f0000000280)={[{@check_relaxed}, {@sbsector={'sbsector', 0x3d, 0x2}}, {@uid={'uid', 0x3d, r1}}], [{@smackfshat}, {@obj_type}, {@euid_gt={'euid>', r2}}, {@euid_gt}, {@permit_directio}]}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@mcast2, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@remote}}, &(0x7f0000000480)=0xe8) sendmsg$nl_xfrm(r0, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=@newae={0x1b8, 0x1e, 0x200, 0x70bd29, 0x25dfdbfb, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4d5, 0x2, 0x33}, @in=@empty, 0x200, 0x3503}, [@policy={0xac, 0x7, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@private0, 0x4e20, 0x32, 0x4e23, 0x4, 0x2, 0x20, 0x80, 0x89, 0x0, r3}, {0xaed, 0x4, 0x11, 0x8001, 0x4, 0x81, 0x4fe6, 0x6}, {0x0, 0xd1f, 0xff, 0xffffffff00000001}, 0x0, 0x6e6bb6, 0x0, 0x1, 0x2, 0x2}}, @lifetime_val={0x24, 0x9, {0x0, 0x6, 0x9, 0x2}}, @sec_ctx={0xa5, 0x8, {0xa1, 0x8, 0x1, 0x20, 0x99, "6eccd9d146b5dc9908de2d3e4310378e52f474c03b064115b13427caab1b416395d92750b4a7c9a85ac23c96ba45114496e13f8c19cdc055f4ced9caf438f70ae91a596d920588eba696900f774f0ccc71b6c6b9e891fd5782249e6bb9c2d3cad85e307ab33e89e2ebeea147a1071d304d79286e4c8785269f0be6a746fbff6c3e60ea3f61d282d632ae56b898f1d6d1acd36e86ed8db70c4e"}}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x4040040}, 0x40000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r4 = io_uring_setup(0x2eac, &(0x7f0000000000)) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r5, 0x5425, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) 20:22:46 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x2) [ 129.453306][T12975] loop5: detected capacity change from 0 to 73 [ 129.456082][T12978] loop2: detected capacity change from 0 to 4 [ 129.479355][T12975] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 129.494259][T12978] EXT4-fs (loop2): #blocks per group too big: 2046836736 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xf6ffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 129.521564][T12992] FAULT_INJECTION: forcing a failure. [ 129.521564][T12992] name failslab, interval 1, probability 0, space 0, times 0 [ 129.534303][T12992] CPU: 0 PID: 12992 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 129.543090][T12992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 129.546714][T12991] loop4: detected capacity change from 0 to 264192 [ 129.553167][T12992] Call Trace: [ 129.553178][T12992] dump_stack_lvl+0xb7/0x103 [ 129.567510][T12992] dump_stack+0x11/0x1a [ 129.571666][T12992] should_fail+0x23c/0x250 [ 129.576178][T12992] ? __kernfs_new_node+0x6a/0x330 [ 129.581345][T12992] __should_failslab+0x81/0x90 [ 129.586119][T12992] should_failslab+0x5/0x20 [ 129.590617][T12992] kmem_cache_alloc+0x46/0x2e0 [ 129.595474][T12992] __kernfs_new_node+0x6a/0x330 [ 129.600336][T12992] ? __cond_resched+0x11/0x40 [ 129.605020][T12992] ? mutex_lock+0x9/0x30 [ 129.605037][T12992] kernfs_new_node+0x5b/0xd0 [ 129.613845][T12992] __kernfs_create_file+0x45/0x1a0 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xfeffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 129.618956][T12992] sysfs_add_file_mode_ns+0x1c1/0x250 [ 129.624317][T12992] internal_create_group+0x2e4/0x850 [ 129.629627][T12992] sysfs_create_group+0x1b/0x20 [ 129.634595][T12992] loop_configure+0xa77/0xd10 [ 129.639392][T12992] lo_ioctl+0x558/0x1210 [ 129.643633][T12992] ? path_openat+0x18e4/0x1f20 [ 129.648487][T12992] ? putname+0xa5/0xc0 [ 129.652547][T12992] ? ___cache_free+0x3c/0x300 [ 129.657247][T12992] ? blkdev_common_ioctl+0x9c3/0x1040 [ 129.662767][T12992] ? selinux_file_ioctl+0x8e0/0x970 [ 129.668119][T12992] ? lo_release+0x120/0x120 [ 129.672719][T12992] blkdev_ioctl+0x1d0/0x3c0 [ 129.677470][T12992] block_ioctl+0x6d/0x80 [ 129.681778][T12992] ? blkdev_iopoll+0x70/0x70 [ 129.686490][T12992] __se_sys_ioctl+0xcb/0x140 [ 129.691086][T12992] __x64_sys_ioctl+0x3f/0x50 [ 129.695678][T12992] do_syscall_64+0x3d/0x90 [ 129.700102][T12992] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 129.706169][T12992] RIP: 0033:0x4663a7 20:22:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = io_uring_setup(0x4ce9, &(0x7f0000000000)={0x0, 0x56f0, 0x0, 0x0, 0x10a}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x94001, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=0x0) syz_open_procfs(r4, &(0x7f00000000c0)='attr\x00') 20:22:46 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa003, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) [ 129.710063][T12992] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.730017][T12992] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 129.730039][T12992] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 129.730050][T12992] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 129.730061][T12992] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 129.762719][T12992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 20:22:46 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x15) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000000)) r1 = syz_open_dev$vcsa(&(0x7f0000000080), 0x80, 0x40000) ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f00000000c0)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x18, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000340)={'gre0\x00', &(0x7f00000002c0)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x80000000, 0x0, {{0xe, 0x4, 0x3, 0x9, 0x38, 0x67, 0x0, 0x0, 0x4, 0x0, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x24, 0x89, 0x3, 0x5, [{@loopback, 0x7fff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@rand_addr=0x64010102, 0x8}, {@local, 0x4}]}]}}}}}) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000580)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x190, r4, 0x300, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_OURS={0x158, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_BITS={0x68, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x86}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '$])]^^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/vcsa#\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '-!(]!$\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2ed}]}]}, @ETHTOOL_A_BITSET_MASK={0x5a, 0x5, "dfd94bc46e3369fa4cb5c86950c5a1784c4170ef114f2699623acf332ad3330dd10db99c06fa471c56c946351e48e9669b09850ea2d71ea38bf4d5fcd006f4ef6de4eaca09c999f29934edef45db4aac7f0b30d5ad5d"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x84, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6113}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x401}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\\\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/vcsa#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2cc}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/vcsa#\x00'}]}]}]}, @ETHTOOL_A_LINKMODES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x5}]}, 0x190}}, 0x4080) sendmsg$inet(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)='*', 0x1}, {&(0x7f0000000140)="34e83e20698b7893c7e96f38faea7a43000385f3770a42168e6cafb017bc82a9bda94719a5702b3655ddb70aea5f72a3f9", 0x31}], 0x2}, 0x0) setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000040)=0x100, 0x4) 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xffffe000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 129.770871][T12992] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 129.781450][T12978] loop2: detected capacity change from 0 to 4 [ 129.788016][T12992] loop3: detected capacity change from 0 to 1 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xffffff7f, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:46 executing program 4: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x40) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x434842, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = io_uring_setup(0x2eac, &(0x7f0000000000)) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r3, 0x5425, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r4, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/179, 0xb3}], 0x1, 0xd9f, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 20:22:46 executing program 3 (fault-call:3 fault-nth:26): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:46 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x3) [ 129.914824][T13053] loop5: detected capacity change from 0 to 80 [ 129.914943][T13050] FAULT_INJECTION: forcing a failure. [ 129.914943][T13050] name failslab, interval 1, probability 0, space 0, times 0 [ 129.933815][T13050] CPU: 1 PID: 13050 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 129.942686][T13050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 129.952746][T13050] Call Trace: [ 129.956017][T13050] dump_stack_lvl+0xb7/0x103 [ 129.960635][T13050] dump_stack+0x11/0x1a [ 129.964776][T13050] should_fail+0x23c/0x250 [ 129.969196][T13050] ? __kernfs_new_node+0x6a/0x330 [ 129.974293][T13050] __should_failslab+0x81/0x90 [ 129.980088][T13050] should_failslab+0x5/0x20 [ 129.984571][T13050] kmem_cache_alloc+0x46/0x2e0 [ 129.989319][T13050] __kernfs_new_node+0x6a/0x330 [ 129.994217][T13050] ? __cond_resched+0x11/0x40 [ 129.999447][T13050] ? mutex_lock+0x9/0x30 [ 130.003792][T13050] kernfs_new_node+0x5b/0xd0 [ 130.008382][T13050] __kernfs_create_file+0x45/0x1a0 [ 130.013658][T13050] sysfs_add_file_mode_ns+0x1c1/0x250 [ 130.019114][T13050] internal_create_group+0x2e4/0x850 [ 130.024583][T13050] sysfs_create_group+0x1b/0x20 [ 130.029505][T13050] loop_configure+0xa77/0xd10 [ 130.034184][T13050] lo_ioctl+0x558/0x1210 [ 130.038600][T13050] ? path_openat+0x18e4/0x1f20 [ 130.043396][T13050] ? putname+0xa5/0xc0 [ 130.047464][T13050] ? ___cache_free+0x3c/0x300 [ 130.052437][T13050] ? blkdev_common_ioctl+0x9c3/0x1040 [ 130.057901][T13050] ? selinux_file_ioctl+0x8e0/0x970 [ 130.063245][T13050] ? lo_release+0x120/0x120 [ 130.067796][T13050] blkdev_ioctl+0x1d0/0x3c0 [ 130.072325][T13050] block_ioctl+0x6d/0x80 [ 130.076587][T13050] ? blkdev_iopoll+0x70/0x70 [ 130.081175][T13050] __se_sys_ioctl+0xcb/0x140 [ 130.085748][T13050] __x64_sys_ioctl+0x3f/0x50 [ 130.090888][T13050] do_syscall_64+0x3d/0x90 [ 130.095298][T13050] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 130.101174][T13050] RIP: 0033:0x4663a7 [ 130.105086][T13050] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.124686][T13050] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 130.133111][T13050] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 130.141070][T13050] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 130.149209][T13050] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 130.157262][T13050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xffffff8c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xfffffff6, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 130.165213][T13050] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xfffffffe, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x8000000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:46 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x4) 20:22:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xac26, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:47 executing program 2: pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) write$P9_RLERRORu(r1, &(0x7f0000000000)={0xe, 0x7, 0x1, {{0x1, '-'}, 0x10000}}, 0xe) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4a00, 0x2) write$P9_RLOCK(r2, &(0x7f00000000c0)={0x8, 0x35, 0x2}, 0x8) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}}) 20:22:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mq_timedreceive(r1, &(0x7f00000005c0)=""/4096, 0x1000, 0x8, &(0x7f0000000380)) r2 = io_uring_setup(0x3eac, &(0x7f0000000000)) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000003c0), 0x84800, 0x0) mq_timedreceive(r3, &(0x7f0000000400)=""/200, 0xc8, 0x80, &(0x7f0000000500)={0x0, 0x989680}) sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="08020000", @ANYRES16=0x0, @ANYBLOB="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"], 0x208}, 0x1, 0x0, 0x0, 0x80}, 0x40010) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r4, 0x5425, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 20:22:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xedc000000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0xe0ffff00000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 130.249267][T13050] loop3: detected capacity change from 0 to 1 [ 130.269282][T13053] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:47 executing program 3 (fault-call:3 fault-nth:27): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_read_part_table(0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000180)="030005020314af65b5dab8ed380031000000ec0a2b9f0000000008000500000000e04100000000000000000000000000000418000000000000000000200055aa", 0x40, 0x1c0}, {&(0x7f00000000c0)="2958bbcb93d48324a4f4529ce61e9dba89a2aceb025d50107554a5901a8e06ac9d360d372ee105a215562b5e82bd11ec16809c056dcee16423fe7116dc9a3c93039fe3ac1ccab8a10ef3088f3e688f5e93c3526037331f28adb5fa207af136e46ac4f6f8042ac4b182b169ed3927f033962b96f37377f7823e8f2ad644619dbfcb6873d2796f96dfa852bac8bc60e97429425315543b3ccd73c0ffffffffffffff468a45fd181e19183ca56975ac4a5009d24615a455361b04ecdb11e2", 0xbd, 0x102}]) 20:22:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x100000000000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) 20:22:47 executing program 0: set_mempolicy(0x2, &(0x7f0000000040)=0x7, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x103401, 0x5) 20:22:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x200000000000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 130.361581][T13104] loop5: detected capacity change from 0 to 86 [ 130.398583][T13104] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:22:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xb126, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$tmpfs(0x300000000000000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind'}}, 0xa}], [], 0xc}) [ 130.449859][T13116] loop3: detected capacity change from 0 to 1 [ 130.456679][T13116] FAULT_INJECTION: forcing a failure. [ 130.456679][T13116] name failslab, interval 1, probability 0, space 0, times 0 [ 130.470127][T13116] CPU: 0 PID: 13116 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 130.478887][T13116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 130.488945][T13116] Call Trace: [ 130.492258][T13116] dump_stack_lvl+0xb7/0x103 [ 130.496938][T13116] dump_stack+0x11/0x1a [ 130.501176][T13116] should_fail+0x23c/0x250 [ 130.505671][T13116] __should_failslab+0x81/0x90 [ 130.510514][T13116] ? kobject_uevent_env+0x1a7/0xc40 [ 130.515764][T13116] should_failslab+0x5/0x20 [ 130.520256][T13116] kmem_cache_alloc_trace+0x49/0x310 [ 130.525642][T13116] ? dev_uevent_filter+0x70/0x70 [ 130.530565][T13116] kobject_uevent_env+0x1a7/0xc40 [ 130.535661][T13116] kobject_uevent+0x18/0x20 [ 130.540186][T13116] loop_configure+0xb94/0xd10 [ 130.544948][T13116] lo_ioctl+0x558/0x1210 [ 130.549175][T13116] ? path_openat+0x18e4/0x1f20 [ 130.553953][T13116] ? putname+0xa5/0xc0 [ 130.558022][T13116] ? ___cache_free+0x3c/0x300 [ 130.562683][T13116] ? blkdev_common_ioctl+0x9c3/0x1040 [ 130.568106][T13116] ? selinux_file_ioctl+0x8e0/0x970 [ 130.573385][T13116] ? lo_release+0x120/0x120 [ 130.577972][T13116] blkdev_ioctl+0x1d0/0x3c0 [ 130.582466][T13116] block_ioctl+0x6d/0x80 [ 130.586697][T13116] ? blkdev_iopoll+0x70/0x70 [ 130.591285][T13116] __se_sys_ioctl+0xcb/0x140 [ 130.595881][T13116] __x64_sys_ioctl+0x3f/0x50 [ 130.600625][T13116] do_syscall_64+0x3d/0x90 [ 130.605231][T13116] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 130.611106][T13116] RIP: 0033:0x4663a7 [ 130.614997][T13116] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.634892][T13116] RSP: 002b:00007f4863a7ce98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:22:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xc502, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e666174000280200002007a0004f8000020004000000000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000080)={[{@shortname_win95}, {@shortname_winnt}]}) 20:22:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = io_uring_setup(0x2eac, &(0x7f0000000100)={0x0, 0x4167, 0x10, 0x0, 0xfffffffd}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCSBRKP(r2, 0x5425, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000008, 0x40010, r4, 0x8000000) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 130.643297][T13116] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004663a7 [ 130.651365][T13116] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 130.659404][T13116] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 130.667355][T13116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 130.675316][T13116] R13: 0000000000000005 R14: 0000000020000030 R15: 0000000000000002 [ 130.748300][T13141] loop5: detected capacity change from 0 to 98 [ 130.756881][T13141] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 134.294347][ T0] ================================================================== [ 134.302551][ T0] BUG: KCSAN: data-race in tick_nohz_stop_tick / tick_sched_timer [ 134.310361][ T0] [ 134.312693][ T0] write to 0xffffffff838c1bd0 of 4 bytes by interrupt on cpu 1: [ 134.320313][ T0] tick_sched_timer+0x1f5/0x210 [ 134.325148][ T0] __run_hrtimer+0x160/0x480 [ 134.329739][ T0] hrtimer_interrupt+0x380/0xaf0 [ 134.334681][ T0] __sysvec_apic_timer_interrupt+0x6f/0x1c0 [ 134.340562][ T0] sysvec_apic_timer_interrupt+0x64/0x80 [ 134.346270][ T0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 134.352226][ T0] acpi_idle_enter+0x258/0x2e0 [ 134.357058][ T0] cpuidle_enter_state+0x2b6/0x750 [ 134.362167][ T0] cpuidle_enter+0x3c/0x60 [ 134.366568][ T0] do_idle+0x1a3/0x240 [ 134.370728][ T0] cpu_startup_entry+0x15/0x20 [ 134.375472][ T0] secondary_startup_64_no_verify+0xb0/0xbb [ 134.381356][ T0] [ 134.383657][ T0] read to 0xffffffff838c1bd0 of 4 bytes by task 0 on cpu 0: [ 134.390910][ T0] tick_nohz_stop_tick+0x73/0x3e0 [ 134.395920][ T0] tick_nohz_idle_stop_tick+0x15d/0x310 [ 134.401553][ T0] do_idle+0x186/0x240 [ 134.405599][ T0] cpu_startup_entry+0x15/0x20 [ 134.410783][ T0] rest_init+0xee/0x100 [ 134.414916][ T0] arch_call_rest_init+0xa/0xb [ 134.419656][ T0] start_kernel+0x5ae/0x633 [ 134.424139][ T0] secondary_startup_64_no_verify+0xb0/0xbb [ 134.430005][ T0] [ 134.432303][ T0] value changed: 0xffffffff -> 0x00000001 [ 134.437993][ T0] [ 134.440291][ T0] Reported by Kernel Concurrency Sanitizer on: [ 134.446509][ T0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.14.0-rc2-syzkaller #0 [ 134.454488][ T0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 134.464531][ T0] ==================================================================