02, 0x0) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r2) sendmsg$BATADV_CMD_GET_VLAN(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r5, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x1000}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x40880}, 0x0) sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), r1) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x24, r6, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x1f}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x24004000}, 0x4080) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r3, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x8080) 13:22:00 executing program 0 (fault-call:1 fault-nth:23): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:00 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2) r0 = getpgid(0x0) r1 = eventfd2(0x20, 0x80801) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000080)={r1, 0x80}) waitid(0x2, r0, &(0x7f0000000000), 0xa, 0x0) 13:22:00 executing program 4: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0cc5640, &(0x7f0000000000)={0x3, @sdr={0x38416761, 0x2}}) fork() getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xc0, &(0x7f0000000140)=""/32, &(0x7f0000000180)=0x20) 13:22:00 executing program 2: ioctl$BLKBSZGET(0xffffffffffffffff, 0x80041270, &(0x7f0000000100)) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) setsockopt$TIPC_MCAST_REPLICAST(r0, 0x10f, 0x86) r1 = getpgid(0xffffffffffffffff) waitid(0x1, r1, &(0x7f0000000000), 0x80000000, &(0x7f0000000080)) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) sendmsg$tipc(r2, &(0x7f0000000840)={&(0x7f0000000140)=@id={0x1e, 0x3, 0x2, {0x4e21}}, 0x10, &(0x7f0000000780)=[{&(0x7f0000000180)="ffde69eaf2365fba323b0acda08cf78e2f2ee3bae18ec65a8ad4b5e3023bf08caa7a4af139113103b113cb48660b6058e5509aeaa42f524cbc447bde2dc09fc671717c40b453a050ffbfc55c3659", 0x4e}, {&(0x7f0000000200)="eeb774a4991b7c7d292f9099a70c15de69de8ddd65f8b3d09398cb7b8ba9edae063e83755d47df2fee80fe6322a9b06921e3aca469bc7dc798eebf92d4176dac3bd57d45249e881b0ece33c873ff6f797f71194f0220f7a1206052074389b85ab0eaf378", 0x64}, {&(0x7f0000000280)="f8b2eb6495e8b7e9a41453b97531551d8c6e871f3b354548e622cbec3f403e9844311796118282e17a4ede62221c785453b4755bf17031d7e5a93cebc56025350bca56d15cfd4b28d6ab460503459b6a6f09ca510a749a29e833eeeba153a6e11641e953d984a57bc7a0dcba9531bc3239e33c100d12d111a96ef702ccfae5078c2e77aa1d4af6e494f2535453b7177527c469675f8740434825db66dd7dc94d910759ee5c2452c4a4e9", 0xaa}, {&(0x7f0000000340)="233b46cb4181358325900285ec6c1a91e3973969ae460abf7c78d2e7c1715c9a7920499ca821cc91110f8c3978167958c1a26387", 0x34}, {&(0x7f0000000380)="3736ac9ecc284287c25479c2be887cce01573d310127051e6c2ce2e65e9c40eb9763416a89df0925c129e106557c7d22a561ce3b9ae17ca53c9df4fb37859874ae5e1caa5ef7748c6404ab7e5f956783b693c26b693d3cc14b01d85d063ca631a8f5eb0cb0ddce0f511c05692880f2583162895dedf258df57d587c3ecf38782063beb14be5fafeefcbded25d01d4026d7090469f9a6a730b786812b459b994938166f35f5f53950e703adc6b2192e82e2215e18e25b5c059f2a1596b2aca69ff666d54021b10fcd9c3c38fc889cd5f97b53b382f387a47d67fa7dc51b8125837074b23b7dcfdea52cc2e6484c34f6", 0xef}, {&(0x7f0000000480)="d55d2382ac158bedc6dc8d18864f8d30d781fdb5b9cbcdf811a2224ce4054972", 0x20}, {&(0x7f00000004c0)="839ce720ded0f6ebed1815760e6d1c9be0b5e28465e0b279f768bc774150f071c8627e83090910f5d57be0454e11385d7e8e200ef91abb9325442b49c5ccc8e63475bab1028cc68c2ec92ff6b6023ceada578bc46bf97a7e668fad7431ad46bc9bd047df83c6fe1b13e58840e84c2d7241acce11adf314327313c2b84c83d2378a4bef2f3a553257e7b351a959", 0x8d}, {&(0x7f0000000580)="d809ca4c2fdad4e0baf78aba6aed54df31e1ffb10d38b99108ea8a802e4a35c329605f4b3b95859f7cfeb013908fbe740f9db121421e4e3d71efae7d20cf7a22cf4139af232db6a85892329642855ba974d1aa9f11c97376c4df13f70d05695076d600cda362eda1f77fe5d6ce7420a6d81b96499745a2aa7b3b402a9c3645fa295cd00a5b249c386d229b3a0610f20907fa46c51b9f4960c0022738ef1438b2e224fcf8a353a6b817a10cf254da4ab174f8e7e2b15ca1", 0xb7}, {&(0x7f0000000640)="7c61f66498f128bb380e2ac44b4f08fcca8733e7", 0x14}, {&(0x7f0000000680)="f9c3b7a6525716bf512711b69c3625c5c09271c08a1c7a98368aea0f24e70fefe6e86b05a82a99cae8c121d5f7e2caac16b0f3dab9b4c7be6a6ae46cc554bcf49954cb258de11187eb9f7fa5769e31ad41321bb776603a83601ced098c37281c09b834d3ff817926ff05ebffa54e1d24fe996e0f68ee6c7d98c6b88289c821ca00f8bf304f725241a1ca4905777b51e3c5b9ad4dd87b8ca547c1355625e7c5ac7c752be33a149a4796764bac0f96d2b6a6b8d28193ce3f7f75b694de1e29cc9fa7c3cb8721401d5df1930fec428dc1e7ad2708ac64ec7d566d18480d4d37ba5ff8b0e9be80e0be3e662f3dc9d5d8006a", 0xf0}], 0xa, &(0x7f0000000800), 0x0, 0x4}, 0x1) r3 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r3, 0x1267, &(0x7f0000000040)) ioctl$BLKALIGNOFF(r3, 0x127a, &(0x7f0000000800)) [ 2599.409340][ T7167] FAULT_INJECTION: forcing a failure. [ 2599.409340][ T7167] name fail_page_alloc, interval 1, probability 0, space 0, times 0 13:22:00 executing program 4: ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x89ed, 0x0) r0 = fork() ptrace$getregs(0xe, r0, 0x14, &(0x7f0000000000)=""/142) r1 = fork() getpgid(r1) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x4, &(0x7f00000000c0)=""/108) 13:22:00 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080), &(0x7f00000000c0)=0x4) [ 2599.507065][ T7167] CPU: 0 PID: 7167 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2599.515459][ T7167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2599.525538][ T7167] Call Trace: [ 2599.528828][ T7167] dump_stack_lvl+0xcd/0x134 [ 2599.533449][ T7167] should_fail.cold+0x5/0xa [ 2599.537987][ T7167] prepare_alloc_pages+0x17b/0x580 [ 2599.543136][ T7167] __alloc_pages+0x12f/0x500 [ 2599.547762][ T7167] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2599.554578][ T7167] ? __kasan_kmalloc+0x9b/0xd0 [ 2599.559369][ T7167] ? kvmalloc_node+0x61/0xf0 [ 2599.563997][ T7167] alloc_pages+0x18c/0x2a0 [ 2599.568442][ T7167] allocate_slab+0x32b/0x4c0 [ 2599.573058][ T7167] ___slab_alloc+0x4ba/0x820 [ 2599.577671][ T7167] ? kvmalloc_node+0x61/0xf0 [ 2599.582297][ T7167] ? fs_reclaim_release+0x9c/0xf0 [ 2599.587345][ T7167] ? __slab_alloc.constprop.0+0x7b/0xf0 [ 2599.592923][ T7167] ? kvmalloc_node+0x61/0xf0 [ 2599.597544][ T7167] ? __slab_alloc.constprop.0+0xa7/0xf0 [ 2599.603087][ T7167] __slab_alloc.constprop.0+0xa7/0xf0 [ 2599.608479][ T7167] ? kvmalloc_node+0x61/0xf0 [ 2599.613080][ T7167] __kmalloc_node+0x2df/0x380 [ 2599.617894][ T7167] kvmalloc_node+0x61/0xf0 [ 2599.622307][ T7167] alloc_fdtable+0x15a/0x2a0 [ 2599.626900][ T7167] dup_fd+0x726/0xc90 [ 2599.630922][ T7167] ? security_task_alloc+0xe0/0x250 [ 2599.630959][ T7167] copy_process+0x218c/0x74c0 [ 2599.630993][ T7167] ? lock_chain_count+0x20/0x20 [ 2599.631017][ T7167] ? lock_chain_count+0x20/0x20 [ 2599.631053][ T7167] ? __cleanup_sighand+0xb0/0xb0 [ 2599.631088][ T7167] ? __lock_acquire+0x162f/0x54a0 [ 2599.660543][ T7167] ? kernel_clone+0x314/0xab0 [ 2599.665240][ T7167] kernel_clone+0xe7/0xab0 [ 2599.669676][ T7167] ? create_io_thread+0xf0/0xf0 [ 2599.674565][ T7167] ? find_held_lock+0x2d/0x110 [ 2599.679366][ T7167] __do_sys_fork+0x8a/0xc0 [ 2599.683799][ T7167] ? kernel_thread+0xf0/0xf0 [ 2599.688422][ T7167] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2599.695023][ T7167] ? lockdep_hardirqs_on+0x79/0x100 [ 2599.700238][ T7167] __do_fast_syscall_32+0x65/0xf0 [ 2599.705268][ T7167] do_fast_syscall_32+0x2f/0x70 [ 2599.710139][ T7167] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2599.716467][ T7167] RIP: 0023:0xf7f78549 [ 2599.720611][ T7167] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2599.740388][ T7167] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2599.748820][ T7167] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:01 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) prctl$PR_SET_TSC(0x1a, 0x1) [ 2599.758025][ T7167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2599.765995][ T7167] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2599.773975][ T7167] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2599.781948][ T7167] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:01 executing program 3: rt_sigprocmask(0x2, &(0x7f0000000000)={[0x800, 0x1]}, &(0x7f0000000040), 0x8) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:01 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x4001, 0x0) 13:22:01 executing program 0 (fault-call:1 fault-nth:24): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:01 executing program 4: fork() r0 = fork() waitid(0x0, r0, 0x0, 0x2, 0x0) wait4(r0, &(0x7f0000000000), 0x21000001, &(0x7f0000000040)) 13:22:01 executing program 3: r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x4, 0x0) 13:22:01 executing program 2: ioctl$BLKBSZGET(0xffffffffffffffff, 0x80041270, &(0x7f0000000100)) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) setsockopt$TIPC_MCAST_REPLICAST(r0, 0x10f, 0x86) r1 = getpgid(0xffffffffffffffff) waitid(0x1, r1, &(0x7f0000000000), 0x80000000, &(0x7f0000000080)) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) sendmsg$tipc(r2, &(0x7f0000000840)={&(0x7f0000000140)=@id={0x1e, 0x3, 0x2, {0x4e21}}, 0x10, &(0x7f0000000780)=[{&(0x7f0000000180)="ffde69eaf2365fba323b0acda08cf78e2f2ee3bae18ec65a8ad4b5e3023bf08caa7a4af139113103b113cb48660b6058e5509aeaa42f524cbc447bde2dc09fc671717c40b453a050ffbfc55c3659", 0x4e}, {&(0x7f0000000200)="eeb774a4991b7c7d292f9099a70c15de69de8ddd65f8b3d09398cb7b8ba9edae063e83755d47df2fee80fe6322a9b06921e3aca469bc7dc798eebf92d4176dac3bd57d45249e881b0ece33c873ff6f797f71194f0220f7a1206052074389b85ab0eaf378", 0x64}, {&(0x7f0000000280)="f8b2eb6495e8b7e9a41453b97531551d8c6e871f3b354548e622cbec3f403e9844311796118282e17a4ede62221c785453b4755bf17031d7e5a93cebc56025350bca56d15cfd4b28d6ab460503459b6a6f09ca510a749a29e833eeeba153a6e11641e953d984a57bc7a0dcba9531bc3239e33c100d12d111a96ef702ccfae5078c2e77aa1d4af6e494f2535453b7177527c469675f8740434825db66dd7dc94d910759ee5c2452c4a4e9", 0xaa}, {&(0x7f0000000340)="233b46cb4181358325900285ec6c1a91e3973969ae460abf7c78d2e7c1715c9a7920499ca821cc91110f8c3978167958c1a26387", 0x34}, {&(0x7f0000000380)="3736ac9ecc284287c25479c2be887cce01573d310127051e6c2ce2e65e9c40eb9763416a89df0925c129e106557c7d22a561ce3b9ae17ca53c9df4fb37859874ae5e1caa5ef7748c6404ab7e5f956783b693c26b693d3cc14b01d85d063ca631a8f5eb0cb0ddce0f511c05692880f2583162895dedf258df57d587c3ecf38782063beb14be5fafeefcbded25d01d4026d7090469f9a6a730b786812b459b994938166f35f5f53950e703adc6b2192e82e2215e18e25b5c059f2a1596b2aca69ff666d54021b10fcd9c3c38fc889cd5f97b53b382f387a47d67fa7dc51b8125837074b23b7dcfdea52cc2e6484c34f6", 0xef}, {&(0x7f0000000480)="d55d2382ac158bedc6dc8d18864f8d30d781fdb5b9cbcdf811a2224ce4054972", 0x20}, {&(0x7f00000004c0)="839ce720ded0f6ebed1815760e6d1c9be0b5e28465e0b279f768bc774150f071c8627e83090910f5d57be0454e11385d7e8e200ef91abb9325442b49c5ccc8e63475bab1028cc68c2ec92ff6b6023ceada578bc46bf97a7e668fad7431ad46bc9bd047df83c6fe1b13e58840e84c2d7241acce11adf314327313c2b84c83d2378a4bef2f3a553257e7b351a959", 0x8d}, {&(0x7f0000000580)="d809ca4c2fdad4e0baf78aba6aed54df31e1ffb10d38b99108ea8a802e4a35c329605f4b3b95859f7cfeb013908fbe740f9db121421e4e3d71efae7d20cf7a22cf4139af232db6a85892329642855ba974d1aa9f11c97376c4df13f70d05695076d600cda362eda1f77fe5d6ce7420a6d81b96499745a2aa7b3b402a9c3645fa295cd00a5b249c386d229b3a0610f20907fa46c51b9f4960c0022738ef1438b2e224fcf8a353a6b817a10cf254da4ab174f8e7e2b15ca1", 0xb7}, {&(0x7f0000000640)="7c61f66498f128bb380e2ac44b4f08fcca8733e7", 0x14}, {&(0x7f0000000680)="f9c3b7a6525716bf512711b69c3625c5c09271c08a1c7a98368aea0f24e70fefe6e86b05a82a99cae8c121d5f7e2caac16b0f3dab9b4c7be6a6ae46cc554bcf49954cb258de11187eb9f7fa5769e31ad41321bb776603a83601ced098c37281c09b834d3ff817926ff05ebffa54e1d24fe996e0f68ee6c7d98c6b88289c821ca00f8bf304f725241a1ca4905777b51e3c5b9ad4dd87b8ca547c1355625e7c5ac7c752be33a149a4796764bac0f96d2b6a6b8d28193ce3f7f75b694de1e29cc9fa7c3cb8721401d5df1930fec428dc1e7ad2708ac64ec7d566d18480d4d37ba5ff8b0e9be80e0be3e662f3dc9d5d8006a", 0xf0}], 0xa, &(0x7f0000000800), 0x0, 0x4}, 0x1) r3 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r3, 0x1267, &(0x7f0000000040)) ioctl$BLKALIGNOFF(r3, 0x127a, &(0x7f0000000800)) 13:22:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x8}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f0000000000)={0x2, 0xffffffffffffffff, 0x1}) fork() [ 2600.224818][ T7210] FAULT_INJECTION: forcing a failure. [ 2600.224818][ T7210] name failslab, interval 1, probability 0, space 0, times 0 [ 2600.312520][ T7210] CPU: 0 PID: 7210 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2600.320949][ T7210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2600.320971][ T7210] Call Trace: [ 2600.320983][ T7210] dump_stack_lvl+0xcd/0x134 [ 2600.321027][ T7210] should_fail.cold+0x5/0xa [ 2600.321057][ T7210] ? copy_fs_struct+0x45/0x340 [ 2600.348436][ T7210] should_failslab+0x5/0x10 [ 2600.348476][ T7210] kmem_cache_alloc+0x5e/0x4a0 [ 2600.348515][ T7210] copy_fs_struct+0x45/0x340 13:22:01 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080), &(0x7f00000000c0)=0x4) [ 2600.348550][ T7210] ? copy_process+0x221d/0x74c0 [ 2600.348580][ T7210] copy_process+0x518b/0x74c0 [ 2600.371945][ T7210] ? lock_chain_count+0x20/0x20 [ 2600.371981][ T7210] ? lock_chain_count+0x20/0x20 [ 2600.372021][ T7210] ? __cleanup_sighand+0xb0/0xb0 [ 2600.372059][ T7210] ? __lock_acquire+0x162f/0x54a0 [ 2600.372090][ T7210] ? kernel_clone+0x314/0xab0 [ 2600.372123][ T7210] kernel_clone+0xe7/0xab0 [ 2600.372155][ T7210] ? create_io_thread+0xf0/0xf0 [ 2600.372196][ T7210] ? find_held_lock+0x2d/0x110 [ 2600.372235][ T7210] __do_sys_fork+0x8a/0xc0 [ 2600.372266][ T7210] ? kernel_thread+0xf0/0xf0 [ 2600.372309][ T7210] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2600.426178][ T7210] ? lockdep_hardirqs_on+0x79/0x100 [ 2600.431415][ T7210] __do_fast_syscall_32+0x65/0xf0 [ 2600.436560][ T7210] do_fast_syscall_32+0x2f/0x70 [ 2600.441456][ T7210] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2600.447818][ T7210] RIP: 0023:0xf7f78549 13:22:01 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080), &(0x7f00000000c0)=0x4) [ 2600.451906][ T7210] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2600.471629][ T7210] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2600.480069][ T7210] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2600.488063][ T7210] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2600.496053][ T7210] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2600.504046][ T7210] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2600.512209][ T7210] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:01 executing program 3: sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000009}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x40000) wait4(0x0, 0x0, 0x4, 0x0) 13:22:01 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 13:22:01 executing program 5: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_dccp_int(r0, 0x21, 0x6, &(0x7f0000000140)=0x52, 0x4) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_HANDLE(r2, 0x113, 0x3, &(0x7f0000000180)=0x30, 0x4) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000002, 0x4052, r1, 0x10000000) fork() r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0) sendmsg$TIPC_CMD_RESET_LINK_STATS(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="f3000000", @ANYRES16=0x0, @ANYBLOB="000226bd7000ffdbdf2501000000000000000c410000000c001473797a3000000000"], 0x28}, 0x1, 0x0, 0x0, 0x40080}, 0x4000) 13:22:01 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = getpgid(0x0) wait4(r0, &(0x7f0000000000), 0x1, 0x0) r1 = openat$vim2m(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f0000000080)={0x40, 0x3136564e, 0x1, @discrete={0x5}}) 13:22:02 executing program 1: r0 = fork() wait4(r0, 0x0, 0x2, 0x0) 13:22:02 executing program 0 (fault-call:1 fault-nth:25): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:02 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r6, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_SET_VLAN(r6, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="017e128c5358c8101d292608a6c4ea05000000000000008e7bf5af7d19ec7b32efcb63b7c84b7072512710b7854c1c9d060008c0fc125a340c5c3065f18c9fcd82d80bd3d921f13c73ebc4ec38561a1d8660a4677a2135714ea0e254794bfaee2d7309e32f545c001e784b7faeaf6096c42349cec4", @ANYRES16=0x0, @ANYBLOB="02002abd0600fedbdf251200000005972a000100000005002d00010000000800340009000000f97c1d69550f4b24df49ee07bd2d469c838b6abb64c034f26b29f15917ec589b1fdfd6a25a534b3805c8d3ec0a038893f861e682d6cb036b21ba683f0af1960a6a909a229139824ffedfb64bef0904fd77b948877dee9e90b03501bf31c120f72fe4de088b"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x10) 13:22:02 executing program 3: r0 = fork() r1 = getpgid(r0) wait4(r1, 0x0, 0x2, 0x0) wait4(r1, &(0x7f0000000000), 0x20000000, &(0x7f0000000040)) 13:22:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) prctl$PR_SET_TSC(0x1a, 0x2) fork() 13:22:02 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockname(r0, &(0x7f0000000100)=@can, &(0x7f0000000180)=0x80) ioctl$vim2m_VIDIOC_G_FMT(0xffffffffffffffff, 0xc0cc5604, &(0x7f00000001c0)={0x2, @pix_mp={0xba53, 0x4, 0x48524742, 0x8, 0xc, [{0x20000000, 0x6}, {0x40, 0x10000}, {0x3, 0x9}, {0x96, 0x19a03cf5}, {0x7, 0x3b09}, {}, {0x7, 0x2}, {0xc5, 0x6}], 0x2, 0x0, 0x2}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008804}, 0x0) r1 = fork() ptrace$getregs(0xc, r1, 0x8, &(0x7f0000000000)=""/127) waitid(0x0, r1, 0x0, 0x80000002, &(0x7f00000003c0)) [ 2601.205111][ T7259] FAULT_INJECTION: forcing a failure. [ 2601.205111][ T7259] name failslab, interval 1, probability 0, space 0, times 0 13:22:02 executing program 5: ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f0000000180)={0x1}) r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x3, 0x0, 0x0, 0x8000065}, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = io_uring_setup(0x25fe, &(0x7f0000000000)={0x0, 0x583e, 0x20, 0x3, 0x338, 0x0, r0}) syz_io_uring_setup(0x4ca5, &(0x7f0000000080)={0x0, 0x1b65, 0x8, 0x2, 0x3c6, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fork() [ 2601.300273][ T7259] CPU: 0 PID: 7259 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2601.308666][ T7259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2601.318761][ T7259] Call Trace: [ 2601.322057][ T7259] dump_stack_lvl+0xcd/0x134 [ 2601.326695][ T7259] should_fail.cold+0x5/0xa [ 2601.331238][ T7259] ? copy_process+0x2475/0x74c0 [ 2601.336119][ T7259] should_failslab+0x5/0x10 [ 2601.340654][ T7259] kmem_cache_alloc+0x5e/0x4a0 [ 2601.345470][ T7259] copy_process+0x2475/0x74c0 [ 2601.350181][ T7259] ? lock_chain_count+0x20/0x20 [ 2601.355059][ T7259] ? lock_chain_count+0x20/0x20 [ 2601.359952][ T7259] ? __cleanup_sighand+0xb0/0xb0 [ 2601.364925][ T7259] ? __lock_acquire+0x162f/0x54a0 [ 2601.370006][ T7259] ? kernel_clone+0x314/0xab0 [ 2601.374723][ T7259] kernel_clone+0xe7/0xab0 [ 2601.379261][ T7259] ? create_io_thread+0xf0/0xf0 [ 2601.384156][ T7259] ? find_held_lock+0x2d/0x110 [ 2601.389079][ T7259] __do_sys_fork+0x8a/0xc0 [ 2601.393539][ T7259] ? kernel_thread+0xf0/0xf0 [ 2601.398181][ T7259] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2601.405105][ T7259] ? lockdep_hardirqs_on+0x79/0x100 [ 2601.410349][ T7259] __do_fast_syscall_32+0x65/0xf0 [ 2601.415405][ T7259] do_fast_syscall_32+0x2f/0x70 [ 2601.420286][ T7259] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2601.426645][ T7259] RIP: 0023:0xf7f78549 [ 2601.430736][ T7259] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2601.450694][ T7259] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2601.459142][ T7259] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2601.467155][ T7259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2601.475151][ T7259] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2601.483157][ T7259] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:02 executing program 5: syz_io_uring_setup(0x39f2, &(0x7f0000000240)={0x0, 0x0, 0x8, 0xffffffff, 0xfffffffe}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, 0x0, 0x0) fork() clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000040)={0xddf, 0x0, 0x4, 0x70000, 0x1, {r0, r1/1000+10000}, {0x1, 0x8, 0x7f, 0x0, 0x0, 0xd8, "3cb836ae"}, 0x5, 0x3, @offset=0x5, 0x9, 0x0, 0xffffffffffffffff}) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f00000000c0)={0x8001, 0x6, 0x4, 0x10, 0x9, {0x77359400}, {0x5, 0xc, 0x7, 0x80, 0x1, 0xff, "cccfbaca"}, 0x7fffffff, 0x1, @userptr=0x7, 0x1, 0x0, r2}) 13:22:02 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = openat$nullb(0xffffff9c, &(0x7f0000000100), 0x200, 0x0) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f0000000140)) waitid(0x1, 0x0, &(0x7f0000000000), 0x1, &(0x7f0000000080)) [ 2601.491183][ T7259] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:02 executing program 4: fork() r0 = getpgid(0xffffffffffffffff) ptrace$getsig(0x4202, r0, 0x7f, &(0x7f0000000000)) 13:22:02 executing program 3: r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x2, 0x0) 13:22:02 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r6, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_SET_VLAN(r6, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="017e128c5358c8101d292608a6c4ea05000000000000008e7bf5af7d19ec7b32efcb63b7c84b7072512710b7854c1c9d060008c0fc125a340c5c3065f18c9fcd82d80bd3d921f13c73ebc4ec38561a1d8660a4677a2135714ea0e254794bfaee2d7309e32f545c001e784b7faeaf6096c42349cec4", @ANYRES16=0x0, @ANYBLOB="02002abd0600fedbdf251200000005972a000100000005002d00010000000800340009000000f97c1d69550f4b24df49ee07bd2d469c838b6abb64c034f26b29f15917ec589b1fdfd6a25a534b3805c8d3ec0a038893f861e682d6cb036b21ba683f0af1960a6a909a229139824ffedfb64bef0904fd77b948877dee9e90b03501bf31c120f72fe4de088b"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x10) 13:22:03 executing program 1: r0 = fork() ptrace$getsig(0x4202, r0, 0x7f, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:03 executing program 0 (fault-call:1 fault-nth:26): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {}, {0x10, 0x13, @l2={'ib', 0x3a, 'caif0\x00'}}}, [""]}, 0x2c}}, 0x800) ptrace$getsig(0x4202, r0, 0x0, &(0x7f0000000100)) 13:22:03 executing program 4: fork() fork() 13:22:03 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r6, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_SET_VLAN(r6, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="017e128c5358c8101d292608a6c4ea05000000000000008e7bf5af7d19ec7b32efcb63b7c84b7072512710b7854c1c9d060008c0fc125a340c5c3065f18c9fcd82d80bd3d921f13c73ebc4ec38561a1d8660a4677a2135714ea0e254794bfaee2d7309e32f545c001e784b7faeaf6096c42349cec4", @ANYRES16=0x0, @ANYBLOB="02002abd0600fedbdf251200000005972a000100000005002d00010000000800340009000000f97c1d69550f4b24df49ee07bd2d469c838b6abb64c034f26b29f15917ec589b1fdfd6a25a534b3805c8d3ec0a038893f861e682d6cb036b21ba683f0af1960a6a909a229139824ffedfb64bef0904fd77b948877dee9e90b03501bf31c120f72fe4de088b"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x10) [ 2602.145311][ T7305] FAULT_INJECTION: forcing a failure. [ 2602.145311][ T7305] name failslab, interval 1, probability 0, space 0, times 0 [ 2602.185085][ T7305] CPU: 1 PID: 7305 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2602.193464][ T7305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2602.203566][ T7305] Call Trace: [ 2602.206864][ T7305] dump_stack_lvl+0xcd/0x134 [ 2602.211505][ T7305] should_fail.cold+0x5/0xa [ 2602.216047][ T7305] ? dup_mm+0x8a/0x1380 [ 2602.220265][ T7305] should_failslab+0x5/0x10 [ 2602.220303][ T7305] kmem_cache_alloc+0x5e/0x4a0 13:22:03 executing program 4: r0 = fork() waitid(0x1, r0, &(0x7f0000000000), 0x2, 0x0) [ 2602.220338][ T7305] dup_mm+0x8a/0x1380 [ 2602.220374][ T7305] ? copy_process+0x293b/0x74c0 [ 2602.220407][ T7305] ? vm_area_dup+0x2b0/0x2b0 [ 2602.220437][ T7305] ? __raw_spin_lock_init+0x36/0x110 [ 2602.220469][ T7305] copy_process+0x71e0/0x74c0 13:22:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x20, 0x70bd2b, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x8}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40001}, 0x6850) [ 2602.220501][ T7305] ? lock_chain_count+0x20/0x20 [ 2602.220523][ T7305] ? lock_chain_count+0x20/0x20 [ 2602.220562][ T7305] ? __cleanup_sighand+0xb0/0xb0 [ 2602.220596][ T7305] ? __lock_acquire+0x162f/0x54a0 13:22:03 executing program 0 (fault-call:1 fault-nth:27): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2602.220626][ T7305] ? kernel_clone+0x314/0xab0 [ 2602.220656][ T7305] kernel_clone+0xe7/0xab0 [ 2602.220685][ T7305] ? create_io_thread+0xf0/0xf0 [ 2602.220723][ T7305] ? find_held_lock+0x2d/0x110 [ 2602.220757][ T7305] __do_sys_fork+0x8a/0xc0 [ 2602.220785][ T7305] ? kernel_thread+0xf0/0xf0 13:22:03 executing program 0 (fault-call:1 fault-nth:28): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2602.220827][ T7305] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2602.220866][ T7305] ? lockdep_hardirqs_on+0x79/0x100 [ 2602.220895][ T7305] __do_fast_syscall_32+0x65/0xf0 13:22:03 executing program 3: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4040014) wait4(0x0, 0x0, 0x4, 0x0) [ 2602.220925][ T7305] do_fast_syscall_32+0x2f/0x70 [ 2602.220951][ T7305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2602.220980][ T7305] RIP: 0023:0xf7f78549 13:22:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x17b}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2602.221003][ T7305] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:03 executing program 0 (fault-call:1 fault-nth:29): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2602.221031][ T7305] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2602.221061][ T7305] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2602.221085][ T7305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2602.221103][ T7305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2602.221119][ T7305] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2602.221137][ T7305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2602.521321][ T7328] FAULT_INJECTION: forcing a failure. [ 2602.521321][ T7328] name failslab, interval 1, probability 0, space 0, times 0 [ 2602.521359][ T7328] CPU: 0 PID: 7328 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2602.521387][ T7328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2602.521402][ T7328] Call Trace: [ 2602.521412][ T7328] dump_stack_lvl+0xcd/0x134 [ 2602.521447][ T7328] should_fail.cold+0x5/0xa [ 2602.521477][ T7328] ? dup_mm+0x8a/0x1380 [ 2602.521505][ T7328] should_failslab+0x5/0x10 [ 2602.521531][ T7328] kmem_cache_alloc+0x5e/0x4a0 [ 2602.521562][ T7328] dup_mm+0x8a/0x1380 [ 2602.521596][ T7328] ? copy_process+0x293b/0x74c0 [ 2602.521630][ T7328] ? vm_area_dup+0x2b0/0x2b0 [ 2602.521669][ T7328] ? __raw_spin_lock_init+0x36/0x110 [ 2602.521705][ T7328] copy_process+0x71e0/0x74c0 [ 2602.521737][ T7328] ? lock_chain_count+0x20/0x20 [ 2602.521762][ T7328] ? lock_chain_count+0x20/0x20 [ 2602.521804][ T7328] ? __cleanup_sighand+0xb0/0xb0 [ 2602.521841][ T7328] ? __lock_acquire+0x162f/0x54a0 [ 2602.521871][ T7328] ? kernel_clone+0x314/0xab0 [ 2602.521903][ T7328] kernel_clone+0xe7/0xab0 [ 2602.521933][ T7328] ? create_io_thread+0xf0/0xf0 [ 2602.521974][ T7328] ? find_held_lock+0x2d/0x110 [ 2602.522009][ T7328] __do_sys_fork+0x8a/0xc0 [ 2602.522038][ T7328] ? kernel_thread+0xf0/0xf0 [ 2602.522078][ T7328] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2602.522113][ T7328] ? lockdep_hardirqs_on+0x79/0x100 [ 2602.522141][ T7328] __do_fast_syscall_32+0x65/0xf0 [ 2602.522165][ T7328] do_fast_syscall_32+0x2f/0x70 [ 2602.522191][ T7328] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2602.522218][ T7328] RIP: 0023:0xf7f78549 [ 2602.522236][ T7328] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2602.522258][ T7328] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2602.522280][ T7328] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:04 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) wait4(0xffffffffffffffff, &(0x7f0000000100), 0x1000000, &(0x7f0000000140)) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x802) 13:22:04 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x29a}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:04 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x2, &(0x7f00000000c0)=""/30, &(0x7f0000000100)=0x1e) r0 = getpgid(0x0) wait4(r0, &(0x7f0000000000), 0x40000000, &(0x7f0000000040)) wait4(r0, 0x0, 0x0, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x4, &(0x7f0000000140)=""/67) 13:22:04 executing program 0 (fault-call:1 fault-nth:30): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2602.522294][ T7328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2602.522306][ T7328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2602.522318][ T7328] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2602.522331][ T7328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2602.669708][ T7336] FAULT_INJECTION: forcing a failure. [ 2602.669708][ T7336] name failslab, interval 1, probability 0, space 0, times 0 [ 2602.669746][ T7336] CPU: 1 PID: 7336 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2602.669771][ T7336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2602.669786][ T7336] Call Trace: [ 2602.669795][ T7336] dump_stack_lvl+0xcd/0x134 [ 2602.669835][ T7336] should_fail.cold+0x5/0xa [ 2602.669868][ T7336] ? vm_area_dup+0x88/0x2b0 [ 2602.669898][ T7336] should_failslab+0x5/0x10 [ 2602.669924][ T7336] kmem_cache_alloc+0x5e/0x4a0 [ 2602.669959][ T7336] vm_area_dup+0x88/0x2b0 [ 2602.670003][ T7336] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2602.670033][ T7336] ? copy_page_range+0x24ed/0x4010 [ 2602.670100][ T7336] ? vm_area_alloc+0x110/0x110 [ 2602.670164][ T7336] ? handle_mm_fault+0x7f0/0x7f0 [ 2602.670202][ T7336] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2602.670230][ T7336] ? percpu_counter_add_batch+0xbd/0x180 [ 2602.670266][ T7336] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2602.670293][ T7336] ? __vm_enough_memory+0x184/0x360 [ 2602.670319][ T7336] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2602.670356][ T7336] dup_mm+0x543/0x1380 [ 2602.670399][ T7336] ? vm_area_dup+0x2b0/0x2b0 [ 2602.670431][ T7336] ? __raw_spin_lock_init+0x36/0x110 [ 2602.670465][ T7336] copy_process+0x71e0/0x74c0 [ 2602.670496][ T7336] ? lock_chain_count+0x20/0x20 [ 2602.670520][ T7336] ? lock_chain_count+0x20/0x20 [ 2602.670563][ T7336] ? __cleanup_sighand+0xb0/0xb0 [ 2602.670599][ T7336] ? __lock_acquire+0x162f/0x54a0 [ 2602.670629][ T7336] ? kernel_clone+0x314/0xab0 [ 2602.670660][ T7336] kernel_clone+0xe7/0xab0 [ 2602.670692][ T7336] ? create_io_thread+0xf0/0xf0 [ 2602.670734][ T7336] ? find_held_lock+0x2d/0x110 [ 2602.670776][ T7336] __do_sys_fork+0x8a/0xc0 [ 2602.670804][ T7336] ? kernel_thread+0xf0/0xf0 [ 2602.670847][ T7336] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2602.670885][ T7336] ? lockdep_hardirqs_on+0x79/0x100 [ 2602.670915][ T7336] __do_fast_syscall_32+0x65/0xf0 [ 2602.670944][ T7336] do_fast_syscall_32+0x2f/0x70 [ 2602.670970][ T7336] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2602.670999][ T7336] RIP: 0023:0xf7f78549 [ 2602.671020][ T7336] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2602.671048][ T7336] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2602.671077][ T7336] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2602.671094][ T7336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2602.671110][ T7336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2602.671125][ T7336] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2602.671142][ T7336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2602.904269][ T7345] FAULT_INJECTION: forcing a failure. [ 2602.904269][ T7345] name failslab, interval 1, probability 0, space 0, times 0 [ 2602.904310][ T7345] CPU: 1 PID: 7345 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2602.904339][ T7345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2602.904356][ T7345] Call Trace: [ 2602.904367][ T7345] dump_stack_lvl+0xcd/0x134 [ 2602.904407][ T7345] should_fail.cold+0x5/0xa [ 2602.904439][ T7345] ? vm_area_dup+0x88/0x2b0 [ 2602.904469][ T7345] should_failslab+0x5/0x10 [ 2602.904497][ T7345] kmem_cache_alloc+0x5e/0x4a0 [ 2602.904530][ T7345] vm_area_dup+0x88/0x2b0 [ 2602.904582][ T7345] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2602.904613][ T7345] ? copy_page_range+0x24ed/0x4010 [ 2602.904674][ T7345] ? vm_area_alloc+0x110/0x110 [ 2602.904716][ T7345] ? handle_mm_fault+0x7f0/0x7f0 [ 2602.904752][ T7345] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2602.904779][ T7345] ? percpu_counter_add_batch+0xbd/0x180 [ 2602.904817][ T7345] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2602.904845][ T7345] ? __vm_enough_memory+0x184/0x360 [ 2602.904871][ T7345] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2602.904905][ T7345] dup_mm+0x543/0x1380 [ 2602.904949][ T7345] ? vm_area_dup+0x2b0/0x2b0 [ 2602.904982][ T7345] ? __raw_spin_lock_init+0x36/0x110 [ 2602.905016][ T7345] copy_process+0x71e0/0x74c0 [ 2602.905047][ T7345] ? lock_chain_count+0x20/0x20 [ 2602.905070][ T7345] ? lock_chain_count+0x20/0x20 [ 2602.905110][ T7345] ? __cleanup_sighand+0xb0/0xb0 [ 2602.905147][ T7345] ? __lock_acquire+0x162f/0x54a0 [ 2602.905177][ T7345] ? kernel_clone+0x314/0xab0 [ 2602.905208][ T7345] kernel_clone+0xe7/0xab0 [ 2602.905241][ T7345] ? create_io_thread+0xf0/0xf0 [ 2602.905280][ T7345] ? find_held_lock+0x2d/0x110 [ 2602.905318][ T7345] __do_sys_fork+0x8a/0xc0 [ 2602.905345][ T7345] ? kernel_thread+0xf0/0xf0 [ 2602.905386][ T7345] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2602.905424][ T7345] ? lockdep_hardirqs_on+0x79/0x100 [ 2602.905457][ T7345] __do_fast_syscall_32+0x65/0xf0 [ 2602.905488][ T7345] do_fast_syscall_32+0x2f/0x70 [ 2602.905517][ T7345] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2602.905553][ T7345] RIP: 0023:0xf7f78549 [ 2602.905575][ T7345] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2602.905604][ T7345] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2602.905632][ T7345] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2602.905651][ T7345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2602.905668][ T7345] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2602.905687][ T7345] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2602.905704][ T7345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2603.327516][ T7354] FAULT_INJECTION: forcing a failure. [ 2603.327516][ T7354] name failslab, interval 1, probability 0, space 0, times 0 [ 2603.327555][ T7354] CPU: 1 PID: 7354 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2603.327581][ T7354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2603.327597][ T7354] Call Trace: [ 2603.327608][ T7354] dump_stack_lvl+0xcd/0x134 [ 2603.327646][ T7354] should_fail.cold+0x5/0xa [ 2603.327678][ T7354] ? vm_area_dup+0x88/0x2b0 [ 2603.327709][ T7354] should_failslab+0x5/0x10 [ 2603.327737][ T7354] kmem_cache_alloc+0x5e/0x4a0 [ 2603.327770][ T7354] vm_area_dup+0x88/0x2b0 [ 2603.327802][ T7354] ? __lock_acquire+0x162f/0x54a0 [ 2603.327836][ T7354] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2603.327864][ T7354] ? copy_page_range+0x24ed/0x4010 [ 2603.327896][ T7354] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2603.327935][ T7354] ? find_held_lock+0x2d/0x110 [ 2603.327974][ T7354] ? vm_area_alloc+0x110/0x110 [ 2603.328002][ T7354] ? find_held_lock+0x2d/0x110 [ 2603.328042][ T7354] ? handle_mm_fault+0x7f0/0x7f0 [ 2603.328075][ T7354] ? validate_mm_rb+0x46/0x2d0 [ 2603.328111][ T7354] ? __vma_link_rb+0x553/0x710 [ 2603.328149][ T7354] dup_mm+0x543/0x1380 [ 2603.328192][ T7354] ? vm_area_dup+0x2b0/0x2b0 [ 2603.328227][ T7354] ? __raw_spin_lock_init+0x36/0x110 [ 2603.328261][ T7354] copy_process+0x71e0/0x74c0 [ 2603.328294][ T7354] ? lock_chain_count+0x20/0x20 [ 2603.328317][ T7354] ? lock_chain_count+0x20/0x20 [ 2603.328360][ T7354] ? __cleanup_sighand+0xb0/0xb0 [ 2603.328409][ T7354] ? __lock_acquire+0x162f/0x54a0 [ 2603.328441][ T7354] ? kernel_clone+0x314/0xab0 [ 2603.328474][ T7354] kernel_clone+0xe7/0xab0 [ 2603.328508][ T7354] ? create_io_thread+0xf0/0xf0 [ 2603.328555][ T7354] ? find_held_lock+0x2d/0x110 [ 2603.328592][ T7354] __do_sys_fork+0x8a/0xc0 [ 2603.328624][ T7354] ? kernel_thread+0xf0/0xf0 [ 2603.328669][ T7354] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2603.328704][ T7354] ? lockdep_hardirqs_on+0x79/0x100 [ 2603.328733][ T7354] __do_fast_syscall_32+0x65/0xf0 [ 2603.328762][ T7354] do_fast_syscall_32+0x2f/0x70 [ 2603.328789][ T7354] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2603.328816][ T7354] RIP: 0023:0xf7f78549 [ 2603.328836][ T7354] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2603.328861][ T7354] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2603.328887][ T7354] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2603.328905][ T7354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2603.328921][ T7354] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2603.328937][ T7354] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:05 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r6, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) 13:22:05 executing program 4: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) clock_gettime(0x2, &(0x7f00000000c0)) fork() 13:22:05 executing program 5: io_uring_setup(0x11b4, &(0x7f0000000000)={0x0, 0xadc, 0x4, 0x3, 0x92}) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x82, 0x0) syz_io_uring_setup(0x269d, &(0x7f00000000c0)={0x0, 0x6e8a, 0x10, 0x0, 0x36e, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000140), 0x8001, 0x2) fork() ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000180)={0x1}) 13:22:05 executing program 0 (fault-call:1 fault-nth:31): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:05 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) 13:22:05 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0xad, &(0x7f0000000000)=@generic={0x7, 0x2, 0xa5, "b43aba84", "6cd93243454487877294a68c0e7a89e30d87bda6b3188ab8e163a597f9abe288978c19524d29ebed78ddca3f1af75882ebcaabaaa369d4d179fb7f1d4e9c06bb4c97a5a8c9daa5f512a9bb5aa81257b46be96337046b5471aa213c86e6c13f6a054de5db38edb7c59e76153ad2d19270aae3720db3bfa3e6490ea6e2468061fee0efca6949e8303b16297f94cb9599dd7a323c59be80bedeb3cbc2d3ead052c173eb9d1631"}) [ 2603.328953][ T7354] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2604.514570][ T7375] FAULT_INJECTION: forcing a failure. [ 2604.514570][ T7375] name failslab, interval 1, probability 0, space 0, times 0 [ 2604.562202][ T7375] CPU: 1 PID: 7375 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2604.570701][ T7375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2604.580799][ T7375] Call Trace: [ 2604.580821][ T7375] dump_stack_lvl+0xcd/0x134 [ 2604.580866][ T7375] should_fail.cold+0x5/0xa [ 2604.580898][ T7375] ? vm_area_dup+0x88/0x2b0 [ 2604.580928][ T7375] should_failslab+0x5/0x10 [ 2604.580960][ T7375] kmem_cache_alloc+0x5e/0x4a0 [ 2604.580998][ T7375] vm_area_dup+0x88/0x2b0 13:22:05 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = eventfd2(0x6, 0x1) write$eventfd(0xffffffffffffffff, &(0x7f0000000000)=0x616, 0x8) r1 = fork() getpgid(r1) wait4(r1, 0x0, 0x40000000, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000040)=r0, 0x1) [ 2604.581036][ T7375] ? __lock_acquire+0x162f/0x54a0 [ 2604.581093][ T7375] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2604.622934][ T7375] ? copy_page_range+0x24ed/0x4010 13:22:05 executing program 4: fork() r0 = fork() ptrace$getregs(0xc, r0, 0x2, &(0x7f0000000000)=""/30) 13:22:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) openat$nullb(0xffffff9c, &(0x7f0000000000), 0x800, 0x0) fork() [ 2604.622983][ T7375] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2604.623022][ T7375] ? find_held_lock+0x2d/0x110 [ 2604.623062][ T7375] ? vm_area_alloc+0x110/0x110 [ 2604.623090][ T7375] ? find_held_lock+0x2d/0x110 [ 2604.623130][ T7375] ? handle_mm_fault+0x7f0/0x7f0 [ 2604.623164][ T7375] ? validate_mm_rb+0x46/0x2d0 13:22:06 executing program 0 (fault-call:1 fault-nth:32): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2604.623199][ T7375] ? __vma_link_rb+0x553/0x710 13:22:06 executing program 4: setsockopt$TIPC_MCAST_REPLICAST(0xffffffffffffffff, 0x10f, 0x86) fork() r0 = fork() getpgid(r0) getpgid(r0) openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) [ 2604.623233][ T7375] dup_mm+0x543/0x1380 [ 2604.623277][ T7375] ? vm_area_dup+0x2b0/0x2b0 [ 2604.623309][ T7375] ? __raw_spin_lock_init+0x36/0x110 13:22:06 executing program 5: r0 = io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2604.623345][ T7375] copy_process+0x71e0/0x74c0 [ 2604.623378][ T7375] ? lock_chain_count+0x20/0x20 [ 2604.623401][ T7375] ? lock_chain_count+0x20/0x20 [ 2604.623442][ T7375] ? __cleanup_sighand+0xb0/0xb0 [ 2604.623478][ T7375] ? __lock_acquire+0x162f/0x54a0 [ 2604.623510][ T7375] ? kernel_clone+0x314/0xab0 [ 2604.623542][ T7375] kernel_clone+0xe7/0xab0 [ 2604.623576][ T7375] ? create_io_thread+0xf0/0xf0 [ 2604.623614][ T7375] ? find_held_lock+0x2d/0x110 [ 2604.623650][ T7375] __do_sys_fork+0x8a/0xc0 [ 2604.623679][ T7375] ? kernel_thread+0xf0/0xf0 [ 2604.623725][ T7375] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2604.623762][ T7375] ? lockdep_hardirqs_on+0x79/0x100 [ 2604.623792][ T7375] __do_fast_syscall_32+0x65/0xf0 [ 2604.623822][ T7375] do_fast_syscall_32+0x2f/0x70 [ 2604.623855][ T7375] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2604.623887][ T7375] RIP: 0023:0xf7f78549 [ 2604.623909][ T7375] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2604.623946][ T7375] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2604.623973][ T7375] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2604.623989][ T7375] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2604.624003][ T7375] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2604.624019][ T7375] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2604.624033][ T7375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2605.022717][ T7408] FAULT_INJECTION: forcing a failure. [ 2605.022717][ T7408] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.022754][ T7408] CPU: 1 PID: 7408 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2605.022782][ T7408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2605.022799][ T7408] Call Trace: [ 2605.022809][ T7408] dump_stack_lvl+0xcd/0x134 [ 2605.022848][ T7408] should_fail.cold+0x5/0xa [ 2605.022878][ T7408] ? vm_area_dup+0x88/0x2b0 [ 2605.022918][ T7408] should_failslab+0x5/0x10 [ 2605.022946][ T7408] kmem_cache_alloc+0x5e/0x4a0 [ 2605.022981][ T7408] vm_area_dup+0x88/0x2b0 [ 2605.023016][ T7408] ? __lock_acquire+0x162f/0x54a0 [ 2605.023053][ T7408] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2605.023082][ T7408] ? copy_page_range+0x24ed/0x4010 [ 2605.023116][ T7408] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2605.023157][ T7408] ? find_held_lock+0x2d/0x110 [ 2605.023197][ T7408] ? vm_area_alloc+0x110/0x110 [ 2605.023225][ T7408] ? find_held_lock+0x2d/0x110 [ 2605.023265][ T7408] ? handle_mm_fault+0x7f0/0x7f0 [ 2605.023297][ T7408] ? validate_mm_rb+0x46/0x2d0 [ 2605.023330][ T7408] ? __vma_link_rb+0x553/0x710 [ 2605.023370][ T7408] dup_mm+0x543/0x1380 [ 2605.023410][ T7408] ? vm_area_dup+0x2b0/0x2b0 [ 2605.023441][ T7408] ? __raw_spin_lock_init+0x36/0x110 [ 2605.023476][ T7408] copy_process+0x71e0/0x74c0 [ 2605.023509][ T7408] ? lock_chain_count+0x20/0x20 [ 2605.023532][ T7408] ? lock_chain_count+0x20/0x20 [ 2605.023575][ T7408] ? __cleanup_sighand+0xb0/0xb0 [ 2605.023613][ T7408] ? __lock_acquire+0x162f/0x54a0 [ 2605.023645][ T7408] ? kernel_clone+0x314/0xab0 [ 2605.023678][ T7408] kernel_clone+0xe7/0xab0 [ 2605.023711][ T7408] ? create_io_thread+0xf0/0xf0 [ 2605.023755][ T7408] ? find_held_lock+0x2d/0x110 [ 2605.023795][ T7408] __do_sys_fork+0x8a/0xc0 [ 2605.023825][ T7408] ? kernel_thread+0xf0/0xf0 [ 2605.023874][ T7408] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2605.023918][ T7408] ? lockdep_hardirqs_on+0x79/0x100 [ 2605.023949][ T7408] __do_fast_syscall_32+0x65/0xf0 [ 2605.023980][ T7408] do_fast_syscall_32+0x2f/0x70 [ 2605.024010][ T7408] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2605.024040][ T7408] RIP: 0023:0xf7f78549 [ 2605.024060][ T7408] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2605.024088][ T7408] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2605.024116][ T7408] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:06 executing program 4: sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20404800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8881}, 0x11) fork() 13:22:06 executing program 0 (fault-call:1 fault-nth:33): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:06 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) socket$nl_generic(0x10, 0x3, 0x10) 13:22:06 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4027, &(0x7f0000000000)={0x0, 0x21dd, 0x2, 0x0, 0x13f, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000d80)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000740)={0x5c4, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x558, 0x8, 0x0, 0x1, [{0x4ec, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "30060b4b05d511f3222eeb148f2b98bfb7e749fe1655699f4a04c1c92ccfd9b2"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "6d092f8ca4d5ae7b614dc08a06e6cccefcbc49347be2efa0faa5e40d062e30bf"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "98f9e41f0a2b42c24d22e4381a14e0cbb030d206ceab60d377abdc77d296778b"}, @WGPEER_A_ALLOWEDIPS={0x430, 0x9, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}, {0xb8, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x1}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x32}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xc1e}]}, {0x68, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}]}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x5c4}, 0x1, 0x0, 0x0, 0x24044c00}, 0x40000) r2 = fork() capset(&(0x7f0000000200)={0x19980330, r2}, &(0x7f0000000580)={0x4, 0x7, 0x6, 0x7f, 0x7, 0x7}) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) syz_io_uring_setup(0x1285, &(0x7f0000000340)={0x0, 0xeb33, 0x8, 0x3, 0xae}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000400)) syz_io_uring_submit(r4, r1, &(0x7f0000000440)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xf}, 0x8da) r5 = openat$vcs(0xffffff9c, &(0x7f0000000480), 0xc000, 0x0) inotify_add_watch(r5, &(0x7f00000004c0)='./file0\x00', 0x20) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x4) sendmsg$TIPC_CMD_SET_LINK_TOL(r5, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x68, 0x0, 0x928, 0x70bd2c, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x8, @media='ib\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x4208c) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x90200}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="2c0000009f04f35166aef97721d2aebc0f86d9e69565584e6593fe18893e0985ce645d56b906af4ca076eee4b25d1c6ddbdde2ffbc11cbb08df6080357", @ANYRES16=r3, @ANYBLOB="080025bd7000ff79c4000008000300000000", @ANYRES32=r6, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x44}, 0x80) 13:22:06 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg2\x00'}) [ 2605.024134][ T7408] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2605.024149][ T7408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2605.024165][ T7408] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2605.024183][ T7408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:07 executing program 1: fork() r0 = fork() wait4(r0, 0x0, 0x1, 0x0) 13:22:07 executing program 4: r0 = openat$nullb(0xffffff9c, &(0x7f00000002c0), 0x10000, 0x0) ioctl$BLKBSZGET(r0, 0x80041270, &(0x7f0000000300)) socketpair(0x26, 0x1, 0x1, &(0x7f0000000180)={0xffffffffffffffff}) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40a2c204}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000fcdbdf2501000000000000000b000000000c001473797a3000000000298415c4d892e9adf6b2b3b2fe1484f69e56e46263fc0310cabc23d24f1da0654f70c87026a2b157d14068fc3ef6cda1fc769abb82c5581a5d775e382056c89c1313eaff20fe1a7e3680656ee043d84dfc48b03e7841efd97712c4c35a4e12804e70b5a27ba06df6eba76c9e0708a70c3a"], 0x28}}, 0x10) r2 = fork() r3 = getpgid(r2) wait4(r3, 0x0, 0x8, &(0x7f0000000100)) ptrace$getsig(0x4202, r2, 0xd66, &(0x7f0000000080)) capset(&(0x7f0000000000)={0x20080522, r2}, &(0x7f0000000040)={0xfffffffd, 0x80, 0xa11, 0x5, 0x8, 0x3ff}) [ 2605.896837][ T7432] FAULT_INJECTION: forcing a failure. [ 2605.896837][ T7432] name failslab, interval 1, probability 0, space 0, times 0 [ 2606.009174][ T7432] CPU: 1 PID: 7432 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2606.017689][ T7432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2606.027795][ T7432] Call Trace: [ 2606.027811][ T7432] dump_stack_lvl+0xcd/0x134 [ 2606.035676][ T7432] should_fail.cold+0x5/0xa [ 2606.040213][ T7432] ? vm_area_dup+0x88/0x2b0 [ 2606.044744][ T7432] should_failslab+0x5/0x10 [ 2606.049378][ T7432] kmem_cache_alloc+0x5e/0x4a0 [ 2606.054189][ T7432] vm_area_dup+0x88/0x2b0 13:22:07 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) wait4(0x0, &(0x7f00000000c0), 0x40000000, &(0x7f0000000040)) 13:22:07 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = syz_io_uring_setup(0x3e9c, &(0x7f0000000000)={0x0, 0x2bc1, 0x10, 0x2, 0x15b, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000100)=r2, 0x1) fork() [ 2606.058630][ T7432] ? __lock_acquire+0x162f/0x54a0 [ 2606.063705][ T7432] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2606.063745][ T7432] ? copy_page_range+0x24ed/0x4010 [ 2606.063785][ T7432] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2606.063827][ T7432] ? find_held_lock+0x2d/0x110 [ 2606.063870][ T7432] ? vm_area_alloc+0x110/0x110 [ 2606.063898][ T7432] ? find_held_lock+0x2d/0x110 [ 2606.063939][ T7432] ? handle_mm_fault+0x7f0/0x7f0 [ 2606.063975][ T7432] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2606.064003][ T7432] ? percpu_counter_add_batch+0xbd/0x180 [ 2606.064039][ T7432] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2606.064064][ T7432] ? __vm_enough_memory+0x184/0x360 [ 2606.064091][ T7432] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2606.064126][ T7432] dup_mm+0x543/0x1380 13:22:07 executing program 3: r0 = fork() r1 = getpgid(r0) r2 = getpgid(r1) wait4(r2, 0x0, 0x4, 0x0) 13:22:07 executing program 0 (fault-call:1 fault-nth:34): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2606.064170][ T7432] ? vm_area_dup+0x2b0/0x2b0 13:22:07 executing program 1: r0 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000001c0)={0x2, 0x1000}) fork() fork() ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000040)={0x847c, 0x7, 0x6, 0x3ff}) socket$can_bcm(0x1d, 0x2, 0x2) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x2, 0x12) [ 2606.064201][ T7432] ? __raw_spin_lock_init+0x36/0x110 [ 2606.064234][ T7432] copy_process+0x71e0/0x74c0 [ 2606.064267][ T7432] ? lock_chain_count+0x20/0x20 [ 2606.064288][ T7432] ? lock_chain_count+0x20/0x20 [ 2606.064330][ T7432] ? __cleanup_sighand+0xb0/0xb0 13:22:07 executing program 4: ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000040)={0x0, @nfc={0x27, 0x0, 0x0, 0x6}, @l2={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x3f}, @l2tp={0x2, 0x0, @local, 0x3}, 0x462, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)='veth1_to_bond\x00', 0x9e2, 0x0, 0x5}) fork() r0 = fork() getpgid(r0) getpgid(r0) r1 = fork() socketpair(0x1d, 0x7, 0x71, &(0x7f0000000140)={0xffffffffffffffff}) recvmsg$can_bcm(r2, &(0x7f0000000600)={&(0x7f0000000180)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)=""/196, 0xc4}, {&(0x7f0000000300)=""/115, 0x73}, {&(0x7f0000000380)=""/28, 0x1c}, {&(0x7f00000003c0)=""/235, 0xeb}], 0x4, &(0x7f0000000500)=""/203, 0xcb}, 0x140) getpgid(r1) ptrace$getsig(0x4202, r1, 0x0, &(0x7f00000000c0)) [ 2606.064368][ T7432] ? __lock_acquire+0x162f/0x54a0 [ 2606.064399][ T7432] ? kernel_clone+0x314/0xab0 [ 2606.064431][ T7432] kernel_clone+0xe7/0xab0 [ 2606.064465][ T7432] ? create_io_thread+0xf0/0xf0 [ 2606.064508][ T7432] ? find_held_lock+0x2d/0x110 [ 2606.064547][ T7432] __do_sys_fork+0x8a/0xc0 13:22:07 executing program 0 (fault-call:1 fault-nth:35): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2606.064578][ T7432] ? kernel_thread+0xf0/0xf0 [ 2606.064623][ T7432] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2606.064660][ T7432] ? lockdep_hardirqs_on+0x79/0x100 [ 2606.064691][ T7432] __do_fast_syscall_32+0x65/0xf0 13:22:07 executing program 3: waitid(0x1, 0xffffffffffffffff, &(0x7f0000000000), 0x997598a28c0ee6c1, 0x0) waitid(0x2, 0x0, 0x0, 0x20000000, &(0x7f0000000080)) [ 2606.064721][ T7432] do_fast_syscall_32+0x2f/0x70 [ 2606.064749][ T7432] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2606.064785][ T7432] RIP: 0023:0xf7f78549 [ 2606.064809][ T7432] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2606.064836][ T7432] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2606.064865][ T7432] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2606.064882][ T7432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2606.064900][ T7432] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2606.064917][ T7432] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2606.064935][ T7432] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2606.383423][ T7464] FAULT_INJECTION: forcing a failure. [ 2606.383423][ T7464] name failslab, interval 1, probability 0, space 0, times 0 [ 2606.383456][ T7464] CPU: 1 PID: 7464 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2606.383480][ T7464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2606.383494][ T7464] Call Trace: [ 2606.383503][ T7464] dump_stack_lvl+0xcd/0x134 [ 2606.383539][ T7464] should_fail.cold+0x5/0xa [ 2606.383566][ T7464] ? anon_vma_clone+0xe0/0x5f0 [ 2606.383591][ T7464] should_failslab+0x5/0x10 [ 2606.383618][ T7464] kmem_cache_alloc+0x5e/0x4a0 [ 2606.383654][ T7464] anon_vma_clone+0xe0/0x5f0 [ 2606.383689][ T7464] anon_vma_fork+0x82/0x630 [ 2606.383712][ T7464] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2606.383738][ T7464] ? __vm_enough_memory+0x184/0x360 [ 2606.383776][ T7464] dup_mm+0x9a0/0x1380 [ 2606.383819][ T7464] ? vm_area_dup+0x2b0/0x2b0 [ 2606.383848][ T7464] ? __raw_spin_lock_init+0x36/0x110 [ 2606.383881][ T7464] copy_process+0x71e0/0x74c0 [ 2606.383910][ T7464] ? lock_chain_count+0x20/0x20 [ 2606.383933][ T7464] ? lock_chain_count+0x20/0x20 [ 2606.383972][ T7464] ? __cleanup_sighand+0xb0/0xb0 [ 2606.384007][ T7464] ? __lock_acquire+0x162f/0x54a0 [ 2606.384036][ T7464] ? kernel_clone+0x314/0xab0 [ 2606.384065][ T7464] kernel_clone+0xe7/0xab0 [ 2606.384095][ T7464] ? create_io_thread+0xf0/0xf0 [ 2606.384135][ T7464] ? find_held_lock+0x2d/0x110 [ 2606.384171][ T7464] __do_sys_fork+0x8a/0xc0 [ 2606.384198][ T7464] ? kernel_thread+0xf0/0xf0 [ 2606.384240][ T7464] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2606.384274][ T7464] ? lockdep_hardirqs_on+0x79/0x100 [ 2606.384304][ T7464] __do_fast_syscall_32+0x65/0xf0 [ 2606.384331][ T7464] do_fast_syscall_32+0x2f/0x70 [ 2606.384357][ T7464] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2606.384383][ T7464] RIP: 0023:0xf7f78549 [ 2606.384403][ T7464] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2606.384428][ T7464] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2606.384455][ T7464] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2606.384470][ T7464] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2606.384484][ T7464] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2606.384499][ T7464] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2606.384513][ T7464] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2606.671394][ T7485] FAULT_INJECTION: forcing a failure. [ 2606.671394][ T7485] name failslab, interval 1, probability 0, space 0, times 0 [ 2606.671436][ T7485] CPU: 1 PID: 7485 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2606.671463][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2606.671479][ T7485] Call Trace: [ 2606.671489][ T7485] dump_stack_lvl+0xcd/0x134 [ 2606.671530][ T7485] should_fail.cold+0x5/0xa [ 2606.671559][ T7485] ? anon_vma_clone+0xe0/0x5f0 [ 2606.671586][ T7485] should_failslab+0x5/0x10 [ 2606.671615][ T7485] kmem_cache_alloc+0x5e/0x4a0 [ 2606.671648][ T7485] anon_vma_clone+0xe0/0x5f0 [ 2606.671682][ T7485] anon_vma_fork+0x82/0x630 [ 2606.671704][ T7485] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2606.671740][ T7485] ? __vm_enough_memory+0x184/0x360 [ 2606.671768][ T7485] dup_mm+0x9a0/0x1380 [ 2606.671823][ T7485] ? vm_area_dup+0x2b0/0x2b0 [ 2606.671853][ T7485] ? __raw_spin_lock_init+0x36/0x110 [ 2606.671887][ T7485] copy_process+0x71e0/0x74c0 [ 2606.671917][ T7485] ? lock_chain_count+0x20/0x20 [ 2606.671940][ T7485] ? lock_chain_count+0x20/0x20 [ 2606.671974][ T7485] ? __cleanup_sighand+0xb0/0xb0 [ 2606.672001][ T7485] ? __lock_acquire+0x162f/0x54a0 [ 2606.672026][ T7485] ? kernel_clone+0x314/0xab0 [ 2606.672050][ T7485] kernel_clone+0xe7/0xab0 [ 2606.672075][ T7485] ? create_io_thread+0xf0/0xf0 [ 2606.672106][ T7485] ? find_held_lock+0x2d/0x110 [ 2606.672142][ T7485] __do_sys_fork+0x8a/0xc0 [ 2606.672168][ T7485] ? kernel_thread+0xf0/0xf0 [ 2606.672201][ T7485] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2606.672231][ T7485] ? lockdep_hardirqs_on+0x79/0x100 [ 2606.672256][ T7485] __do_fast_syscall_32+0x65/0xf0 [ 2606.672279][ T7485] do_fast_syscall_32+0x2f/0x70 [ 2606.672300][ T7485] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2606.672326][ T7485] RIP: 0023:0xf7f78549 [ 2606.672346][ T7485] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2606.672372][ T7485] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2606.672400][ T7485] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:08 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) 13:22:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000200)={0x344, r1, 0x14, 0x70bd28, 0x5, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_PEERS={0x164, 0x8, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0xffffffff, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x101, @mcast2, 0x5}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}]}, {0x88, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "45bf618b7bab83262d3d9044bf5a13be742351d4602dfe818f9c3ff1f5d36108"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @broadcast}}, @WGPEER_A_FLAGS={0x8, 0x3, 0xd}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xe77, @empty, 0x8}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x200}]}, {0x54, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x2}]}, {0x30, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "7279dd95784739a5fe52d5c0d8d5e80454e90571bb2eb13c28e9e48137a06ec8"}]}]}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x9}, @WGDEVICE_A_PEERS={0x1bc, 0x8, 0x0, 0x1, [{0x1b8, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ALLOWEDIPS={0x144, 0x9, 0x0, 0x1, [{0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2d}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @remote}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x34}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}]}, {0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x37}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @broadcast}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3f}}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @multicast1}}]}]}]}, 0x344}, 0x1, 0x0, 0x0, 0x20040041}, 0x44084) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) getpeername$tipc(r2, &(0x7f0000000180)=@id, &(0x7f0000000000)=0x10) r3 = fork() r4 = getpgid(r3) getpgid(r4) getsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f00000000c0), &(0x7f0000000140)=0x4) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2606.672416][ T7485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2606.672432][ T7485] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2606.672448][ T7485] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2606.672463][ T7485] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:08 executing program 0 (fault-call:1 fault-nth:36): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:08 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:08 executing program 4: openat$kvm(0xffffff9c, &(0x7f0000000040), 0x20a000, 0x0) r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0xfffffff7, &(0x7f0000000000)=""/13) 13:22:08 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000040)={r0}) [ 2607.544396][ T7499] FAULT_INJECTION: forcing a failure. [ 2607.544396][ T7499] name failslab, interval 1, probability 0, space 0, times 0 [ 2607.570108][ T7499] CPU: 1 PID: 7499 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2607.578509][ T7499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2607.588587][ T7499] Call Trace: [ 2607.591879][ T7499] dump_stack_lvl+0xcd/0x134 [ 2607.596479][ T7499] should_fail.cold+0x5/0xa [ 2607.600979][ T7499] ? anon_vma_fork+0xed/0x630 [ 2607.605653][ T7499] should_failslab+0x5/0x10 [ 2607.610147][ T7499] kmem_cache_alloc+0x5e/0x4a0 [ 2607.614908][ T7499] anon_vma_fork+0xed/0x630 [ 2607.619400][ T7499] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2607.625138][ T7499] ? __vm_enough_memory+0x184/0x360 [ 2607.630355][ T7499] dup_mm+0x9a0/0x1380 [ 2607.634441][ T7499] ? vm_area_dup+0x2b0/0x2b0 [ 2607.639029][ T7499] ? __raw_spin_lock_init+0x36/0x110 [ 2607.644310][ T7499] copy_process+0x71e0/0x74c0 [ 2607.649068][ T7499] ? lock_chain_count+0x20/0x20 [ 2607.653913][ T7499] ? lock_chain_count+0x20/0x20 [ 2607.658776][ T7499] ? __cleanup_sighand+0xb0/0xb0 [ 2607.663711][ T7499] ? __lock_acquire+0x162f/0x54a0 [ 2607.668744][ T7499] ? kernel_clone+0x314/0xab0 [ 2607.673415][ T7499] kernel_clone+0xe7/0xab0 [ 2607.677832][ T7499] ? create_io_thread+0xf0/0xf0 [ 2607.682692][ T7499] ? find_held_lock+0x2d/0x110 [ 2607.687456][ T7499] __do_sys_fork+0x8a/0xc0 [ 2607.691864][ T7499] ? kernel_thread+0xf0/0xf0 [ 2607.696461][ T7499] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2607.703184][ T7499] ? lockdep_hardirqs_on+0x79/0x100 [ 2607.708397][ T7499] __do_fast_syscall_32+0x65/0xf0 [ 2607.713432][ T7499] do_fast_syscall_32+0x2f/0x70 [ 2607.718283][ T7499] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2607.724623][ T7499] RIP: 0023:0xf7f78549 [ 2607.728683][ T7499] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2607.748367][ T7499] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2607.756772][ T7499] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2607.764733][ T7499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2607.772693][ T7499] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2607.780654][ T7499] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2607.788620][ T7499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:09 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wg2\x00'}) r0 = fork() waitid(0x0, r0, &(0x7f0000000000), 0x8, &(0x7f0000000080)) wait4(r0, 0x0, 0x1000000, &(0x7f0000000140)) 13:22:09 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x20, 0xffffffff, 0x2c7}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:09 executing program 4: r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) getpgid(r1) getpgid(r0) r2 = fork() sched_setattr(r2, &(0x7f0000000080)={0x38, 0x0, 0x18, 0x200, 0x0, 0x9, 0x1000, 0x1f, 0x7fffffff, 0xfffffbff}, 0x0) r3 = fork() ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f0000000040)=0x2) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r3, 0x5, &(0x7f0000000000)=""/64) 13:22:09 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) 13:22:09 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = fork() getpgid(r1) ptrace$getsig(0x4202, r1, 0x9, &(0x7f0000000000)) 13:22:09 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) 13:22:09 executing program 4: fork() wait4(0x0, &(0x7f0000000000), 0x40000000, 0x0) 13:22:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r0) sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4bbff355aeda92ff}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x10, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8801}, 0x24000894) sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r1, 0x2, 0x70bd2b, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004040}, 0x4000011) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) fork() 13:22:09 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x1, 0x20, 0x81000000, 0x149}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000000), 0x10000, 0x0) fork() ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000040)={0x9, 0x200, 0x7fffffff, 0x6}) 13:22:09 executing program 0 (fault-call:1 fault-nth:37): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:09 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) [ 2608.555423][ T7555] FAULT_INJECTION: forcing a failure. [ 2608.555423][ T7555] name failslab, interval 1, probability 0, space 0, times 0 [ 2608.606203][ T7555] CPU: 1 PID: 7555 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2608.614676][ T7555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2608.624878][ T7555] Call Trace: [ 2608.628179][ T7555] dump_stack_lvl+0xcd/0x134 [ 2608.632815][ T7555] should_fail.cold+0x5/0xa [ 2608.637352][ T7555] ? anon_vma_fork+0x1df/0x630 [ 2608.642131][ T7555] should_failslab+0x5/0x10 [ 2608.646716][ T7555] kmem_cache_alloc+0x5e/0x4a0 [ 2608.651478][ T7555] anon_vma_fork+0x1df/0x630 [ 2608.656071][ T7555] dup_mm+0x9a0/0x1380 [ 2608.660186][ T7555] ? vm_area_dup+0x2b0/0x2b0 [ 2608.664801][ T7555] ? __raw_spin_lock_init+0x36/0x110 [ 2608.670187][ T7555] copy_process+0x71e0/0x74c0 [ 2608.674865][ T7555] ? lock_chain_count+0x20/0x20 [ 2608.679742][ T7555] ? lock_chain_count+0x20/0x20 [ 2608.684599][ T7555] ? __cleanup_sighand+0xb0/0xb0 [ 2608.689534][ T7555] ? __lock_acquire+0x162f/0x54a0 [ 2608.694556][ T7555] ? kernel_clone+0x314/0xab0 [ 2608.699229][ T7555] kernel_clone+0xe7/0xab0 [ 2608.703733][ T7555] ? create_io_thread+0xf0/0xf0 [ 2608.708587][ T7555] ? find_held_lock+0x2d/0x110 [ 2608.713373][ T7555] __do_sys_fork+0x8a/0xc0 [ 2608.717786][ T7555] ? kernel_thread+0xf0/0xf0 [ 2608.722381][ T7555] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2608.728974][ T7555] ? lockdep_hardirqs_on+0x79/0x100 [ 2608.734342][ T7555] __do_fast_syscall_32+0x65/0xf0 [ 2608.739364][ T7555] do_fast_syscall_32+0x2f/0x70 [ 2608.744207][ T7555] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2608.750531][ T7555] RIP: 0023:0xf7f78549 [ 2608.754596][ T7555] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2608.774495][ T7555] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2608.782902][ T7555] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2608.790880][ T7555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2608.798839][ T7555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2608.806813][ T7555] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2608.814773][ T7555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:10 executing program 3: wait4(0x0, 0x0, 0x80000000, 0x0) 13:22:10 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) 13:22:10 executing program 0 (fault-call:1 fault-nth:38): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:10 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x6000000, 0x80011, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd=r0, 0x0, 0x0, 0x84d, 0x1}, 0x3ff) fork() 13:22:10 executing program 3: r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x20000000, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000000)={0x1, 0xffffffffffffffff, 0x1}) [ 2609.131416][ T7577] FAULT_INJECTION: forcing a failure. [ 2609.131416][ T7577] name failslab, interval 1, probability 0, space 0, times 0 [ 2609.192735][ T7577] CPU: 1 PID: 7577 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2609.201203][ T7577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2609.211290][ T7577] Call Trace: [ 2609.214586][ T7577] dump_stack_lvl+0xcd/0x134 [ 2609.219212][ T7577] should_fail.cold+0x5/0xa [ 2609.223759][ T7577] ? anon_vma_fork+0xed/0x630 [ 2609.228463][ T7577] should_failslab+0x5/0x10 [ 2609.232999][ T7577] kmem_cache_alloc+0x5e/0x4a0 [ 2609.237880][ T7577] anon_vma_fork+0xed/0x630 [ 2609.242405][ T7577] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2609.248146][ T7577] ? __vm_enough_memory+0x184/0x360 [ 2609.253376][ T7577] dup_mm+0x9a0/0x1380 [ 2609.257481][ T7577] ? vm_area_dup+0x2b0/0x2b0 [ 2609.262092][ T7577] ? __raw_spin_lock_init+0x36/0x110 [ 2609.267384][ T7577] copy_process+0x71e0/0x74c0 [ 2609.272171][ T7577] ? lock_chain_count+0x20/0x20 [ 2609.277030][ T7577] ? lock_chain_count+0x20/0x20 [ 2609.281884][ T7577] ? __cleanup_sighand+0xb0/0xb0 [ 2609.286838][ T7577] ? __lock_acquire+0x162f/0x54a0 [ 2609.291855][ T7577] ? kernel_clone+0x314/0xab0 [ 2609.296612][ T7577] kernel_clone+0xe7/0xab0 [ 2609.301026][ T7577] ? create_io_thread+0xf0/0xf0 [ 2609.305896][ T7577] ? find_held_lock+0x2d/0x110 [ 2609.310674][ T7577] __do_sys_fork+0x8a/0xc0 [ 2609.315096][ T7577] ? kernel_thread+0xf0/0xf0 [ 2609.319690][ T7577] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2609.326285][ T7577] ? lockdep_hardirqs_on+0x79/0x100 [ 2609.331478][ T7577] __do_fast_syscall_32+0x65/0xf0 [ 2609.336519][ T7577] do_fast_syscall_32+0x2f/0x70 [ 2609.341451][ T7577] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2609.347775][ T7577] RIP: 0023:0xf7f78549 [ 2609.351847][ T7577] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2609.371454][ T7577] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2609.379862][ T7577] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:10 executing program 5: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r0, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = fork() getpgid(r1) ptrace$getregs(0xe, r1, 0x3, &(0x7f00000002c0)=""/4096) 13:22:10 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() [ 2609.387822][ T7577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2609.395793][ T7577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2609.403771][ T7577] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2609.411729][ T7577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:10 executing program 4: fork() socketpair(0x11, 0xade21060c6679c41, 0x80, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1081}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, 0x0, 0x200, 0x70bd29, 0x25dfdbfe, {{}, {}, {0x14, 0x19, {0xd609, 0x9, 0x0, 0x6}}}, ["", "", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20044041}, 0x20000004) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wg1\x00'}) 13:22:10 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x2, 0x0) 13:22:10 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) 13:22:10 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYBLOB="683100730400fc5ac8b67e2016333eb99f88154bb621aee15660ac84166329651f24bc58f707cab1dba85d5ac679144dfad10e51658fc763a6ba278fdba588a133b6ca898c93241172e9979cbd5ed4f4e8cc3cf3f8d3901248eaa22aba0ae9b7522eaf4c69", @ANYRES16=r4, @ANYBLOB="010027bd7000fb17df2501000000000000000841000000deae1718101cf1014c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r4, 0x400, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000c010}, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="19000000", @ANYRES16=0x0, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) sendmsg$TIPC_CMD_GET_LINKS(r5, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r2, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x7d37}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x20044080}, 0x4000800) sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r2, 0x100, 0x70bd2b, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x6}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40480d0}, 0x8810) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) socketpair(0x2b, 0x4, 0x7, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000006c0), r0) sendmsg$TIPC_CMD_SET_LINK_PRI(r7, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000740)={&(0x7f0000000880)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x40000) r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000440), r6) sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="000328bd7000fbdbdf250100000011b21b707ed668f4600000000007410000004c00180000000462726f6164636173742d6c696e6b0000000000000008eeffffffffffffff00"/98], 0x68}}, 0x1) getsockname$tipc(r0, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10) wait4(0x0, 0x0, 0x4, 0x0) 13:22:10 executing program 5: syz_io_uring_setup(0xd1f, &(0x7f0000000240)={0x0, 0x0, 0x8}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x80000001) r0 = openat$nullb(0xffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000080)={0xfffffffffffff317, 0xfffffffffffffc00}) 13:22:11 executing program 0 (fault-call:1 fault-nth:39): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:11 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:11 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x37be, &(0x7f0000000000)={0x0, 0x1be6, 0x0, 0x2, 0x2b1, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:11 executing program 3: r0 = openat$nullb(0xffffff9c, &(0x7f00000009c0), 0x0, 0x0) ioctl$BLKSECDISCARD(r0, 0x401870cb, 0x0) wait4(0x0, 0x0, 0x4, 0x0) 13:22:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r1, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x45}, 0x811) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r3, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r2, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x1) fork() [ 2610.024071][ T7624] FAULT_INJECTION: forcing a failure. [ 2610.024071][ T7624] name failslab, interval 1, probability 0, space 0, times 0 [ 2610.071902][ T7624] CPU: 1 PID: 7624 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2610.080290][ T7624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2610.090389][ T7624] Call Trace: [ 2610.093690][ T7624] dump_stack_lvl+0xcd/0x134 [ 2610.098317][ T7624] should_fail.cold+0x5/0xa [ 2610.102939][ T7624] ? anon_vma_clone+0xe0/0x5f0 [ 2610.108799][ T7624] should_failslab+0x5/0x10 [ 2610.108838][ T7624] kmem_cache_alloc+0x5e/0x4a0 [ 2610.108874][ T7624] anon_vma_clone+0xe0/0x5f0 [ 2610.108914][ T7624] anon_vma_fork+0x82/0x630 [ 2610.108938][ T7624] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2610.108965][ T7624] ? __vm_enough_memory+0x184/0x360 [ 2610.108996][ T7624] dup_mm+0x9a0/0x1380 [ 2610.109041][ T7624] ? vm_area_dup+0x2b0/0x2b0 [ 2610.147129][ T7624] ? __raw_spin_lock_init+0x36/0x110 [ 2610.152424][ T7624] copy_process+0x71e0/0x74c0 [ 2610.157101][ T7624] ? lock_chain_count+0x20/0x20 [ 2610.161944][ T7624] ? lock_chain_count+0x20/0x20 [ 2610.166804][ T7624] ? __cleanup_sighand+0xb0/0xb0 [ 2610.171742][ T7624] ? __lock_acquire+0x162f/0x54a0 [ 2610.176761][ T7624] ? kernel_clone+0x314/0xab0 [ 2610.181435][ T7624] kernel_clone+0xe7/0xab0 [ 2610.185854][ T7624] ? create_io_thread+0xf0/0xf0 [ 2610.190709][ T7624] ? find_held_lock+0x2d/0x110 [ 2610.195480][ T7624] __do_sys_fork+0x8a/0xc0 [ 2610.199911][ T7624] ? kernel_thread+0xf0/0xf0 [ 2610.204509][ T7624] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2610.211097][ T7624] ? lockdep_hardirqs_on+0x79/0x100 [ 2610.216293][ T7624] __do_fast_syscall_32+0x65/0xf0 [ 2610.221311][ T7624] do_fast_syscall_32+0x2f/0x70 [ 2610.226154][ T7624] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2610.232475][ T7624] RIP: 0023:0xf7f78549 [ 2610.236533][ T7624] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2610.256146][ T7624] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2610.264555][ T7624] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2610.272518][ T7624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2610.280491][ T7624] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2610.288546][ T7624] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2610.296596][ T7624] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:11 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:11 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) 13:22:11 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:11 executing program 1: r0 = fork() wait4(r0, 0x0, 0x8, 0x0) 13:22:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_ELP_INTERVAL={0x8}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x8004}, 0x8000) fork() 13:22:11 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() setsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000000)=0x9, 0x4) 13:22:11 executing program 0 (fault-call:1 fault-nth:40): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:11 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) [ 2610.843758][ T7661] FAULT_INJECTION: forcing a failure. [ 2610.843758][ T7661] name fail_page_alloc, interval 1, probability 0, space 0, times 0 13:22:12 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) [ 2610.921022][T25490] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 2610.939226][ T7661] CPU: 0 PID: 7661 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2610.947711][ T7661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2610.957788][ T7661] Call Trace: [ 2610.961084][ T7661] dump_stack_lvl+0xcd/0x134 13:22:12 executing program 4: r0 = inotify_init() inotify_rm_watch(r0, 0x0) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0cc5605, &(0x7f0000000000)={0x27403ad24c091d49, @win={{0x6, 0x2, 0x7f, 0x6}, 0x8, 0x80000001, &(0x7f0000000140)={{0x4, 0x405, 0x7132, 0x3}}, 0x4, &(0x7f0000000180)="11f930e9c18e8dbc969bdc36c44b9320bf3f564134bcfec0450d4d60f874108a4b630ccd03425d9b3c0afc6cfb75974d809e42d7f7044994232cabe7eb0d1f465fcb362367febf3186a5c9101e1870feb669aec67516767e0e83e48bef69fedf69152439a05adb4b2dfe6c8d4a5f56954ffe51a1708cd2ba5bae10a837104ae6ecffdbaf07866e", 0x2}}) [ 2610.965734][ T7661] should_fail.cold+0x5/0xa [ 2610.965787][ T7661] prepare_alloc_pages+0x17b/0x580 [ 2610.965833][ T7661] __alloc_pages+0x12f/0x500 [ 2610.965865][ T7661] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2610.965901][ T7661] ? find_held_lock+0x2d/0x110 13:22:12 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2610.965943][ T7661] ? lock_downgrade+0x6e0/0x6e0 [ 2610.965968][ T7661] ? do_raw_spin_lock+0x120/0x2b0 [ 2610.966003][ T7661] alloc_pages+0x18c/0x2a0 13:22:12 executing program 0 (fault-call:1 fault-nth:41): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2610.966034][ T7661] __pmd_alloc+0x3b/0x5c0 [ 2610.966059][ T7661] ? __pud_alloc+0xdd/0x170 [ 2610.966089][ T7661] copy_page_range+0x2c65/0x4010 [ 2610.966120][ T7661] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2610.966186][ T7661] ? handle_mm_fault+0x7f0/0x7f0 [ 2610.966230][ T7661] ? __vma_link_rb+0x553/0x710 [ 2610.966269][ T7661] dup_mm+0x9e7/0x1380 [ 2610.966316][ T7661] ? vm_area_dup+0x2b0/0x2b0 [ 2610.966357][ T7661] ? __raw_spin_lock_init+0x36/0x110 [ 2610.966394][ T7661] copy_process+0x71e0/0x74c0 [ 2610.966429][ T7661] ? lock_chain_count+0x20/0x20 [ 2610.966453][ T7661] ? lock_chain_count+0x20/0x20 [ 2610.966499][ T7661] ? __cleanup_sighand+0xb0/0xb0 [ 2610.966539][ T7661] ? __lock_acquire+0x162f/0x54a0 [ 2610.966573][ T7661] ? kernel_clone+0x314/0xab0 [ 2610.966607][ T7661] kernel_clone+0xe7/0xab0 [ 2610.966642][ T7661] ? create_io_thread+0xf0/0xf0 [ 2610.966687][ T7661] ? find_held_lock+0x2d/0x110 [ 2610.966727][ T7661] __do_sys_fork+0x8a/0xc0 [ 2610.966758][ T7661] ? kernel_thread+0xf0/0xf0 [ 2610.966805][ T7661] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2610.966843][ T7661] ? lockdep_hardirqs_on+0x79/0x100 [ 2610.966873][ T7661] __do_fast_syscall_32+0x65/0xf0 [ 2610.966902][ T7661] do_fast_syscall_32+0x2f/0x70 13:22:12 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) [ 2610.966930][ T7661] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2610.966964][ T7661] RIP: 0023:0xf7f78549 [ 2610.966988][ T7661] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2610.967017][ T7661] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2610.967046][ T7661] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2610.967066][ T7661] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2610.967083][ T7661] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2610.967100][ T7661] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2610.967118][ T7661] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2611.208180][ T7681] FAULT_INJECTION: forcing a failure. [ 2611.208180][ T7681] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2611.208217][ T7681] CPU: 0 PID: 7681 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2611.208242][ T7681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2611.208257][ T7681] Call Trace: [ 2611.208266][ T7681] dump_stack_lvl+0xcd/0x134 [ 2611.208302][ T7681] should_fail.cold+0x5/0xa [ 2611.208342][ T7681] prepare_alloc_pages+0x17b/0x580 [ 2611.208378][ T7681] ? mark_lock+0xef/0x17b0 [ 2611.208402][ T7681] __alloc_pages+0x12f/0x500 [ 2611.208430][ T7681] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2611.208476][ T7681] ? copy_page_range+0x2659/0x4010 [ 2611.208502][ T7681] alloc_pages+0x18c/0x2a0 [ 2611.208545][ T7681] get_zeroed_page+0x10/0x40 [ 2611.208566][ T7681] __pud_alloc+0x37/0x170 [ 2611.208591][ T7681] copy_page_range+0x2956/0x4010 [ 2611.208618][ T7681] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2611.208664][ T7681] ? lock_downgrade+0x6e0/0x6e0 [ 2611.208696][ T7681] ? handle_mm_fault+0x7f0/0x7f0 [ 2611.208729][ T7681] ? __vma_link_rb+0x553/0x710 [ 2611.208758][ T7681] dup_mm+0x9e7/0x1380 [ 2611.208791][ T7681] ? vm_area_dup+0x2b0/0x2b0 [ 2611.208816][ T7681] ? __raw_spin_lock_init+0x36/0x110 [ 2611.208843][ T7681] copy_process+0x71e0/0x74c0 [ 2611.208872][ T7681] ? lock_chain_count+0x20/0x20 [ 2611.208892][ T7681] ? lock_chain_count+0x20/0x20 [ 2611.208932][ T7681] ? __cleanup_sighand+0xb0/0xb0 [ 2611.516388][ T7681] ? __lock_acquire+0x162f/0x54a0 [ 2611.516418][ T7681] ? kernel_clone+0x314/0xab0 [ 2611.516438][ T7681] kernel_clone+0xe7/0xab0 [ 2611.516458][ T7681] ? create_io_thread+0xf0/0xf0 [ 2611.516482][ T7681] ? find_held_lock+0x2d/0x110 [ 2611.516505][ T7681] __do_sys_fork+0x8a/0xc0 [ 2611.516522][ T7681] ? kernel_thread+0xf0/0xf0 [ 2611.516547][ T7681] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2611.516582][ T7681] ? lockdep_hardirqs_on+0x79/0x100 [ 2611.516612][ T7681] __do_fast_syscall_32+0x65/0xf0 [ 2611.516658][ T7681] do_fast_syscall_32+0x2f/0x70 [ 2611.516684][ T7681] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2611.516715][ T7681] RIP: 0023:0xf7f78549 [ 2611.516738][ T7681] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2611.516765][ T7681] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2611.516793][ T7681] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2611.516809][ T7681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2611.516820][ T7681] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2611.516831][ T7681] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2611.516847][ T7681] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2611.851587][T25490] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2611.861232][T25490] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2611.869532][T25490] usb 4-1: Product: syz [ 2611.876449][T25490] usb 4-1: Manufacturer: syz [ 2611.881224][T25490] usb 4-1: SerialNumber: syz [ 2611.941798][T25490] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 2612.561021][T25490] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 13:22:14 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ptrace$getregs(0xe, 0x0, 0xb05e, &(0x7f0000000000)=""/103) 13:22:14 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:14 executing program 0 (fault-call:1 fault-nth:42): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:14 executing program 1: r0 = fork() r1 = getpgid(r0) wait4(r1, 0x0, 0x2, 0x0) r2 = fork() getpgid(r2) waitid(0x2, r2, &(0x7f0000000000), 0x4, 0x0) r3 = getpgid(0x0) ptrace$getsig(0x4202, r3, 0x6, &(0x7f0000000080)) 13:22:14 executing program 5: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="a367f3639fd31066355cd112bb5604f21ad09539a12df7c7a1cfdfd2668e5afd584d2acc591d52", 0x27) r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000004, 0x10, r0, 0x10000000) fork() 13:22:14 executing program 4: fork() r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x9, 0xfffffffc, 0x40, 0x2, 0x7fff, 0x2, 0x7, 0xd0}, 0x0) [ 2612.786352][T27003] usb 4-1: USB disconnect, device number 22 [ 2612.843993][ T7701] FAULT_INJECTION: forcing a failure. [ 2612.843993][ T7701] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2612.922348][ T7701] CPU: 0 PID: 7701 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2612.930735][ T7701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2612.940817][ T7701] Call Trace: [ 2612.944119][ T7701] dump_stack_lvl+0xcd/0x134 [ 2612.948749][ T7701] should_fail.cold+0x5/0xa [ 2612.953295][ T7701] prepare_alloc_pages+0x17b/0x580 [ 2612.958443][ T7701] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2612.964465][ T7701] __alloc_pages+0x12f/0x500 [ 2612.969182][ T7701] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2612.975991][ T7701] ? __pmd_alloc+0x2fa/0x5c0 [ 2612.980695][ T7701] ? lock_downgrade+0x6e0/0x6e0 [ 2612.985571][ T7701] ? do_raw_spin_lock+0x120/0x2b0 [ 2612.990630][ T7701] alloc_pages+0x18c/0x2a0 [ 2612.995163][ T7701] pte_alloc_one+0x16/0x230 [ 2612.999696][ T7701] __pte_alloc+0x1f/0x2d0 [ 2613.004063][ T7701] copy_page_range+0x18c1/0x4010 [ 2613.009071][ T7701] ? handle_mm_fault+0x7f0/0x7f0 [ 2613.014049][ T7701] ? __vma_link_rb+0x553/0x710 [ 2613.018856][ T7701] dup_mm+0x9e7/0x1380 [ 2613.022973][ T7701] ? vm_area_dup+0x2b0/0x2b0 [ 2613.027594][ T7701] ? __raw_spin_lock_init+0x36/0x110 [ 2613.032908][ T7701] copy_process+0x71e0/0x74c0 [ 2613.037664][ T7701] ? lock_chain_count+0x20/0x20 [ 2613.042568][ T7701] ? lock_chain_count+0x20/0x20 [ 2613.047483][ T7701] ? __cleanup_sighand+0xb0/0xb0 [ 2613.052456][ T7701] ? __lock_acquire+0x162f/0x54a0 [ 2613.057528][ T7701] ? kernel_clone+0x314/0xab0 [ 2613.062234][ T7701] kernel_clone+0xe7/0xab0 [ 2613.066677][ T7701] ? create_io_thread+0xf0/0xf0 13:22:14 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) [ 2613.071564][ T7701] ? find_held_lock+0x2d/0x110 [ 2613.076360][ T7701] __do_sys_fork+0x8a/0xc0 [ 2613.080804][ T7701] ? kernel_thread+0xf0/0xf0 [ 2613.085433][ T7701] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2613.092055][ T7701] ? lockdep_hardirqs_on+0x79/0x100 [ 2613.097285][ T7701] __do_fast_syscall_32+0x65/0xf0 [ 2613.102336][ T7701] do_fast_syscall_32+0x2f/0x70 [ 2613.107210][ T7701] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2613.113563][ T7701] RIP: 0023:0xf7f78549 13:22:14 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000040)={0x3, 0x2, 0x4, 0x4, 0x0, {0x0, 0x2710}, {0x2, 0xc, 0x0, 0x0, 0x80, 0x93, "ab783f0d"}, 0x0, 0x4, @userptr=0x9, 0x81, 0x0, 0xffffffffffffffff}) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f00000000c0)={0xfff, 0x2, 0x4, 0x4000, 0x6, {0x0, 0x2710}, {0x3, 0xc, 0x0, 0xd1, 0x4, 0x9, "e92b9016"}, 0x7ff, 0x3, @userptr=0x7fffffff, 0x8, 0x0, r1}) fork() [ 2613.117645][ T7701] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2613.137284][ T7701] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2613.145722][ T7701] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2613.153718][ T7701] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2613.161729][ T7701] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2613.169723][ T7701] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2613.177716][ T7701] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:14 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) 13:22:14 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:14 executing program 4: r0 = fork() r1 = fork() waitid(0x2, r1, 0x0, 0x1, 0x0) ptrace$getregs(0xc, r0, 0x350f, &(0x7f0000000000)=""/13) 13:22:14 executing program 1: wait4(0x0, 0x0, 0x1, &(0x7f0000000080)) 13:22:14 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0x0, r0, &(0x7f0000000000), 0x80000000, &(0x7f0000000080)) 13:22:14 executing program 0 (fault-call:1 fault-nth:43): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:14 executing program 2: openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:14 executing program 5: ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc04c560f, &(0x7f0000000000)={0x80000005, 0x4, 0x4, 0x1, 0x7, {0x0, 0xea60}, {0x5, 0x2, 0x20, 0x8, 0x9, 0x40, "5bede4c5"}, 0x7, 0x3, @offset=0x1000, 0x6}) fork() 13:22:14 executing program 1: fork() r0 = fork() ptrace$getregs(0xffffffffffffffff, r0, 0x1000, &(0x7f0000000000)=""/4) r1 = fork() getpgid(r1) r2 = fork() getpgid(r2) syz_open_dev$vim2m(&(0x7f00000000c0), 0x8, 0x2) waitid(0x1, r2, 0x0, 0x1000000, &(0x7f0000000040)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2613.600936][T25490] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 2613.614795][T25490] ath9k_htc: Failed to initialize the device [ 2613.665568][T27003] usb 4-1: ath9k_htc: USB layer deinitialized 13:22:14 executing program 3: r0 = getpgid(0x0) getpgid(r0) wait4(0x0, 0x0, 0x8, 0x0) [ 2613.763161][ T7761] FAULT_INJECTION: forcing a failure. [ 2613.763161][ T7761] name failslab, interval 1, probability 0, space 0, times 0 [ 2613.824097][ T7761] CPU: 1 PID: 7761 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2613.832661][ T7761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2613.842735][ T7761] Call Trace: [ 2613.846034][ T7761] dump_stack_lvl+0xcd/0x134 [ 2613.850667][ T7761] should_fail.cold+0x5/0xa [ 2613.855215][ T7761] ? vm_area_dup+0x88/0x2b0 [ 2613.859759][ T7761] should_failslab+0x5/0x10 [ 2613.864294][ T7761] kmem_cache_alloc+0x5e/0x4a0 [ 2613.869104][ T7761] vm_area_dup+0x88/0x2b0 [ 2613.873469][ T7761] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2613.879737][ T7761] ? copy_page_range+0x24ed/0x4010 [ 2613.884915][ T7761] ? vm_area_alloc+0x110/0x110 [ 2613.889739][ T7761] ? handle_mm_fault+0x7f0/0x7f0 [ 2613.894717][ T7761] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2613.900983][ T7761] ? percpu_counter_add_batch+0xbd/0x180 [ 2613.906659][ T7761] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2613.912408][ T7761] ? __vm_enough_memory+0x184/0x360 [ 2613.917638][ T7761] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2613.923566][ T7761] dup_mm+0x543/0x1380 [ 2613.927769][ T7761] ? vm_area_dup+0x2b0/0x2b0 [ 2613.932385][ T7761] ? __raw_spin_lock_init+0x36/0x110 [ 2613.937700][ T7761] copy_process+0x71e0/0x74c0 [ 2613.942411][ T7761] ? lock_chain_count+0x20/0x20 [ 2613.947283][ T7761] ? lock_chain_count+0x20/0x20 [ 2613.952173][ T7761] ? __cleanup_sighand+0xb0/0xb0 [ 2613.957148][ T7761] ? __lock_acquire+0x162f/0x54a0 [ 2613.962282][ T7761] ? kernel_clone+0x314/0xab0 [ 2613.966984][ T7761] kernel_clone+0xe7/0xab0 [ 2613.971426][ T7761] ? create_io_thread+0xf0/0xf0 [ 2613.976314][ T7761] ? find_held_lock+0x2d/0x110 [ 2613.981115][ T7761] __do_sys_fork+0x8a/0xc0 [ 2613.985556][ T7761] ? kernel_thread+0xf0/0xf0 [ 2613.990189][ T7761] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2613.996806][ T7761] ? lockdep_hardirqs_on+0x79/0x100 [ 2614.002030][ T7761] __do_fast_syscall_32+0x65/0xf0 [ 2614.007077][ T7761] do_fast_syscall_32+0x2f/0x70 [ 2614.011946][ T7761] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2614.018294][ T7761] RIP: 0023:0xf7f78549 [ 2614.022373][ T7761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2614.042001][ T7761] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2614.050458][ T7761] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2614.058541][ T7761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2614.066534][ T7761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:15 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x7, &(0x7f0000000000)=""/186) 13:22:15 executing program 2: openat$kvm(0xffffff9c, 0x0, 0x4000, 0x0) 13:22:15 executing program 2: openat$kvm(0xffffff9c, 0x0, 0x4000, 0x0) 13:22:15 executing program 4: r0 = fork() waitid(0xc2ff6482202b7928, r0, 0x0, 0x20000000, 0x0) r1 = fork() getpgid(r1) wait4(r1, &(0x7f0000000000), 0x2, &(0x7f0000000040)) 13:22:15 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000000)=0x10) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2614.074527][ T7761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2614.082521][ T7761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:15 executing program 0 (fault-call:1 fault-nth:44): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:15 executing program 3: r0 = getpgid(0x0) wait4(r0, 0x0, 0x2, 0x0) r1 = fork() ptrace$getregs(0xc, r0, 0x0, &(0x7f00000000c0)=""/30) sched_setattr(r1, &(0x7f0000000000)={0x38, 0x0, 0x2, 0x6, 0x3, 0xb483, 0x1, 0x3, 0x8, 0xf3e}, 0x0) r2 = getpgid(r0) wait4(r2, 0x0, 0x4, &(0x7f0000000040)) inotify_init() 13:22:15 executing program 2: openat$kvm(0xffffff9c, 0x0, 0x4000, 0x0) 13:22:15 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = syz_io_uring_setup(0x2467, &(0x7f0000000000)={0x0, 0x6cf4, 0x5330b9ff45f5472f, 0x1, 0x1e6}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) io_uring_setup(0x4a93, &(0x7f0000000100)={0x0, 0x87de, 0x8, 0x2, 0x29e, 0x0, r1}) r2 = getpgid(r0) r3 = syz_open_dev$vim2m(&(0x7f0000000180), 0x9, 0x2) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r3, 0xc02c564a, &(0x7f00000001c0)={0x3, 0x30385056, 0x2, @discrete={0xfffffc01, 0x7fffffff}}) getpgid(r2) 13:22:15 executing program 2: openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) [ 2614.389745][ T7795] FAULT_INJECTION: forcing a failure. [ 2614.389745][ T7795] name failslab, interval 1, probability 0, space 0, times 0 [ 2614.453586][ T7795] CPU: 1 PID: 7795 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2614.462493][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2614.472636][ T7795] Call Trace: [ 2614.475909][ T7795] dump_stack_lvl+0xcd/0x134 [ 2614.480504][ T7795] should_fail.cold+0x5/0xa [ 2614.485112][ T7795] ? vm_area_dup+0x88/0x2b0 [ 2614.489615][ T7795] should_failslab+0x5/0x10 [ 2614.494146][ T7795] kmem_cache_alloc+0x5e/0x4a0 [ 2614.498911][ T7795] vm_area_dup+0x88/0x2b0 [ 2614.503263][ T7795] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2614.509515][ T7795] ? copy_page_range+0x24ed/0x4010 [ 2614.514643][ T7795] ? vm_area_alloc+0x110/0x110 [ 2614.519408][ T7795] ? handle_mm_fault+0x7f0/0x7f0 [ 2614.524345][ T7795] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2614.530576][ T7795] ? percpu_counter_add_batch+0xbd/0x180 [ 2614.536204][ T7795] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2614.541911][ T7795] ? __vm_enough_memory+0x184/0x360 [ 2614.547107][ T7795] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2614.553086][ T7795] dup_mm+0x543/0x1380 [ 2614.557165][ T7795] ? vm_area_dup+0x2b0/0x2b0 [ 2614.561753][ T7795] ? __raw_spin_lock_init+0x36/0x110 [ 2614.567038][ T7795] copy_process+0x71e0/0x74c0 [ 2614.571708][ T7795] ? lock_chain_count+0x20/0x20 [ 2614.576547][ T7795] ? lock_chain_count+0x20/0x20 [ 2614.581398][ T7795] ? __cleanup_sighand+0xb0/0xb0 [ 2614.586337][ T7795] ? __lock_acquire+0x162f/0x54a0 [ 2614.591356][ T7795] ? kernel_clone+0x314/0xab0 [ 2614.596027][ T7795] kernel_clone+0xe7/0xab0 [ 2614.600438][ T7795] ? create_io_thread+0xf0/0xf0 [ 2614.605303][ T7795] ? find_held_lock+0x2d/0x110 [ 2614.610066][ T7795] __do_sys_fork+0x8a/0xc0 [ 2614.614487][ T7795] ? kernel_thread+0xf0/0xf0 [ 2614.619096][ T7795] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2614.625692][ T7795] ? lockdep_hardirqs_on+0x79/0x100 [ 2614.630890][ T7795] __do_fast_syscall_32+0x65/0xf0 [ 2614.635917][ T7795] do_fast_syscall_32+0x2f/0x70 [ 2614.640761][ T7795] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2614.647079][ T7795] RIP: 0023:0xf7f78549 [ 2614.651138][ T7795] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2614.670735][ T7795] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2614.679170][ T7795] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2614.687143][ T7795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2614.695108][ T7795] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2614.703185][ T7795] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2614.711162][ T7795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:16 executing program 1: r0 = fork() ptrace$getsig(0x4202, r0, 0x7, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) 13:22:16 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x9, 0x7f, 0x4, 0x1, 0x2}) r1 = openat$vim2m(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) r4 = openat$vcs(0xffffff9c, &(0x7f0000000400), 0x101101, 0x0) ioctl$vim2m_VIDIOC_QBUF(r1, 0xc04c560f, &(0x7f0000000440)={0x2, 0x0, 0x4, 0x1000, 0x7, {r2, r3/1000+10000}, {0x2, 0xc, 0x4, 0xcc, 0xdc, 0x40, "7417ebea"}, 0x2, 0x2, @fd=r4, 0xfffffdbe}) 13:22:16 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x40010) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r4, 0x8, 0x70bd25, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8005}, 0x80) wait4(0x0, 0x0, 0x4, 0x0) 13:22:16 executing program 0 (fault-call:1 fault-nth:45): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:16 executing program 2: openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) [ 2615.028092][ T7823] FAULT_INJECTION: forcing a failure. [ 2615.028092][ T7823] name failslab, interval 1, probability 0, space 0, times 0 [ 2615.095008][ T7823] CPU: 1 PID: 7823 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2615.103390][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2615.113466][ T7823] Call Trace: [ 2615.116769][ T7823] dump_stack_lvl+0xcd/0x134 [ 2615.121401][ T7823] should_fail.cold+0x5/0xa [ 2615.125951][ T7823] ? vm_area_alloc+0x110/0x110 [ 2615.130755][ T7823] ? anon_vma_clone+0xe0/0x5f0 [ 2615.135538][ T7823] should_failslab+0x5/0x10 [ 2615.140156][ T7823] kmem_cache_alloc+0x5e/0x4a0 [ 2615.144974][ T7823] anon_vma_clone+0xe0/0x5f0 [ 2615.149599][ T7823] anon_vma_fork+0x82/0x630 [ 2615.154127][ T7823] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2615.159963][ T7823] ? __vm_enough_memory+0x184/0x360 [ 2615.165199][ T7823] dup_mm+0x9a0/0x1380 [ 2615.169311][ T7823] ? vm_area_dup+0x2b0/0x2b0 [ 2615.173946][ T7823] ? __raw_spin_lock_init+0x36/0x110 [ 2615.179266][ T7823] copy_process+0x71e0/0x74c0 [ 2615.184009][ T7823] ? lock_chain_count+0x20/0x20 [ 2615.184045][ T7823] ? lock_chain_count+0x20/0x20 [ 2615.184090][ T7823] ? __cleanup_sighand+0xb0/0xb0 [ 2615.184127][ T7823] ? __lock_acquire+0x162f/0x54a0 [ 2615.203748][ T7823] ? kernel_clone+0x314/0xab0 [ 2615.208575][ T7823] kernel_clone+0xe7/0xab0 [ 2615.213024][ T7823] ? create_io_thread+0xf0/0xf0 [ 2615.217916][ T7823] ? find_held_lock+0x2d/0x110 [ 2615.222739][ T7823] __do_sys_fork+0x8a/0xc0 [ 2615.227203][ T7823] ? kernel_thread+0xf0/0xf0 [ 2615.231802][ T7823] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2615.238392][ T7823] ? lockdep_hardirqs_on+0x79/0x100 [ 2615.243588][ T7823] __do_fast_syscall_32+0x65/0xf0 [ 2615.248615][ T7823] do_fast_syscall_32+0x2f/0x70 [ 2615.253462][ T7823] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2615.259807][ T7823] RIP: 0023:0xf7f78549 [ 2615.263952][ T7823] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2615.283642][ T7823] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 13:22:16 executing program 2: openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) 13:22:16 executing program 3: wait4(0xffffffffffffffff, 0x0, 0x4, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_BROADCAST(r1, 0x10f, 0x85) socket$nl_generic(0x10, 0x3, 0x10) wait4(r0, &(0x7f0000000000), 0x1000000, &(0x7f0000000040)) 13:22:16 executing program 4: r0 = fork() ptrace$getsig(0x4202, r0, 0xfffffff9, &(0x7f0000000080)) 13:22:16 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x3292, &(0x7f0000000000)={0x0, 0x7925, 0x2, 0x3, 0x1aa, 0x0, r0}) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000001580)={0x41, 0x2, 0x2}, 0x10) fork() [ 2615.292077][ T7823] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2615.300086][ T7823] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2615.308057][ T7823] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2615.316026][ T7823] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2615.324012][ T7823] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:16 executing program 0 (fault-call:1 fault-nth:46): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:16 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x9, 0x7f, 0x4, 0x1, 0x2}) r1 = openat$vim2m(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) r4 = openat$vcs(0xffffff9c, &(0x7f0000000400), 0x101101, 0x0) ioctl$vim2m_VIDIOC_QBUF(r1, 0xc04c560f, &(0x7f0000000440)={0x2, 0x0, 0x4, 0x1000, 0x7, {r2, r3/1000+10000}, {0x2, 0xc, 0x4, 0xcc, 0xdc, 0x40, "7417ebea"}, 0x2, 0x2, @fd=r4, 0xfffffdbe}) [ 2615.588174][ T7857] FAULT_INJECTION: forcing a failure. [ 2615.588174][ T7857] name failslab, interval 1, probability 0, space 0, times 0 [ 2615.609865][ T7857] CPU: 0 PID: 7857 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2615.618376][ T7857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2615.628589][ T7857] Call Trace: [ 2615.631885][ T7857] dump_stack_lvl+0xcd/0x134 [ 2615.636512][ T7857] should_fail.cold+0x5/0xa [ 2615.641063][ T7857] ? anon_vma_clone+0xe0/0x5f0 [ 2615.645858][ T7857] should_failslab+0x5/0x10 [ 2615.650390][ T7857] kmem_cache_alloc+0x5e/0x4a0 [ 2615.655187][ T7857] anon_vma_clone+0xe0/0x5f0 [ 2615.659816][ T7857] anon_vma_fork+0x82/0x630 [ 2615.664343][ T7857] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2615.670089][ T7857] ? __vm_enough_memory+0x184/0x360 [ 2615.675312][ T7857] dup_mm+0x9a0/0x1380 [ 2615.679422][ T7857] ? vm_area_dup+0x2b0/0x2b0 [ 2615.684078][ T7857] ? __raw_spin_lock_init+0x36/0x110 [ 2615.689406][ T7857] copy_process+0x71e0/0x74c0 [ 2615.694203][ T7857] ? lock_chain_count+0x20/0x20 [ 2615.699077][ T7857] ? lock_chain_count+0x20/0x20 [ 2615.703976][ T7857] ? __cleanup_sighand+0xb0/0xb0 [ 2615.708951][ T7857] ? __lock_acquire+0x162f/0x54a0 [ 2615.713998][ T7857] ? kernel_clone+0x314/0xab0 [ 2615.718704][ T7857] kernel_clone+0xe7/0xab0 [ 2615.723166][ T7857] ? create_io_thread+0xf0/0xf0 [ 2615.728060][ T7857] ? find_held_lock+0x2d/0x110 [ 2615.732865][ T7857] __do_sys_fork+0x8a/0xc0 13:22:16 executing program 3: r0 = fork() getpgid(r0) r1 = fork() r2 = getpgid(r1) fork() wait4(r2, 0x0, 0x20000000, 0x0) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) r3 = fork() getpgid(r3) waitid(0x2, r3, 0x0, 0x41000000, &(0x7f0000000000)) [ 2615.737305][ T7857] ? kernel_thread+0xf0/0xf0 [ 2615.741935][ T7857] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2615.748556][ T7857] ? lockdep_hardirqs_on+0x79/0x100 [ 2615.753776][ T7857] __do_fast_syscall_32+0x65/0xf0 [ 2615.758823][ T7857] do_fast_syscall_32+0x2f/0x70 [ 2615.763702][ T7857] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2615.770053][ T7857] RIP: 0023:0xf7f78549 [ 2615.774145][ T7857] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2615.793776][ T7857] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2615.802217][ T7857] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2615.810214][ T7857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2615.818207][ T7857] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2615.826199][ T7857] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2615.834189][ T7857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:17 executing program 1: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x8, 0x13, 0xba, &(0x7f0000000040)="ae479f6e27b3648e093df0b610c8c8f73b72d1367df92a45d03bb2603c2f4b6d40bd1bb82c700f9e615d49375bfc7a95309772eb98bbb66f136b99bf82d77e0de67ead28b6657bbc3df1c89a565c157ba52f9bac84e7608876aaa54f85091c6a4dba8dc93c925e71ba5d140ba4f9465d4f2a91af616042bce1dd2147a80abd2b26f460adf9558177af739f612adae74eb020dd3a8ca44a868d791e9fd62861f11323dde33048408ead8b13c96bc4acf72bd61d142f137edce120"}) fork() ioctl$sock_ifreq(r0, 0x8970, &(0x7f0000000140)={'veth1_macvtap\x00', @ifru_names}) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:17 executing program 4: r0 = fork() getpgid(r0) 13:22:17 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040), &(0x7f0000000080)=0x4) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_INITSTATE(r1, 0x113, 0x4, &(0x7f0000000000), 0x4) 13:22:17 executing program 0 (fault-call:1 fault-nth:47): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:17 executing program 4: fork() [ 2616.237225][ T7890] FAULT_INJECTION: forcing a failure. [ 2616.237225][ T7890] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2616.272755][ T7890] CPU: 1 PID: 7890 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2616.281218][ T7890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2616.291291][ T7890] Call Trace: [ 2616.294593][ T7890] dump_stack_lvl+0xcd/0x134 [ 2616.299218][ T7890] should_fail.cold+0x5/0xa [ 2616.303769][ T7890] prepare_alloc_pages+0x17b/0x580 [ 2616.308918][ T7890] __alloc_pages+0x12f/0x500 [ 2616.313538][ T7890] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2616.320358][ T7890] ? find_held_lock+0x2d/0x110 [ 2616.325173][ T7890] alloc_pages+0x18c/0x2a0 [ 2616.329616][ T7890] pte_alloc_one+0x16/0x230 [ 2616.334141][ T7890] __pte_alloc+0x1f/0x2d0 [ 2616.338497][ T7890] copy_page_range+0x18c1/0x4010 [ 2616.343508][ T7890] ? up_write+0x191/0x560 [ 2616.347871][ T7890] ? handle_mm_fault+0x7f0/0x7f0 [ 2616.352827][ T7890] ? downgrade_write+0x3a0/0x3a0 [ 2616.357799][ T7890] ? down_write_killable_nested+0x180/0x180 [ 2616.363736][ T7890] ? __vma_link_rb+0x553/0x710 [ 2616.368538][ T7890] dup_mm+0x9e7/0x1380 [ 2616.372644][ T7890] ? vm_area_dup+0x2b0/0x2b0 [ 2616.377259][ T7890] ? __raw_spin_lock_init+0x36/0x110 [ 2616.382572][ T7890] copy_process+0x71e0/0x74c0 [ 2616.387277][ T7890] ? lock_chain_count+0x20/0x20 [ 2616.392161][ T7890] ? lock_chain_count+0x20/0x20 [ 2616.397046][ T7890] ? __cleanup_sighand+0xb0/0xb0 [ 2616.402015][ T7890] ? __lock_acquire+0x162f/0x54a0 [ 2616.407069][ T7890] ? kernel_clone+0x314/0xab0 [ 2616.411776][ T7890] kernel_clone+0xe7/0xab0 [ 2616.416240][ T7890] ? create_io_thread+0xf0/0xf0 [ 2616.421132][ T7890] ? find_held_lock+0x2d/0x110 [ 2616.425938][ T7890] __do_sys_fork+0x8a/0xc0 [ 2616.430385][ T7890] ? kernel_thread+0xf0/0xf0 [ 2616.435042][ T7890] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2616.441678][ T7890] ? lockdep_hardirqs_on+0x79/0x100 [ 2616.446904][ T7890] __do_fast_syscall_32+0x65/0xf0 [ 2616.451961][ T7890] do_fast_syscall_32+0x2f/0x70 [ 2616.456837][ T7890] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2616.463280][ T7890] RIP: 0023:0xf7f78549 [ 2616.467366][ T7890] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:17 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x89ed, 0x0) 13:22:17 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x20}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x30fc, &(0x7f0000000000)={0x0, 0x447b, 0x2, 0x2, 0xb4, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r2 = epoll_create1(0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000100)={0x10000010}, r2, 0x1, 0x0, 0x1}, 0x4) fork() 13:22:17 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = getpgid(0xffffffffffffffff) wait4(r0, 0x0, 0x1000000, &(0x7f0000000000)) 13:22:17 executing program 2: r0 = fork() ptrace$getsig(0x4202, r0, 0x7, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) 13:22:17 executing program 4: fork() r0 = fork() r1 = getpgid(r0) r2 = fork() getpgid(r2) getpgid(r2) r3 = getpgid(r1) r4 = getpgid(r3) capset(&(0x7f0000000000)={0x20080522, r4}, &(0x7f0000000040)={0x4, 0xe0000003, 0x1f, 0x7, 0x8, 0xfff}) fork() [ 2616.487084][ T7890] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2616.495526][ T7890] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2616.503518][ T7890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2616.511597][ T7890] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2616.519585][ T7890] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2616.527578][ T7890] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:17 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = openat$nullb(0xffffff9c, &(0x7f0000000040), 0x214640, 0x0) ioctl$BLKALIGNOFF(r1, 0x127a, &(0x7f00000000c0)) setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, &(0x7f0000000000)=0x9, 0x4) 13:22:17 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$getsig(0x4202, r0, 0x2, &(0x7f0000000000)) r1 = fork() ptrace$getsig(0x4202, r1, 0x7f, &(0x7f0000000080)) r2 = fork() getpgid(r2) ptrace$getsig(0x4202, r2, 0x4, &(0x7f0000000100)) 13:22:18 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) wait4(r1, &(0x7f00000000c0), 0x2, &(0x7f0000000100)) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) connect$tipc(r2, &(0x7f0000000040), 0x10) waitid(0x2, r0, &(0x7f0000000000), 0x8, 0x0) r3 = getpgid(r0) ptrace$getregs(0x2, r3, 0x9, &(0x7f0000000080)=""/11) 13:22:18 executing program 0 (fault-call:1 fault-nth:48): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:18 executing program 4: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc04c5611, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x4, 0xfffffffe, {r0, r1/1000+10000}, {0x4, 0x0, 0x9, 0x7f, 0x40, 0x80, "40b7bd1b"}, 0x8000, 0x3, @planes=&(0x7f0000000040)={0x90d, 0x1, @mem_offset=0x4, 0x2}, 0x1}) fork() 13:22:18 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = syz_io_uring_setup(0x5854, &(0x7f0000000140)={0x0, 0xfd97, 0x3c, 0x2, 0x34f, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) syz_io_uring_setup(0x747b, &(0x7f00000002c0)={0x0, 0x8251, 0x10, 0x1, 0x21c, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380)) ioctl$MEDIA_REQUEST_IOC_QUEUE(0xffffffffffffffff, 0x7c80, 0x0) r2 = io_uring_setup(0xf77, &(0x7f0000000040)={0x0, 0x2ffa, 0x10, 0x0, 0x1cf, 0x0, r0}) r3 = io_uring_setup(0x2420, &(0x7f00000000c0)={0x0, 0x3587, 0x10, 0x1, 0x26, 0x0, r2}) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10010, r3, 0x10000000) setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, &(0x7f0000000000)=0xfffffffe, 0x4) fork() [ 2617.126056][ T7947] FAULT_INJECTION: forcing a failure. [ 2617.126056][ T7947] name failslab, interval 1, probability 0, space 0, times 0 [ 2617.176217][ T7947] CPU: 1 PID: 7947 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2617.184627][ T7947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2617.194795][ T7947] Call Trace: [ 2617.198088][ T7947] dump_stack_lvl+0xcd/0x134 [ 2617.202732][ T7947] should_fail.cold+0x5/0xa [ 2617.207315][ T7947] ? anon_vma_fork+0x1df/0x630 [ 2617.212196][ T7947] should_failslab+0x5/0x10 [ 2617.216735][ T7947] kmem_cache_alloc+0x5e/0x4a0 [ 2617.221531][ T7947] anon_vma_fork+0x1df/0x630 [ 2617.226160][ T7947] dup_mm+0x9a0/0x1380 [ 2617.230288][ T7947] ? vm_area_dup+0x2b0/0x2b0 [ 2617.234909][ T7947] ? __raw_spin_lock_init+0x36/0x110 [ 2617.240231][ T7947] copy_process+0x71e0/0x74c0 [ 2617.244944][ T7947] ? lock_chain_count+0x20/0x20 [ 2617.249821][ T7947] ? lock_chain_count+0x20/0x20 [ 2617.254725][ T7947] ? __cleanup_sighand+0xb0/0xb0 [ 2617.259710][ T7947] ? __lock_acquire+0x162f/0x54a0 [ 2617.264766][ T7947] ? kernel_clone+0x314/0xab0 [ 2617.269473][ T7947] kernel_clone+0xe7/0xab0 [ 2617.273923][ T7947] ? create_io_thread+0xf0/0xf0 [ 2617.278809][ T7947] ? find_held_lock+0x2d/0x110 [ 2617.283611][ T7947] __do_sys_fork+0x8a/0xc0 [ 2617.288059][ T7947] ? kernel_thread+0xf0/0xf0 [ 2617.292695][ T7947] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2617.299318][ T7947] ? lockdep_hardirqs_on+0x79/0x100 [ 2617.304549][ T7947] __do_fast_syscall_32+0x65/0xf0 [ 2617.309607][ T7947] do_fast_syscall_32+0x2f/0x70 [ 2617.314492][ T7947] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2617.320850][ T7947] RIP: 0023:0xf7f78549 13:22:18 executing program 1: r0 = fork() inotify_rm_watch(0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000380), 0x100, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000003640)='./file0\x00', 0x20) inotify_add_watch(r1, &(0x7f00000003c0)='./file0\x00', 0x82000000) r2 = getpgid(r0) wait4(r2, 0x0, 0x8, 0x0) waitid(0x0, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) wait4(r0, &(0x7f0000000100), 0x2, 0x0) r3 = getpgid(r0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000200)={"8d8fd45b509c001f6c35f673752a3298", 0x0, 0x0, {0x1, 0x5}, {0x5, 0x4}, 0x0, [0x1ff, 0xd, 0x1ff, 0xffffffffffffff01, 0x400, 0x3, 0x4629, 0x5, 0x4, 0x6, 0x7, 0x8000, 0x80, 0xfffffffffffffc00, 0x4, 0x7fffffff]}) ptrace$getsig(0x4202, r3, 0x2, &(0x7f0000000140)) ptrace$getsig(0x4202, r3, 0xa97, &(0x7f0000000300)) wait4(r0, &(0x7f00000002c0), 0x40000000, 0x0) setsockopt$PNPIPE_INITSTATE(0xffffffffffffffff, 0x113, 0x4, &(0x7f00000001c0), 0x4) [ 2617.324942][ T7947] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2617.344834][ T7947] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2617.353289][ T7947] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2617.361311][ T7947] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2617.369314][ T7947] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:18 executing program 4: fork() r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000000)={0x100, 0xa7c, 0xffff}) [ 2617.377393][ T7947] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2617.385468][ T7947] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000100)={0x0, 0x1, 0xffffffffffffffff}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000140)={r0, 0x0, r2}) fork() ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000002c0)={&(0x7f00000001c0)=[r3], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000300)={r1, r3, 0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f0000000380)={&(0x7f0000000180)=[r1], &(0x7f0000000340)=[r5, r6, 0x0], 0x7, 0x1}) r7 = getpgid(0x0) getpgid(r7) ioctl$BLKSECTGET(0xffffffffffffffff, 0x1267, &(0x7f0000000080)) r8 = getpgid(0xffffffffffffffff) capset(&(0x7f0000000000)={0x19980330, r8}, &(0x7f0000000040)={0x4b4, 0x7f, 0x200, 0x1000008, 0x6, 0x9}) 13:22:18 executing program 2: r0 = fork() ptrace$getsig(0x4202, r0, 0x7, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) 13:22:18 executing program 0 (fault-call:1 fault-nth:49): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:18 executing program 4: r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) ptrace$getsig(0x4202, r1, 0x8, &(0x7f0000000080)) fork() [ 2617.683092][ T7977] FAULT_INJECTION: forcing a failure. [ 2617.683092][ T7977] name failslab, interval 1, probability 0, space 0, times 0 [ 2617.729908][ T7977] CPU: 1 PID: 7977 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2617.738383][ T7977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2617.748459][ T7977] Call Trace: [ 2617.751755][ T7977] dump_stack_lvl+0xcd/0x134 [ 2617.756383][ T7977] should_fail.cold+0x5/0xa [ 2617.760918][ T7977] ? ptlock_alloc+0x1d/0x70 [ 2617.765443][ T7977] should_failslab+0x5/0x10 [ 2617.769969][ T7977] kmem_cache_alloc+0x5e/0x4a0 [ 2617.774885][ T7977] ptlock_alloc+0x1d/0x70 13:22:19 executing program 4: fork() fork() r0 = fork() getpgid(r0) capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x1, 0x10001, 0x81, 0x3, 0x6, 0x949}) fork() [ 2617.779241][ T7977] pte_alloc_one+0x68/0x230 [ 2617.783766][ T7977] __pte_alloc+0x1f/0x2d0 [ 2617.788132][ T7977] copy_page_range+0x18c1/0x4010 [ 2617.793131][ T7977] ? up_write+0x191/0x560 [ 2617.797482][ T7977] ? handle_mm_fault+0x7f0/0x7f0 [ 2617.802438][ T7977] ? downgrade_write+0x3a0/0x3a0 [ 2617.807393][ T7977] ? down_write_killable_nested+0x180/0x180 [ 2617.813353][ T7977] ? __vma_link_rb+0x553/0x710 [ 2617.818157][ T7977] dup_mm+0x9e7/0x1380 [ 2617.822268][ T7977] ? vm_area_dup+0x2b0/0x2b0 [ 2617.826887][ T7977] ? __raw_spin_lock_init+0x36/0x110 [ 2617.832214][ T7977] copy_process+0x71e0/0x74c0 [ 2617.836915][ T7977] ? find_held_lock+0x2d/0x110 [ 2617.841704][ T7977] ? lock_chain_count+0x20/0x20 [ 2617.846604][ T7977] ? lock_chain_count+0x20/0x20 [ 2617.851494][ T7977] ? __cleanup_sighand+0xb0/0xb0 [ 2617.856464][ T7977] ? __lock_acquire+0x162f/0x54a0 [ 2617.861515][ T7977] ? kernel_clone+0x314/0xab0 [ 2617.866225][ T7977] kernel_clone+0xe7/0xab0 [ 2617.870669][ T7977] ? create_io_thread+0xf0/0xf0 [ 2617.875559][ T7977] ? find_held_lock+0x2d/0x110 [ 2617.880379][ T7977] __do_sys_fork+0x8a/0xc0 [ 2617.884829][ T7977] ? kernel_thread+0xf0/0xf0 [ 2617.889464][ T7977] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2617.896082][ T7977] ? lockdep_hardirqs_on+0x79/0x100 [ 2617.901306][ T7977] __do_fast_syscall_32+0x65/0xf0 [ 2617.906358][ T7977] do_fast_syscall_32+0x2f/0x70 [ 2617.911238][ T7977] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2617.917593][ T7977] RIP: 0023:0xf7f78549 13:22:19 executing program 4: r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000000)=0x0) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000280)=0x10, 0x0) accept4$tipc(r2, 0x0, &(0x7f00000002c0), 0x81000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="f8de0000", @ANYRES16=r1, @ANYRES64=r4], 0x68}}, 0x800) sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x282500c0}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="040029bd7000fcdbdf25010000000000002008410000004c00180000000473790180ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004c6bbeece4e46dc049c27c9c075de91e439ca61f8fd9bbc6c6a1f2a5c285bc00ffffffe65c7355b8e6ebe4bf93f6cd4165c7e10f4e0cd999070fb1099e36cd75bbd2ef2ddde4e7a751d5c5089e68441da0c6a4ce78388a70e42466044a5079918e30e27dedf3ec98248386cec789a13d70"], 0x68}, 0x1, 0x0, 0x0, 0x40000000}, 0x40) [ 2617.921682][ T7977] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2617.941313][ T7977] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2617.949754][ T7977] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2617.957752][ T7977] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2617.965743][ T7977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2617.973820][ T7977] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2617.981837][ T7977] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:19 executing program 3: socketpair(0x15, 0x4, 0xb3, &(0x7f0000001680)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000016c0)={'wg0\x00'}) getsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r2 = fork() wait4(r2, 0x0, 0x0, 0x0) wait4(r2, &(0x7f0000000000), 0x2, 0x0) r3 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000040), &(0x7f0000000080)=0x4) 13:22:19 executing program 5: syz_io_uring_setup(0x19, &(0x7f0000000240)={0x0, 0xa07e, 0x10}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0) fork() syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) 13:22:19 executing program 0 (fault-call:1 fault-nth:50): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:19 executing program 4: fork() prctl$PR_SET_TSC(0x1a, 0x2) 13:22:19 executing program 1: ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000000)) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0cc5640, &(0x7f0000000140)={0x1, @pix_mp={0x4, 0xe682, 0x34324142, 0x2, 0x6, [{0x5, 0x8}, {0x5, 0x3e9e6966}, {0xbd, 0x3}, {0x8, 0x4}, {0x2000003, 0xffffff01}, {0x105, 0x6}, {0x8, 0x2}, {0x37d}], 0x10, 0x3, 0x1, 0x0, 0x6}}) r1 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000080)={0x6f3, 0x2, 0x3}) r3 = getpgid(r1) ptrace$getregs(0xe, r3, 0x6d4, &(0x7f0000000340)=""/156) r4 = fork() getpgid(r4) capset(&(0x7f0000000500)={0x0, r4}, &(0x7f0000000540)={0x300000, 0x4, 0x1, 0x5, 0xd14, 0x81}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r5, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}}, 0x4000805) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="142ac008", @ANYRESDEC, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), r5) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f00000004c0)={&(0x7f0000000400), 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8084}, 0x4000) [ 2618.268267][ T8018] FAULT_INJECTION: forcing a failure. [ 2618.268267][ T8018] name failslab, interval 1, probability 0, space 0, times 0 [ 2618.323217][ T8018] CPU: 0 PID: 8018 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2618.331740][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2618.341821][ T8018] Call Trace: [ 2618.345121][ T8018] dump_stack_lvl+0xcd/0x134 [ 2618.349769][ T8018] should_fail.cold+0x5/0xa [ 2618.354302][ T8018] ? vm_area_alloc+0x110/0x110 [ 2618.359106][ T8018] ? anon_vma_clone+0xe0/0x5f0 [ 2618.363932][ T8018] should_failslab+0x5/0x10 [ 2618.368461][ T8018] kmem_cache_alloc+0x5e/0x4a0 [ 2618.373254][ T8018] anon_vma_clone+0xe0/0x5f0 [ 2618.377886][ T8018] anon_vma_fork+0x82/0x630 [ 2618.382415][ T8018] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2618.388171][ T8018] ? __vm_enough_memory+0x184/0x360 [ 2618.393397][ T8018] dup_mm+0x9a0/0x1380 [ 2618.397492][ T8018] ? vm_area_dup+0x2b0/0x2b0 [ 2618.402091][ T8018] ? __raw_spin_lock_init+0x36/0x110 [ 2618.407407][ T8018] copy_process+0x71e0/0x74c0 [ 2618.412122][ T8018] ? lock_chain_count+0x20/0x20 [ 2618.417002][ T8018] ? lock_chain_count+0x20/0x20 [ 2618.421878][ T8018] ? __cleanup_sighand+0xb0/0xb0 [ 2618.426848][ T8018] ? __lock_acquire+0x162f/0x54a0 [ 2618.431893][ T8018] ? kernel_clone+0x314/0xab0 [ 2618.436589][ T8018] kernel_clone+0xe7/0xab0 [ 2618.441040][ T8018] ? create_io_thread+0xf0/0xf0 [ 2618.445949][ T8018] ? find_held_lock+0x2d/0x110 [ 2618.450743][ T8018] __do_sys_fork+0x8a/0xc0 [ 2618.455187][ T8018] ? kernel_thread+0xf0/0xf0 [ 2618.459813][ T8018] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2618.466450][ T8018] ? lockdep_hardirqs_on+0x79/0x100 [ 2618.471677][ T8018] __do_fast_syscall_32+0x65/0xf0 [ 2618.476724][ T8018] do_fast_syscall_32+0x2f/0x70 [ 2618.481598][ T8018] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2618.487950][ T8018] RIP: 0023:0xf7f78549 [ 2618.492035][ T8018] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2618.511773][ T8018] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 13:22:19 executing program 4: fork() r0 = fork() getpgid(r0) waitid(0x1, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) fork() 13:22:19 executing program 5: fork() [ 2618.520211][ T8018] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2618.528177][ T8018] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2618.536147][ T8018] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2618.544143][ T8018] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2618.552139][ T8018] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:19 executing program 2: fork() prctl$PR_SET_TSC(0x1a, 0x2) 13:22:20 executing program 2: r0 = fork() inotify_rm_watch(0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000380), 0x100, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000003640)='./file0\x00', 0x20) inotify_add_watch(r1, &(0x7f00000003c0)='./file0\x00', 0x82000000) r2 = getpgid(r0) wait4(r2, 0x0, 0x8, 0x0) waitid(0x0, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) wait4(r0, &(0x7f0000000100), 0x2, 0x0) r3 = getpgid(r0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000200)={"8d8fd45b509c001f6c35f673752a3298", 0x0, 0x0, {0x1, 0x5}, {0x5, 0x4}, 0x0, [0x1ff, 0xd, 0x1ff, 0xffffffffffffff01, 0x400, 0x3, 0x4629, 0x5, 0x4, 0x6, 0x7, 0x8000, 0x80, 0xfffffffffffffc00, 0x4, 0x7fffffff]}) ptrace$getsig(0x4202, r3, 0x2, &(0x7f0000000140)) ptrace$getsig(0x4202, r3, 0xa97, &(0x7f0000000300)) wait4(r0, &(0x7f00000002c0), 0x40000000, 0x0) setsockopt$PNPIPE_INITSTATE(0xffffffffffffffff, 0x113, 0x4, &(0x7f00000001c0), 0x4) 13:22:20 executing program 0 (fault-call:1 fault-nth:51): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:20 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x7353, 0x20}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x0, 0x0) fork() [ 2618.889891][ T8045] FAULT_INJECTION: forcing a failure. [ 2618.889891][ T8045] name failslab, interval 1, probability 0, space 0, times 0 [ 2618.914398][ T8045] CPU: 0 PID: 8045 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2618.922781][ T8045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2618.932853][ T8045] Call Trace: [ 2618.936156][ T8045] dump_stack_lvl+0xcd/0x134 [ 2618.940783][ T8045] should_fail.cold+0x5/0xa [ 2618.945316][ T8045] ? vm_area_dup+0x88/0x2b0 [ 2618.949852][ T8045] should_failslab+0x5/0x10 [ 2618.954380][ T8045] kmem_cache_alloc+0x5e/0x4a0 [ 2618.959173][ T8045] vm_area_dup+0x88/0x2b0 [ 2618.963546][ T8045] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2618.969823][ T8045] ? copy_page_range+0x24ed/0x4010 [ 2618.974996][ T8045] ? vm_area_alloc+0x110/0x110 [ 2618.979889][ T8045] ? handle_mm_fault+0x7f0/0x7f0 [ 2618.984836][ T8045] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2618.991090][ T8045] ? percpu_counter_add_batch+0xbd/0x180 [ 2618.996764][ T8045] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2619.002512][ T8045] ? __vm_enough_memory+0x184/0x360 [ 2619.007850][ T8045] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2619.013797][ T8045] dup_mm+0x543/0x1380 [ 2619.017931][ T8045] ? vm_area_dup+0x2b0/0x2b0 [ 2619.022543][ T8045] ? __raw_spin_lock_init+0x36/0x110 [ 2619.027869][ T8045] copy_process+0x71e0/0x74c0 [ 2619.032556][ T8045] ? lock_chain_count+0x20/0x20 [ 2619.037428][ T8045] ? lock_chain_count+0x20/0x20 [ 2619.042299][ T8045] ? __cleanup_sighand+0xb0/0xb0 [ 2619.047267][ T8045] ? __lock_acquire+0x162f/0x54a0 [ 2619.052312][ T8045] ? kernel_clone+0x314/0xab0 [ 2619.057104][ T8045] kernel_clone+0xe7/0xab0 [ 2619.061550][ T8045] ? create_io_thread+0xf0/0xf0 [ 2619.066445][ T8045] ? find_held_lock+0x2d/0x110 [ 2619.071257][ T8045] __do_sys_fork+0x8a/0xc0 [ 2619.075699][ T8045] ? kernel_thread+0xf0/0xf0 [ 2619.080331][ T8045] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2619.086945][ T8045] ? lockdep_hardirqs_on+0x79/0x100 [ 2619.092148][ T8045] __do_fast_syscall_32+0x65/0xf0 [ 2619.097198][ T8045] do_fast_syscall_32+0x2f/0x70 [ 2619.102076][ T8045] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2619.108437][ T8045] RIP: 0023:0xf7f78549 [ 2619.112523][ T8045] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2619.132154][ T8045] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 13:22:20 executing program 3: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="2df11eb22265a84b8716b38196ffa41c006d946dbd6a41892c60a271f1f7ae0b2b270b325b67a5e78c8089c8886043bb67cd3a22d90ede7612837f27fb29a7b21c67764fa79887aa071373", 0x4b) fork() r0 = fork() getpgid(r0) r1 = fork() wait4(r1, 0x0, 0x80000000, 0x0) sched_setattr(r1, &(0x7f0000000080)={0x38, 0x3, 0x18, 0x3ac, 0x1f, 0xffff, 0xa2, 0x5, 0x6, 0x8}, 0x0) [ 2619.140596][ T8045] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2619.148591][ T8045] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2619.156583][ T8045] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2619.164602][ T8045] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2619.172596][ T8045] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:20 executing program 0 (fault-call:1 fault-nth:52): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:20 executing program 1: wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:20 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x4000}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) 13:22:20 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) waitid(0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x0, &(0x7f0000000080)) [ 2619.466822][ T8075] FAULT_INJECTION: forcing a failure. [ 2619.466822][ T8075] name failslab, interval 1, probability 0, space 0, times 0 [ 2619.514904][ T8075] CPU: 0 PID: 8075 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2619.523311][ T8075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2619.533419][ T8075] Call Trace: [ 2619.536714][ T8075] dump_stack_lvl+0xcd/0x134 [ 2619.541343][ T8075] should_fail.cold+0x5/0xa [ 2619.545882][ T8075] ? anon_vma_clone+0xe0/0x5f0 [ 2619.550671][ T8075] should_failslab+0x5/0x10 [ 2619.555195][ T8075] kmem_cache_alloc+0x5e/0x4a0 [ 2619.559991][ T8075] anon_vma_clone+0xe0/0x5f0 [ 2619.564619][ T8075] anon_vma_fork+0x82/0x630 [ 2619.569169][ T8075] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2619.574911][ T8075] ? __vm_enough_memory+0x184/0x360 [ 2619.580160][ T8075] dup_mm+0x9a0/0x1380 [ 2619.584271][ T8075] ? vm_area_dup+0x2b0/0x2b0 [ 2619.588888][ T8075] ? __raw_spin_lock_init+0x36/0x110 [ 2619.594205][ T8075] copy_process+0x71e0/0x74c0 [ 2619.598915][ T8075] ? lock_chain_count+0x20/0x20 [ 2619.603790][ T8075] ? lock_chain_count+0x20/0x20 [ 2619.608681][ T8075] ? __cleanup_sighand+0xb0/0xb0 [ 2619.613656][ T8075] ? __lock_acquire+0x162f/0x54a0 [ 2619.618704][ T8075] ? kernel_clone+0x314/0xab0 [ 2619.623411][ T8075] kernel_clone+0xe7/0xab0 [ 2619.627854][ T8075] ? create_io_thread+0xf0/0xf0 [ 2619.632742][ T8075] ? find_held_lock+0x2d/0x110 [ 2619.637539][ T8075] __do_sys_fork+0x8a/0xc0 [ 2619.641987][ T8075] ? kernel_thread+0xf0/0xf0 [ 2619.646609][ T8075] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2619.653228][ T8075] ? lockdep_hardirqs_on+0x79/0x100 [ 2619.658465][ T8075] __do_fast_syscall_32+0x65/0xf0 [ 2619.663527][ T8075] do_fast_syscall_32+0x2f/0x70 [ 2619.668405][ T8075] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2619.674758][ T8075] RIP: 0023:0xf7f78549 [ 2619.678841][ T8075] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2619.698473][ T8075] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2619.706915][ T8075] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:20 executing program 4: r0 = fork() waitid(0x1, r0, &(0x7f0000000000), 0x1, &(0x7f0000000080)) 13:22:20 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() inotify_init1(0x0) 13:22:20 executing program 3: wait4(0xffffffffffffffff, 0x0, 0x4, 0x0) [ 2619.714908][ T8075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2619.722902][ T8075] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2619.730891][ T8075] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2619.738872][ T8075] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:21 executing program 2: r0 = fork() inotify_rm_watch(0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000380), 0x100, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000003640)='./file0\x00', 0x20) inotify_add_watch(r1, &(0x7f00000003c0)='./file0\x00', 0x82000000) r2 = getpgid(r0) wait4(r2, 0x0, 0x8, 0x0) waitid(0x0, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) wait4(r0, &(0x7f0000000100), 0x2, 0x0) r3 = getpgid(r0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000200)={"8d8fd45b509c001f6c35f673752a3298", 0x0, 0x0, {0x1, 0x5}, {0x5, 0x4}, 0x0, [0x1ff, 0xd, 0x1ff, 0xffffffffffffff01, 0x400, 0x3, 0x4629, 0x5, 0x4, 0x6, 0x7, 0x8000, 0x80, 0xfffffffffffffc00, 0x4, 0x7fffffff]}) ptrace$getsig(0x4202, r3, 0x2, &(0x7f0000000140)) ptrace$getsig(0x4202, r3, 0xa97, &(0x7f0000000300)) wait4(r0, &(0x7f00000002c0), 0x40000000, 0x0) setsockopt$PNPIPE_INITSTATE(0xffffffffffffffff, 0x113, 0x4, &(0x7f00000001c0), 0x4) 13:22:21 executing program 4: r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x5, 0x10000040, 0x7ff, 0x9, 0x0, 0xffffffffffffff80, 0x9, 0xfffffe00, 0x1}, 0x0) 13:22:21 executing program 0 (fault-call:1 fault-nth:53): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:21 executing program 3: r0 = fork() wait4(r0, 0x0, 0x4, 0x0) [ 2620.019300][ T8105] FAULT_INJECTION: forcing a failure. [ 2620.019300][ T8105] name failslab, interval 1, probability 0, space 0, times 0 [ 2620.108842][ T8105] CPU: 0 PID: 8105 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2620.117247][ T8105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2620.127323][ T8105] Call Trace: [ 2620.130621][ T8105] dump_stack_lvl+0xcd/0x134 [ 2620.135249][ T8105] should_fail.cold+0x5/0xa [ 2620.139789][ T8105] ? vm_area_dup+0x88/0x2b0 [ 2620.144324][ T8105] should_failslab+0x5/0x10 [ 2620.148852][ T8105] kmem_cache_alloc+0x5e/0x4a0 [ 2620.153648][ T8105] vm_area_dup+0x88/0x2b0 [ 2620.158022][ T8105] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2620.164293][ T8105] ? copy_page_range+0x24ed/0x4010 [ 2620.169468][ T8105] ? vm_area_alloc+0x110/0x110 [ 2620.174284][ T8105] ? handle_mm_fault+0x7f0/0x7f0 [ 2620.179263][ T8105] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2620.185561][ T8105] ? percpu_counter_add_batch+0xbd/0x180 [ 2620.191230][ T8105] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2620.196973][ T8105] ? __vm_enough_memory+0x184/0x360 [ 2620.202204][ T8105] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2620.208139][ T8105] dup_mm+0x543/0x1380 [ 2620.212247][ T8105] ? vm_area_dup+0x2b0/0x2b0 [ 2620.216869][ T8105] ? __raw_spin_lock_init+0x36/0x110 [ 2620.222188][ T8105] copy_process+0x71e0/0x74c0 [ 2620.226902][ T8105] ? lock_chain_count+0x20/0x20 [ 2620.231776][ T8105] ? lock_chain_count+0x20/0x20 [ 2620.236655][ T8105] ? __cleanup_sighand+0xb0/0xb0 [ 2620.241598][ T8105] ? __lock_acquire+0x162f/0x54a0 [ 2620.246640][ T8105] ? kernel_clone+0x314/0xab0 [ 2620.251330][ T8105] kernel_clone+0xe7/0xab0 13:22:21 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x4, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x44b9, &(0x7f0000000000)={0x0, 0x5b56, 0x10, 0x3, 0x253}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r1 = syz_io_uring_setup(0x73cf, &(0x7f0000000100)={0x0, 0x611d, 0x10, 0x2, 0x9d}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000003c0)) syz_io_uring_setup(0xf02, &(0x7f00000002c0)={0x0, 0xf99a, 0x0, 0xffffffff, 0x293, 0x0, r1}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) r3 = socket$inet6_dccp(0xa, 0x6, 0x0) syz_io_uring_submit(r0, r2, &(0x7f0000000380)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x5, 0x0, r3, 0x0, &(0x7f0000000340)="764570c97fc68efcd3c5b7a58ccd452f0c521587ceaf53394dbeb40019b682b196102b04c0cb3439fa779b0c9b6765396895a639db18df97", 0x38, 0x1002, 0x1}, 0x6) fork() [ 2620.255816][ T8105] ? create_io_thread+0xf0/0xf0 [ 2620.260711][ T8105] ? find_held_lock+0x2d/0x110 [ 2620.265514][ T8105] __do_sys_fork+0x8a/0xc0 [ 2620.269972][ T8105] ? kernel_thread+0xf0/0xf0 [ 2620.274586][ T8105] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2620.281177][ T8105] ? lockdep_hardirqs_on+0x79/0x100 [ 2620.286401][ T8105] __do_fast_syscall_32+0x65/0xf0 [ 2620.291446][ T8105] do_fast_syscall_32+0x2f/0x70 [ 2620.296316][ T8105] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2620.302666][ T8105] RIP: 0023:0xf7f78549 [ 2620.306749][ T8105] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2620.326381][ T8105] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2620.334836][ T8105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2620.342831][ T8105] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2620.350829][ T8105] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:21 executing program 4: sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x100, 0x70bd2b, 0x25dfdbff, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000001}, 0x40000) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000000c0)={'gretap0\x00', &(0x7f0000000200)={'gre0\x00', 0x0, 0x7800, 0x700, 0x6, 0x3, {{0x1f, 0x4, 0x2, 0x21, 0x7c, 0x65, 0x0, 0x9, 0x4, 0x0, @multicast1, @multicast1, {[@timestamp_prespec={0x44, 0xc, 0xcd, 0x3, 0xb, [{@rand_addr=0x64010102, 0x401}]}, @lsrr={0x83, 0x1b, 0x4, [@dev={0xac, 0x14, 0x14, 0x17}, @multicast2, @empty, @multicast1, @local, @local]}, @cipso={0x86, 0x18, 0xffffffffffffffff, [{0x6, 0x12, "af1e0c29ca2012d770d9e4571a3d4a72"}]}, @ssrr={0x89, 0x27, 0x53, [@dev={0xac, 0x14, 0x14, 0x3f}, @multicast1, @rand_addr=0x64010100, @loopback, @private=0xa010102, @multicast2, @broadcast, @local, @rand_addr=0x64010101]}]}}}}}) getpgid(0xffffffffffffffff) fork() [ 2620.358822][ T8105] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2620.366831][ T8105] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:21 executing program 1: fork() fork() r0 = fork() getpgid(r0) sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x9, @media='eth\x00'}}}, ["", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000040}, 0x20000041) r1 = fork() wait4(r1, 0x0, 0x4, 0x0) 13:22:21 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000080)={0xf000, &(0x7f0000000040), 0x2, 0xffffffffffffffff, 0x1}) wait4(0x0, 0x0, 0x4, 0x0) 13:22:21 executing program 4: r0 = fork() wait4(r0, 0x0, 0x1000000, &(0x7f0000000000)) 13:22:21 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) waitid(0x0, 0x0, &(0x7f0000000000), 0x40000009, &(0x7f0000000080)) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4091}, 0x4000) 13:22:21 executing program 4: r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x3, 0x61, 0x4, 0x2, 0x800, 0x2, 0x0, 0x80000000, 0x3}, 0x0) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) 13:22:21 executing program 0 (fault-call:1 fault-nth:54): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:22 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x3, 0x1, &(0x7f0000000000)="09c17d7df423206e0638b965de046930a5d4f9aa65e5ebe8ea0007a78d0035841076f5b989f9a83950758d2d7968c84bfed7e515c2791118573754820447d8dc09aeacea85bb755315d25ba5712632b00d8a0adeb107cecd906904f249669184bded04d808df63ac4db239f8467fbcf0832f71eb64a2e8c89c335a8431d7818fe7550e358eeb360db896fe8e522f68e3d9ba5263cd1e9b5d33633f6d87573030dd2b2c33eeb3861a362d7bac134be1cd0bb135409a66ec5f64cc61b80e5f9fc689c82d02319d13", 0xffff, 0x0, 0x1, {0x2}}, 0x80) fork() getsockname(r0, &(0x7f0000000140)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast1}}, &(0x7f00000001c0)=0x80) 13:22:22 executing program 2: r0 = fork() wait4(r0, 0x0, 0x1000000, &(0x7f0000000000)) 13:22:22 executing program 1: fork() r0 = fork() r1 = getpgid(r0) wait4(r1, 0x0, 0x1800000, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0x3, &(0x7f0000000000)=""/92) 13:22:22 executing program 4: fork() getsockname(0xffffffffffffffff, &(0x7f0000001800)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f0000001880)=0x80) setsockopt$inet6_dccp_int(r0, 0x21, 0x5, &(0x7f0000000140)=0xa, 0x4) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000001900), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000019c0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001980)={&(0x7f0000001940)={0x24, r1, 0x10, 0x70bd25, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x3}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8011}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x1) [ 2620.936650][ T8168] FAULT_INJECTION: forcing a failure. [ 2620.936650][ T8168] name failslab, interval 1, probability 0, space 0, times 0 [ 2620.962826][ T8168] CPU: 0 PID: 8168 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2620.971205][ T8168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2620.981295][ T8168] Call Trace: 13:22:22 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) waitid(0x2, 0xffffffffffffffff, &(0x7f0000000280), 0x4, &(0x7f0000000300)) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="68010000", @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r1, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x2}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000800}, 0x21) syz_io_uring_setup(0x475c, &(0x7f0000000180)={0x0, 0xf19, 0x4, 0x2, 0x17}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)) [ 2620.984589][ T8168] dump_stack_lvl+0xcd/0x134 [ 2620.989216][ T8168] should_fail.cold+0x5/0xa [ 2620.993757][ T8168] ? anon_vma_fork+0x1df/0x630 [ 2620.998548][ T8168] should_failslab+0x5/0x10 [ 2621.003077][ T8168] kmem_cache_alloc+0x5e/0x4a0 [ 2621.007880][ T8168] anon_vma_fork+0x1df/0x630 [ 2621.012501][ T8168] dup_mm+0x9a0/0x1380 [ 2621.016604][ T8168] ? vm_area_dup+0x2b0/0x2b0 [ 2621.021222][ T8168] ? __raw_spin_lock_init+0x36/0x110 [ 2621.026546][ T8168] copy_process+0x71e0/0x74c0 [ 2621.031259][ T8168] ? lock_chain_count+0x20/0x20 [ 2621.036133][ T8168] ? lock_chain_count+0x20/0x20 [ 2621.041026][ T8168] ? __cleanup_sighand+0xb0/0xb0 [ 2621.045994][ T8168] ? __lock_acquire+0x162f/0x54a0 [ 2621.051044][ T8168] ? kernel_clone+0x314/0xab0 [ 2621.055750][ T8168] kernel_clone+0xe7/0xab0 [ 2621.060197][ T8168] ? create_io_thread+0xf0/0xf0 [ 2621.065093][ T8168] ? find_held_lock+0x2d/0x110 [ 2621.069898][ T8168] __do_sys_fork+0x8a/0xc0 [ 2621.074338][ T8168] ? kernel_thread+0xf0/0xf0 [ 2621.078972][ T8168] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2621.085599][ T8168] ? lockdep_hardirqs_on+0x79/0x100 [ 2621.090819][ T8168] __do_fast_syscall_32+0x65/0xf0 [ 2621.095885][ T8168] do_fast_syscall_32+0x2f/0x70 [ 2621.100756][ T8168] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2621.107107][ T8168] RIP: 0023:0xf7f78549 [ 2621.111190][ T8168] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:22 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000000)=0x3, 0x4) fork() [ 2621.130846][ T8168] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2621.139282][ T8168] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2621.147272][ T8168] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2621.155265][ T8168] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2621.163255][ T8168] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2621.171239][ T8168] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:22 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) ptrace$getregs(0xc, r0, 0x3, &(0x7f0000000040)=""/70) ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x2, 0x3, 0x7, 0x4800}) 13:22:22 executing program 2: fork() getsockname(0xffffffffffffffff, &(0x7f0000001800)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f0000001880)=0x80) setsockopt$inet6_dccp_int(r0, 0x21, 0x5, &(0x7f0000000140)=0xa, 0x4) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000001900), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000019c0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001980)={&(0x7f0000001940)={0x24, r1, 0x10, 0x70bd25, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x3}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8011}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x1) 13:22:22 executing program 0 (fault-call:1 fault-nth:55): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:22 executing program 4: ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[r0, 0x0, r0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], 0x9, 0x3}) fork() 13:22:22 executing program 3: r0 = fork() r1 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x101, &(0x7f0000000000)=""/250) r2 = getpgid(r0) r3 = fork() getpgid(r3) r4 = fork() fork() r5 = getpgid(0xffffffffffffffff) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r5, 0x96, &(0x7f0000000100)=""/102) getpgid(r2) r6 = fork() r7 = fork() ptrace$getregs(0xe, r7, 0x1, &(0x7f00000002c0)=""/46) getpgid(r6) r8 = getpgid(0xffffffffffffffff) ptrace$getregs(0xe, r4, 0x2, &(0x7f0000000200)=""/149) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r8, 0x2, &(0x7f0000000180)=""/90) fork() wait4(r6, 0x0, 0x40000008, 0x0) 13:22:22 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) fork() 13:22:22 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() inotify_init1(0x0) 13:22:22 executing program 4: fork() r0 = openat$vimc0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc04c565d, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "21e8c8e9"}, 0x0, 0x0, @planes=0x0}) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc04c565d, &(0x7f0000000040)={0x5e8, 0xa, 0x4, 0x10400, 0x200, {0x77359400}, {0x1, 0x5, 0x0, 0x4, 0x81, 0x6, "b7627f9d"}, 0x9c0, 0x3, @planes=&(0x7f0000000000)={0x55, 0x0, @mem_offset=0x9, 0x101}, 0x4}) 13:22:22 executing program 5: syz_io_uring_setup(0x4001b, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2621.831112][ T8223] FAULT_INJECTION: forcing a failure. [ 2621.831112][ T8223] name failslab, interval 1, probability 0, space 0, times 0 [ 2621.891035][ T8223] CPU: 0 PID: 8223 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2621.899417][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2621.909494][ T8223] Call Trace: [ 2621.912790][ T8223] dump_stack_lvl+0xcd/0x134 [ 2621.917417][ T8223] should_fail.cold+0x5/0xa [ 2621.921958][ T8223] ? anon_vma_fork+0x1df/0x630 [ 2621.926754][ T8223] should_failslab+0x5/0x10 [ 2621.931284][ T8223] kmem_cache_alloc+0x5e/0x4a0 [ 2621.936086][ T8223] anon_vma_fork+0x1df/0x630 [ 2621.940719][ T8223] dup_mm+0x9a0/0x1380 [ 2621.944830][ T8223] ? vm_area_dup+0x2b0/0x2b0 [ 2621.949452][ T8223] ? __raw_spin_lock_init+0x36/0x110 [ 2621.954769][ T8223] copy_process+0x71e0/0x74c0 [ 2621.959473][ T8223] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2621.965498][ T8223] ? __cleanup_sighand+0xb0/0xb0 [ 2621.970466][ T8223] ? finish_task_switch.isra.0+0x22d/0xa50 [ 2621.976552][ T8223] ? kernel_clone+0x314/0xab0 [ 2621.981259][ T8223] kernel_clone+0xe7/0xab0 13:22:23 executing program 4: fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x3, &(0x7f0000000000)=""/60) [ 2621.986224][ T8223] ? finish_task_switch.isra.0+0x232/0xa50 [ 2621.992058][ T8223] ? create_io_thread+0xf0/0xf0 [ 2621.996942][ T8223] ? __schedule+0x93c/0x2710 [ 2622.001559][ T8223] ? io_schedule_timeout+0x140/0x140 [ 2622.006881][ T8223] __do_sys_fork+0x8a/0xc0 [ 2622.011323][ T8223] ? kernel_thread+0xf0/0xf0 [ 2622.015941][ T8223] ? lockdep_hardirqs_on+0x79/0x100 [ 2622.021178][ T8223] ? __do_fast_syscall_32+0x25/0xf0 [ 2622.026403][ T8223] __do_fast_syscall_32+0x65/0xf0 [ 2622.031454][ T8223] do_fast_syscall_32+0x2f/0x70 13:22:23 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x4c, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xff}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x101}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x4}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x801}, 0x4040) syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x40000, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x624, &(0x7f0000000000)={0x0, 0x8cfa, 0x10, 0x2, 0x125}) fork() [ 2622.036326][ T8223] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2622.042681][ T8223] RIP: 0023:0xf7f78549 [ 2622.046761][ T8223] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2622.066404][ T8223] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2622.074845][ T8223] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2622.082845][ T8223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2622.090843][ T8223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2622.098839][ T8223] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2622.106840][ T8223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:23 executing program 2: syz_io_uring_setup(0x4001b, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:23 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x5, 0x3, 0x8000, 0x7, 0x0, 0x1, 0x7, 0x0, 0x76}, 0x0) 13:22:23 executing program 0 (fault-call:1 fault-nth:56): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:23 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f0000000080)={0x6, 0x7ff, 0x1}) r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x3, 0xf0e, 0x1, 0x66, 0x3, 0x9}) r1 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040)) ioctl$BLKPBSZGET(r1, 0x127b, &(0x7f00000000c0)) 13:22:23 executing program 4: r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x101, &(0x7f0000000000)=""/54) [ 2622.447276][ T8257] FAULT_INJECTION: forcing a failure. [ 2622.447276][ T8257] name failslab, interval 1, probability 0, space 0, times 0 [ 2622.535816][ T8257] CPU: 0 PID: 8257 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2622.544291][ T8257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2622.554373][ T8257] Call Trace: [ 2622.557669][ T8257] dump_stack_lvl+0xcd/0x134 [ 2622.562294][ T8257] should_fail.cold+0x5/0xa [ 2622.566834][ T8257] ? anon_vma_fork+0x1df/0x630 [ 2622.571632][ T8257] should_failslab+0x5/0x10 [ 2622.576165][ T8257] kmem_cache_alloc+0x5e/0x4a0 [ 2622.580964][ T8257] anon_vma_fork+0x1df/0x630 [ 2622.585589][ T8257] dup_mm+0x9a0/0x1380 [ 2622.589703][ T8257] ? vm_area_dup+0x2b0/0x2b0 [ 2622.594327][ T8257] ? __raw_spin_lock_init+0x36/0x110 [ 2622.599647][ T8257] copy_process+0x71e0/0x74c0 [ 2622.604357][ T8257] ? lock_chain_count+0x20/0x20 [ 2622.609233][ T8257] ? lock_chain_count+0x20/0x20 [ 2622.614123][ T8257] ? __cleanup_sighand+0xb0/0xb0 [ 2622.619093][ T8257] ? __lock_acquire+0x162f/0x54a0 [ 2622.624144][ T8257] ? kernel_clone+0x314/0xab0 [ 2622.628853][ T8257] kernel_clone+0xe7/0xab0 [ 2622.633299][ T8257] ? create_io_thread+0xf0/0xf0 [ 2622.638192][ T8257] ? find_held_lock+0x2d/0x110 [ 2622.642986][ T8257] __do_sys_fork+0x8a/0xc0 [ 2622.647432][ T8257] ? kernel_thread+0xf0/0xf0 [ 2622.652065][ T8257] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2622.658687][ T8257] ? lockdep_hardirqs_on+0x79/0x100 [ 2622.663914][ T8257] __do_fast_syscall_32+0x65/0xf0 [ 2622.668963][ T8257] do_fast_syscall_32+0x2f/0x70 [ 2622.673849][ T8257] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2622.680213][ T8257] RIP: 0023:0xf7f78549 [ 2622.684306][ T8257] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2622.704250][ T8257] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2622.712696][ T8257] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2622.720690][ T8257] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2622.728680][ T8257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:23 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x200, 0x70bd25, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0000947c06349959bebc04000003002515ba00"], 0x14}}, 0x0) sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x4) fork() 13:22:23 executing program 2: syz_io_uring_setup(0x4001b, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:23 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) fork() r1 = fork() getpgid(r1) wait4(r1, &(0x7f0000000040), 0x2, &(0x7f00000000c0)) [ 2622.736752][ T8257] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2622.744732][ T8257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:24 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x4d5a}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = io_uring_setup(0x7797, &(0x7f0000000080)={0x0, 0x5064, 0x4, 0x2, 0x3b8, 0x0, r0}) mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x10, r1, 0x10000000) 13:22:24 executing program 4: fork() r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={0x0, 0x0, 0xffffffffffffffff}) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000080)=0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c09425, &(0x7f00000000c0)={"a18d494e14721667cf5d074855c6bba2", 0x0, 0x0, {0x21e, 0x80}, {0x1eed, 0x7}, 0x6, [0x7fff, 0x8, 0xfffffffffffff001, 0x800, 0x4, 0x1, 0x1ff, 0x1, 0x0, 0x7, 0x100000001, 0x4, 0x0, 0x2, 0x6, 0x7ff]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c09425, &(0x7f0000000180)={"d678ff9b04301f2c71de371e307d13dd", r2, r3, {0x7fffffff, 0x101}, {0x7fff, 0xfffffffe}, 0x6, [0xfffffffffffffffc, 0x3, 0xc30a, 0xfb51, 0x5ef, 0x3, 0x9, 0x8, 0x6, 0x100, 0x615, 0xfffffffffffffffe, 0x930, 0x40dc, 0x7, 0x6]}) recvmsg(r0, &(0x7f0000002d80)={&(0x7f0000000900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, 0x0}, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x3, 0x8000043, 0x200, 0x313, 0x43, 0xa036, 0x3, 0x58c, 0x8001}, 0x0) 13:22:24 executing program 0 (fault-call:1 fault-nth:57): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:24 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x607, &(0x7f0000000000)=""/155) 13:22:24 executing program 2: syz_io_uring_setup(0x4001b, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2623.120007][ T8302] FAULT_INJECTION: forcing a failure. [ 2623.120007][ T8302] name failslab, interval 1, probability 0, space 0, times 0 [ 2623.146408][ T8302] CPU: 1 PID: 8302 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2623.154793][ T8302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2623.164866][ T8302] Call Trace: [ 2623.168163][ T8302] dump_stack_lvl+0xcd/0x134 [ 2623.172884][ T8302] should_fail.cold+0x5/0xa [ 2623.177426][ T8302] ? anon_vma_clone+0xe0/0x5f0 [ 2623.182219][ T8302] should_failslab+0x5/0x10 [ 2623.186759][ T8302] kmem_cache_alloc+0x5e/0x4a0 [ 2623.191562][ T8302] anon_vma_clone+0xe0/0x5f0 [ 2623.196191][ T8302] anon_vma_fork+0x82/0x630 [ 2623.200719][ T8302] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2623.206484][ T8302] ? __vm_enough_memory+0x184/0x360 [ 2623.211725][ T8302] dup_mm+0x9a0/0x1380 [ 2623.215848][ T8302] ? vm_area_dup+0x2b0/0x2b0 [ 2623.220477][ T8302] ? __raw_spin_lock_init+0x36/0x110 [ 2623.225805][ T8302] copy_process+0x71e0/0x74c0 [ 2623.230524][ T8302] ? lock_chain_count+0x20/0x20 [ 2623.235402][ T8302] ? lock_chain_count+0x20/0x20 [ 2623.240296][ T8302] ? __cleanup_sighand+0xb0/0xb0 [ 2623.245274][ T8302] ? __lock_acquire+0x162f/0x54a0 [ 2623.250338][ T8302] ? kernel_clone+0x314/0xab0 [ 2623.255138][ T8302] kernel_clone+0xe7/0xab0 [ 2623.259619][ T8302] ? create_io_thread+0xf0/0xf0 [ 2623.264511][ T8302] ? find_held_lock+0x2d/0x110 [ 2623.269313][ T8302] __do_sys_fork+0x8a/0xc0 [ 2623.273760][ T8302] ? kernel_thread+0xf0/0xf0 [ 2623.278408][ T8302] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2623.285042][ T8302] ? lockdep_hardirqs_on+0x79/0x100 [ 2623.290279][ T8302] __do_fast_syscall_32+0x65/0xf0 [ 2623.295333][ T8302] do_fast_syscall_32+0x2f/0x70 [ 2623.300222][ T8302] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2623.306576][ T8302] RIP: 0023:0xf7f78549 [ 2623.310662][ T8302] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2623.330468][ T8302] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2623.338926][ T8302] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2623.346920][ T8302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2623.354911][ T8302] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2623.362986][ T8302] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2623.371068][ T8302] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:24 executing program 1: fork() r0 = fork() getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:24 executing program 5: syz_io_uring_setup(0x75cb, &(0x7f0000000000)={0x0, 0xce48, 0x1, 0x0, 0x2cf}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r0, 0x0, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000180)={0x20000000}, 0xffffffffffffffff, 0x1, 0x0, 0x1}, 0xf5b) syz_io_uring_setup(0xa1, &(0x7f0000000080)={0x0, 0xf1e2, 0x20, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x0, 0x0) 13:22:24 executing program 2: syz_io_uring_setup(0x4001b, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:24 executing program 0 (fault-call:1 fault-nth:58): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:24 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:24 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x2a1d, &(0x7f0000000000)={0x0, 0x4961, 0x1, 0x1, 0x276, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_setup(0x3a01, &(0x7f0000000100)={0x0, 0x66c5, 0x4, 0x0, 0x15, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xd, 0x1}, 0xaa) fork() [ 2623.663743][ T8328] FAULT_INJECTION: forcing a failure. [ 2623.663743][ T8328] name failslab, interval 1, probability 0, space 0, times 0 [ 2623.677273][ T8328] CPU: 0 PID: 8328 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2623.685637][ T8328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2623.695800][ T8328] Call Trace: [ 2623.699105][ T8328] dump_stack_lvl+0xcd/0x134 [ 2623.703734][ T8328] should_fail.cold+0x5/0xa [ 2623.708265][ T8328] ? vm_area_alloc+0x110/0x110 [ 2623.713061][ T8328] ? anon_vma_clone+0xe0/0x5f0 [ 2623.717849][ T8328] should_failslab+0x5/0x10 [ 2623.722374][ T8328] kmem_cache_alloc+0x5e/0x4a0 [ 2623.727169][ T8328] anon_vma_clone+0xe0/0x5f0 [ 2623.731792][ T8328] anon_vma_fork+0x82/0x630 [ 2623.736310][ T8328] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2623.742046][ T8328] ? __vm_enough_memory+0x184/0x360 [ 2623.747271][ T8328] dup_mm+0x9a0/0x1380 [ 2623.751465][ T8328] ? vm_area_dup+0x2b0/0x2b0 [ 2623.756082][ T8328] ? __raw_spin_lock_init+0x36/0x110 [ 2623.761396][ T8328] copy_process+0x71e0/0x74c0 [ 2623.766097][ T8328] ? lock_chain_count+0x20/0x20 [ 2623.770964][ T8328] ? lock_chain_count+0x20/0x20 [ 2623.775854][ T8328] ? __cleanup_sighand+0xb0/0xb0 [ 2623.780827][ T8328] ? __lock_acquire+0x162f/0x54a0 [ 2623.785882][ T8328] ? kernel_clone+0x314/0xab0 [ 2623.790582][ T8328] kernel_clone+0xe7/0xab0 [ 2623.795028][ T8328] ? create_io_thread+0xf0/0xf0 [ 2623.799917][ T8328] ? find_held_lock+0x2d/0x110 [ 2623.804724][ T8328] __do_sys_fork+0x8a/0xc0 [ 2623.809170][ T8328] ? kernel_thread+0xf0/0xf0 [ 2623.813804][ T8328] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2623.820437][ T8328] ? lockdep_hardirqs_on+0x79/0x100 [ 2623.825662][ T8328] __do_fast_syscall_32+0x65/0xf0 [ 2623.830728][ T8328] do_fast_syscall_32+0x2f/0x70 [ 2623.835609][ T8328] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2623.842145][ T8328] RIP: 0023:0xf7f78549 [ 2623.846231][ T8328] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2623.865860][ T8328] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2623.874382][ T8328] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2623.882404][ T8328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2623.890397][ T8328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2623.898399][ T8328] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2623.906393][ T8328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:25 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:25 executing program 0 (fault-call:1 fault-nth:59): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:25 executing program 4: r0 = eventfd(0x9) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f00000000c0)=r0, 0x1) r1 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0xffffffff, &(0x7f0000000000)=""/153) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x0, 0x3}, 0x10) 13:22:25 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:25 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r0, 0xc01864cb, &(0x7f0000000100)={&(0x7f0000000040)=[r1], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0], 0x1}) wait4(0x0, 0x0, 0x4, 0x0) [ 2624.175885][ T8354] FAULT_INJECTION: forcing a failure. [ 2624.175885][ T8354] name failslab, interval 1, probability 0, space 0, times 0 [ 2624.248421][ T8354] CPU: 1 PID: 8354 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2624.256811][ T8354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2624.266889][ T8354] Call Trace: [ 2624.270187][ T8354] dump_stack_lvl+0xcd/0x134 [ 2624.274831][ T8354] should_fail.cold+0x5/0xa [ 2624.279364][ T8354] ? anon_vma_clone+0xe0/0x5f0 [ 2624.284182][ T8354] should_failslab+0x5/0x10 [ 2624.288795][ T8354] kmem_cache_alloc+0x5e/0x4a0 [ 2624.293600][ T8354] anon_vma_clone+0xe0/0x5f0 [ 2624.298224][ T8354] anon_vma_fork+0x82/0x630 [ 2624.302750][ T8354] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2624.308497][ T8354] ? __vm_enough_memory+0x184/0x360 [ 2624.313730][ T8354] dup_mm+0x9a0/0x1380 [ 2624.317845][ T8354] ? vm_area_dup+0x2b0/0x2b0 [ 2624.322468][ T8354] ? __raw_spin_lock_init+0x36/0x110 [ 2624.327781][ T8354] copy_process+0x71e0/0x74c0 [ 2624.332469][ T8354] ? lock_chain_count+0x20/0x20 [ 2624.337341][ T8354] ? lock_chain_count+0x20/0x20 [ 2624.342246][ T8354] ? __cleanup_sighand+0xb0/0xb0 [ 2624.347222][ T8354] ? __lock_acquire+0x162f/0x54a0 [ 2624.352279][ T8354] ? kernel_clone+0x314/0xab0 [ 2624.356992][ T8354] kernel_clone+0xe7/0xab0 [ 2624.361441][ T8354] ? create_io_thread+0xf0/0xf0 [ 2624.366339][ T8354] ? find_held_lock+0x2d/0x110 [ 2624.371138][ T8354] __do_sys_fork+0x8a/0xc0 [ 2624.375591][ T8354] ? kernel_thread+0xf0/0xf0 [ 2624.380234][ T8354] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2624.386867][ T8354] ? lockdep_hardirqs_on+0x79/0x100 [ 2624.392095][ T8354] __do_fast_syscall_32+0x65/0xf0 13:22:25 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = syz_io_uring_setup(0x315f, &(0x7f0000000000)={0x0, 0x7b96, 0x2, 0x2, 0x79, 0x0, r0}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) io_uring_setup(0x3406, &(0x7f0000000100)={0x0, 0x78d8, 0x0, 0x0, 0x25e, 0x0, r1}) [ 2624.397175][ T8354] do_fast_syscall_32+0x2f/0x70 [ 2624.402056][ T8354] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2624.408414][ T8354] RIP: 0023:0xf7f78549 [ 2624.412493][ T8354] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2624.432254][ T8354] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2624.440698][ T8354] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2624.448694][ T8354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2624.456688][ T8354] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2624.464678][ T8354] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2624.472672][ T8354] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:25 executing program 1: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r0, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r0, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x100}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x880) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x7800, 0x7, 0x6, 0x800000, {{0x15, 0x4, 0x2, 0x9, 0x54, 0x64, 0x0, 0x7, 0x4, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x14, 0x31, 0x1, 0xd, [{@remote, 0x1ff}, {@multicast2, 0x10001}]}, @noop, @lsrr={0x83, 0xb, 0x14, [@rand_addr=0x64010101, @rand_addr=0x64010101]}, @ssrr={0x89, 0x13, 0xd9, [@rand_addr=0x64010100, @multicast1, @remote, @local]}, @ssrr={0x89, 0xb, 0x7, [@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:25 executing program 2: syz_io_uring_setup(0x4001b, 0x0, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:25 executing program 4: fork() r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000100)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0x400, 0x70bd25, 0x255fdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x20}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000084}, 0x4000000) 13:22:25 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000000)) fork() 13:22:25 executing program 3: ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000000)={0x1ff0000, 0x6}) r0 = getpgid(0x0) wait4(r0, 0x0, 0x4, 0x0) 13:22:25 executing program 0 (fault-call:1 fault-nth:60): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:25 executing program 2: syz_io_uring_setup(0x4001b, 0x0, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) [ 2624.783410][ T8399] FAULT_INJECTION: forcing a failure. [ 2624.783410][ T8399] name failslab, interval 1, probability 0, space 0, times 0 13:22:26 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = syz_io_uring_setup(0x77e1, &(0x7f0000000000)={0x0, 0xa6f0, 0x1, 0x0, 0x207, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r2, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000100)={0x82100, 0x108, 0x8}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000002740)={'wg0\x00', 0x0}) sendmsg$WG_CMD_GET_DEVICE(r3, &(0x7f0000002840)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002800)={&(0x7f0000002780)={0x7c, 0x0, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r4}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x24000010) fork() r5 = syz_io_uring_setup(0x1a9b, &(0x7f00000001c0)={0x0, 0x5109, 0x0, 0x2, 0x4116, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340), &(0x7f0000000300)) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x6, 0x2010, r5, 0x10000000) 13:22:26 executing program 2: syz_io_uring_setup(0x4001b, 0x0, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) [ 2624.862407][ T8399] CPU: 1 PID: 8399 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2624.870912][ T8399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2624.880988][ T8399] Call Trace: [ 2624.884285][ T8399] dump_stack_lvl+0xcd/0x134 [ 2624.889028][ T8399] should_fail.cold+0x5/0xa [ 2624.893608][ T8399] ? anon_vma_fork+0xed/0x630 [ 2624.898321][ T8399] should_failslab+0x5/0x10 [ 2624.902857][ T8399] kmem_cache_alloc+0x5e/0x4a0 [ 2624.907653][ T8399] anon_vma_fork+0xed/0x630 [ 2624.912190][ T8399] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2624.917932][ T8399] ? __vm_enough_memory+0x184/0x360 [ 2624.923167][ T8399] dup_mm+0x9a0/0x1380 [ 2624.927287][ T8399] ? vm_area_dup+0x2b0/0x2b0 [ 2624.931912][ T8399] ? __raw_spin_lock_init+0x36/0x110 [ 2624.937227][ T8399] copy_process+0x71e0/0x74c0 [ 2624.941951][ T8399] ? lock_chain_count+0x20/0x20 [ 2624.946823][ T8399] ? lock_chain_count+0x20/0x20 [ 2624.951723][ T8399] ? __cleanup_sighand+0xb0/0xb0 [ 2624.956700][ T8399] ? __lock_acquire+0x162f/0x54a0 [ 2624.961792][ T8399] ? kernel_clone+0x314/0xab0 [ 2624.966496][ T8399] kernel_clone+0xe7/0xab0 [ 2624.970950][ T8399] ? create_io_thread+0xf0/0xf0 [ 2624.975836][ T8399] ? find_held_lock+0x2d/0x110 [ 2624.980630][ T8399] __do_sys_fork+0x8a/0xc0 [ 2624.985077][ T8399] ? kernel_thread+0xf0/0xf0 [ 2624.989707][ T8399] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2624.996321][ T8399] ? lockdep_hardirqs_on+0x79/0x100 [ 2625.001540][ T8399] __do_fast_syscall_32+0x65/0xf0 [ 2625.006586][ T8399] do_fast_syscall_32+0x2f/0x70 13:22:26 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) setsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000000)=0x57b, 0x4) fork() r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0092542c12000000e04fd700ed44d9798c2e1ee133db4fd14cab02810730351e5b18b72744e37e9f3b87bdf3859f9354d6208d483858c554f75b04929b243159908868cd4d1469583abe276d1354d739e5c36a0757e959933d4f630ae7e15d99ea7987e998da515d05d43fcf69b6c79db8521587f2eb57a83a34fc329cb35734f6d44fcc287d65f1da6cc43749144a2cc71489f58b5a2a00a528509251d0c7bbd4688da780e7910528091ae5827a2daf7c369facd56c8b26"], 0x14}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x4, 0x70bd25, 0x25dfdbfc, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000) 13:22:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'batadv_slave_0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) recvmsg(r0, &(0x7f0000000940)={&(0x7f0000000540)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f0000000700)=[{&(0x7f00000007c0)=""/174, 0xae}, {&(0x7f00000005c0)=""/104, 0x68}, {&(0x7f0000000680)=""/32, 0x20}, {&(0x7f0000002540)=""/4096, 0x1000}, {&(0x7f0000000880)=""/190, 0xbe}], 0x5}, 0x120) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000a40)={&(0x7f0000000040), 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x44, 0x0, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x20}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x40040) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000001500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4008000) fork() 13:22:26 executing program 3: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$nullb(0xffffff9c, &(0x7f0000000180), 0x80040, 0x0) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000001c0)={0x3ff, 0x4}) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) r2 = openat$nullb(0xffffff9c, &(0x7f0000000200), 0x400, 0x0) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000240)={0x1ff, 0xb4}) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000128df119cbf000500060000000000000073b215a24e7b7c6737c600"/44], 0x1c}}, 0x50) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000000)={0x4, 0x0, 0x1}) [ 2625.011547][ T8399] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2625.017900][ T8399] RIP: 0023:0xf7f78549 [ 2625.021984][ T8399] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2625.041614][ T8399] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2625.050056][ T8399] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2625.058140][ T8399] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2625.066134][ T8399] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2625.074127][ T8399] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2625.082118][ T8399] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:26 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 13:22:26 executing program 2: fork() r0 = fork() getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:26 executing program 0 (fault-call:1 fault-nth:61): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:26 executing program 3: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000000)=0x1, 0x4) r1 = fork() wait4(r1, 0x0, 0x4, 0x0) eventfd(0x6) 13:22:26 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_NOP={0x0, 0x2}, 0x5241) fork() r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x1, 0x7ff, 0x8, 0x8, 0x14f, 0x1f}) r1 = fork() getpgid(r1) ptrace$getsig(0x4202, r1, 0x7, &(0x7f0000000080)) [ 2625.728373][ T8435] FAULT_INJECTION: forcing a failure. [ 2625.728373][ T8435] name failslab, interval 1, probability 0, space 0, times 0 [ 2625.809466][ T8435] CPU: 1 PID: 8435 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2625.817856][ T8435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2625.827933][ T8435] Call Trace: [ 2625.831229][ T8435] dump_stack_lvl+0xcd/0x134 [ 2625.835895][ T8435] should_fail.cold+0x5/0xa [ 2625.840429][ T8435] ? anon_vma_fork+0xed/0x630 [ 2625.845113][ T8435] should_failslab+0x5/0x10 [ 2625.849629][ T8435] kmem_cache_alloc+0x5e/0x4a0 [ 2625.854427][ T8435] anon_vma_fork+0xed/0x630 [ 2625.858962][ T8435] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2625.864705][ T8435] ? __vm_enough_memory+0x184/0x360 [ 2625.869943][ T8435] dup_mm+0x9a0/0x1380 [ 2625.874058][ T8435] ? vm_area_dup+0x2b0/0x2b0 [ 2625.878690][ T8435] ? __raw_spin_lock_init+0x36/0x110 [ 2625.884010][ T8435] copy_process+0x71e0/0x74c0 [ 2625.888721][ T8435] ? lock_chain_count+0x20/0x20 [ 2625.893595][ T8435] ? lock_chain_count+0x20/0x20 [ 2625.898522][ T8435] ? __cleanup_sighand+0xb0/0xb0 [ 2625.903497][ T8435] ? __lock_acquire+0x162f/0x54a0 [ 2625.908639][ T8435] ? kernel_clone+0x314/0xab0 [ 2625.913351][ T8435] kernel_clone+0xe7/0xab0 [ 2625.917807][ T8435] ? create_io_thread+0xf0/0xf0 [ 2625.922703][ T8435] ? find_held_lock+0x2d/0x110 [ 2625.927504][ T8435] __do_sys_fork+0x8a/0xc0 [ 2625.931949][ T8435] ? kernel_thread+0xf0/0xf0 [ 2625.936580][ T8435] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2625.943202][ T8435] ? lockdep_hardirqs_on+0x79/0x100 [ 2625.948440][ T8435] __do_fast_syscall_32+0x65/0xf0 [ 2625.953500][ T8435] do_fast_syscall_32+0x2f/0x70 13:22:27 executing program 4: r0 = fork() ptrace$getsig(0x4202, r0, 0x75b, &(0x7f0000000000)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) read$eventfd(r1, &(0x7f0000000080), 0x8) [ 2625.958383][ T8435] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2625.964741][ T8435] RIP: 0023:0xf7f78549 [ 2625.968832][ T8435] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2625.988465][ T8435] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2625.996902][ T8435] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:27 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) waitid(0x0, 0x0, 0x0, 0x1000000, &(0x7f0000000000)) getsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 13:22:27 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f00000001c0)={0x0, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}}, 0x0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000)=r2, 0x1) fork() [ 2626.004892][ T8435] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2626.012891][ T8435] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2626.020880][ T8435] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2626.028890][ T8435] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:27 executing program 0 (fault-call:1 fault-nth:62): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r1, 0x2, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x10001}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x80000000}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800) fork() 13:22:27 executing program 3: ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x89ed, 0x0) 13:22:27 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) syz_io_uring_setup(0x6b41, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000180), 0x200000, 0x0) fork() r1 = fork() getpgid(r1) getpgid(r1) r2 = openat$vcs(0xffffff9c, &(0x7f0000000040), 0x40180, 0x0) ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f00000000c0)={0x3c, 0x7426050f}) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f0000000140)) [ 2626.318703][ T8483] FAULT_INJECTION: forcing a failure. [ 2626.318703][ T8483] name failslab, interval 1, probability 0, space 0, times 0 [ 2626.370400][ T8483] CPU: 0 PID: 8483 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2626.378784][ T8483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2626.388860][ T8483] Call Trace: [ 2626.392158][ T8483] dump_stack_lvl+0xcd/0x134 [ 2626.396904][ T8483] should_fail.cold+0x5/0xa [ 2626.401518][ T8483] ? anon_vma_fork+0x1df/0x630 [ 2626.406301][ T8483] should_failslab+0x5/0x10 [ 2626.410823][ T8483] kmem_cache_alloc+0x5e/0x4a0 [ 2626.415621][ T8483] anon_vma_fork+0x1df/0x630 [ 2626.420238][ T8483] dup_mm+0x9a0/0x1380 [ 2626.424357][ T8483] ? vm_area_dup+0x2b0/0x2b0 [ 2626.429074][ T8483] ? __raw_spin_lock_init+0x36/0x110 [ 2626.434390][ T8483] copy_process+0x71e0/0x74c0 [ 2626.439094][ T8483] ? lock_chain_count+0x20/0x20 [ 2626.443961][ T8483] ? lock_chain_count+0x20/0x20 [ 2626.448851][ T8483] ? __cleanup_sighand+0xb0/0xb0 [ 2626.448878][ T8483] ? __lock_acquire+0x162f/0x54a0 [ 2626.448898][ T8483] ? kernel_clone+0x314/0xab0 [ 2626.448917][ T8483] kernel_clone+0xe7/0xab0 [ 2626.448937][ T8483] ? create_io_thread+0xf0/0xf0 [ 2626.448962][ T8483] ? find_held_lock+0x2d/0x110 [ 2626.448984][ T8483] __do_sys_fork+0x8a/0xc0 [ 2626.449002][ T8483] ? kernel_thread+0xf0/0xf0 [ 2626.449026][ T8483] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2626.449047][ T8483] ? lockdep_hardirqs_on+0x79/0x100 [ 2626.449064][ T8483] __do_fast_syscall_32+0x65/0xf0 [ 2626.449081][ T8483] do_fast_syscall_32+0x2f/0x70 [ 2626.449096][ T8483] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 13:22:27 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = openat$vimc0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc04c565d, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "21e8c8e9"}, 0x0, 0x0, @planes=0x0}) ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x6, 0xff, 0x4, 0x4000}) 13:22:27 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0x1, r0, &(0x7f0000000000), 0x20000000, &(0x7f0000000080)) 13:22:27 executing program 4: r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x100, 0x70bd2a, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xfffffffa}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8001}, 0x1) 13:22:27 executing program 0 (fault-call:1 fault-nth:63): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:27 executing program 2: r0 = fork() ptrace$getsig(0x4202, r0, 0x75b, &(0x7f0000000000)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) read$eventfd(r1, &(0x7f0000000080), 0x8) [ 2626.449113][ T8483] RIP: 0023:0xf7f78549 [ 2626.449126][ T8483] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:28 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0xaaf51b24fb114fd5, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) [ 2626.449141][ T8483] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 13:22:28 executing program 4: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x3, 0x46, 0x4}) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = openat$vim2m(0xffffff9c, &(0x7f0000000380), 0x2, 0x0) ioctl$vim2m_VIDIOC_TRY_FMT(r2, 0xc0cc5640, &(0x7f00000003c0)={0x2, @raw_data="451675672ee232bea4e721a6391e37e83ff94895845e54ed4951500be8c16c397fe23f6b38451afdb96c4df1706dfb8c4562fd7627925e71b54332378dea961d1a6cf12f6e8677589464e6e28fd446b071a01b0c9d1e493cdf4d63bed56faa8b3ac350cb4a4378f644c063e041e4c9f43be1254e7f363980829b8bd41a3a9bafe19d4cc935f1706562e39de07ccca9b8f09feb57c3b43ae401df38762081f0924218591afa9821fa60d93892b3da87dd1049b27005768e92a52bb8f2b80f1b2644584a804e2d7b9e"}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r3, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f00000001c0)={0x54, r1, 0x1, 0x0, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_ISOLATION_MARK={0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x49}]}, 0x54}}, 0x0) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r1, 0x400, 0x70bd2c, 0x25dfdbfd}, 0x14}}, 0x1) fork() r4 = openat$vcs(0xffffff9c, &(0x7f0000000240), 0xb4800, 0x0) sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, r1, 0x300, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x30c}]}, 0x2c}}, 0x4000800) 13:22:28 executing program 0 (fault-call:1 fault-nth:64): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2626.449157][ T8483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2626.449168][ T8483] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2626.449177][ T8483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2626.449187][ T8483] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2626.449196][ T8483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2626.716109][ T8508] FAULT_INJECTION: forcing a failure. [ 2626.716109][ T8508] name failslab, interval 1, probability 0, space 0, times 0 [ 2626.716151][ T8508] CPU: 1 PID: 8508 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2626.716180][ T8508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2626.716199][ T8508] Call Trace: [ 2626.716210][ T8508] dump_stack_lvl+0xcd/0x134 [ 2626.716247][ T8508] should_fail.cold+0x5/0xa 13:22:28 executing program 0 (fault-call:1 fault-nth:65): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2626.716282][ T8508] ? ptlock_alloc+0x1d/0x70 [ 2626.716309][ T8508] should_failslab+0x5/0x10 [ 2626.716336][ T8508] kmem_cache_alloc+0x5e/0x4a0 13:22:28 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x50, 0xffffffffffffffff, 0x10000000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r2, 0x400, 0x70bd2d, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x8014}, 0x1) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0xa, 0xff, 0x0, 0x5, 0x4}, 0x3f) [ 2626.716369][ T8508] ptlock_alloc+0x1d/0x70 [ 2626.716397][ T8508] pte_alloc_one+0x68/0x230 [ 2626.716423][ T8508] __pte_alloc+0x1f/0x2d0 [ 2626.716450][ T8508] copy_page_range+0x18c1/0x4010 [ 2626.716513][ T8508] ? up_write+0x191/0x560 13:22:28 executing program 0 (fault-call:1 fault-nth:66): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2626.716541][ T8508] ? handle_mm_fault+0x7f0/0x7f0 [ 2626.716565][ T8508] ? downgrade_write+0x3a0/0x3a0 [ 2626.716592][ T8508] ? down_write_killable_nested+0x180/0x180 [ 2626.716632][ T8508] ? __vma_link_rb+0x553/0x710 [ 2626.716667][ T8508] dup_mm+0x9e7/0x1380 [ 2626.716706][ T8508] ? vm_area_dup+0x2b0/0x2b0 [ 2626.716735][ T8508] ? __raw_spin_lock_init+0x36/0x110 [ 2626.716765][ T8508] copy_process+0x71e0/0x74c0 [ 2626.716793][ T8508] ? lock_chain_count+0x20/0x20 [ 2626.716814][ T8508] ? lock_chain_count+0x20/0x20 [ 2626.716852][ T8508] ? __cleanup_sighand+0xb0/0xb0 [ 2626.716885][ T8508] ? __lock_acquire+0x162f/0x54a0 [ 2626.716912][ T8508] ? kernel_clone+0x314/0xab0 [ 2626.716948][ T8508] kernel_clone+0xe7/0xab0 [ 2626.716981][ T8508] ? create_io_thread+0xf0/0xf0 [ 2626.717022][ T8508] ? find_held_lock+0x2d/0x110 [ 2626.717059][ T8508] __do_sys_fork+0x8a/0xc0 [ 2626.717087][ T8508] ? kernel_thread+0xf0/0xf0 [ 2626.717128][ T8508] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2626.717166][ T8508] ? lockdep_hardirqs_on+0x79/0x100 [ 2626.717198][ T8508] __do_fast_syscall_32+0x65/0xf0 [ 2626.717226][ T8508] do_fast_syscall_32+0x2f/0x70 [ 2626.717253][ T8508] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2626.717275][ T8508] RIP: 0023:0xf7f78549 [ 2626.717292][ T8508] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2626.717315][ T8508] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2626.717339][ T8508] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2626.717354][ T8508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2626.717370][ T8508] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2626.717385][ T8508] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2626.717400][ T8508] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2626.986735][ T8521] FAULT_INJECTION: forcing a failure. [ 2626.986735][ T8521] name failslab, interval 1, probability 0, space 0, times 0 [ 2626.986774][ T8521] CPU: 0 PID: 8521 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2626.986800][ T8521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2626.986816][ T8521] Call Trace: [ 2626.986825][ T8521] dump_stack_lvl+0xcd/0x134 [ 2626.986867][ T8521] should_fail.cold+0x5/0xa [ 2626.986897][ T8521] ? ptlock_alloc+0x1d/0x70 [ 2626.986927][ T8521] should_failslab+0x5/0x10 [ 2626.986961][ T8521] kmem_cache_alloc+0x5e/0x4a0 [ 2626.986996][ T8521] ptlock_alloc+0x1d/0x70 [ 2626.987024][ T8521] pte_alloc_one+0x68/0x230 [ 2626.987052][ T8521] __pte_alloc+0x1f/0x2d0 [ 2626.987082][ T8521] copy_page_range+0x18c1/0x4010 [ 2626.987147][ T8521] ? up_write+0x191/0x560 [ 2626.987175][ T8521] ? handle_mm_fault+0x7f0/0x7f0 [ 2626.987200][ T8521] ? downgrade_write+0x3a0/0x3a0 [ 2626.987227][ T8521] ? down_write_killable_nested+0x180/0x180 [ 2626.987268][ T8521] ? __vma_link_rb+0x553/0x710 [ 2626.987305][ T8521] dup_mm+0x9e7/0x1380 [ 2626.987362][ T8521] ? vm_area_dup+0x2b0/0x2b0 [ 2626.987394][ T8521] ? __raw_spin_lock_init+0x36/0x110 [ 2626.987424][ T8521] copy_process+0x71e0/0x74c0 [ 2626.987451][ T8521] ? lock_chain_count+0x20/0x20 [ 2626.987472][ T8521] ? lock_chain_count+0x20/0x20 [ 2626.987514][ T8521] ? __cleanup_sighand+0xb0/0xb0 [ 2626.987553][ T8521] ? __lock_acquire+0x162f/0x54a0 [ 2626.987584][ T8521] ? kernel_clone+0x314/0xab0 [ 2626.987616][ T8521] kernel_clone+0xe7/0xab0 [ 2626.987648][ T8521] ? create_io_thread+0xf0/0xf0 [ 2626.987690][ T8521] ? find_held_lock+0x2d/0x110 [ 2626.987728][ T8521] __do_sys_fork+0x8a/0xc0 [ 2626.987757][ T8521] ? kernel_thread+0xf0/0xf0 [ 2626.987801][ T8521] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2626.987835][ T8521] ? lockdep_hardirqs_on+0x79/0x100 [ 2626.987864][ T8521] __do_fast_syscall_32+0x65/0xf0 [ 2626.987893][ T8521] do_fast_syscall_32+0x2f/0x70 [ 2626.987920][ T8521] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2626.987954][ T8521] RIP: 0023:0xf7f78549 [ 2626.987976][ T8521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2626.988001][ T8521] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2626.988028][ T8521] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2626.988045][ T8521] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2626.988061][ T8521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2626.988075][ T8521] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2626.988089][ T8521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2627.202577][ T8531] FAULT_INJECTION: forcing a failure. [ 2627.202577][ T8531] name failslab, interval 1, probability 0, space 0, times 0 [ 2627.202612][ T8531] CPU: 0 PID: 8531 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2627.202634][ T8531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2627.202649][ T8531] Call Trace: [ 2627.202657][ T8531] dump_stack_lvl+0xcd/0x134 [ 2627.202692][ T8531] should_fail.cold+0x5/0xa [ 2627.202722][ T8531] ? ptlock_alloc+0x1d/0x70 [ 2627.202753][ T8531] should_failslab+0x5/0x10 [ 2627.202781][ T8531] kmem_cache_alloc+0x5e/0x4a0 [ 2627.202814][ T8531] ptlock_alloc+0x1d/0x70 [ 2627.202842][ T8531] pte_alloc_one+0x68/0x230 [ 2627.202870][ T8531] __pte_alloc+0x1f/0x2d0 [ 2627.202898][ T8531] copy_page_range+0x18c1/0x4010 [ 2627.202969][ T8531] ? up_write+0x191/0x560 [ 2627.203000][ T8531] ? handle_mm_fault+0x7f0/0x7f0 [ 2627.203029][ T8531] ? downgrade_write+0x3a0/0x3a0 [ 2627.203053][ T8531] ? down_write_killable_nested+0x180/0x180 [ 2627.203095][ T8531] ? __vma_link_rb+0x553/0x710 [ 2627.203130][ T8531] dup_mm+0x9e7/0x1380 [ 2627.203172][ T8531] ? vm_area_dup+0x2b0/0x2b0 [ 2627.203205][ T8531] ? __raw_spin_lock_init+0x36/0x110 [ 2627.203238][ T8531] copy_process+0x71e0/0x74c0 [ 2627.203268][ T8531] ? lock_chain_count+0x20/0x20 [ 2627.203290][ T8531] ? lock_chain_count+0x20/0x20 [ 2627.203328][ T8531] ? __cleanup_sighand+0xb0/0xb0 [ 2627.203365][ T8531] ? __lock_acquire+0x162f/0x54a0 [ 2627.203391][ T8531] ? kernel_clone+0x314/0xab0 [ 2627.203422][ T8531] kernel_clone+0xe7/0xab0 [ 2627.203453][ T8531] ? create_io_thread+0xf0/0xf0 [ 2627.203493][ T8531] ? find_held_lock+0x2d/0x110 [ 2627.203527][ T8531] __do_sys_fork+0x8a/0xc0 [ 2627.203552][ T8531] ? kernel_thread+0xf0/0xf0 [ 2627.203592][ T8531] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2627.203627][ T8531] ? lockdep_hardirqs_on+0x79/0x100 [ 2627.203658][ T8531] __do_fast_syscall_32+0x65/0xf0 [ 2627.203688][ T8531] do_fast_syscall_32+0x2f/0x70 [ 2627.203716][ T8531] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2627.203745][ T8531] RIP: 0023:0xf7f78549 [ 2627.203766][ T8531] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2627.203792][ T8531] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2627.203820][ T8531] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2627.203838][ T8531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2627.203854][ T8531] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2627.203868][ T8531] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2627.203883][ T8531] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2627.325623][ T8539] FAULT_INJECTION: forcing a failure. [ 2627.325623][ T8539] name failslab, interval 1, probability 0, space 0, times 0 [ 2628.045643][ T8539] CPU: 1 PID: 8539 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2628.045680][ T8539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2628.045697][ T8539] Call Trace: [ 2628.045708][ T8539] dump_stack_lvl+0xcd/0x134 [ 2628.045748][ T8539] should_fail.cold+0x5/0xa [ 2628.045780][ T8539] ? vm_area_dup+0x88/0x2b0 [ 2628.045813][ T8539] should_failslab+0x5/0x10 [ 2628.045841][ T8539] kmem_cache_alloc+0x5e/0x4a0 [ 2628.045876][ T8539] vm_area_dup+0x88/0x2b0 [ 2628.045921][ T8539] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2628.045952][ T8539] ? copy_page_range+0x24ed/0x4010 [ 2628.046014][ T8539] ? vm_area_alloc+0x110/0x110 [ 2628.046052][ T8539] ? up_write+0x191/0x560 [ 2628.046084][ T8539] ? handle_mm_fault+0x7f0/0x7f0 [ 2628.046112][ T8539] ? downgrade_write+0x3a0/0x3a0 [ 2628.046141][ T8539] ? down_write_killable_nested+0x180/0x180 [ 2628.046180][ T8539] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2628.046209][ T8539] ? percpu_counter_add_batch+0xbd/0x180 [ 2628.046247][ T8539] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2628.046275][ T8539] ? __vm_enough_memory+0x184/0x360 [ 2628.046303][ T8539] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2628.046343][ T8539] dup_mm+0x543/0x1380 [ 2628.046388][ T8539] ? vm_area_dup+0x2b0/0x2b0 [ 2628.046421][ T8539] ? __raw_spin_lock_init+0x36/0x110 [ 2628.046457][ T8539] copy_process+0x71e0/0x74c0 [ 2628.046491][ T8539] ? lock_chain_count+0x20/0x20 [ 2628.046516][ T8539] ? lock_chain_count+0x20/0x20 [ 2628.046580][ T8539] ? __cleanup_sighand+0xb0/0xb0 [ 2628.046619][ T8539] ? __lock_acquire+0x162f/0x54a0 [ 2628.046652][ T8539] ? kernel_clone+0x314/0xab0 [ 2628.046686][ T8539] kernel_clone+0xe7/0xab0 [ 2628.046721][ T8539] ? create_io_thread+0xf0/0xf0 [ 2628.046764][ T8539] ? find_held_lock+0x2d/0x110 [ 2628.046804][ T8539] __do_sys_fork+0x8a/0xc0 [ 2628.046833][ T8539] ? kernel_thread+0xf0/0xf0 [ 2628.046877][ T8539] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2628.046913][ T8539] ? lockdep_hardirqs_on+0x79/0x100 [ 2628.046942][ T8539] __do_fast_syscall_32+0x65/0xf0 [ 2628.046970][ T8539] do_fast_syscall_32+0x2f/0x70 [ 2628.046995][ T8539] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2628.047027][ T8539] RIP: 0023:0xf7f78549 [ 2628.047050][ T8539] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2628.047077][ T8539] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2628.047106][ T8539] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2628.047124][ T8539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2628.047141][ T8539] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2628.047157][ T8539] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2628.047174][ T8539] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:29 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x3, 0x46, 0x4}) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = openat$vim2m(0xffffff9c, &(0x7f0000000380), 0x2, 0x0) ioctl$vim2m_VIDIOC_TRY_FMT(r2, 0xc0cc5640, &(0x7f00000003c0)={0x2, @raw_data="451675672ee232bea4e721a6391e37e83ff94895845e54ed4951500be8c16c397fe23f6b38451afdb96c4df1706dfb8c4562fd7627925e71b54332378dea961d1a6cf12f6e8677589464e6e28fd446b071a01b0c9d1e493cdf4d63bed56faa8b3ac350cb4a4378f644c063e041e4c9f43be1254e7f363980829b8bd41a3a9bafe19d4cc935f1706562e39de07ccca9b8f09feb57c3b43ae401df38762081f0924218591afa9821fa60d93892b3da87dd1049b27005768e92a52bb8f2b80f1b2644584a804e2d7b9e"}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r3, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f00000001c0)={0x54, r1, 0x1, 0x0, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_ISOLATION_MARK={0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x49}]}, 0x54}}, 0x0) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r1, 0x400, 0x70bd2c, 0x25dfdbfd}, 0x14}}, 0x1) fork() r4 = openat$vcs(0xffffff9c, &(0x7f0000000240), 0xb4800, 0x0) sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, r1, 0x300, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x30c}]}, 0x2c}}, 0x4000800) 13:22:29 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = getpgid(r0) wait4(r1, 0x0, 0x0, &(0x7f0000000000)) capset(&(0x7f0000000080)={0x20080522, r0}, &(0x7f00000000c0)={0x6, 0x2, 0x6, 0x7ff, 0x6, 0x1f}) 13:22:29 executing program 5: socketpair(0x8, 0x0, 0x0, &(0x7f0000000140)) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:29 executing program 3: r0 = getpgid(0x0) wait4(r0, 0x0, 0x4, 0x0) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="0fb485e68b849e275d8935bee93573d86a5acc6ae8779857e5b2628c6986d0315241e8a1f627bcde1ad609349d2e2e4c3df02050412b2eb4a8cb62d1fa2430369ae4b70d28994d00ec151ffd", 0x4c) 13:22:29 executing program 0 (fault-call:1 fault-nth:67): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:29 executing program 4: fork() r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x52, &(0x7f0000000080)=""/122) getpgid(r0) capset(&(0x7f0000000000)={0x19980330, r0}, &(0x7f0000000040)={0x4, 0xa4b, 0x891, 0x10001, 0x8, 0x82d6}) [ 2628.476390][ T8555] FAULT_INJECTION: forcing a failure. [ 2628.476390][ T8555] name failslab, interval 1, probability 0, space 0, times 0 [ 2628.489352][ T8555] CPU: 0 PID: 8555 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2628.497794][ T8555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2628.507876][ T8555] Call Trace: [ 2628.511181][ T8555] dump_stack_lvl+0xcd/0x134 [ 2628.515811][ T8555] should_fail.cold+0x5/0xa [ 2628.520366][ T8555] ? anon_vma_clone+0xe0/0x5f0 [ 2628.525154][ T8555] should_failslab+0x5/0x10 [ 2628.529683][ T8555] kmem_cache_alloc+0x5e/0x4a0 [ 2628.534480][ T8555] anon_vma_clone+0xe0/0x5f0 [ 2628.539112][ T8555] anon_vma_fork+0x82/0x630 [ 2628.543641][ T8555] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2628.549381][ T8555] ? __vm_enough_memory+0x184/0x360 [ 2628.554609][ T8555] dup_mm+0x9a0/0x1380 [ 2628.558720][ T8555] ? vm_area_dup+0x2b0/0x2b0 [ 2628.563336][ T8555] ? __raw_spin_lock_init+0x36/0x110 [ 2628.568658][ T8555] copy_process+0x71e0/0x74c0 [ 2628.573364][ T8555] ? lock_chain_count+0x20/0x20 [ 2628.578238][ T8555] ? lock_chain_count+0x20/0x20 [ 2628.583178][ T8555] ? __cleanup_sighand+0xb0/0xb0 [ 2628.588219][ T8555] ? __lock_acquire+0x162f/0x54a0 [ 2628.593277][ T8555] ? kernel_clone+0x314/0xab0 [ 2628.597985][ T8555] kernel_clone+0xe7/0xab0 [ 2628.602430][ T8555] ? create_io_thread+0xf0/0xf0 [ 2628.607325][ T8555] ? find_held_lock+0x2d/0x110 [ 2628.612124][ T8555] __do_sys_fork+0x8a/0xc0 [ 2628.616618][ T8555] ? kernel_thread+0xf0/0xf0 [ 2628.621242][ T8555] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2628.627858][ T8555] ? lockdep_hardirqs_on+0x79/0x100 [ 2628.633091][ T8555] __do_fast_syscall_32+0x65/0xf0 [ 2628.638138][ T8555] do_fast_syscall_32+0x2f/0x70 [ 2628.643010][ T8555] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2628.649360][ T8555] RIP: 0023:0xf7f78549 [ 2628.653438][ T8555] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2628.673065][ T8555] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2628.681506][ T8555] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2628.689497][ T8555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2628.697613][ T8555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2628.705613][ T8555] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2628.713606][ T8555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:30 executing program 3: ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, &(0x7f0000000280)=0xf41) ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000040)={0x0, @qipcrtr={0x2a, 0x2, 0x8000}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, @hci={0x1f, 0x3, 0x2}, 0x7, 0x0, 0x0, 0x0, 0x3ff, &(0x7f0000000000)='ip6tnl0\x00', 0xc70, 0x4, 0x3}) wait4(0x0, 0x0, 0x40000000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x80, &(0x7f0000000200), &(0x7f0000000240)=0x4) sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, 0x0, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xffff}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x6}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$TIPC_CMD_DISABLE_BEARER(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {{}, {}, {0xc, 0x13, @l2={'eth', 0x3a, 'wg0\x00'}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x20000800) 13:22:30 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) syz_io_uring_setup(0x6b41, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000180), 0x200000, 0x0) fork() r1 = fork() getpgid(r1) getpgid(r1) r2 = openat$vcs(0xffffff9c, &(0x7f0000000040), 0x40180, 0x0) ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f00000000c0)={0x3c, 0x7426050f}) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f0000000140)) 13:22:30 executing program 5: syz_io_uring_setup(0x1d, &(0x7f0000000240)={0x0, 0x1, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() ptrace$getregs(0xe, r0, 0x8001, &(0x7f0000000000)=""/22) 13:22:30 executing program 4: fork() prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) 13:22:30 executing program 0 (fault-call:1 fault-nth:68): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:30 executing program 3: r0 = inotify_init1(0x80800) inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x40) wait4(0x0, 0x0, 0x4, 0x0) 13:22:30 executing program 5: r0 = syz_io_uring_setup(0x6a01, &(0x7f0000000000)={0x0, 0xa412, 0x4, 0x2, 0x366}, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000d8a000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) syz_io_uring_setup(0x1d, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$SIOCGETLINKNAME(0xffffffffffffffff, 0x89e0, &(0x7f0000000100)={0x1}) r1 = fork() io_uring_setup(0x2487, &(0x7f00000002c0)={0x0, 0x53cb, 0x1, 0x1, 0x271, 0x0, r0}) r2 = getpgid(r1) capset(&(0x7f0000000180)={0x20071026, r2}, &(0x7f00000001c0)={0x0, 0x1000, 0x7, 0x1, 0x6, 0xff}) [ 2629.284623][ T8591] FAULT_INJECTION: forcing a failure. [ 2629.284623][ T8591] name failslab, interval 1, probability 0, space 0, times 0 [ 2629.361019][ T8591] CPU: 0 PID: 8591 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2629.369375][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2629.379458][ T8591] Call Trace: [ 2629.382756][ T8591] dump_stack_lvl+0xcd/0x134 [ 2629.387384][ T8591] should_fail.cold+0x5/0xa [ 2629.391929][ T8591] ? anon_vma_fork+0xed/0x630 [ 2629.396650][ T8591] should_failslab+0x5/0x10 [ 2629.401268][ T8591] kmem_cache_alloc+0x5e/0x4a0 [ 2629.406062][ T8591] anon_vma_fork+0xed/0x630 13:22:30 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) waitid(0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x4, &(0x7f0000000080)) 13:22:30 executing program 4: fork() r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x9, &(0x7f0000000000)=""/165) 13:22:30 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) syz_io_uring_setup(0x6b41, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000180), 0x200000, 0x0) fork() r1 = fork() getpgid(r1) getpgid(r1) r2 = openat$vcs(0xffffff9c, &(0x7f0000000040), 0x40180, 0x0) ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f00000000c0)={0x3c, 0x7426050f}) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f0000000140)) [ 2629.410603][ T8591] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2629.416350][ T8591] ? __vm_enough_memory+0x184/0x360 [ 2629.421588][ T8591] dup_mm+0x9a0/0x1380 [ 2629.425696][ T8591] ? vm_area_dup+0x2b0/0x2b0 [ 2629.430318][ T8591] ? __raw_spin_lock_init+0x36/0x110 [ 2629.435631][ T8591] copy_process+0x71e0/0x74c0 [ 2629.440354][ T8591] ? lock_chain_count+0x20/0x20 [ 2629.445230][ T8591] ? lock_chain_count+0x20/0x20 [ 2629.450130][ T8591] ? __cleanup_sighand+0xb0/0xb0 [ 2629.455106][ T8591] ? __lock_acquire+0x162f/0x54a0 [ 2629.460158][ T8591] ? kernel_clone+0x314/0xab0 [ 2629.464864][ T8591] kernel_clone+0xe7/0xab0 [ 2629.469313][ T8591] ? create_io_thread+0xf0/0xf0 [ 2629.474197][ T8591] ? find_held_lock+0x2d/0x110 [ 2629.478994][ T8591] __do_sys_fork+0x8a/0xc0 [ 2629.483431][ T8591] ? kernel_thread+0xf0/0xf0 [ 2629.488057][ T8591] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2629.494689][ T8591] ? lockdep_hardirqs_on+0x79/0x100 [ 2629.500051][ T8591] __do_fast_syscall_32+0x65/0xf0 [ 2629.505102][ T8591] do_fast_syscall_32+0x2f/0x70 13:22:30 executing program 3: ioctl$BLKRESETZONE(0xffffffffffffffff, 0x40101283, &(0x7f0000000000)={0xd2, 0x100}) r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x2, 0x0) wait4(r0, &(0x7f0000000040), 0x80000000, &(0x7f0000000080)) r1 = fork() getpgid(r1) waitid(0x1, r1, &(0x7f0000000100), 0x1, &(0x7f0000000180)) [ 2629.509975][ T8591] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2629.516343][ T8591] RIP: 0023:0xf7f78549 [ 2629.520444][ T8591] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2629.540078][ T8591] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2629.548531][ T8591] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2629.556525][ T8591] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2629.564533][ T8591] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2629.572542][ T8591] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2629.580538][ T8591] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:30 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000000)) fork() 13:22:30 executing program 0 (fault-call:1 fault-nth:69): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2629.867668][ T8629] FAULT_INJECTION: forcing a failure. [ 2629.867668][ T8629] name failslab, interval 1, probability 0, space 0, times 0 [ 2629.898514][ T8629] CPU: 1 PID: 8629 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2629.906902][ T8629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2629.916981][ T8629] Call Trace: [ 2629.920282][ T8629] dump_stack_lvl+0xcd/0x134 [ 2629.924909][ T8629] should_fail.cold+0x5/0xa [ 2629.929443][ T8629] ? anon_vma_fork+0x1df/0x630 [ 2629.934241][ T8629] should_failslab+0x5/0x10 [ 2629.938778][ T8629] kmem_cache_alloc+0x5e/0x4a0 [ 2629.943576][ T8629] anon_vma_fork+0x1df/0x630 [ 2629.948200][ T8629] dup_mm+0x9a0/0x1380 [ 2629.952333][ T8629] ? vm_area_dup+0x2b0/0x2b0 [ 2629.956957][ T8629] ? __raw_spin_lock_init+0x36/0x110 [ 2629.962281][ T8629] copy_process+0x71e0/0x74c0 13:22:31 executing program 4: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f0000000500)={0x1, @win={{0x0, 0xff, 0x9, 0xe03}, 0x2, 0xfffffff8, &(0x7f0000000480)={{0x5aa7, 0x80000001, 0x8, 0x8}, &(0x7f0000000440)={{0x2, 0x0, 0x3, 0x1}, &(0x7f0000000400)={{0x0, 0x1, 0xfffffffa, 0x7}}}}, 0xb5, &(0x7f00000004c0)="06f858a43cbd63dd5bad5444bfdcee041bd44807eb32bbcc7b8c0cc2", 0x6}}) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f0000000180)={0x379, 0x2, 0x4, 0x2000, 0xeb0e, {0x0, 0xea60}, {0x3, 0x1, 0x0, 0x3, 0x40, 0x3f, "59f632ba"}, 0x9, 0x3, @planes=&(0x7f0000000140)={0x43fa, 0x3f, @fd=r1, 0x3f}, 0x40, 0x0, r0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r5, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000012000000"], 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r4, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000805}, 0x4008000) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r2, 0x80e, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000) [ 2629.966997][ T8629] ? lock_chain_count+0x20/0x20 [ 2629.971934][ T8629] ? lock_chain_count+0x20/0x20 [ 2629.976829][ T8629] ? __cleanup_sighand+0xb0/0xb0 [ 2629.981807][ T8629] ? __lock_acquire+0x162f/0x54a0 [ 2629.986864][ T8629] ? kernel_clone+0x314/0xab0 [ 2629.991607][ T8629] kernel_clone+0xe7/0xab0 [ 2629.991650][ T8629] ? create_io_thread+0xf0/0xf0 [ 2629.991695][ T8629] ? find_held_lock+0x2d/0x110 [ 2629.991733][ T8629] __do_sys_fork+0x8a/0xc0 [ 2629.991762][ T8629] ? kernel_thread+0xf0/0xf0 [ 2629.991805][ T8629] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2629.991847][ T8629] ? lockdep_hardirqs_on+0x79/0x100 [ 2629.991878][ T8629] __do_fast_syscall_32+0x65/0xf0 [ 2629.991905][ T8629] do_fast_syscall_32+0x2f/0x70 [ 2629.991933][ T8629] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2629.991964][ T8629] RIP: 0023:0xf7f78549 [ 2629.991985][ T8629] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:31 executing program 2: fork() r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x9, &(0x7f0000000000)=""/165) [ 2629.992011][ T8629] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2630.067668][ T8629] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:31 executing program 5: syz_io_uring_setup(0x2001b, &(0x7f0000000240)={0x0, 0x1, 0x8}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4, 0x4000010, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000440)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x4000, @fd_index=0x6, 0xfff, &(0x7f0000000400)=[{&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f00000002c0)=""/184, 0xb8}, {&(0x7f0000000380)=""/118, 0x76}], 0x3, 0x2, 0x1}, 0x2) mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x2010, r0, 0x10000000) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x10000, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "21e8c8e9"}, 0x0, 0x0, @planes=0x0}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000000)={0x81, 0x7, 0x4, 0x1000, 0x2, {0x0, 0xea60}, {0x0, 0x8, 0x3, 0xfd, 0x1, 0x81, "89040d2f"}, 0x8000, 0x1, @userptr=0x40, 0x6}) fork() openat$vicodec0(0xffffff9c, &(0x7f0000000140), 0x2, 0x0) 13:22:31 executing program 0 (fault-call:1 fault-nth:70): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2630.067688][ T8629] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2630.067704][ T8629] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2630.067721][ T8629] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2630.067738][ T8629] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:31 executing program 4: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_dccp_int(r0, 0x21, 0x10, &(0x7f0000000000)=0x8000, 0x4) setsockopt$inet6_dccp_buf(r0, 0x21, 0x80, &(0x7f0000000040)="f29a8e2e04f14debec67f4befb88e3a2de560745690ba5a3ab8e18b9e121854e1d6680e77f45a2d015b9b80d96", 0x2d) socket$inet6_dccp(0xa, 0x6, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$sock_ifreq(r1, 0x8932, &(0x7f00000000c0)={'netdevsim0\x00', @ifru_names}) r2 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x180800) getsockname(r2, &(0x7f0000000140)=@pptp={0x18, 0x2, {0x0, @multicast2}}, &(0x7f00000001c0)=0x80) ioctl$IOC_PR_REGISTER(0xffffffffffffffff, 0x401870c8, &(0x7f0000000080)={0x2, 0x1000}) [ 2630.375251][ T8652] FAULT_INJECTION: forcing a failure. [ 2630.375251][ T8652] name failslab, interval 1, probability 0, space 0, times 0 13:22:31 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x4, &(0x7f0000000000)=""/216) [ 2630.417469][ T8652] CPU: 1 PID: 8652 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2630.425853][ T8652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2630.435931][ T8652] Call Trace: [ 2630.439231][ T8652] dump_stack_lvl+0xcd/0x134 [ 2630.443864][ T8652] should_fail.cold+0x5/0xa [ 2630.448405][ T8652] ? anon_vma_clone+0xe0/0x5f0 [ 2630.453195][ T8652] should_failslab+0x5/0x10 [ 2630.457729][ T8652] kmem_cache_alloc+0x5e/0x4a0 [ 2630.462529][ T8652] anon_vma_clone+0xe0/0x5f0 [ 2630.467162][ T8652] anon_vma_fork+0x82/0x630 [ 2630.471699][ T8652] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2630.477448][ T8652] ? __vm_enough_memory+0x184/0x360 [ 2630.482685][ T8652] dup_mm+0x9a0/0x1380 [ 2630.486824][ T8652] ? vm_area_dup+0x2b0/0x2b0 [ 2630.491446][ T8652] ? __raw_spin_lock_init+0x36/0x110 [ 2630.496770][ T8652] copy_process+0x71e0/0x74c0 [ 2630.501487][ T8652] ? lock_chain_count+0x20/0x20 [ 2630.506362][ T8652] ? lock_chain_count+0x20/0x20 [ 2630.511253][ T8652] ? __cleanup_sighand+0xb0/0xb0 13:22:31 executing program 4: r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x6, 0x2, 0x6, 0x3, 0x81, 0x2}) [ 2630.516224][ T8652] ? __lock_acquire+0x162f/0x54a0 [ 2630.521278][ T8652] ? kernel_clone+0x314/0xab0 [ 2630.525988][ T8652] kernel_clone+0xe7/0xab0 [ 2630.530440][ T8652] ? create_io_thread+0xf0/0xf0 [ 2630.535330][ T8652] ? find_held_lock+0x2d/0x110 [ 2630.540129][ T8652] __do_sys_fork+0x8a/0xc0 [ 2630.544576][ T8652] ? kernel_thread+0xf0/0xf0 [ 2630.549213][ T8652] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2630.555838][ T8652] ? lockdep_hardirqs_on+0x79/0x100 [ 2630.561065][ T8652] __do_fast_syscall_32+0x65/0xf0 13:22:31 executing program 4: r0 = fork() ptrace$getregs(0xe, r0, 0x6, &(0x7f0000000080)=""/228) capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x2f864143, 0x1, 0xffffffff, 0x2, 0x26, 0xaf}) getpgid(0x0) getpgid(0x0) [ 2630.566119][ T8652] do_fast_syscall_32+0x2f/0x70 [ 2630.570999][ T8652] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2630.577362][ T8652] RIP: 0023:0xf7f78549 [ 2630.581447][ T8652] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2630.601080][ T8652] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2630.609540][ T8652] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2630.617538][ T8652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2630.625532][ T8652] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2630.633544][ T8652] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2630.641535][ T8652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:31 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f0000000500)={0x1, @win={{0x0, 0xff, 0x9, 0xe03}, 0x2, 0xfffffff8, &(0x7f0000000480)={{0x5aa7, 0x80000001, 0x8, 0x8}, &(0x7f0000000440)={{0x2, 0x0, 0x3, 0x1}, &(0x7f0000000400)={{0x0, 0x1, 0xfffffffa, 0x7}}}}, 0xb5, &(0x7f00000004c0)="06f858a43cbd63dd5bad5444bfdcee041bd44807eb32bbcc7b8c0cc2", 0x6}}) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f0000000180)={0x379, 0x2, 0x4, 0x2000, 0xeb0e, {0x0, 0xea60}, {0x3, 0x1, 0x0, 0x3, 0x40, 0x3f, "59f632ba"}, 0x9, 0x3, @planes=&(0x7f0000000140)={0x43fa, 0x3f, @fd=r1, 0x3f}, 0x40, 0x0, r0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r5, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000012000000"], 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r4, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000805}, 0x4008000) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r2, 0x80e, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000) 13:22:32 executing program 3: r0 = fork() r1 = getpgid(r0) wait4(r0, 0x0, 0x80000000, 0x0) r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000000), 0x1, &(0x7f0000000040)) fork() capset(&(0x7f0000000140)={0x20071026, r1}, &(0x7f0000000100)={0x0, 0x3a, 0x3, 0x4f, 0x6, 0x100004}) 13:22:32 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x20, 0x0, 0x0, 0x8000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x0, 0x0) r0 = getgid() setgroups(0x2, &(0x7f0000000000)=[r0, 0xffffffffffffffff]) fork() 13:22:32 executing program 4: r0 = fork() capset(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000040)={0x49, 0xd913, 0x2, 0x0, 0x8, 0x9}) 13:22:32 executing program 5: sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x2c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x810}, 0x24000004) fork() recvmsg(0xffffffffffffffff, &(0x7f0000001580)={&(0x7f0000000000)=@ethernet={0x0, @random}, 0x80, &(0x7f00000014c0)=[{&(0x7f0000000080)=""/239, 0xef}, {&(0x7f0000000180)=""/120, 0x78}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000000200)=""/2, 0x2}, {&(0x7f00000012c0)=""/132, 0x84}, {&(0x7f0000001380)=""/211, 0xd3}, {&(0x7f0000001480)=""/59, 0x3b}], 0x7, &(0x7f0000001500)=""/65, 0x41}, 0x121) 13:22:32 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f0000000500)={0x1, @win={{0x0, 0xff, 0x9, 0xe03}, 0x2, 0xfffffff8, &(0x7f0000000480)={{0x5aa7, 0x80000001, 0x8, 0x8}, &(0x7f0000000440)={{0x2, 0x0, 0x3, 0x1}, &(0x7f0000000400)={{0x0, 0x1, 0xfffffffa, 0x7}}}}, 0xb5, &(0x7f00000004c0)="06f858a43cbd63dd5bad5444bfdcee041bd44807eb32bbcc7b8c0cc2", 0x6}}) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f0000000180)={0x379, 0x2, 0x4, 0x2000, 0xeb0e, {0x0, 0xea60}, {0x3, 0x1, 0x0, 0x3, 0x40, 0x3f, "59f632ba"}, 0x9, 0x3, @planes=&(0x7f0000000140)={0x43fa, 0x3f, @fd=r1, 0x3f}, 0x40, 0x0, r0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r5, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000012000000"], 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r4, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000805}, 0x4008000) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r2, 0x80e, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000) 13:22:32 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040)) ioctl$BLKROGET(r1, 0x125e, &(0x7f0000000100)) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000080)) syz_io_uring_setup(0x5330, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000040), &(0x7f00000000c0)=0x4) 13:22:32 executing program 0 (fault-call:1 fault-nth:71): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:32 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) r0 = getpgid(0xffffffffffffffff) waitid(0x2, r0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) [ 2631.483109][ T8721] FAULT_INJECTION: forcing a failure. [ 2631.483109][ T8721] name failslab, interval 1, probability 0, space 0, times 0 13:22:32 executing program 1: r0 = fork() getpgid(r0) ptrace$getsig(0x4202, r0, 0x40, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = fork() ptrace$getregs(0xe, r1, 0x22, &(0x7f0000000080)=""/35) fork() 13:22:32 executing program 4: r0 = fork() capset(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000040)={0x49, 0xd913, 0x2, 0x0, 0x8, 0x9}) 13:22:32 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f0000000500)={0x1, @win={{0x0, 0xff, 0x9, 0xe03}, 0x2, 0xfffffff8, &(0x7f0000000480)={{0x5aa7, 0x80000001, 0x8, 0x8}, &(0x7f0000000440)={{0x2, 0x0, 0x3, 0x1}, &(0x7f0000000400)={{0x0, 0x1, 0xfffffffa, 0x7}}}}, 0xb5, &(0x7f00000004c0)="06f858a43cbd63dd5bad5444bfdcee041bd44807eb32bbcc7b8c0cc2", 0x6}}) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f0000000180)={0x379, 0x2, 0x4, 0x2000, 0xeb0e, {0x0, 0xea60}, {0x3, 0x1, 0x0, 0x3, 0x40, 0x3f, "59f632ba"}, 0x9, 0x3, @planes=&(0x7f0000000140)={0x43fa, 0x3f, @fd=r1, 0x3f}, 0x40, 0x0, r0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r5, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000012000000"], 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r4, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000805}, 0x4008000) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r2, 0x80e, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000) [ 2631.539376][ T8721] CPU: 1 PID: 8721 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2631.547766][ T8721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2631.557843][ T8721] Call Trace: [ 2631.561137][ T8721] dump_stack_lvl+0xcd/0x134 [ 2631.565759][ T8721] should_fail.cold+0x5/0xa [ 2631.570301][ T8721] ? anon_vma_fork+0x1df/0x630 [ 2631.575206][ T8721] should_failslab+0x5/0x10 [ 2631.579732][ T8721] kmem_cache_alloc+0x5e/0x4a0 [ 2631.584535][ T8721] anon_vma_fork+0x1df/0x630 13:22:32 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpuset.mem_exclusive\x00', 0x2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x80, 0x0) 13:22:32 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) [ 2631.589158][ T8721] dup_mm+0x9a0/0x1380 [ 2631.593262][ T8721] ? vm_area_dup+0x2b0/0x2b0 [ 2631.597884][ T8721] ? __raw_spin_lock_init+0x36/0x110 [ 2631.603205][ T8721] copy_process+0x71e0/0x74c0 [ 2631.607919][ T8721] ? lock_chain_count+0x20/0x20 [ 2631.612788][ T8721] ? lock_chain_count+0x20/0x20 [ 2631.617713][ T8721] ? __cleanup_sighand+0xb0/0xb0 [ 2631.617758][ T8721] ? __lock_acquire+0x162f/0x54a0 [ 2631.617791][ T8721] ? kernel_clone+0x314/0xab0 [ 2631.617821][ T8721] kernel_clone+0xe7/0xab0 [ 2631.617852][ T8721] ? create_io_thread+0xf0/0xf0 13:22:32 executing program 4: r0 = fork() capset(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000040)={0x49, 0xd913, 0x2, 0x0, 0x8, 0x9}) 13:22:33 executing program 0 (fault-call:1 fault-nth:72): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2631.617892][ T8721] ? find_held_lock+0x2d/0x110 [ 2631.617929][ T8721] __do_sys_fork+0x8a/0xc0 [ 2631.617956][ T8721] ? kernel_thread+0xf0/0xf0 [ 2631.618000][ T8721] ? syscall_enter_from_user_mode_prepare+0x17/0x40 13:22:33 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) wait4(0x0, &(0x7f0000000000), 0x80000000, 0x0) [ 2631.618034][ T8721] ? lockdep_hardirqs_on+0x79/0x100 13:22:33 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040)) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000100)) ioctl$BLKBSZGET(r0, 0x80041270, &(0x7f0000000000)) ioctl$IOC_PR_CLEAR(r0, 0x401070cd, &(0x7f00000000c0)={0xff}) fork() r2 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_REGISTER(r2, 0x401870c8, &(0x7f0000000080)={0x100000000, 0xffff, 0x1}) [ 2631.618064][ T8721] __do_fast_syscall_32+0x65/0xf0 [ 2631.618093][ T8721] do_fast_syscall_32+0x2f/0x70 [ 2631.618120][ T8721] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2631.618148][ T8721] RIP: 0023:0xf7f78549 [ 2631.618171][ T8721] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2631.618197][ T8721] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2631.618227][ T8721] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2631.618243][ T8721] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2631.618258][ T8721] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2631.618273][ T8721] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2631.618289][ T8721] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2631.984676][ T8751] FAULT_INJECTION: forcing a failure. [ 2631.984676][ T8751] name failslab, interval 1, probability 0, space 0, times 0 13:22:33 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080)={r0, 0x1}) r1 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000180)=@id, &(0x7f00000001c0)=0x10, 0x0) r2 = fork() r3 = getpgid(r2) wait4(r2, 0x0, 0x1, &(0x7f00000000c0)) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000200)={0x40, 0x1, 0x3}, 0x10) waitid(0x2, r3, &(0x7f0000000340), 0x20000000, &(0x7f00000002c0)) syz_open_dev$radio(&(0x7f0000000040), 0x3, 0x2) [ 2632.080490][ T8751] CPU: 1 PID: 8751 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2632.088976][ T8751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2632.099049][ T8751] Call Trace: [ 2632.102346][ T8751] dump_stack_lvl+0xcd/0x134 [ 2632.106982][ T8751] should_fail.cold+0x5/0xa [ 2632.111510][ T8751] ? vm_area_alloc+0x110/0x110 [ 2632.116330][ T8751] ? anon_vma_clone+0xe0/0x5f0 [ 2632.121118][ T8751] should_failslab+0x5/0x10 [ 2632.125642][ T8751] kmem_cache_alloc+0x5e/0x4a0 [ 2632.130433][ T8751] anon_vma_clone+0xe0/0x5f0 13:22:33 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) r0 = getpgid(0xffffffffffffffff) waitid(0x2, r0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) [ 2632.135058][ T8751] anon_vma_fork+0x82/0x630 [ 2632.139586][ T8751] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2632.145326][ T8751] ? __vm_enough_memory+0x184/0x360 [ 2632.150554][ T8751] dup_mm+0x9a0/0x1380 [ 2632.154655][ T8751] ? vm_area_dup+0x2b0/0x2b0 [ 2632.159278][ T8751] ? __raw_spin_lock_init+0x36/0x110 [ 2632.164597][ T8751] copy_process+0x71e0/0x74c0 [ 2632.169308][ T8751] ? lock_chain_count+0x20/0x20 [ 2632.174180][ T8751] ? lock_chain_count+0x20/0x20 [ 2632.179073][ T8751] ? __cleanup_sighand+0xb0/0xb0 [ 2632.184051][ T8751] ? __lock_acquire+0x162f/0x54a0 [ 2632.189094][ T8751] ? kernel_clone+0x314/0xab0 [ 2632.193812][ T8751] kernel_clone+0xe7/0xab0 [ 2632.198260][ T8751] ? create_io_thread+0xf0/0xf0 [ 2632.203151][ T8751] ? find_held_lock+0x2d/0x110 [ 2632.207952][ T8751] __do_sys_fork+0x8a/0xc0 [ 2632.212392][ T8751] ? kernel_thread+0xf0/0xf0 [ 2632.217021][ T8751] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2632.223655][ T8751] ? lockdep_hardirqs_on+0x79/0x100 [ 2632.228887][ T8751] __do_fast_syscall_32+0x65/0xf0 [ 2632.233937][ T8751] do_fast_syscall_32+0x2f/0x70 [ 2632.238807][ T8751] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2632.245161][ T8751] RIP: 0023:0xf7f78549 [ 2632.249346][ T8751] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2632.268986][ T8751] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2632.277429][ T8751] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:33 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) r0 = getpgid(0xffffffffffffffff) waitid(0x2, r0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) [ 2632.285436][ T8751] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2632.293429][ T8751] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2632.301418][ T8751] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2632.309406][ T8751] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:33 executing program 1: wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) waitid(0x1, 0xffffffffffffffff, &(0x7f0000000000), 0x8, &(0x7f0000000080)) 13:22:33 executing program 3: fork() r0 = fork() getpgid(r0) r1 = fork() wait4(r1, 0x0, 0x80000000, 0x0) 13:22:33 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0x7, 0x2, &(0x7f0000000000)="20a231885fc301561302c5fb31baf51f734b8b87dcf55ef175528583bf0de7b7095416cfac7ec11a271ff8f8f7a9df52913fa29d8fa013a42a7f711d6aec67b6717917cdb92b611d00262e58f64af8c83de4b937678a8ac9666af020b58a4b01b36afadd9c5c84db1202e6136a982ff8f21ec850a93f37ba8fc95207ff1e5dd332101347b23feacb1f0a63df698a3994e6548ccfbcd756b8fc7726aaac0a0b8ec33def527a94039ca6501e957a55988943e7f6a142", 0x5, 0x0, 0x1, {0x2}}, 0x4) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}, 0x1}}, 0x10, &(0x7f0000000300), 0x0, &(0x7f0000000340)="19e37a4c8de54407a065939f60d39be0f949c8b84b40d5b1e5856e15c0df08ccc1c422776de6c155a1eba59076c47426971cf9cecb0f108d81407a7f083a3d49b21a834ede6ac5f16879405fe21444f5423eb65cab5e8cffed2ef72afc84bfa15533cb823a51285c6a8b084d92124dc4419d79d81878b5531ec507419af430d3a354bc26b04b93e58e803333cc403a361cd9b323a4a5764e3079135007de0e3f03e3e176e33d81c635bf7f82a858188f0b6be33b5b7dd114a0d34cfc3e", 0xbd, 0x4011}, 0x8800) syz_io_uring_setup(0xa23, &(0x7f0000000100)={0x0, 0xa72f, 0x0, 0x2, 0x243, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x30, r0, 0x10000000) r3 = socket$can_bcm(0x1d, 0x2, 0x2) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r3, 0x0, 0x0, 0x0, 0x40002102, 0x1, {0x1}}, 0x80) fork() 13:22:33 executing program 2: r0 = syz_io_uring_setup(0x6a01, &(0x7f0000000000)={0x0, 0xa412, 0x4, 0x2, 0x366}, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000d8a000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) syz_io_uring_setup(0x1d, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$SIOCGETLINKNAME(0xffffffffffffffff, 0x89e0, &(0x7f0000000100)={0x1}) r1 = fork() io_uring_setup(0x2487, &(0x7f00000002c0)={0x0, 0x53cb, 0x1, 0x1, 0x271, 0x0, r0}) r2 = getpgid(r1) capset(&(0x7f0000000180)={0x20071026, r2}, &(0x7f00000001c0)={0x0, 0x1000, 0x7, 0x1, 0x6, 0xff}) 13:22:33 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) r0 = getpgid(0xffffffffffffffff) waitid(0x2, r0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) 13:22:33 executing program 0 (fault-call:1 fault-nth:73): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:33 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x40010) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) fork() [ 2632.812199][ T8799] FAULT_INJECTION: forcing a failure. [ 2632.812199][ T8799] name failslab, interval 1, probability 0, space 0, times 0 13:22:34 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) r0 = getpgid(0xffffffffffffffff) waitid(0x2, r0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) [ 2632.890365][ T8799] CPU: 1 PID: 8799 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2632.898773][ T8799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2632.908852][ T8799] Call Trace: [ 2632.912148][ T8799] dump_stack_lvl+0xcd/0x134 [ 2632.916776][ T8799] should_fail.cold+0x5/0xa [ 2632.921313][ T8799] ? anon_vma_fork+0x1df/0x630 [ 2632.926108][ T8799] should_failslab+0x5/0x10 [ 2632.930637][ T8799] kmem_cache_alloc+0x5e/0x4a0 [ 2632.935433][ T8799] anon_vma_fork+0x1df/0x630 [ 2632.940054][ T8799] dup_mm+0x9a0/0x1380 [ 2632.944169][ T8799] ? vm_area_dup+0x2b0/0x2b0 [ 2632.948795][ T8799] ? __raw_spin_lock_init+0x36/0x110 [ 2632.954119][ T8799] copy_process+0x71e0/0x74c0 [ 2632.958827][ T8799] ? lock_chain_count+0x20/0x20 [ 2632.963701][ T8799] ? lock_chain_count+0x20/0x20 [ 2632.968599][ T8799] ? __cleanup_sighand+0xb0/0xb0 [ 2632.973574][ T8799] ? __lock_acquire+0x162f/0x54a0 [ 2632.978628][ T8799] ? kernel_clone+0x314/0xab0 [ 2632.983362][ T8799] kernel_clone+0xe7/0xab0 13:22:34 executing program 1: fork() r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x4, 0x0) 13:22:34 executing program 2: socketpair(0x8, 0x0, 0x0, &(0x7f0000000140)) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:34 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x3c11c0, 0x0) waitid(0x2, 0x0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) 13:22:34 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = getgid() r1 = getegid() getegid() r2 = getgid() getegid() r3 = getegid() r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) read$eventfd(r4, &(0x7f0000000080), 0x8) setgroups(0x8, &(0x7f0000000040)=[0x0, r0, r0, r0, r2, r0, r1, r3]) [ 2632.987807][ T8799] ? create_io_thread+0xf0/0xf0 [ 2632.992699][ T8799] ? find_held_lock+0x2d/0x110 [ 2632.997499][ T8799] __do_sys_fork+0x8a/0xc0 [ 2633.001946][ T8799] ? kernel_thread+0xf0/0xf0 [ 2633.006577][ T8799] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2633.013194][ T8799] ? lockdep_hardirqs_on+0x79/0x100 [ 2633.018420][ T8799] __do_fast_syscall_32+0x65/0xf0 [ 2633.023472][ T8799] do_fast_syscall_32+0x2f/0x70 [ 2633.028348][ T8799] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2633.034706][ T8799] RIP: 0023:0xf7f78549 [ 2633.038797][ T8799] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2633.058430][ T8799] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2633.066870][ T8799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2633.074863][ T8799] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2633.082850][ T8799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2633.090843][ T8799] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2633.098830][ T8799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:34 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() io_uring_setup(0x6caa, &(0x7f0000000000)={0x0, 0xbb1e, 0x20, 0x3, 0x3ad, 0x0, r0}) 13:22:34 executing program 3: wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) r0 = fork() getpgid(r0) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x6, 0x1, 0x8, 0x0, 0x9, 0x9, 0x7ff}, 0x0) fork() r1 = fork() getpgid(r1) waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000000)) 13:22:34 executing program 4: wait4(0x0, 0x0, 0x4, 0x0) waitid(0x2, 0x0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) 13:22:34 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x40010) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) fork() 13:22:34 executing program 1: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKGETSIZE64(r0, 0x80041272, &(0x7f0000000000)) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:34 executing program 0 (fault-call:1 fault-nth:74): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:34 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x101000, 0x0) sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd28, 0x25dfdbfa}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) wait4(0x0, 0x0, 0x4, 0x0) 13:22:34 executing program 4: waitid(0x2, 0x0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) 13:22:34 executing program 5: ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, &(0x7f0000000100)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x6, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f00000001c0)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0], 0x8, 0x4, 0x4, 0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f0000000340)={&(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x2, 0x3, 0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x4}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, &(0x7f0000000400)={&(0x7f0000000040)=[r0, 0x0, 0x0, 0x0], &(0x7f0000000440)=[r1, r2, 0x0, r3, 0x0, r4, r5], 0x4}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2633.625508][ T8855] FAULT_INJECTION: forcing a failure. [ 2633.625508][ T8855] name failslab, interval 1, probability 0, space 0, times 0 [ 2633.695909][ T8855] CPU: 0 PID: 8855 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2633.704411][ T8855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2633.714488][ T8855] Call Trace: [ 2633.717875][ T8855] dump_stack_lvl+0xcd/0x134 [ 2633.722509][ T8855] should_fail.cold+0x5/0xa [ 2633.727051][ T8855] ? anon_vma_clone+0xe0/0x5f0 [ 2633.731853][ T8855] should_failslab+0x5/0x10 [ 2633.736388][ T8855] kmem_cache_alloc+0x5e/0x4a0 [ 2633.741188][ T8855] anon_vma_clone+0xe0/0x5f0 13:22:34 executing program 4: waitid(0x0, 0x0, 0xfffffffffffffffe, 0x98a3bddc832b929f, &(0x7f00000000c0)) [ 2633.745840][ T8855] anon_vma_fork+0x82/0x630 [ 2633.750378][ T8855] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2633.756174][ T8855] ? __vm_enough_memory+0x184/0x360 [ 2633.761399][ T8855] dup_mm+0x9a0/0x1380 [ 2633.765511][ T8855] ? vm_area_dup+0x2b0/0x2b0 [ 2633.770131][ T8855] ? __raw_spin_lock_init+0x36/0x110 [ 2633.775448][ T8855] copy_process+0x71e0/0x74c0 [ 2633.780150][ T8855] ? lock_chain_count+0x20/0x20 [ 2633.785027][ T8855] ? lock_chain_count+0x20/0x20 [ 2633.789918][ T8855] ? __cleanup_sighand+0xb0/0xb0 [ 2633.794897][ T8855] ? __lock_acquire+0x162f/0x54a0 [ 2633.799949][ T8855] ? kernel_clone+0x314/0xab0 [ 2633.804653][ T8855] kernel_clone+0xe7/0xab0 [ 2633.809099][ T8855] ? create_io_thread+0xf0/0xf0 [ 2633.813988][ T8855] ? find_held_lock+0x2d/0x110 [ 2633.818786][ T8855] __do_sys_fork+0x8a/0xc0 [ 2633.823230][ T8855] ? kernel_thread+0xf0/0xf0 [ 2633.827863][ T8855] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2633.834491][ T8855] ? lockdep_hardirqs_on+0x79/0x100 [ 2633.839725][ T8855] __do_fast_syscall_32+0x65/0xf0 [ 2633.844765][ T8855] do_fast_syscall_32+0x2f/0x70 [ 2633.849636][ T8855] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2633.855984][ T8855] RIP: 0023:0xf7f78549 [ 2633.860071][ T8855] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2633.879702][ T8855] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2633.888145][ T8855] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2633.896141][ T8855] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2633.904131][ T8855] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2633.912138][ T8855] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2633.920128][ T8855] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:35 executing program 4: waitid(0x0, 0x0, 0xfffffffffffffffe, 0x0, &(0x7f00000000c0)) 13:22:35 executing program 5: syz_io_uring_setup(0x1b, &(0x7f00000000c0), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = fork() r2 = getpgid(r1) capset(&(0x7f0000000280)={0x19980330, r2}, &(0x7f00000002c0)={0x1a, 0x7f, 0x5557, 0x40, 0x8, 0x6}) r3 = getpgid(r1) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) ioctl$vim2m_VIDIOC_PREPARE_BUF(r4, 0xc04c565d, &(0x7f0000000380)={0x1, 0x4, 0x4, 0x100, 0x2, {}, {0x3, 0x0, 0x1, 0x4d, 0x3f, 0x3f, "04c15346"}, 0x401, 0x2, @userptr=0x81, 0x7ff}) capset(&(0x7f0000000300)={0x20071026, r0}, &(0x7f0000000340)={0x3, 0x8000, 0x6, 0x7, 0x58, 0x3a0}) r5 = syz_io_uring_setup(0x2a52, &(0x7f0000000180)={0x0, 0x44b, 0x20, 0x3, 0x277}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000000200), &(0x7f0000000240)) mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x0, 0x50, r5, 0x10000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x7fffffff) getpgid(r3) ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, &(0x7f0000000400)=0x2) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x401, &(0x7f0000000040)=""/66) syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) 13:22:35 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x40010) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) fork() 13:22:35 executing program 3: r0 = getpgid(0xffffffffffffffff) fork() r1 = fork() r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000000), 0x40000000, &(0x7f0000000040)) getpgid(r1) fork() wait4(r0, &(0x7f00000000c0), 0x20000000, 0x0) wait4(r0, 0x0, 0x80000000, 0x0) 13:22:35 executing program 0 (fault-call:1 fault-nth:75): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:35 executing program 4: waitid(0x0, 0x0, 0xfffffffffffffffe, 0x0, &(0x7f00000000c0)) [ 2634.346742][ T8896] FAULT_INJECTION: forcing a failure. [ 2634.346742][ T8896] name failslab, interval 1, probability 0, space 0, times 0 [ 2634.374228][ T8896] CPU: 1 PID: 8896 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2634.382623][ T8896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2634.392707][ T8896] Call Trace: [ 2634.396009][ T8896] dump_stack_lvl+0xcd/0x134 [ 2634.400635][ T8896] should_fail.cold+0x5/0xa [ 2634.405167][ T8896] ? vm_area_alloc+0x110/0x110 [ 2634.409959][ T8896] ? anon_vma_clone+0xe0/0x5f0 [ 2634.414765][ T8896] should_failslab+0x5/0x10 [ 2634.419292][ T8896] kmem_cache_alloc+0x5e/0x4a0 [ 2634.424085][ T8896] anon_vma_clone+0xe0/0x5f0 [ 2634.428712][ T8896] anon_vma_fork+0x82/0x630 [ 2634.433239][ T8896] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2634.438985][ T8896] ? __vm_enough_memory+0x184/0x360 13:22:35 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) capset(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000100)={0x3ff, 0x9, 0x200, 0x8, 0x5, 0x4cc9}) r1 = fork() getpgid(r1) fork() wait4(r1, &(0x7f00000000c0), 0x20000000, &(0x7f0000000040)) capset(&(0x7f0000000140)={0x20071026, r0}, &(0x7f0000000180)={0x9, 0x7fff, 0xffff, 0x1, 0x2}) 13:22:35 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x40010) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) fork() 13:22:35 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r1, 0x1) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x200, 0x0) 13:22:35 executing program 4: waitid(0x0, 0x0, 0xfffffffffffffffe, 0x0, &(0x7f00000000c0)) [ 2634.444223][ T8896] dup_mm+0x9a0/0x1380 [ 2634.448332][ T8896] ? vm_area_dup+0x2b0/0x2b0 [ 2634.452954][ T8896] ? __raw_spin_lock_init+0x36/0x110 [ 2634.458286][ T8896] copy_process+0x71e0/0x74c0 [ 2634.462992][ T8896] ? lock_chain_count+0x20/0x20 [ 2634.467868][ T8896] ? lock_chain_count+0x20/0x20 [ 2634.472751][ T8896] ? __cleanup_sighand+0xb0/0xb0 [ 2634.477727][ T8896] ? __lock_acquire+0x162f/0x54a0 [ 2634.482785][ T8896] ? kernel_clone+0x314/0xab0 [ 2634.487489][ T8896] kernel_clone+0xe7/0xab0 [ 2634.491944][ T8896] ? create_io_thread+0xf0/0xf0 [ 2634.496841][ T8896] ? find_held_lock+0x2d/0x110 [ 2634.501647][ T8896] __do_sys_fork+0x8a/0xc0 [ 2634.506090][ T8896] ? kernel_thread+0xf0/0xf0 [ 2634.510721][ T8896] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2634.517338][ T8896] ? lockdep_hardirqs_on+0x79/0x100 [ 2634.522567][ T8896] __do_fast_syscall_32+0x65/0xf0 [ 2634.527616][ T8896] do_fast_syscall_32+0x2f/0x70 [ 2634.532481][ T8896] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2634.538828][ T8896] RIP: 0023:0xf7f78549 [ 2634.542912][ T8896] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2634.562538][ T8896] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2634.570976][ T8896] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2634.579102][ T8896] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2634.587211][ T8896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:35 executing program 4: waitid(0x0, 0x0, 0xfffffffffffffffe, 0x98a3bddc832b929f, 0x0) [ 2634.595205][ T8896] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2634.603198][ T8896] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:36 executing program 0 (fault-call:1 fault-nth:76): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:36 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, 0x1}, 0x3) ptrace$getsig(0x4202, r0, 0x0, &(0x7f0000000000)) 13:22:36 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x40010) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:36 executing program 4: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKGETSIZE64(r0, 0x80041272, &(0x7f0000000000)) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:36 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = inotify_init() inotify_rm_watch(r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) [ 2635.084615][ T8935] FAULT_INJECTION: forcing a failure. [ 2635.084615][ T8935] name failslab, interval 1, probability 0, space 0, times 0 [ 2635.140328][ T8935] CPU: 1 PID: 8935 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2635.148719][ T8935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2635.158801][ T8935] Call Trace: [ 2635.162104][ T8935] dump_stack_lvl+0xcd/0x134 [ 2635.166734][ T8935] should_fail.cold+0x5/0xa [ 2635.171272][ T8935] ? vm_area_alloc+0x110/0x110 [ 2635.176073][ T8935] ? anon_vma_clone+0xe0/0x5f0 [ 2635.180865][ T8935] should_failslab+0x5/0x10 [ 2635.185394][ T8935] kmem_cache_alloc+0x5e/0x4a0 13:22:36 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 2635.190188][ T8935] anon_vma_clone+0xe0/0x5f0 [ 2635.194837][ T8935] anon_vma_fork+0x82/0x630 [ 2635.199368][ T8935] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2635.205112][ T8935] ? __vm_enough_memory+0x184/0x360 [ 2635.210347][ T8935] dup_mm+0x9a0/0x1380 [ 2635.214461][ T8935] ? vm_area_dup+0x2b0/0x2b0 [ 2635.219085][ T8935] ? __raw_spin_lock_init+0x36/0x110 [ 2635.224411][ T8935] copy_process+0x71e0/0x74c0 [ 2635.229126][ T8935] ? lock_chain_count+0x20/0x20 [ 2635.234011][ T8935] ? lock_chain_count+0x20/0x20 [ 2635.238902][ T8935] ? __cleanup_sighand+0xb0/0xb0 [ 2635.243883][ T8935] ? __lock_acquire+0x162f/0x54a0 [ 2635.248938][ T8935] ? kernel_clone+0x314/0xab0 [ 2635.253731][ T8935] kernel_clone+0xe7/0xab0 [ 2635.258182][ T8935] ? create_io_thread+0xf0/0xf0 [ 2635.263064][ T8935] ? find_held_lock+0x2d/0x110 [ 2635.267865][ T8935] __do_sys_fork+0x8a/0xc0 [ 2635.272310][ T8935] ? kernel_thread+0xf0/0xf0 [ 2635.276953][ T8935] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2635.283582][ T8935] ? lockdep_hardirqs_on+0x79/0x100 13:22:36 executing program 3: getpgid(0x0) wait4(0xffffffffffffffff, 0x0, 0x4, 0x0) [ 2635.288814][ T8935] __do_fast_syscall_32+0x65/0xf0 [ 2635.293864][ T8935] do_fast_syscall_32+0x2f/0x70 [ 2635.298751][ T8935] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2635.305114][ T8935] RIP: 0023:0xf7f78549 [ 2635.309198][ T8935] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2635.328827][ T8935] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2635.337268][ T8935] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2635.345263][ T8935] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2635.353258][ T8935] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2635.361254][ T8935] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2635.369278][ T8935] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:36 executing program 1: fork() r0 = fork() getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = fork() wait4(r1, &(0x7f0000000000), 0x4, &(0x7f0000000100)) r2 = fork() getpgid(r2) sched_setattr(r2, &(0x7f00000000c0)={0x38, 0x2, 0x2, 0xc4df, 0x8002, 0x100, 0x800, 0x100, 0xcc, 0xffeffffe}, 0x0) 13:22:36 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) fork() 13:22:36 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:36 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x40000, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdc00, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8880}, 0x80) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000040)={0x7, 0xab17}) 13:22:36 executing program 0 (fault-call:1 fault-nth:77): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:36 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:36 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x503000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x44880) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r0, 0xc02064cc, &(0x7f0000000040)) r2 = fork() wait4(r2, 0x0, 0x2, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x8, &(0x7f0000000080)=""/83) 13:22:36 executing program 5: r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x8001, &(0x7f0000000000)=""/31) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) accept4$phonet_pipe(r1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000080)={0x10000, &(0x7f0000000040), 0x2, r1, 0xa}) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0xfffff001, &(0x7f0000000140)=""/160) fork() [ 2635.775740][ T8966] FAULT_INJECTION: forcing a failure. [ 2635.775740][ T8966] name failslab, interval 1, probability 0, space 0, times 0 [ 2635.834356][ T8966] CPU: 1 PID: 8966 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2635.842745][ T8966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2635.852824][ T8966] Call Trace: [ 2635.856136][ T8966] dump_stack_lvl+0xcd/0x134 [ 2635.860786][ T8966] should_fail.cold+0x5/0xa [ 2635.865326][ T8966] ? anon_vma_fork+0x1df/0x630 [ 2635.870124][ T8966] should_failslab+0x5/0x10 [ 2635.874659][ T8966] kmem_cache_alloc+0x5e/0x4a0 [ 2635.879456][ T8966] anon_vma_fork+0x1df/0x630 [ 2635.884090][ T8966] dup_mm+0x9a0/0x1380 [ 2635.888201][ T8966] ? vm_area_dup+0x2b0/0x2b0 [ 2635.892825][ T8966] ? __raw_spin_lock_init+0x36/0x110 [ 2635.898152][ T8966] copy_process+0x71e0/0x74c0 [ 2635.902860][ T8966] ? lock_chain_count+0x20/0x20 [ 2635.907739][ T8966] ? lock_chain_count+0x20/0x20 [ 2635.912631][ T8966] ? __cleanup_sighand+0xb0/0xb0 [ 2635.917638][ T8966] ? __lock_acquire+0x162f/0x54a0 [ 2635.917679][ T8966] ? kernel_clone+0x314/0xab0 [ 2635.917715][ T8966] kernel_clone+0xe7/0xab0 [ 2635.917746][ T8966] ? create_io_thread+0xf0/0xf0 13:22:37 executing program 4: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKGETSIZE64(r0, 0x80041272, &(0x7f0000000000)) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:37 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 2635.917788][ T8966] ? find_held_lock+0x2d/0x110 13:22:37 executing program 0 (fault-call:1 fault-nth:78): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2635.917862][ T8966] __do_sys_fork+0x8a/0xc0 [ 2635.917896][ T8966] ? kernel_thread+0xf0/0xf0 13:22:37 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 2635.917941][ T8966] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2635.917979][ T8966] ? lockdep_hardirqs_on+0x79/0x100 [ 2635.918010][ T8966] __do_fast_syscall_32+0x65/0xf0 [ 2635.918036][ T8966] do_fast_syscall_32+0x2f/0x70 [ 2635.918064][ T8966] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2635.918092][ T8966] RIP: 0023:0xf7f78549 [ 2635.918112][ T8966] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2635.918140][ T8966] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2635.918165][ T8966] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2635.918183][ T8966] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2635.918200][ T8966] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2635.918218][ T8966] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2635.918235][ T8966] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2636.204764][ T8985] FAULT_INJECTION: forcing a failure. [ 2636.204764][ T8985] name failslab, interval 1, probability 0, space 0, times 0 [ 2636.205773][ T8985] CPU: 0 PID: 8985 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2636.205804][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2636.205822][ T8985] Call Trace: [ 2636.205834][ T8985] dump_stack_lvl+0xcd/0x134 [ 2636.205875][ T8985] should_fail.cold+0x5/0xa [ 2636.205908][ T8985] ? ptlock_alloc+0x1d/0x70 [ 2636.205937][ T8985] should_failslab+0x5/0x10 [ 2636.205973][ T8985] kmem_cache_alloc+0x5e/0x4a0 [ 2636.206012][ T8985] ptlock_alloc+0x1d/0x70 [ 2636.206042][ T8985] pte_alloc_one+0x68/0x230 [ 2636.206075][ T8985] __pte_alloc+0x1f/0x2d0 [ 2636.206118][ T8985] copy_page_range+0x18c1/0x4010 [ 2636.206189][ T8985] ? up_write+0x191/0x560 13:22:37 executing program 1: r0 = fork() r1 = getpgid(r0) waitid(0x0, r1, &(0x7f0000000000), 0x8, &(0x7f0000000080)) r2 = fork() getpgid(r2) r3 = fork() getpgid(r3) wait4(r3, 0x0, 0x80000000, 0x0) fork() 13:22:37 executing program 0 (fault-call:1 fault-nth:79): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:37 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 2636.206221][ T8985] ? handle_mm_fault+0x7f0/0x7f0 [ 2636.206250][ T8985] ? downgrade_write+0x3a0/0x3a0 [ 2636.206280][ T8985] ? down_write_killable_nested+0x180/0x180 [ 2636.206329][ T8985] ? __vma_link_rb+0x553/0x710 [ 2636.206367][ T8985] dup_mm+0x9e7/0x1380 [ 2636.206412][ T8985] ? vm_area_dup+0x2b0/0x2b0 [ 2636.206446][ T8985] ? __raw_spin_lock_init+0x36/0x110 [ 2636.206481][ T8985] copy_process+0x71e0/0x74c0 [ 2636.206518][ T8985] ? lock_chain_count+0x20/0x20 13:22:37 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:37 executing program 0 (fault-call:1 fault-nth:80): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2636.206541][ T8985] ? lock_chain_count+0x20/0x20 [ 2636.206580][ T8985] ? __cleanup_sighand+0xb0/0xb0 13:22:38 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) accept4$tipc(r0, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x80800) wait4(0x0, 0x0, 0x4, 0x0) [ 2636.206615][ T8985] ? __lock_acquire+0x162f/0x54a0 [ 2636.206648][ T8985] ? kernel_clone+0x314/0xab0 [ 2636.206680][ T8985] kernel_clone+0xe7/0xab0 [ 2636.206715][ T8985] ? create_io_thread+0xf0/0xf0 [ 2636.206758][ T8985] ? find_held_lock+0x2d/0x110 13:22:38 executing program 0 (fault-call:1 fault-nth:81): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2636.206798][ T8985] __do_sys_fork+0x8a/0xc0 [ 2636.206827][ T8985] ? kernel_thread+0xf0/0xf0 [ 2636.206871][ T8985] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2636.206907][ T8985] ? lockdep_hardirqs_on+0x79/0x100 [ 2636.206938][ T8985] __do_fast_syscall_32+0x65/0xf0 [ 2636.206967][ T8985] do_fast_syscall_32+0x2f/0x70 [ 2636.206995][ T8985] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2636.207025][ T8985] RIP: 0023:0xf7f78549 [ 2636.207046][ T8985] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2636.207073][ T8985] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2636.207100][ T8985] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2636.207119][ T8985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2636.207136][ T8985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2636.207154][ T8985] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2636.207172][ T8985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2636.662296][ T8997] FAULT_INJECTION: forcing a failure. [ 2636.662296][ T8997] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2636.662339][ T8997] CPU: 0 PID: 8997 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2636.662367][ T8997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2636.662384][ T8997] Call Trace: [ 2636.662395][ T8997] dump_stack_lvl+0xcd/0x134 [ 2636.662435][ T8997] should_fail.cold+0x5/0xa [ 2636.662470][ T8997] prepare_alloc_pages+0x17b/0x580 [ 2636.662512][ T8997] __alloc_pages+0x12f/0x500 [ 2636.662545][ T8997] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2636.662603][ T8997] alloc_pages+0x18c/0x2a0 [ 2636.662636][ T8997] pte_alloc_one+0x16/0x230 [ 2636.662666][ T8997] __pte_alloc+0x1f/0x2d0 [ 2636.662698][ T8997] copy_page_range+0x18c1/0x4010 [ 2636.662764][ T8997] ? up_write+0x191/0x560 [ 2636.662797][ T8997] ? handle_mm_fault+0x7f0/0x7f0 [ 2636.662827][ T8997] ? downgrade_write+0x3a0/0x3a0 [ 2636.662857][ T8997] ? down_write_killable_nested+0x180/0x180 [ 2636.662902][ T8997] ? __vma_link_rb+0x553/0x710 [ 2636.662941][ T8997] dup_mm+0x9e7/0x1380 [ 2636.662984][ T8997] ? vm_area_dup+0x2b0/0x2b0 [ 2636.663016][ T8997] ? __raw_spin_lock_init+0x36/0x110 [ 2636.663050][ T8997] copy_process+0x71e0/0x74c0 [ 2636.663082][ T8997] ? lock_chain_count+0x20/0x20 [ 2636.663105][ T8997] ? lock_chain_count+0x20/0x20 [ 2636.663148][ T8997] ? __cleanup_sighand+0xb0/0xb0 [ 2636.663185][ T8997] ? __lock_acquire+0x162f/0x54a0 [ 2636.663217][ T8997] ? kernel_clone+0x314/0xab0 [ 2636.663249][ T8997] kernel_clone+0xe7/0xab0 [ 2636.663291][ T8997] ? create_io_thread+0xf0/0xf0 [ 2636.663336][ T8997] ? find_held_lock+0x2d/0x110 [ 2636.663377][ T8997] __do_sys_fork+0x8a/0xc0 [ 2636.663408][ T8997] ? kernel_thread+0xf0/0xf0 [ 2636.663455][ T8997] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2636.663490][ T8997] ? lockdep_hardirqs_on+0x79/0x100 [ 2636.663522][ T8997] __do_fast_syscall_32+0x65/0xf0 [ 2636.663551][ T8997] do_fast_syscall_32+0x2f/0x70 [ 2636.663580][ T8997] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2636.663609][ T8997] RIP: 0023:0xf7f78549 [ 2636.663631][ T8997] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2636.663658][ T8997] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2636.663686][ T8997] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2636.663705][ T8997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2636.663721][ T8997] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2636.663736][ T8997] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2636.663752][ T8997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2636.883627][ T9010] FAULT_INJECTION: forcing a failure. [ 2636.883627][ T9010] name failslab, interval 1, probability 0, space 0, times 0 [ 2636.883669][ T9010] CPU: 0 PID: 9010 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2636.883695][ T9010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2636.883712][ T9010] Call Trace: [ 2636.883723][ T9010] dump_stack_lvl+0xcd/0x134 [ 2636.883761][ T9010] should_fail.cold+0x5/0xa [ 2636.883792][ T9010] ? ptlock_alloc+0x1d/0x70 [ 2636.883821][ T9010] should_failslab+0x5/0x10 [ 2636.883848][ T9010] kmem_cache_alloc+0x5e/0x4a0 [ 2636.883880][ T9010] ptlock_alloc+0x1d/0x70 [ 2636.883930][ T9010] pte_alloc_one+0x68/0x230 [ 2636.883958][ T9010] __pte_alloc+0x1f/0x2d0 [ 2636.883989][ T9010] copy_page_range+0x18c1/0x4010 [ 2636.884061][ T9010] ? up_write+0x191/0x560 [ 2636.884091][ T9010] ? handle_mm_fault+0x7f0/0x7f0 [ 2636.884118][ T9010] ? downgrade_write+0x3a0/0x3a0 [ 2636.884145][ T9010] ? down_write_killable_nested+0x180/0x180 [ 2636.884198][ T9010] ? __vma_link_rb+0x553/0x710 [ 2636.884238][ T9010] dup_mm+0x9e7/0x1380 [ 2636.884285][ T9010] ? vm_area_dup+0x2b0/0x2b0 [ 2636.884319][ T9010] ? __raw_spin_lock_init+0x36/0x110 [ 2636.884353][ T9010] copy_process+0x71e0/0x74c0 [ 2636.884385][ T9010] ? lock_chain_count+0x20/0x20 [ 2636.884408][ T9010] ? lock_chain_count+0x20/0x20 [ 2636.884452][ T9010] ? __cleanup_sighand+0xb0/0xb0 [ 2636.884489][ T9010] ? __lock_acquire+0x162f/0x54a0 [ 2636.884521][ T9010] ? kernel_clone+0x314/0xab0 [ 2636.884554][ T9010] kernel_clone+0xe7/0xab0 [ 2636.884587][ T9010] ? create_io_thread+0xf0/0xf0 [ 2636.884630][ T9010] ? find_held_lock+0x2d/0x110 [ 2636.884668][ T9010] __do_sys_fork+0x8a/0xc0 [ 2636.884698][ T9010] ? kernel_thread+0xf0/0xf0 [ 2636.884744][ T9010] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2636.884779][ T9010] ? lockdep_hardirqs_on+0x79/0x100 [ 2636.884810][ T9010] __do_fast_syscall_32+0x65/0xf0 [ 2636.884839][ T9010] do_fast_syscall_32+0x2f/0x70 [ 2636.884867][ T9010] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2636.884895][ T9010] RIP: 0023:0xf7f78549 [ 2636.884917][ T9010] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2636.884944][ T9010] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2636.884973][ T9010] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2636.885005][ T9010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2636.885022][ T9010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2636.885039][ T9010] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2636.885056][ T9010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2637.112492][ T9018] FAULT_INJECTION: forcing a failure. [ 2637.112492][ T9018] name failslab, interval 1, probability 0, space 0, times 0 [ 2637.112527][ T9018] CPU: 1 PID: 9018 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2637.112549][ T9018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2637.112562][ T9018] Call Trace: [ 2637.112571][ T9018] dump_stack_lvl+0xcd/0x134 [ 2637.112607][ T9018] should_fail.cold+0x5/0xa [ 2637.112636][ T9018] ? anon_vma_clone+0xe0/0x5f0 [ 2637.112685][ T9018] should_failslab+0x5/0x10 [ 2637.112709][ T9018] kmem_cache_alloc+0x5e/0x4a0 [ 2637.112739][ T9018] anon_vma_clone+0xe0/0x5f0 [ 2637.112769][ T9018] anon_vma_fork+0x82/0x630 [ 2637.112790][ T9018] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2637.112811][ T9018] ? __vm_enough_memory+0x184/0x360 [ 2637.112836][ T9018] dup_mm+0x9a0/0x1380 [ 2637.112869][ T9018] ? vm_area_dup+0x2b0/0x2b0 [ 2637.112893][ T9018] ? __raw_spin_lock_init+0x36/0x110 [ 2637.112921][ T9018] copy_process+0x71e0/0x74c0 [ 2637.112951][ T9018] ? lock_chain_count+0x20/0x20 [ 2637.112974][ T9018] ? lock_chain_count+0x20/0x20 [ 2637.113015][ T9018] ? __cleanup_sighand+0xb0/0xb0 [ 2637.113049][ T9018] ? __lock_acquire+0x162f/0x54a0 [ 2637.113078][ T9018] ? kernel_clone+0x314/0xab0 [ 2637.113108][ T9018] kernel_clone+0xe7/0xab0 [ 2637.113139][ T9018] ? create_io_thread+0xf0/0xf0 [ 2637.113178][ T9018] ? find_held_lock+0x2d/0x110 [ 2637.113215][ T9018] __do_sys_fork+0x8a/0xc0 [ 2637.113245][ T9018] ? kernel_thread+0xf0/0xf0 [ 2637.113287][ T9018] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2637.113322][ T9018] ? lockdep_hardirqs_on+0x79/0x100 [ 2637.113352][ T9018] __do_fast_syscall_32+0x65/0xf0 [ 2637.113381][ T9018] do_fast_syscall_32+0x2f/0x70 [ 2637.113407][ T9018] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2637.113431][ T9018] RIP: 0023:0xf7f78549 [ 2637.113449][ T9018] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2637.113473][ T9018] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2637.113498][ T9018] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2637.113514][ T9018] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2637.113530][ T9018] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:39 executing program 4: fork() r0 = fork() getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = fork() wait4(r1, &(0x7f0000000000), 0x4, &(0x7f0000000100)) r2 = fork() getpgid(r2) sched_setattr(r2, &(0x7f00000000c0)={0x38, 0x2, 0x2, 0xc4df, 0x8002, 0x100, 0x800, 0x100, 0xcc, 0xffeffffe}, 0x0) 13:22:39 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:39 executing program 0 (fault-call:1 fault-nth:82): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2637.113546][ T9018] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2637.113561][ T9018] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:39 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) write$usbip_server(0xffffffffffffffff, &(0x7f0000000000)=@ret_unlink={{0x4, 0x6, 0x0, 0x1, 0x3}, {0x6}}, 0x30) r0 = fork() getpgid(r0) io_uring_setup(0x1246, &(0x7f0000000140)={0x0, 0x0, 0x4}) wait4(r0, 0x0, 0x8, &(0x7f0000000040)) 13:22:39 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f0000000000)={0x1, @pix={0xc3, 0x3ff, 0x4c314356, 0x6, 0xffff, 0x5, 0x2, 0x80, 0x0, 0x6, 0x2a8128288d1f9b, 0x2}}) 13:22:39 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:39 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) read$eventfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, r0, &(0x7f0000000000), 0x0, 0x0, 0x800}, 0x2) ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f0000000080)={0x3}) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000000) fork() syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0) [ 2638.269415][ T9037] FAULT_INJECTION: forcing a failure. [ 2638.269415][ T9037] name failslab, interval 1, probability 0, space 0, times 0 [ 2638.345315][ T9037] CPU: 1 PID: 9037 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2638.353695][ T9037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2638.363810][ T9037] Call Trace: [ 2638.367109][ T9037] dump_stack_lvl+0xcd/0x134 [ 2638.371737][ T9037] should_fail.cold+0x5/0xa [ 2638.376294][ T9037] ? anon_vma_clone+0xe0/0x5f0 [ 2638.381092][ T9037] should_failslab+0x5/0x10 [ 2638.385631][ T9037] kmem_cache_alloc+0x5e/0x4a0 [ 2638.390438][ T9037] anon_vma_clone+0xe0/0x5f0 [ 2638.395070][ T9037] anon_vma_fork+0x82/0x630 [ 2638.399596][ T9037] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2638.405431][ T9037] ? __vm_enough_memory+0x184/0x360 [ 2638.410663][ T9037] dup_mm+0x9a0/0x1380 [ 2638.414782][ T9037] ? vm_area_dup+0x2b0/0x2b0 [ 2638.419669][ T9037] ? __raw_spin_lock_init+0x36/0x110 [ 2638.425006][ T9037] copy_process+0x71e0/0x74c0 [ 2638.429736][ T9037] ? lock_chain_count+0x20/0x20 [ 2638.434619][ T9037] ? lock_chain_count+0x20/0x20 [ 2638.439525][ T9037] ? __cleanup_sighand+0xb0/0xb0 [ 2638.444500][ T9037] ? __lock_acquire+0x162f/0x54a0 [ 2638.449731][ T9037] ? kernel_clone+0x314/0xab0 [ 2638.454443][ T9037] kernel_clone+0xe7/0xab0 [ 2638.458895][ T9037] ? create_io_thread+0xf0/0xf0 [ 2638.463782][ T9037] ? find_held_lock+0x2d/0x110 [ 2638.468580][ T9037] __do_sys_fork+0x8a/0xc0 [ 2638.473022][ T9037] ? kernel_thread+0xf0/0xf0 [ 2638.477648][ T9037] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2638.484264][ T9037] ? lockdep_hardirqs_on+0x79/0x100 [ 2638.489489][ T9037] __do_fast_syscall_32+0x65/0xf0 [ 2638.494663][ T9037] do_fast_syscall_32+0x2f/0x70 [ 2638.499541][ T9037] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2638.505896][ T9037] RIP: 0023:0xf7f78549 [ 2638.509986][ T9037] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2638.529705][ T9037] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2638.538247][ T9037] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:39 executing program 5: socketpair(0x1f, 0x80000, 0x81, &(0x7f0000000440)={0xffffffffffffffff}) r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="081f00000000000000250000000004000000000400050000002e00000029a70a000900aaaaaaaaaadb00"/51], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x4018000) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2638.546347][ T9037] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2638.554345][ T9037] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2638.562334][ T9037] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2638.570327][ T9037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:39 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:22:39 executing program 0 (fault-call:1 fault-nth:83): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:40 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) ioctl$I2C_SLAVE_FORCE(0xffffffffffffffff, 0x706, 0x130) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) wait4(0x0, &(0x7f0000000000), 0x20000000, &(0x7f0000000040)) syz_open_dev$vim2m(&(0x7f0000000200), 0x0, 0x2) [ 2638.848989][ T9061] FAULT_INJECTION: forcing a failure. [ 2638.848989][ T9061] name failslab, interval 1, probability 0, space 0, times 0 [ 2638.905311][ T9061] CPU: 1 PID: 9061 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2638.913699][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2638.923870][ T9061] Call Trace: [ 2638.927171][ T9061] dump_stack_lvl+0xcd/0x134 [ 2638.931797][ T9061] should_fail.cold+0x5/0xa [ 2638.936333][ T9061] ? anon_vma_clone+0xe0/0x5f0 [ 2638.941130][ T9061] should_failslab+0x5/0x10 [ 2638.945657][ T9061] kmem_cache_alloc+0x5e/0x4a0 [ 2638.950453][ T9061] anon_vma_clone+0xe0/0x5f0 [ 2638.955091][ T9061] anon_vma_fork+0x82/0x630 [ 2638.959624][ T9061] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2638.965372][ T9061] ? __vm_enough_memory+0x184/0x360 [ 2638.970612][ T9061] dup_mm+0x9a0/0x1380 [ 2638.974734][ T9061] ? vm_area_dup+0x2b0/0x2b0 [ 2638.979461][ T9061] ? __raw_spin_lock_init+0x36/0x110 [ 2638.984819][ T9061] copy_process+0x71e0/0x74c0 [ 2638.989543][ T9061] ? lock_chain_count+0x20/0x20 [ 2638.994420][ T9061] ? lock_chain_count+0x20/0x20 [ 2638.999312][ T9061] ? __cleanup_sighand+0xb0/0xb0 13:22:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, 0x0, &(0x7f0000000180)) [ 2639.004282][ T9061] ? __lock_acquire+0x162f/0x54a0 [ 2639.009353][ T9061] ? kernel_clone+0x314/0xab0 [ 2639.014115][ T9061] kernel_clone+0xe7/0xab0 [ 2639.018557][ T9061] ? create_io_thread+0xf0/0xf0 [ 2639.023461][ T9061] ? find_held_lock+0x2d/0x110 [ 2639.028264][ T9061] __do_sys_fork+0x8a/0xc0 [ 2639.032734][ T9061] ? kernel_thread+0xf0/0xf0 [ 2639.037395][ T9061] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2639.044012][ T9061] ? lockdep_hardirqs_on+0x79/0x100 [ 2639.049334][ T9061] __do_fast_syscall_32+0x65/0xf0 [ 2639.054388][ T9061] do_fast_syscall_32+0x2f/0x70 [ 2639.059265][ T9061] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2639.065611][ T9061] RIP: 0023:0xf7f78549 [ 2639.069695][ T9061] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2639.089323][ T9061] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2639.097765][ T9061] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2639.105758][ T9061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2639.113746][ T9061] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2639.121738][ T9061] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2639.129730][ T9061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:40 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) read$eventfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, r0, &(0x7f0000000000), 0x0, 0x0, 0x800}, 0x2) ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f0000000080)={0x3}) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000000) fork() syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0) 13:22:40 executing program 3: r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x4, 0x0) 13:22:40 executing program 5: syz_io_uring_setup(0x7dd1, &(0x7f0000000000)={0x0, 0x1, 0x10, 0xffffffff, 0xffffffff}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:40 executing program 1: fork() r0 = fork() getpgid(r0) ptrace$getregs(0xe, r0, 0x383, &(0x7f0000000100)=""/115) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, r3, 0x100, 0x70bd28, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x7fff, @media='eth\x00'}}}, [""]}, 0x68}}, 0x0) r4 = fork() r5 = fork() getpgid(r5) waitid(0x2, r5, &(0x7f0000000000), 0x1, &(0x7f0000000080)) getpgid(r4) getpgid(r4) 13:22:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, 0x0, 0x0) 13:22:40 executing program 0 (fault-call:1 fault-nth:84): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:40 executing program 3: fork() r0 = fork() getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = fork() wait4(r1, &(0x7f0000000000), 0x4, &(0x7f0000000100)) r2 = fork() getpgid(r2) sched_setattr(r2, &(0x7f00000000c0)={0x38, 0x2, 0x2, 0xc4df, 0x8002, 0x100, 0x800, 0x100, 0xcc, 0xffeffffe}, 0x0) 13:22:40 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) getsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 2639.446305][ T9090] FAULT_INJECTION: forcing a failure. [ 2639.446305][ T9090] name fail_page_alloc, interval 1, probability 0, space 0, times 0 13:22:40 executing program 5: r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x0) getpeername$tipc(r0, &(0x7f0000000080)=@id, &(0x7f00000000c0)=0x10) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2639.544295][ T9090] CPU: 0 PID: 9090 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2639.552692][ T9090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2639.562771][ T9090] Call Trace: [ 2639.566069][ T9090] dump_stack_lvl+0xcd/0x134 [ 2639.570695][ T9090] should_fail.cold+0x5/0xa [ 2639.575239][ T9090] prepare_alloc_pages+0x17b/0x580 [ 2639.580383][ T9090] ? mark_lock+0xef/0x17b0 [ 2639.584833][ T9090] __alloc_pages+0x12f/0x500 [ 2639.589466][ T9090] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2639.596306][ T9090] alloc_pages+0x18c/0x2a0 [ 2639.600753][ T9090] allocate_slab+0x32b/0x4c0 [ 2639.605373][ T9090] ___slab_alloc+0x4ba/0x820 [ 2639.610077][ T9090] ? vm_area_dup+0x88/0x2b0 [ 2639.614609][ T9090] ? fs_reclaim_release+0x9c/0xf0 [ 2639.619656][ T9090] ? __slab_alloc.constprop.0+0x7b/0xf0 [ 2639.625238][ T9090] ? vm_area_dup+0x88/0x2b0 [ 2639.629765][ T9090] ? __slab_alloc.constprop.0+0xa7/0xf0 [ 2639.635333][ T9090] __slab_alloc.constprop.0+0xa7/0xf0 [ 2639.640738][ T9090] ? vm_area_dup+0x88/0x2b0 [ 2639.645269][ T9090] kmem_cache_alloc+0x3cd/0x4a0 [ 2639.650153][ T9090] vm_area_dup+0x88/0x2b0 [ 2639.654533][ T9090] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2639.660802][ T9090] ? copy_page_range+0x24ed/0x4010 [ 2639.665971][ T9090] ? vm_area_alloc+0x110/0x110 [ 2639.670769][ T9090] ? up_write+0x191/0x560 [ 2639.675224][ T9090] ? handle_mm_fault+0x7f0/0x7f0 [ 2639.680187][ T9090] ? downgrade_write+0x3a0/0x3a0 [ 2639.685147][ T9090] ? down_write_killable_nested+0x180/0x180 [ 2639.691077][ T9090] ? __vma_link_rb+0x553/0x710 [ 2639.695876][ T9090] dup_mm+0x543/0x1380 [ 2639.700070][ T9090] ? vm_area_dup+0x2b0/0x2b0 [ 2639.704693][ T9090] ? __raw_spin_lock_init+0x36/0x110 [ 2639.710010][ T9090] copy_process+0x71e0/0x74c0 [ 2639.714720][ T9090] ? lock_chain_count+0x20/0x20 [ 2639.719592][ T9090] ? lock_chain_count+0x20/0x20 [ 2639.724488][ T9090] ? __cleanup_sighand+0xb0/0xb0 [ 2639.729467][ T9090] ? __lock_acquire+0x162f/0x54a0 [ 2639.734521][ T9090] ? kernel_clone+0x314/0xab0 [ 2639.739578][ T9090] kernel_clone+0xe7/0xab0 [ 2639.744028][ T9090] ? create_io_thread+0xf0/0xf0 [ 2639.749007][ T9090] ? find_held_lock+0x2d/0x110 [ 2639.753888][ T9090] __do_sys_fork+0x8a/0xc0 [ 2639.758332][ T9090] ? kernel_thread+0xf0/0xf0 [ 2639.762982][ T9090] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2639.769644][ T9090] ? lockdep_hardirqs_on+0x79/0x100 [ 2639.774875][ T9090] __do_fast_syscall_32+0x65/0xf0 [ 2639.779931][ T9090] do_fast_syscall_32+0x2f/0x70 [ 2639.784820][ T9090] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2639.791170][ T9090] RIP: 0023:0xf7f78549 [ 2639.795261][ T9090] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2639.814891][ T9090] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2639.823334][ T9090] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2639.831334][ T9090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 13:22:41 executing program 4: ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, &(0x7f0000000100)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x6, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f00000001c0)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0], 0x8, 0x4, 0x4, 0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f0000000340)={&(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x2, 0x3, 0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x4}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, &(0x7f0000000400)={&(0x7f0000000040)=[r0, 0x0, 0x0, 0x0], &(0x7f0000000440)=[r1, r2, 0x0, r3, 0x0, r4, r5], 0x4}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2639.839526][ T9090] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2639.847525][ T9090] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2639.855521][ T9090] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:41 executing program 2: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0xaaf51b24fb114fd5, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:41 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x1aa5, &(0x7f0000000000)={0x0, 0x1278, 0x8, 0x2, 0xcb, 0x0, r0}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)="8179a92a781f707df32187ef3159ec3f572ae0742fe93d9088d2e5fa7f", 0x1d, 0x2000}, 0xbb2d) getsockname(0xffffffffffffffff, &(0x7f0000000180)=@ipx, &(0x7f0000000200)=0x80) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r3, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x1f}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x40) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_HARDIF(r4, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x28008000) 13:22:41 executing program 0 (fault-call:1 fault-nth:85): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:41 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x200000, 0x0) r2 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$cgroup_int(r0, &(0x7f0000000140)='cpu.weight\x00', 0x2, 0x0) ioctl$BLKGETSIZE64(r2, 0xc020660b, 0x0) r3 = openat$cgroup_root(0xffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_int(r3, &(0x7f00000001c0)='hugetlb.2MB.max_usage_in_bytes\x00', 0x2, 0x0) accept4$phonet_pipe(r1, &(0x7f0000000040), &(0x7f00000000c0)=0x10, 0x80000) syz_io_uring_setup(0x2742, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x80000, 0x255}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:41 executing program 4: r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x100, 0x70bd2a, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xfffffffa}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8001}, 0x1) [ 2640.359008][ T9133] FAULT_INJECTION: forcing a failure. [ 2640.359008][ T9133] name failslab, interval 1, probability 0, space 0, times 0 [ 2640.442757][ T9133] CPU: 0 PID: 9133 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2640.451235][ T9133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2640.461312][ T9133] Call Trace: [ 2640.464622][ T9133] dump_stack_lvl+0xcd/0x134 [ 2640.469250][ T9133] should_fail.cold+0x5/0xa [ 2640.473787][ T9133] ? ptlock_alloc+0x1d/0x70 [ 2640.478326][ T9133] should_failslab+0x5/0x10 [ 2640.482855][ T9133] kmem_cache_alloc+0x5e/0x4a0 [ 2640.487650][ T9133] ptlock_alloc+0x1d/0x70 [ 2640.492007][ T9133] pte_alloc_one+0x68/0x230 [ 2640.496532][ T9133] __pte_alloc+0x1f/0x2d0 [ 2640.500887][ T9133] copy_page_range+0x18c1/0x4010 [ 2640.505892][ T9133] ? up_write+0x191/0x560 [ 2640.510253][ T9133] ? handle_mm_fault+0x7f0/0x7f0 [ 2640.515215][ T9133] ? downgrade_write+0x3a0/0x3a0 [ 2640.520178][ T9133] ? down_write_killable_nested+0x180/0x180 [ 2640.526116][ T9133] ? __vma_link_rb+0x553/0x710 [ 2640.530914][ T9133] dup_mm+0x9e7/0x1380 [ 2640.535017][ T9133] ? vm_area_dup+0x2b0/0x2b0 [ 2640.539636][ T9133] ? __raw_spin_lock_init+0x36/0x110 [ 2640.544954][ T9133] copy_process+0x71e0/0x74c0 [ 2640.549658][ T9133] ? lock_chain_count+0x20/0x20 [ 2640.554625][ T9133] ? lock_chain_count+0x20/0x20 [ 2640.559524][ T9133] ? __cleanup_sighand+0xb0/0xb0 [ 2640.564496][ T9133] ? __lock_acquire+0x162f/0x54a0 [ 2640.569555][ T9133] ? kernel_clone+0x314/0xab0 [ 2640.574316][ T9133] kernel_clone+0xe7/0xab0 [ 2640.578758][ T9133] ? create_io_thread+0xf0/0xf0 [ 2640.583648][ T9133] ? find_held_lock+0x2d/0x110 [ 2640.588439][ T9133] __do_sys_fork+0x8a/0xc0 [ 2640.592870][ T9133] ? kernel_thread+0xf0/0xf0 [ 2640.597490][ T9133] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2640.604089][ T9133] ? lockdep_hardirqs_on+0x79/0x100 [ 2640.609310][ T9133] __do_fast_syscall_32+0x65/0xf0 [ 2640.614326][ T9133] do_fast_syscall_32+0x2f/0x70 [ 2640.619167][ T9133] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2640.625499][ T9133] RIP: 0023:0xf7f78549 [ 2640.629580][ T9133] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2640.649180][ T9133] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2640.657579][ T9133] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2640.665550][ T9133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2640.673621][ T9133] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2640.681582][ T9133] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:41 executing program 1: r0 = fork() r1 = getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0xff, &(0x7f0000000000)=""/251) r2 = fork() getpgid(r2) wait4(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000140)) r3 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x4d, &(0x7f0000000100)=""/5) getpgid(r0) wait4(r3, 0x0, 0x2, 0x0) 13:22:41 executing program 2: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0xaaf51b24fb114fd5, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:41 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0x1, r0, &(0x7f0000000000), 0x20000000, &(0x7f0000000080)) 13:22:41 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:41 executing program 5: r0 = syz_io_uring_setup(0x45b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x329}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = fork() r2 = getpgid(r1) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r3) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000)=r3, 0x1) r4 = eventfd2(0x5, 0x1) read$eventfd(r4, &(0x7f0000000040), 0x8) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x9, &(0x7f00000000c0)=""/136) [ 2640.689553][ T9133] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:42 executing program 0 (fault-call:1 fault-nth:86): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:42 executing program 4: fork() r0 = fork() getpgid(r0) ptrace$getregs(0xe, r0, 0x383, &(0x7f0000000100)=""/115) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, r3, 0x100, 0x70bd28, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x7fff, @media='eth\x00'}}}, [""]}, 0x68}}, 0x0) r4 = fork() r5 = fork() getpgid(r5) waitid(0x2, r5, &(0x7f0000000000), 0x1, &(0x7f0000000080)) getpgid(r4) getpgid(r4) 13:22:42 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0x1, r0, &(0x7f0000000000), 0x20000000, &(0x7f0000000080)) 13:22:42 executing program 2: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() getpgid(r0) waitid(0xaaf51b24fb114fd5, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) [ 2641.036459][ T9170] FAULT_INJECTION: forcing a failure. [ 2641.036459][ T9170] name failslab, interval 1, probability 0, space 0, times 0 [ 2641.148014][ T9170] CPU: 0 PID: 9170 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2641.156398][ T9170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2641.166473][ T9170] Call Trace: [ 2641.169773][ T9170] dump_stack_lvl+0xcd/0x134 [ 2641.174404][ T9170] should_fail.cold+0x5/0xa [ 2641.178938][ T9170] ? anon_vma_clone+0xe0/0x5f0 [ 2641.183724][ T9170] should_failslab+0x5/0x10 [ 2641.188270][ T9170] kmem_cache_alloc+0x5e/0x4a0 [ 2641.193071][ T9170] anon_vma_clone+0xe0/0x5f0 [ 2641.197694][ T9170] anon_vma_fork+0x82/0x630 [ 2641.202303][ T9170] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2641.208211][ T9170] ? __vm_enough_memory+0x184/0x360 [ 2641.213547][ T9170] dup_mm+0x9a0/0x1380 [ 2641.217654][ T9170] ? vm_area_dup+0x2b0/0x2b0 [ 2641.222273][ T9170] ? __raw_spin_lock_init+0x36/0x110 [ 2641.227586][ T9170] copy_process+0x71e0/0x74c0 [ 2641.232293][ T9170] ? lock_chain_count+0x20/0x20 [ 2641.237173][ T9170] ? lock_chain_count+0x20/0x20 [ 2641.242064][ T9170] ? __cleanup_sighand+0xb0/0xb0 [ 2641.247031][ T9170] ? __lock_acquire+0x162f/0x54a0 [ 2641.252083][ T9170] ? kernel_clone+0x314/0xab0 [ 2641.256801][ T9170] kernel_clone+0xe7/0xab0 [ 2641.261252][ T9170] ? create_io_thread+0xf0/0xf0 [ 2641.266309][ T9170] ? find_held_lock+0x2d/0x110 [ 2641.271132][ T9170] __do_sys_fork+0x8a/0xc0 [ 2641.275571][ T9170] ? kernel_thread+0xf0/0xf0 [ 2641.280205][ T9170] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2641.286830][ T9170] ? lockdep_hardirqs_on+0x79/0x100 [ 2641.292053][ T9170] __do_fast_syscall_32+0x65/0xf0 13:22:42 executing program 2: wait4(0x0, 0x0, 0x4, 0x0) r0 = fork() waitid(0xaaf51b24fb114fd5, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) [ 2641.297090][ T9170] do_fast_syscall_32+0x2f/0x70 [ 2641.302073][ T9170] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2641.308425][ T9170] RIP: 0023:0xf7f78549 [ 2641.312511][ T9170] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2641.332139][ T9170] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2641.340580][ T9170] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:42 executing program 5: fork() [ 2641.348579][ T9170] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2641.356569][ T9170] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2641.364561][ T9170] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2641.372548][ T9170] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:42 executing program 2: wait4(0x0, 0x0, 0x4, 0x0) waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:42 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() waitid(0x2, r0, 0x0, 0x20000001, 0x0) 13:22:42 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x200000, 0x0) r2 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$cgroup_int(r0, &(0x7f0000000140)='cpu.weight\x00', 0x2, 0x0) ioctl$BLKGETSIZE64(r2, 0xc020660b, 0x0) r3 = openat$cgroup_root(0xffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_int(r3, &(0x7f00000001c0)='hugetlb.2MB.max_usage_in_bytes\x00', 0x2, 0x0) accept4$phonet_pipe(r1, &(0x7f0000000040), &(0x7f00000000c0)=0x10, 0x80000) syz_io_uring_setup(0x2742, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x80000, 0x255}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:42 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:42 executing program 0 (fault-call:1 fault-nth:87): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:42 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, r0, 0x0, 0x0, 0x0, 0x40000043, 0x1, {0x1}}, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_MAX_PORTS(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x400, 0x70bd2c, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x1c}}, 0x40000) fork() [ 2641.801066][ T9205] FAULT_INJECTION: forcing a failure. [ 2641.801066][ T9205] name failslab, interval 1, probability 0, space 0, times 0 [ 2641.823929][ T9205] CPU: 0 PID: 9205 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2641.832304][ T9205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2641.842390][ T9205] Call Trace: [ 2641.845687][ T9205] dump_stack_lvl+0xcd/0x134 [ 2641.850325][ T9205] should_fail.cold+0x5/0xa [ 2641.854860][ T9205] ? anon_vma_fork+0xed/0x630 [ 2641.859562][ T9205] should_failslab+0x5/0x10 [ 2641.864086][ T9205] kmem_cache_alloc+0x5e/0x4a0 [ 2641.868877][ T9205] anon_vma_fork+0xed/0x630 [ 2641.873403][ T9205] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2641.879147][ T9205] ? __vm_enough_memory+0x184/0x360 [ 2641.884373][ T9205] dup_mm+0x9a0/0x1380 [ 2641.888483][ T9205] ? vm_area_dup+0x2b0/0x2b0 [ 2641.893100][ T9205] ? __raw_spin_lock_init+0x36/0x110 13:22:43 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) 13:22:43 executing program 2: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) [ 2641.898411][ T9205] copy_process+0x71e0/0x74c0 [ 2641.903118][ T9205] ? lock_chain_count+0x20/0x20 [ 2641.907987][ T9205] ? lock_chain_count+0x20/0x20 [ 2641.912886][ T9205] ? __cleanup_sighand+0xb0/0xb0 [ 2641.917861][ T9205] ? __lock_acquire+0x162f/0x54a0 [ 2641.922939][ T9205] ? kernel_clone+0x314/0xab0 [ 2641.927645][ T9205] kernel_clone+0xe7/0xab0 [ 2641.932098][ T9205] ? create_io_thread+0xf0/0xf0 [ 2641.936991][ T9205] ? find_held_lock+0x2d/0x110 [ 2641.941783][ T9205] __do_sys_fork+0x8a/0xc0 [ 2641.946218][ T9205] ? kernel_thread+0xf0/0xf0 [ 2641.950849][ T9205] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2641.957467][ T9205] ? lockdep_hardirqs_on+0x79/0x100 [ 2641.962698][ T9205] __do_fast_syscall_32+0x65/0xf0 [ 2641.967753][ T9205] do_fast_syscall_32+0x2f/0x70 [ 2641.972628][ T9205] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2641.978993][ T9205] RIP: 0023:0xf7f78549 [ 2641.983080][ T9205] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2642.002706][ T9205] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2642.011145][ T9205] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2642.019132][ T9205] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2642.027123][ T9205] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2642.035106][ T9205] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2642.043105][ T9205] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:43 executing program 2: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:43 executing program 0 (fault-call:1 fault-nth:88): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:43 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x607, &(0x7f0000000000)=""/155) 13:22:43 executing program 5: syz_io_uring_setup(0x9b, &(0x7f0000000240)={0x0, 0xfffffffd, 0x2, 0x0, 0x163}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f00000003c0), 0x81, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082dbd7000fcdbdf250700000008003b000400000005002a000100000005002a000000000008002c00feffffff08000600", @ANYRES32=0x0, @ANYBLOB="050033000000000005002e2001000000010000000a0009000180c2000001000e0b82d04d55b935e0caf89b5fc2fc2b7daae6259bb55ed8ac48a86909565248170a9750a32e3d99025111d1e4c94a519008813c"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) syz_io_uring_setup(0x6f3e, &(0x7f0000000140)={0x0, 0xd21c, 0x2, 0x1, 0x1dd, 0x0, r4}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) setsockopt$TIPC_MCAST_BROADCAST(r4, 0x10f, 0x85) io_uring_setup(0x21c1, &(0x7f0000000000)={0x0, 0xf1c5, 0x0, 0x1, 0x153, 0x0, r0}) fork() r5 = fork() sched_setattr(r5, &(0x7f00000004c0)={0x38, 0x2, 0x10, 0x8, 0xf62, 0x1f, 0x20, 0x3, 0x7, 0x6}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000008) r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) getsockopt$PNPIPE_ENCAP(r7, 0x113, 0x1, &(0x7f0000000200), &(0x7f00000002c0)=0x4) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000500)=r0, 0x1) 13:22:43 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x607, &(0x7f0000000000)=""/155) [ 2642.258093][ T9223] FAULT_INJECTION: forcing a failure. [ 2642.258093][ T9223] name failslab, interval 1, probability 0, space 0, times 0 [ 2642.271407][ T9223] CPU: 0 PID: 9223 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2642.279758][ T9223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2642.289833][ T9223] Call Trace: [ 2642.293131][ T9223] dump_stack_lvl+0xcd/0x134 [ 2642.297766][ T9223] should_fail.cold+0x5/0xa [ 2642.302309][ T9223] ? vm_area_dup+0x88/0x2b0 [ 2642.306841][ T9223] should_failslab+0x5/0x10 [ 2642.311370][ T9223] kmem_cache_alloc+0x5e/0x4a0 [ 2642.316186][ T9223] vm_area_dup+0x88/0x2b0 [ 2642.316242][ T9223] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2642.316274][ T9223] ? copy_page_range+0x24ed/0x4010 [ 2642.316343][ T9223] ? vm_area_alloc+0x110/0x110 [ 2642.316384][ T9223] ? handle_mm_fault+0x7f0/0x7f0 [ 2642.316417][ T9223] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2642.316444][ T9223] ? percpu_counter_add_batch+0xbd/0x180 [ 2642.316476][ T9223] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2642.316497][ T9223] ? __vm_enough_memory+0x184/0x360 [ 2642.316519][ T9223] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2642.316553][ T9223] dup_mm+0x543/0x1380 [ 2642.316593][ T9223] ? vm_area_dup+0x2b0/0x2b0 [ 2642.316624][ T9223] ? __raw_spin_lock_init+0x36/0x110 [ 2642.316656][ T9223] copy_process+0x71e0/0x74c0 [ 2642.316688][ T9223] ? lock_chain_count+0x20/0x20 [ 2642.316713][ T9223] ? lock_chain_count+0x20/0x20 [ 2642.316755][ T9223] ? __cleanup_sighand+0xb0/0xb0 [ 2642.316794][ T9223] ? __lock_acquire+0x162f/0x54a0 [ 2642.316825][ T9223] ? kernel_clone+0x314/0xab0 [ 2642.316856][ T9223] kernel_clone+0xe7/0xab0 [ 2642.316889][ T9223] ? create_io_thread+0xf0/0xf0 [ 2642.316928][ T9223] ? find_held_lock+0x2d/0x110 [ 2642.316964][ T9223] __do_sys_fork+0x8a/0xc0 [ 2642.316996][ T9223] ? kernel_thread+0xf0/0xf0 [ 2642.317031][ T9223] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2642.317065][ T9223] ? lockdep_hardirqs_on+0x79/0x100 [ 2642.317091][ T9223] __do_fast_syscall_32+0x65/0xf0 [ 2642.317120][ T9223] do_fast_syscall_32+0x2f/0x70 [ 2642.317160][ T9223] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2642.317206][ T9223] RIP: 0023:0xf7f78549 [ 2642.317228][ T9223] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2642.317256][ T9223] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2642.317292][ T9223] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2642.317310][ T9223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2642.317328][ T9223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2642.317344][ T9223] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2642.317362][ T9223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:44 executing program 1: fork() r0 = fork() getpgid(r0) ptrace$getregs(0xc, r0, 0x8, &(0x7f0000000000)=""/202) 13:22:44 executing program 3: r0 = fork() r1 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x101, &(0x7f0000000000)=""/250) r2 = getpgid(r0) r3 = fork() getpgid(r3) r4 = fork() fork() r5 = getpgid(0xffffffffffffffff) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r5, 0x96, &(0x7f0000000100)=""/102) getpgid(r2) r6 = fork() r7 = fork() ptrace$getregs(0xe, r7, 0x1, &(0x7f00000002c0)=""/46) getpgid(r6) r8 = getpgid(0xffffffffffffffff) ptrace$getregs(0xe, r4, 0x2, &(0x7f0000000200)=""/149) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r8, 0x2, &(0x7f0000000180)=""/90) fork() wait4(r6, 0x0, 0x40000008, 0x0) 13:22:44 executing program 2: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:44 executing program 0 (fault-call:1 fault-nth:89): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:44 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x607, &(0x7f0000000000)=""/155) 13:22:44 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000000)) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:44 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, 0x0, 0x2, &(0x7f0000000080)) [ 2643.059298][ T9257] FAULT_INJECTION: forcing a failure. [ 2643.059298][ T9257] name failslab, interval 1, probability 0, space 0, times 0 [ 2643.140095][ T9257] CPU: 0 PID: 9257 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2643.148618][ T9257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2643.158698][ T9257] Call Trace: [ 2643.161997][ T9257] dump_stack_lvl+0xcd/0x134 [ 2643.166714][ T9257] should_fail.cold+0x5/0xa [ 2643.171339][ T9257] ? ptlock_alloc+0x1d/0x70 [ 2643.175889][ T9257] should_failslab+0x5/0x10 [ 2643.180441][ T9257] kmem_cache_alloc+0x5e/0x4a0 [ 2643.185252][ T9257] ptlock_alloc+0x1d/0x70 [ 2643.189610][ T9257] pte_alloc_one+0x68/0x230 [ 2643.194155][ T9257] __pte_alloc+0x1f/0x2d0 [ 2643.198508][ T9257] copy_page_range+0x18c1/0x4010 [ 2643.203514][ T9257] ? up_write+0x191/0x560 [ 2643.207876][ T9257] ? handle_mm_fault+0x7f0/0x7f0 [ 2643.212833][ T9257] ? downgrade_write+0x3a0/0x3a0 [ 2643.217813][ T9257] ? down_write_killable_nested+0x180/0x180 [ 2643.223770][ T9257] ? __vma_link_rb+0x553/0x710 [ 2643.228570][ T9257] dup_mm+0x9e7/0x1380 [ 2643.232684][ T9257] ? vm_area_dup+0x2b0/0x2b0 [ 2643.237303][ T9257] ? __raw_spin_lock_init+0x36/0x110 [ 2643.242624][ T9257] copy_process+0x71e0/0x74c0 [ 2643.247339][ T9257] ? lock_chain_count+0x20/0x20 [ 2643.252217][ T9257] ? lock_chain_count+0x20/0x20 [ 2643.257122][ T9257] ? __cleanup_sighand+0xb0/0xb0 [ 2643.262093][ T9257] ? __lock_acquire+0x162f/0x54a0 [ 2643.267165][ T9257] ? kernel_clone+0x314/0xab0 [ 2643.271881][ T9257] kernel_clone+0xe7/0xab0 [ 2643.276331][ T9257] ? create_io_thread+0xf0/0xf0 [ 2643.281226][ T9257] ? find_held_lock+0x2d/0x110 [ 2643.286031][ T9257] __do_sys_fork+0x8a/0xc0 [ 2643.290476][ T9257] ? kernel_thread+0xf0/0xf0 [ 2643.295111][ T9257] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2643.301734][ T9257] ? lockdep_hardirqs_on+0x79/0x100 [ 2643.306958][ T9257] __do_fast_syscall_32+0x65/0xf0 [ 2643.312007][ T9257] do_fast_syscall_32+0x2f/0x70 [ 2643.316880][ T9257] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2643.323231][ T9257] RIP: 0023:0xf7f78549 [ 2643.327406][ T9257] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2643.347037][ T9257] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2643.355477][ T9257] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2643.363573][ T9257] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2643.371605][ T9257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2643.379594][ T9257] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:44 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x3f0596eede2dc3ba}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4088005) fork() 13:22:44 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, 0x0, 0x2, &(0x7f0000000080)) [ 2643.387599][ T9257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:44 executing program 4: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:44 executing program 1: r0 = fork() getpgid(r0) r1 = fork() r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000100), 0x0, 0x0) waitid(0x2, r1, &(0x7f0000000000), 0x2, &(0x7f0000000080)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:44 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, 0x0, 0x2, &(0x7f0000000080)) 13:22:44 executing program 5: r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000140)=@id, &(0x7f0000000180)=0x10, 0x80000) bind$tipc(r0, &(0x7f00000001c0)=@name={0x1e, 0x2, 0x3, {{0x40, 0x6}, 0x2}}, 0x10) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x58df, &(0x7f0000000000)={0x0, 0x2935, 0x20, 0x3, 0x284, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x8) fork() 13:22:45 executing program 3: syz_io_uring_setup(0x9b, &(0x7f0000000240)={0x0, 0xfffffffd, 0x2, 0x0, 0x163}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f00000003c0), 0x81, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082dbd7000fcdbdf250700000008003b000400000005002a000100000005002a000000000008002c00feffffff08000600", @ANYRES32=0x0, @ANYBLOB="050033000000000005002e2001000000010000000a0009000180c2000001000e0b82d04d55b935e0caf89b5fc2fc2b7daae6259bb55ed8ac48a86909565248170a9750a32e3d99025111d1e4c94a519008813c"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) syz_io_uring_setup(0x6f3e, &(0x7f0000000140)={0x0, 0xd21c, 0x2, 0x1, 0x1dd, 0x0, r4}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) setsockopt$TIPC_MCAST_BROADCAST(r4, 0x10f, 0x85) io_uring_setup(0x21c1, &(0x7f0000000000)={0x0, 0xf1c5, 0x0, 0x1, 0x153, 0x0, r0}) fork() r5 = fork() sched_setattr(r5, &(0x7f00000004c0)={0x38, 0x2, 0x10, 0x8, 0xf62, 0x1f, 0x20, 0x3, 0x7, 0x6}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000008) r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) getsockopt$PNPIPE_ENCAP(r7, 0x113, 0x1, &(0x7f0000000200), &(0x7f00000002c0)=0x4) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000500)=r0, 0x1) 13:22:45 executing program 4: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) 13:22:45 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:22:45 executing program 0 (fault-call:1 fault-nth:90): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:45 executing program 5: syz_io_uring_setup(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x10000000}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000080), 0x20, 0x2) fork() 13:22:45 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) [ 2644.160597][ T9310] FAULT_INJECTION: forcing a failure. [ 2644.160597][ T9310] name failslab, interval 1, probability 0, space 0, times 0 [ 2644.232976][ T9310] CPU: 0 PID: 9310 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2644.241369][ T9310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2644.251622][ T9310] Call Trace: [ 2644.254924][ T9310] dump_stack_lvl+0xcd/0x134 [ 2644.259551][ T9310] should_fail.cold+0x5/0xa [ 2644.264090][ T9310] ? vm_area_dup+0x88/0x2b0 [ 2644.268711][ T9310] should_failslab+0x5/0x10 [ 2644.273250][ T9310] kmem_cache_alloc+0x5e/0x4a0 [ 2644.278050][ T9310] vm_area_dup+0x88/0x2b0 [ 2644.282434][ T9310] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2644.288881][ T9310] ? copy_page_range+0x24ed/0x4010 [ 2644.294246][ T9310] ? vm_area_alloc+0x110/0x110 [ 2644.299048][ T9310] ? up_write+0x191/0x560 [ 2644.303405][ T9310] ? handle_mm_fault+0x7f0/0x7f0 [ 2644.308373][ T9310] ? downgrade_write+0x3a0/0x3a0 [ 2644.313338][ T9310] ? down_write_killable_nested+0x180/0x180 [ 2644.319275][ T9310] ? __vma_link_rb+0x553/0x710 [ 2644.324076][ T9310] dup_mm+0x543/0x1380 [ 2644.328183][ T9310] ? vm_area_dup+0x2b0/0x2b0 [ 2644.332795][ T9310] ? __raw_spin_lock_init+0x36/0x110 [ 2644.338112][ T9310] copy_process+0x71e0/0x74c0 [ 2644.342815][ T9310] ? lock_chain_count+0x20/0x20 [ 2644.347684][ T9310] ? lock_chain_count+0x20/0x20 [ 2644.352585][ T9310] ? __cleanup_sighand+0xb0/0xb0 [ 2644.357555][ T9310] ? __lock_acquire+0x162f/0x54a0 [ 2644.362695][ T9310] ? kernel_clone+0x314/0xab0 [ 2644.367399][ T9310] kernel_clone+0xe7/0xab0 [ 2644.371844][ T9310] ? create_io_thread+0xf0/0xf0 [ 2644.376740][ T9310] ? find_held_lock+0x2d/0x110 [ 2644.381540][ T9310] __do_sys_fork+0x8a/0xc0 [ 2644.385984][ T9310] ? kernel_thread+0xf0/0xf0 [ 2644.390625][ T9310] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2644.397239][ T9310] ? lockdep_hardirqs_on+0x79/0x100 [ 2644.402470][ T9310] __do_fast_syscall_32+0x65/0xf0 [ 2644.407515][ T9310] do_fast_syscall_32+0x2f/0x70 [ 2644.412380][ T9310] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2644.418727][ T9310] RIP: 0023:0xf7f78549 13:22:45 executing program 4: waitid(0x0, 0x0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) [ 2644.422805][ T9310] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2644.442457][ T9310] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2644.442495][ T9310] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:45 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) [ 2644.442513][ T9310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 13:22:45 executing program 0 (fault-call:1 fault-nth:91): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2644.442531][ T9310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2644.442548][ T9310] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:45 executing program 1: r0 = fork() syz_open_dev$I2C(&(0x7f0000000080), 0x31d8b690, 0x400) capset(&(0x7f0000000000)={0x79800c56, r0}, &(0x7f0000000040)={0x0, 0x3, 0x6, 0x8, 0x7, 0x6}) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:45 executing program 5: syz_io_uring_setup(0x9b, &(0x7f0000000240)={0x0, 0xfffffffd, 0x2, 0x0, 0x163}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f00000003c0), 0x81, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082dbd7000fcdbdf250700000008003b000400000005002a000100000005002a000000000008002c00feffffff08000600", @ANYRES32=0x0, @ANYBLOB="050033000000000005002e2001000000010000000a0009000180c2000001000e0b82d04d55b935e0caf89b5fc2fc2b7daae6259bb55ed8ac48a86909565248170a9750a32e3d99025111d1e4c94a519008813c"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) syz_io_uring_setup(0x6f3e, &(0x7f0000000140)={0x0, 0xd21c, 0x2, 0x1, 0x1dd, 0x0, r4}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) setsockopt$TIPC_MCAST_BROADCAST(r4, 0x10f, 0x85) io_uring_setup(0x21c1, &(0x7f0000000000)={0x0, 0xf1c5, 0x0, 0x1, 0x153, 0x0, r0}) fork() r5 = fork() sched_setattr(r5, &(0x7f00000004c0)={0x38, 0x2, 0x10, 0x8, 0xf62, 0x1f, 0x20, 0x3, 0x7, 0x6}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000008) r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) getsockopt$PNPIPE_ENCAP(r7, 0x113, 0x1, &(0x7f0000000200), &(0x7f00000002c0)=0x4) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000500)=r0, 0x1) 13:22:45 executing program 4: waitid(0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)) [ 2644.442564][ T9310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2644.750848][ T9336] FAULT_INJECTION: forcing a failure. [ 2644.750848][ T9336] name failslab, interval 1, probability 0, space 0, times 0 [ 2644.750885][ T9336] CPU: 0 PID: 9336 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2644.750911][ T9336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2644.750926][ T9336] Call Trace: [ 2644.750935][ T9336] dump_stack_lvl+0xcd/0x134 [ 2644.750972][ T9336] should_fail.cold+0x5/0xa [ 2644.751007][ T9336] ? vm_area_dup+0x88/0x2b0 [ 2644.751037][ T9336] should_failslab+0x5/0x10 [ 2644.751062][ T9336] kmem_cache_alloc+0x5e/0x4a0 [ 2644.751096][ T9336] vm_area_dup+0x88/0x2b0 [ 2644.751139][ T9336] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 2644.751184][ T9336] ? copy_page_range+0x24ed/0x4010 [ 2644.751240][ T9336] ? vm_area_alloc+0x110/0x110 [ 2644.751278][ T9336] ? handle_mm_fault+0x7f0/0x7f0 [ 2644.751312][ T9336] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2644.751337][ T9336] ? percpu_counter_add_batch+0xbd/0x180 [ 2644.751371][ T9336] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2644.751395][ T9336] ? __vm_enough_memory+0x184/0x360 [ 2644.751420][ T9336] ? security_vm_enough_memory_mm+0x85/0xb0 [ 2644.751457][ T9336] dup_mm+0x543/0x1380 [ 2644.751497][ T9336] ? vm_area_dup+0x2b0/0x2b0 [ 2644.751528][ T9336] ? __raw_spin_lock_init+0x36/0x110 [ 2644.751562][ T9336] copy_process+0x71e0/0x74c0 [ 2644.751593][ T9336] ? lock_chain_count+0x20/0x20 [ 2644.751616][ T9336] ? lock_chain_count+0x20/0x20 [ 2644.751658][ T9336] ? __cleanup_sighand+0xb0/0xb0 [ 2644.751694][ T9336] ? __lock_acquire+0x162f/0x54a0 [ 2644.751724][ T9336] ? kernel_clone+0x314/0xab0 [ 2644.751753][ T9336] kernel_clone+0xe7/0xab0 [ 2644.751785][ T9336] ? create_io_thread+0xf0/0xf0 [ 2644.751826][ T9336] ? find_held_lock+0x2d/0x110 [ 2644.751880][ T9336] __do_sys_fork+0x8a/0xc0 [ 2644.751910][ T9336] ? kernel_thread+0xf0/0xf0 [ 2644.751954][ T9336] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2644.752006][ T9336] ? lockdep_hardirqs_on+0x79/0x100 [ 2644.752039][ T9336] __do_fast_syscall_32+0x65/0xf0 [ 2644.752068][ T9336] do_fast_syscall_32+0x2f/0x70 [ 2644.752095][ T9336] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2644.752123][ T9336] RIP: 0023:0xf7f78549 [ 2644.752144][ T9336] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2644.752170][ T9336] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2644.752198][ T9336] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2644.752216][ T9336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2644.752234][ T9336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2644.752251][ T9336] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2644.752269][ T9336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:46 executing program 3: syz_io_uring_setup(0x9b, &(0x7f0000000240)={0x0, 0xfffffffd, 0x2, 0x0, 0x163}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f00000003c0), 0x81, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082dbd7000fcdbdf250700000008003b000400000005002a000100000005002a000000000008002c00feffffff08000600", @ANYRES32=0x0, @ANYBLOB="050033000000000005002e2001000000010000000a0009000180c2000001000e0b82d04d55b935e0caf89b5fc2fc2b7daae6259bb55ed8ac48a86909565248170a9750a32e3d99025111d1e4c94a519008813c"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) syz_io_uring_setup(0x6f3e, &(0x7f0000000140)={0x0, 0xd21c, 0x2, 0x1, 0x1dd, 0x0, r4}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) setsockopt$TIPC_MCAST_BROADCAST(r4, 0x10f, 0x85) io_uring_setup(0x21c1, &(0x7f0000000000)={0x0, 0xf1c5, 0x0, 0x1, 0x153, 0x0, r0}) fork() r5 = fork() sched_setattr(r5, &(0x7f00000004c0)={0x38, 0x2, 0x10, 0x8, 0xf62, 0x1f, 0x20, 0x3, 0x7, 0x6}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000008) r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) getsockopt$PNPIPE_ENCAP(r7, 0x113, 0x1, &(0x7f0000000200), &(0x7f00000002c0)=0x4) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000500)=r0, 0x1) 13:22:46 executing program 2: waitid(0xaaf51b24fb114fd5, 0x0, &(0x7f0000000000), 0x2, 0x0) 13:22:46 executing program 0 (fault-call:1 fault-nth:92): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:46 executing program 4: waitid(0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)) 13:22:46 executing program 5: r0 = fork() getpgid(r0) r1 = fork() r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000100), 0x0, 0x0) waitid(0x2, r1, &(0x7f0000000000), 0x2, &(0x7f0000000080)) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:46 executing program 4: waitid(0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)) [ 2645.415427][ T9361] FAULT_INJECTION: forcing a failure. [ 2645.415427][ T9361] name failslab, interval 1, probability 0, space 0, times 0 13:22:46 executing program 2: syz_io_uring_setup(0x9b, &(0x7f0000000240)={0x0, 0xfffffffd, 0x2, 0x0, 0x163}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f00000003c0), 0x81, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082dbd7000fcdbdf250700000008003b000400000005002a000100000005002a000000000008002c00feffffff08000600", @ANYRES32=0x0, @ANYBLOB="050033000000000005002e2001000000010000000a0009000180c2000001000e0b82d04d55b935e0caf89b5fc2fc2b7daae6259bb55ed8ac48a86909565248170a9750a32e3d99025111d1e4c94a519008813c"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) syz_io_uring_setup(0x6f3e, &(0x7f0000000140)={0x0, 0xd21c, 0x2, 0x1, 0x1dd, 0x0, r4}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) setsockopt$TIPC_MCAST_BROADCAST(r4, 0x10f, 0x85) io_uring_setup(0x21c1, &(0x7f0000000000)={0x0, 0xf1c5, 0x0, 0x1, 0x153, 0x0, r0}) fork() r5 = fork() sched_setattr(r5, &(0x7f00000004c0)={0x38, 0x2, 0x10, 0x8, 0xf62, 0x1f, 0x20, 0x3, 0x7, 0x6}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_STATS(r6, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000008) r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) getsockopt$PNPIPE_ENCAP(r7, 0x113, 0x1, &(0x7f0000000200), &(0x7f00000002c0)=0x4) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000500)=r0, 0x1) [ 2645.490643][ T9361] CPU: 0 PID: 9361 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2645.499057][ T9361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2645.499078][ T9361] Call Trace: [ 2645.499089][ T9361] dump_stack_lvl+0xcd/0x134 [ 2645.499132][ T9361] should_fail.cold+0x5/0xa [ 2645.499163][ T9361] ? anon_vma_fork+0xed/0x630 [ 2645.499192][ T9361] should_failslab+0x5/0x10 [ 2645.499221][ T9361] kmem_cache_alloc+0x5e/0x4a0 [ 2645.499253][ T9361] anon_vma_fork+0xed/0x630 [ 2645.540078][ T9361] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2645.545826][ T9361] ? __vm_enough_memory+0x184/0x360 [ 2645.551069][ T9361] dup_mm+0x9a0/0x1380 [ 2645.551123][ T9361] ? vm_area_dup+0x2b0/0x2b0 [ 2645.551155][ T9361] ? __raw_spin_lock_init+0x36/0x110 [ 2645.551191][ T9361] copy_process+0x71e0/0x74c0 [ 2645.551223][ T9361] ? lock_chain_count+0x20/0x20 [ 2645.551248][ T9361] ? lock_chain_count+0x20/0x20 13:22:46 executing program 4: waitid(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) [ 2645.551301][ T9361] ? __cleanup_sighand+0xb0/0xb0 [ 2645.551339][ T9361] ? __lock_acquire+0x162f/0x54a0 [ 2645.551372][ T9361] ? kernel_clone+0x314/0xab0 13:22:46 executing program 1: r0 = fork() wait4(r0, &(0x7f0000000000), 0x1000000, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2645.551405][ T9361] kernel_clone+0xe7/0xab0 [ 2645.551439][ T9361] ? create_io_thread+0xf0/0xf0 [ 2645.551482][ T9361] ? find_held_lock+0x2d/0x110 [ 2645.551522][ T9361] __do_sys_fork+0x8a/0xc0 [ 2645.551553][ T9361] ? kernel_thread+0xf0/0xf0 [ 2645.551603][ T9361] ? syscall_enter_from_user_mode_prepare+0x17/0x40 13:22:47 executing program 4: waitid(0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) [ 2645.551654][ T9361] ? lockdep_hardirqs_on+0x79/0x100 [ 2645.551724][ T9361] __do_fast_syscall_32+0x65/0xf0 [ 2645.551786][ T9361] do_fast_syscall_32+0x2f/0x70 [ 2645.551826][ T9361] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2645.551856][ T9361] RIP: 0023:0xf7f78549 [ 2645.551879][ T9361] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2645.551906][ T9361] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2645.551934][ T9361] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 13:22:47 executing program 0 (fault-call:1 fault-nth:93): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2645.551952][ T9361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2645.551969][ T9361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2645.551986][ T9361] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2645.552003][ T9361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:47 executing program 2: r0 = fork() syz_open_dev$I2C(&(0x7f0000000080), 0x31d8b690, 0x400) capset(&(0x7f0000000000)={0x79800c56, r0}, &(0x7f0000000040)={0x0, 0x3, 0x6, 0x8, 0x7, 0x6}) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2646.219503][ T9397] FAULT_INJECTION: forcing a failure. [ 2646.219503][ T9397] name failslab, interval 1, probability 0, space 0, times 0 [ 2646.288582][ T9397] CPU: 1 PID: 9397 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2646.297095][ T9397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2646.307153][ T9397] Call Trace: [ 2646.310430][ T9397] dump_stack_lvl+0xcd/0x134 [ 2646.315038][ T9397] should_fail.cold+0x5/0xa [ 2646.319544][ T9397] ? vm_area_alloc+0x110/0x110 [ 2646.324315][ T9397] ? anon_vma_clone+0xe0/0x5f0 [ 2646.329071][ T9397] should_failslab+0x5/0x10 [ 2646.333572][ T9397] kmem_cache_alloc+0x5e/0x4a0 [ 2646.338356][ T9397] anon_vma_clone+0xe0/0x5f0 [ 2646.342959][ T9397] anon_vma_fork+0x82/0x630 [ 2646.347472][ T9397] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2646.353200][ T9397] ? __vm_enough_memory+0x184/0x360 [ 2646.358402][ T9397] dup_mm+0x9a0/0x1380 [ 2646.362484][ T9397] ? vm_area_dup+0x2b0/0x2b0 [ 2646.367160][ T9397] ? __raw_spin_lock_init+0x36/0x110 [ 2646.372443][ T9397] copy_process+0x71e0/0x74c0 [ 2646.377123][ T9397] ? lock_chain_count+0x20/0x20 [ 2646.381976][ T9397] ? lock_chain_count+0x20/0x20 [ 2646.386830][ T9397] ? __cleanup_sighand+0xb0/0xb0 [ 2646.391766][ T9397] ? __lock_acquire+0x162f/0x54a0 [ 2646.396793][ T9397] ? kernel_clone+0x314/0xab0 [ 2646.401499][ T9397] kernel_clone+0xe7/0xab0 [ 2646.405947][ T9397] ? create_io_thread+0xf0/0xf0 [ 2646.410795][ T9397] ? find_held_lock+0x2d/0x110 [ 2646.415559][ T9397] __do_sys_fork+0x8a/0xc0 [ 2646.419982][ T9397] ? kernel_thread+0xf0/0xf0 [ 2646.424591][ T9397] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2646.431185][ T9397] ? lockdep_hardirqs_on+0x79/0x100 [ 2646.436386][ T9397] __do_fast_syscall_32+0x65/0xf0 [ 2646.441402][ T9397] do_fast_syscall_32+0x2f/0x70 [ 2646.446239][ T9397] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2646.452631][ T9397] RIP: 0023:0xf7f78549 [ 2646.456685][ T9397] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2646.476292][ T9397] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 13:22:47 executing program 3: ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000000)) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0cc5640, &(0x7f0000000140)={0x1, @pix_mp={0x4, 0xe682, 0x34324142, 0x2, 0x6, [{0x5, 0x8}, {0x5, 0x3e9e6966}, {0xbd, 0x3}, {0x8, 0x4}, {0x2000003, 0xffffff01}, {0x105, 0x6}, {0x8, 0x2}, {0x37d}], 0x10, 0x3, 0x1, 0x0, 0x6}}) r1 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000080)={0x6f3, 0x2, 0x3}) r3 = getpgid(r1) ptrace$getregs(0xe, r3, 0x6d4, &(0x7f0000000340)=""/156) r4 = fork() getpgid(r4) capset(&(0x7f0000000500)={0x0, r4}, &(0x7f0000000540)={0x300000, 0x4, 0x1, 0x5, 0xd14, 0x81}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r5, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}}, 0x4000805) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="142ac008", @ANYRESDEC, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), r5) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f00000004c0)={&(0x7f0000000400), 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8084}, 0x4000) 13:22:47 executing program 4: ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[r0, 0x0, r0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], 0x9, 0x3}) fork() [ 2646.484697][ T9397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2646.492743][ T9397] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2646.500700][ T9397] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2646.508669][ T9397] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2646.516627][ T9397] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:47 executing program 5: ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000000)) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0cc5640, &(0x7f0000000140)={0x1, @pix_mp={0x4, 0xe682, 0x34324142, 0x2, 0x6, [{0x5, 0x8}, {0x5, 0x3e9e6966}, {0xbd, 0x3}, {0x8, 0x4}, {0x2000003, 0xffffff01}, {0x105, 0x6}, {0x8, 0x2}, {0x37d}], 0x10, 0x3, 0x1, 0x0, 0x6}}) r1 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000080)={0x6f3, 0x2, 0x3}) r3 = getpgid(r1) ptrace$getregs(0xe, r3, 0x6d4, &(0x7f0000000340)=""/156) r4 = fork() getpgid(r4) capset(&(0x7f0000000500)={0x0, r4}, &(0x7f0000000540)={0x300000, 0x4, 0x1, 0x5, 0xd14, 0x81}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r5, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}}, 0x4000805) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="142ac008", @ANYRESDEC, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), r5) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f00000004c0)={&(0x7f0000000400), 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r6, 0x8, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8084}, 0x4000) 13:22:47 executing program 0 (fault-call:1 fault-nth:94): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:48 executing program 4: socketpair(0x15, 0x4, 0xb3, &(0x7f0000001680)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000016c0)={'wg0\x00'}) getsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r2 = fork() wait4(r2, 0x0, 0x0, 0x0) wait4(r2, &(0x7f0000000000), 0x2, 0x0) r3 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000040), &(0x7f0000000080)=0x4) [ 2646.828321][ T9413] FAULT_INJECTION: forcing a failure. [ 2646.828321][ T9413] name failslab, interval 1, probability 0, space 0, times 0 [ 2646.846659][ T9413] CPU: 1 PID: 9413 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2646.855215][ T9413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2646.865293][ T9413] Call Trace: [ 2646.868605][ T9413] dump_stack_lvl+0xcd/0x134 [ 2646.873229][ T9413] should_fail.cold+0x5/0xa [ 2646.877764][ T9413] ? anon_vma_fork+0x1df/0x630 [ 2646.882556][ T9413] should_failslab+0x5/0x10 [ 2646.887093][ T9413] kmem_cache_alloc+0x5e/0x4a0 [ 2646.891885][ T9413] anon_vma_fork+0x1df/0x630 [ 2646.896506][ T9413] dup_mm+0x9a0/0x1380 [ 2646.900614][ T9413] ? vm_area_dup+0x2b0/0x2b0 [ 2646.905229][ T9413] ? __raw_spin_lock_init+0x36/0x110 [ 2646.910554][ T9413] copy_process+0x71e0/0x74c0 [ 2646.910581][ T9413] ? lock_chain_count+0x20/0x20 [ 2646.910597][ T9413] ? lock_chain_count+0x20/0x20 [ 2646.910621][ T9413] ? __cleanup_sighand+0xb0/0xb0 [ 2646.910646][ T9413] ? __lock_acquire+0x162f/0x54a0 [ 2646.910674][ T9413] ? kernel_clone+0x314/0xab0 [ 2646.910704][ T9413] kernel_clone+0xe7/0xab0 [ 2646.910736][ T9413] ? create_io_thread+0xf0/0xf0 [ 2646.948929][ T9413] ? find_held_lock+0x2d/0x110 [ 2646.953744][ T9413] __do_sys_fork+0x8a/0xc0 [ 2646.958188][ T9413] ? kernel_thread+0xf0/0xf0 [ 2646.962813][ T9413] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2646.969431][ T9413] ? lockdep_hardirqs_on+0x79/0x100 [ 2646.974657][ T9413] __do_fast_syscall_32+0x65/0xf0 [ 2646.979705][ T9413] do_fast_syscall_32+0x2f/0x70 [ 2646.984557][ T9413] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2646.990902][ T9413] RIP: 0023:0xf7f78549 [ 2646.994962][ T9413] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2647.014579][ T9413] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2647.023115][ T9413] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2647.031095][ T9413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2647.039057][ T9413] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2647.047027][ T9413] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2647.055016][ T9413] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:48 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = getpgid(r0) wait4(r1, &(0x7f0000000000), 0x2, &(0x7f0000000040)) 13:22:48 executing program 0 (fault-call:1 fault-nth:95): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2647.245638][ T9431] FAULT_INJECTION: forcing a failure. [ 2647.245638][ T9431] name failslab, interval 1, probability 0, space 0, times 0 [ 2647.261232][ T9431] CPU: 1 PID: 9431 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2647.269601][ T9431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2647.279678][ T9431] Call Trace: [ 2647.282971][ T9431] dump_stack_lvl+0xcd/0x134 [ 2647.287596][ T9431] should_fail.cold+0x5/0xa [ 2647.292121][ T9431] ? anon_vma_fork+0xed/0x630 [ 2647.296822][ T9431] should_failslab+0x5/0x10 [ 2647.301352][ T9431] kmem_cache_alloc+0x5e/0x4a0 [ 2647.306147][ T9431] anon_vma_fork+0xed/0x630 [ 2647.310669][ T9431] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 2647.316401][ T9431] ? __vm_enough_memory+0x184/0x360 [ 2647.321625][ T9431] dup_mm+0x9a0/0x1380 [ 2647.325732][ T9431] ? vm_area_dup+0x2b0/0x2b0 [ 2647.330340][ T9431] ? __raw_spin_lock_init+0x36/0x110 [ 2647.335649][ T9431] copy_process+0x71e0/0x74c0 [ 2647.340330][ T9431] ? lock_chain_count+0x20/0x20 [ 2647.345194][ T9431] ? lock_chain_count+0x20/0x20 [ 2647.350080][ T9431] ? __cleanup_sighand+0xb0/0xb0 [ 2647.355172][ T9431] ? __lock_acquire+0x162f/0x54a0 [ 2647.360227][ T9431] ? kernel_clone+0x314/0xab0 [ 2647.364918][ T9431] kernel_clone+0xe7/0xab0 [ 2647.369359][ T9431] ? create_io_thread+0xf0/0xf0 [ 2647.374239][ T9431] ? find_held_lock+0x2d/0x110 [ 2647.379036][ T9431] __do_sys_fork+0x8a/0xc0 [ 2647.383477][ T9431] ? kernel_thread+0xf0/0xf0 [ 2647.388108][ T9431] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2647.394735][ T9431] ? lockdep_hardirqs_on+0x79/0x100 [ 2647.399948][ T9431] __do_fast_syscall_32+0x65/0xf0 [ 2647.404973][ T9431] do_fast_syscall_32+0x2f/0x70 [ 2647.409836][ T9431] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2647.416183][ T9431] RIP: 0023:0xf7f78549 [ 2647.420256][ T9431] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 13:22:48 executing program 2: r0 = fork() wait4(r0, &(0x7f0000000000), 0x1000000, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2647.439866][ T9431] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2647.448298][ T9431] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2647.456319][ T9431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2647.464303][ T9431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2647.472295][ T9431] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2647.480273][ T9431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:48 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000100)={0x0, 0x1, 0xffffffffffffffff}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000140)={r0, 0x0, r2}) fork() ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000002c0)={&(0x7f00000001c0)=[r3], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, &(0x7f0000000300)={r1, r3, 0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, &(0x7f0000000380)={&(0x7f0000000180)=[r1], &(0x7f0000000340)=[r5, r6, 0x0], 0x7, 0x1}) r7 = getpgid(0x0) getpgid(r7) ioctl$BLKSECTGET(0xffffffffffffffff, 0x1267, &(0x7f0000000080)) r8 = getpgid(0xffffffffffffffff) capset(&(0x7f0000000000)={0x19980330, r8}, &(0x7f0000000040)={0x4b4, 0x7f, 0x200, 0x1000008, 0x6, 0x9}) 13:22:48 executing program 5: fork() fork() r0 = fork() getpgid(r0) capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x1, 0x10001, 0x81, 0x3, 0x6, 0x949}) fork() 13:22:48 executing program 0 (fault-call:1 fault-nth:96): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:48 executing program 4: socketpair(0x15, 0x4, 0xb3, &(0x7f0000001680)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000016c0)={'wg0\x00'}) getsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r2 = fork() wait4(r2, 0x0, 0x0, 0x0) wait4(r2, &(0x7f0000000000), 0x2, 0x0) r3 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000040), &(0x7f0000000080)=0x4) [ 2647.776664][ T9442] FAULT_INJECTION: forcing a failure. [ 2647.776664][ T9442] name failslab, interval 1, probability 0, space 0, times 0 [ 2647.829913][ T9442] CPU: 0 PID: 9442 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2647.838298][ T9442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2647.848374][ T9442] Call Trace: [ 2647.851673][ T9442] dump_stack_lvl+0xcd/0x134 [ 2647.856300][ T9442] should_fail.cold+0x5/0xa [ 2647.860833][ T9442] ? ptlock_alloc+0x1d/0x70 [ 2647.865363][ T9442] should_failslab+0x5/0x10 [ 2647.869904][ T9442] kmem_cache_alloc+0x5e/0x4a0 [ 2647.874695][ T9442] ptlock_alloc+0x1d/0x70 [ 2647.879049][ T9442] pte_alloc_one+0x68/0x230 [ 2647.883589][ T9442] __pte_alloc+0x1f/0x2d0 [ 2647.887945][ T9442] copy_page_range+0x18c1/0x4010 [ 2647.892946][ T9442] ? up_write+0x191/0x560 [ 2647.897302][ T9442] ? handle_mm_fault+0x7f0/0x7f0 [ 2647.902257][ T9442] ? downgrade_write+0x3a0/0x3a0 [ 2647.907221][ T9442] ? down_write_killable_nested+0x180/0x180 [ 2647.913153][ T9442] ? __vma_link_rb+0x553/0x710 [ 2647.918001][ T9442] dup_mm+0x9e7/0x1380 [ 2647.922110][ T9442] ? vm_area_dup+0x2b0/0x2b0 [ 2647.926730][ T9442] ? __raw_spin_lock_init+0x36/0x110 [ 2647.932064][ T9442] copy_process+0x71e0/0x74c0 [ 2647.936772][ T9442] ? lock_chain_count+0x20/0x20 [ 2647.941642][ T9442] ? lock_chain_count+0x20/0x20 [ 2647.946539][ T9442] ? __cleanup_sighand+0xb0/0xb0 [ 2647.951504][ T9442] ? __lock_acquire+0x162f/0x54a0 [ 2647.956552][ T9442] ? kernel_clone+0x314/0xab0 [ 2647.961257][ T9442] kernel_clone+0xe7/0xab0 [ 2647.965714][ T9442] ? create_io_thread+0xf0/0xf0 [ 2647.970610][ T9442] ? find_held_lock+0x2d/0x110 [ 2647.975414][ T9442] __do_sys_fork+0x8a/0xc0 [ 2647.979859][ T9442] ? kernel_thread+0xf0/0xf0 [ 2647.984500][ T9442] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2647.991118][ T9442] ? lockdep_hardirqs_on+0x79/0x100 [ 2647.996346][ T9442] __do_fast_syscall_32+0x65/0xf0 [ 2648.001396][ T9442] do_fast_syscall_32+0x2f/0x70 [ 2648.006281][ T9442] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2648.012628][ T9442] RIP: 0023:0xf7f78549 [ 2648.016712][ T9442] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2648.036345][ T9442] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2648.044786][ T9442] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2648.052779][ T9442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2648.060766][ T9442] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2648.068746][ T9442] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2648.076733][ T9442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:49 executing program 1: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) clock_getres(0x0, &(0x7f00000000c0)) wait4(r0, &(0x7f0000000000), 0x8, &(0x7f0000000040)) 13:22:49 executing program 5: fork() r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000000)={0x100, 0xa7c, 0xffff}) 13:22:49 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = syz_io_uring_setup(0x5854, &(0x7f0000000140)={0x0, 0xfd97, 0x3c, 0x2, 0x34f, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) syz_io_uring_setup(0x747b, &(0x7f00000002c0)={0x0, 0x8251, 0x10, 0x1, 0x21c, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380)) ioctl$MEDIA_REQUEST_IOC_QUEUE(0xffffffffffffffff, 0x7c80, 0x0) r2 = io_uring_setup(0xf77, &(0x7f0000000040)={0x0, 0x2ffa, 0x10, 0x0, 0x1cf, 0x0, r0}) r3 = io_uring_setup(0x2420, &(0x7f00000000c0)={0x0, 0x3587, 0x10, 0x1, 0x26, 0x0, r2}) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10010, r3, 0x10000000) setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, &(0x7f0000000000)=0xfffffffe, 0x4) fork() 13:22:49 executing program 0 (fault-call:1 fault-nth:97): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:49 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = syz_io_uring_setup(0x5854, &(0x7f0000000140)={0x0, 0xfd97, 0x3c, 0x2, 0x34f, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) syz_io_uring_setup(0x747b, &(0x7f00000002c0)={0x0, 0x8251, 0x10, 0x1, 0x21c, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380)) ioctl$MEDIA_REQUEST_IOC_QUEUE(0xffffffffffffffff, 0x7c80, 0x0) r2 = io_uring_setup(0xf77, &(0x7f0000000040)={0x0, 0x2ffa, 0x10, 0x0, 0x1cf, 0x0, r0}) r3 = io_uring_setup(0x2420, &(0x7f00000000c0)={0x0, 0x3587, 0x10, 0x1, 0x26, 0x0, r2}) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10010, r3, 0x10000000) setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, &(0x7f0000000000)=0xfffffffe, 0x4) fork() 13:22:49 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$getsig(0x4202, r0, 0x2, &(0x7f0000000000)) r1 = fork() ptrace$getsig(0x4202, r1, 0x7f, &(0x7f0000000080)) r2 = fork() getpgid(r2) ptrace$getsig(0x4202, r2, 0x4, &(0x7f0000000100)) [ 2648.469013][ T9467] FAULT_INJECTION: forcing a failure. [ 2648.469013][ T9467] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.526499][ T9467] CPU: 0 PID: 9467 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2648.534880][ T9467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2648.544987][ T9467] Call Trace: [ 2648.548282][ T9467] dump_stack_lvl+0xcd/0x134 [ 2648.552920][ T9467] should_fail.cold+0x5/0xa [ 2648.557466][ T9467] ? ptlock_alloc+0x1d/0x70 [ 2648.562000][ T9467] should_failslab+0x5/0x10 [ 2648.566532][ T9467] kmem_cache_alloc+0x5e/0x4a0 [ 2648.571327][ T9467] ptlock_alloc+0x1d/0x70 [ 2648.575689][ T9467] pte_alloc_one+0x68/0x230 [ 2648.580212][ T9467] __pte_alloc+0x1f/0x2d0 [ 2648.584569][ T9467] copy_page_range+0x18c1/0x4010 [ 2648.589573][ T9467] ? up_write+0x191/0x560 [ 2648.593940][ T9467] ? handle_mm_fault+0x7f0/0x7f0 [ 2648.598900][ T9467] ? downgrade_write+0x3a0/0x3a0 [ 2648.603868][ T9467] ? down_write_killable_nested+0x180/0x180 [ 2648.609819][ T9467] ? __vma_link_rb+0x553/0x710 [ 2648.614627][ T9467] dup_mm+0x9e7/0x1380 [ 2648.618746][ T9467] ? vm_area_dup+0x2b0/0x2b0 [ 2648.623366][ T9467] ? __raw_spin_lock_init+0x36/0x110 [ 2648.628688][ T9467] copy_process+0x71e0/0x74c0 [ 2648.633399][ T9467] ? lock_chain_count+0x20/0x20 [ 2648.638267][ T9467] ? lock_chain_count+0x20/0x20 [ 2648.643173][ T9467] ? __cleanup_sighand+0xb0/0xb0 [ 2648.648139][ T9467] ? __lock_acquire+0x162f/0x54a0 [ 2648.653183][ T9467] ? kernel_clone+0x314/0xab0 [ 2648.657888][ T9467] kernel_clone+0xe7/0xab0 [ 2648.662346][ T9467] ? create_io_thread+0xf0/0xf0 [ 2648.667233][ T9467] ? find_held_lock+0x2d/0x110 [ 2648.672034][ T9467] __do_sys_fork+0x8a/0xc0 [ 2648.676475][ T9467] ? kernel_thread+0xf0/0xf0 [ 2648.681106][ T9467] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2648.687751][ T9467] ? lockdep_hardirqs_on+0x79/0x100 [ 2648.692986][ T9467] __do_fast_syscall_32+0x65/0xf0 [ 2648.698047][ T9467] do_fast_syscall_32+0x2f/0x70 [ 2648.702931][ T9467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2648.709290][ T9467] RIP: 0023:0xf7f78549 [ 2648.713376][ T9467] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2648.733007][ T9467] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2648.741449][ T9467] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2648.749441][ T9467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2648.757434][ T9467] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2648.765424][ T9467] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:22:49 executing program 2: fork() r0 = fork() r1 = getpgid(r0) r2 = fork() getpgid(r2) getpgid(r2) r3 = getpgid(r1) r4 = getpgid(r3) capset(&(0x7f0000000000)={0x20080522, r4}, &(0x7f0000000040)={0x4, 0xe0000003, 0x1f, 0x7, 0x8, 0xfff}) fork() 13:22:49 executing program 3: fork() r0 = fork() r1 = getpgid(r0) r2 = fork() getpgid(r2) getpgid(r2) r3 = getpgid(r1) r4 = getpgid(r3) capset(&(0x7f0000000000)={0x20080522, r4}, &(0x7f0000000040)={0x4, 0xe0000003, 0x1f, 0x7, 0x8, 0xfff}) fork() [ 2648.773415][ T9467] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:50 executing program 4: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x20}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x30fc, &(0x7f0000000000)={0x0, 0x447b, 0x2, 0x2, 0xb4, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r2 = epoll_create1(0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000100)={0x10000010}, r2, 0x1, 0x0, 0x1}, 0x4) fork() 13:22:50 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x3292, &(0x7f0000000000)={0x0, 0x7925, 0x2, 0x3, 0x1aa, 0x0, r0}) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000001580)={0x41, 0x2, 0x2}, 0x10) fork() 13:22:50 executing program 0 (fault-call:1 fault-nth:98): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2649.142809][ T9496] FAULT_INJECTION: forcing a failure. [ 2649.142809][ T9496] name failslab, interval 1, probability 0, space 0, times 0 13:22:50 executing program 1: fork() r0 = fork() sched_setattr(r0, &(0x7f0000000100)={0x38, 0x6, 0x10000013, 0x2, 0x7ff, 0x7fff, 0x7ff, 0x7, 0x80, 0x8}, 0x0) wait4(r0, 0x0, 0x8, 0x0) r1 = fork() getpgid(r1) wait4(r1, &(0x7f00000000c0), 0x1, &(0x7f0000000180)) wait4(r1, &(0x7f0000000000), 0x20000000, &(0x7f0000000040)) [ 2649.196527][ T9496] CPU: 1 PID: 9496 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2649.205037][ T9496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2649.215108][ T9496] Call Trace: [ 2649.218434][ T9496] dump_stack_lvl+0xcd/0x134 [ 2649.223063][ T9496] should_fail.cold+0x5/0xa [ 2649.227596][ T9496] ? anon_vma_fork+0x1df/0x630 [ 2649.232391][ T9496] should_failslab+0x5/0x10 [ 2649.236916][ T9496] kmem_cache_alloc+0x5e/0x4a0 [ 2649.241716][ T9496] anon_vma_fork+0x1df/0x630 13:22:50 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) clock_getres(0x0, &(0x7f00000000c0)) wait4(r0, &(0x7f0000000000), 0x8, &(0x7f0000000040)) [ 2649.246338][ T9496] dup_mm+0x9a0/0x1380 [ 2649.250441][ T9496] ? vm_area_dup+0x2b0/0x2b0 [ 2649.255057][ T9496] ? __raw_spin_lock_init+0x36/0x110 [ 2649.260375][ T9496] copy_process+0x71e0/0x74c0 [ 2649.265088][ T9496] ? lock_chain_count+0x20/0x20 [ 2649.269960][ T9496] ? lock_chain_count+0x20/0x20 [ 2649.274852][ T9496] ? __cleanup_sighand+0xb0/0xb0 [ 2649.279828][ T9496] ? __lock_acquire+0x162f/0x54a0 [ 2649.284879][ T9496] ? kernel_clone+0x314/0xab0 [ 2649.289599][ T9496] kernel_clone+0xe7/0xab0 [ 2649.294075][ T9496] ? create_io_thread+0xf0/0xf0 [ 2649.298954][ T9496] ? find_held_lock+0x2d/0x110 [ 2649.303729][ T9496] __do_sys_fork+0x8a/0xc0 [ 2649.308165][ T9496] ? kernel_thread+0xf0/0xf0 [ 2649.312788][ T9496] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2649.319407][ T9496] ? lockdep_hardirqs_on+0x79/0x100 [ 2649.324638][ T9496] __do_fast_syscall_32+0x65/0xf0 [ 2649.329685][ T9496] do_fast_syscall_32+0x2f/0x70 [ 2649.334557][ T9496] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2649.340911][ T9496] RIP: 0023:0xf7f78549 [ 2649.344995][ T9496] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2649.364630][ T9496] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2649.373085][ T9496] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2649.381078][ T9496] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2649.389192][ T9496] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:22:50 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x9, 0x7f, 0x4, 0x1, 0x2}) r1 = openat$vim2m(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) r4 = openat$vcs(0xffffff9c, &(0x7f0000000400), 0x101101, 0x0) ioctl$vim2m_VIDIOC_QBUF(r1, 0xc04c560f, &(0x7f0000000440)={0x2, 0x0, 0x4, 0x1000, 0x7, {r2, r3/1000+10000}, {0x2, 0xc, 0x4, 0xcc, 0xdc, 0x40, "7417ebea"}, 0x2, 0x2, @fd=r4, 0xfffffdbe}) [ 2649.397182][ T9496] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2649.405178][ T9496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:50 executing program 3: fork() r0 = fork() r1 = getpgid(r0) r2 = fork() getpgid(r2) getpgid(r2) r3 = getpgid(r1) r4 = getpgid(r3) capset(&(0x7f0000000000)={0x20080522, r4}, &(0x7f0000000040)={0x4, 0xe0000003, 0x1f, 0x7, 0x8, 0xfff}) fork() 13:22:50 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x40010) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r4, 0x8, 0x70bd25, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8005}, 0x80) wait4(0x0, 0x0, 0x4, 0x0) 13:22:50 executing program 2: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x40010) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r4, 0x8, 0x70bd25, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8005}, 0x80) wait4(0x0, 0x0, 0x4, 0x0) 13:22:50 executing program 0 (fault-call:1 fault-nth:99): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:51 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000000)=0x10) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:51 executing program 2: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000000)=0x10) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2649.948077][ T9525] FAULT_INJECTION: forcing a failure. [ 2649.948077][ T9525] name failslab, interval 1, probability 0, space 0, times 0 [ 2650.006858][ T9525] CPU: 0 PID: 9525 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2650.015255][ T9525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2650.025334][ T9525] Call Trace: [ 2650.028636][ T9525] dump_stack_lvl+0xcd/0x134 [ 2650.033264][ T9525] should_fail.cold+0x5/0xa [ 2650.037803][ T9525] ? vm_area_dup+0x88/0x2b0 [ 2650.042773][ T9525] should_failslab+0x5/0x10 [ 2650.047309][ T9525] kmem_cache_alloc+0x5e/0x4a0 [ 2650.052111][ T9525] vm_area_dup+0x88/0x2b0 [ 2650.056482][ T9525] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 2650.062755][ T9525] ? copy_page_range+0x24ed/0x4010 [ 2650.067923][ T9525] ? vm_area_alloc+0x110/0x110 [ 2650.072719][ T9525] ? up_write+0x191/0x560 [ 2650.077071][ T9525] ? handle_mm_fault+0x7f0/0x7f0 [ 2650.082050][ T9525] ? downgrade_write+0x3a0/0x3a0 [ 2650.087010][ T9525] ? down_write_killable_nested+0x180/0x180 [ 2650.092937][ T9525] ? __vma_link_rb+0x553/0x710 [ 2650.097732][ T9525] dup_mm+0x543/0x1380 [ 2650.101842][ T9525] ? vm_area_dup+0x2b0/0x2b0 [ 2650.106471][ T9525] ? __raw_spin_lock_init+0x36/0x110 [ 2650.111798][ T9525] copy_process+0x71e0/0x74c0 [ 2650.116507][ T9525] ? lock_chain_count+0x20/0x20 [ 2650.121385][ T9525] ? lock_chain_count+0x20/0x20 [ 2650.126272][ T9525] ? __cleanup_sighand+0xb0/0xb0 [ 2650.131239][ T9525] ? __lock_acquire+0x162f/0x54a0 [ 2650.136290][ T9525] ? kernel_clone+0x314/0xab0 [ 2650.141022][ T9525] kernel_clone+0xe7/0xab0 [ 2650.145468][ T9525] ? create_io_thread+0xf0/0xf0 [ 2650.150369][ T9525] ? find_held_lock+0x2d/0x110 13:22:51 executing program 2: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="a367f3639fd31066355cd112bb5604f21ad09539a12df7c7a1cfdfd2668e5afd584d2acc591d52", 0x27) r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000004, 0x10, r0, 0x10000000) fork() [ 2650.155168][ T9525] __do_sys_fork+0x8a/0xc0 [ 2650.159614][ T9525] ? kernel_thread+0xf0/0xf0 [ 2650.164247][ T9525] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2650.170870][ T9525] ? lockdep_hardirqs_on+0x79/0x100 [ 2650.176096][ T9525] __do_fast_syscall_32+0x65/0xf0 [ 2650.181162][ T9525] do_fast_syscall_32+0x2f/0x70 [ 2650.186046][ T9525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2650.192397][ T9525] RIP: 0023:0xf7f78549 13:22:51 executing program 5: wait4(0x0, 0x0, 0x4, 0x0) syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) [ 2650.196475][ T9525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2650.216107][ T9525] RSP: 002b:00000000f55725fc EFLAGS: 00000296 ORIG_RAX: 0000000000000002 [ 2650.224551][ T9525] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 2650.232547][ T9525] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2650.240545][ T9525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2650.248542][ T9525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2650.256543][ T9525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:22:51 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:51 executing program 1: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usbip_server_init(0x3) r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r1 = getpgid(r0) wait4(r1, &(0x7f0000000000), 0x2, &(0x7f0000000040)) 13:22:51 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:51 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2650.520998][ T7764] usb 6-1: new high-speed USB device number 21 using dummy_hcd 13:22:51 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:52 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88) fork() ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000000)={0x3}) 13:22:52 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:52 executing program 4: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) [ 2650.881609][ T9541] usb 2-1: new high-speed USB device number 13 using dummy_hcd 13:22:52 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) 13:22:52 executing program 0: fork() fork() [ 2651.051443][ T7764] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2651.078836][ T7764] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 13:22:52 executing program 2: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r0, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = fork() getpgid(r1) ptrace$getregs(0xe, r1, 0x3, &(0x7f00000002c0)=""/4096) [ 2651.108725][ T7764] usb 6-1: Product: syz [ 2651.126189][ T7764] usb 6-1: Manufacturer: syz [ 2651.143508][ T7764] usb 6-1: SerialNumber: syz [ 2651.232381][ T7764] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 2651.402330][ T9541] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2651.412264][ T9541] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2651.424150][ T9541] usb 2-1: Product: syz [ 2651.429073][ T9541] usb 2-1: Manufacturer: syz [ 2651.437217][ T9541] usb 2-1: SerialNumber: syz [ 2651.482756][ T9541] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 2651.762244][ T3261] ieee802154 phy0 wpan0: encryption failed: -22 [ 2651.768562][ T3261] ieee802154 phy1 wpan1: encryption failed: -22 [ 2651.861582][ T7764] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 13:22:53 executing program 5: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) 13:22:53 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r0) sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4bbff355aeda92ff}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x10, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8801}, 0x24000894) sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r1, 0x2, 0x70bd2b, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004040}, 0x4000011) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) fork() [ 2652.080880][ T9541] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 2652.105846][T30673] usb 6-1: USB disconnect, device number 21 13:22:53 executing program 1: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000080)={0x3, 0x2, 0x4, 0x1000, 0x9, {r0, r1/1000+60000}, {0x4, 0x8, 0x20, 0x0, 0x3, 0x7, "de1d9c48"}, 0x4, 0x4, @fd}) r2 = fork() wait4(r2, 0x0, 0x4, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000040)={0x1a8}) 13:22:53 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:53 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0xc2, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000bab2269963cf2acbfc25fa0560e355a5337bbbb3e54b7b465ba1523e81df0967d3899b8f231a56980d891411600b71ffe13001a0e0ac78d48d7aa15d75c68ec1dd207f1b4beeeb3e33746fbb4a9edf1f13a569648c7dad34d293b4328d9e0aeba9c709c7f9492f88a9e02ac7e35f03d75173621c22babf32d56cc79eeb2d0fa956fc270fa9766e41a4e1c9f0585fd01df3ecce439fefda689f92705078459d1c0817b89cd39a3912e8664afd85856df9c76d08f903e599dd8895d4f6cd82b4582f777d63c07fcc2beb18e194776eada44ddd6212d9f00939910252e46ff098f0dcd2265710ba38e936c258cd17526dee1f508ff5b1452e1f9f29edf24bfe27fb76bbe65fb76d53d5305e3fd7f0f43417ff3f7781411bcb273e01d1611d978157c749be604577cb8ce46ca3a9a4aa48d1ce6cda42fdf3433c06f65988d0e13de5103686388cb40f9375de604d91bd73181fda0c3f8d0b20cb1da1dd667e56117e965d0e588a3064d0eb9d1715d098d912f5aad324"]) 13:22:53 executing program 2: fork() fork() 13:22:53 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = fork() getpgid(r1) ptrace$getsig(0x4202, r1, 0x9, &(0x7f0000000000)) [ 2652.312444][T27003] usb 2-1: USB disconnect, device number 13 13:22:53 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) 13:22:53 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:53 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:53 executing program 5: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) 13:22:54 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2652.880849][ T7764] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 2652.894055][ T7764] ath9k_htc: Failed to initialize the device [ 2652.915755][T30673] usb 6-1: ath9k_htc: USB layer deinitialized 13:22:54 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) capset(&(0x7f0000000140)={0x19980330, r0}, &(0x7f0000000180)={0x87a6, 0x4, 0xd1ed, 0x0, 0x7}) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:54 executing program 4: r0 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000001c0)={0x2, 0x1000}) fork() fork() ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000040)={0x847c, 0x7, 0x6, 0x3ff}) socket$can_bcm(0x1d, 0x2, 0x2) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x2, 0x12) 13:22:54 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x295}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x6499, &(0x7f0000000000)={0x0, 0xf24e, 0x20, 0x0, 0x2ed, 0x0, r0}) fork() 13:22:54 executing program 5: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000100)={r1, 0x1, r2}) fork() inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x14000000) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) [ 2653.120926][ T9541] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 2653.139200][ T9541] ath9k_htc: Failed to initialize the device [ 2653.188612][T27003] usb 2-1: ath9k_htc: USB layer deinitialized 13:22:54 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:54 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0xc2, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) 13:22:54 executing program 5: r0 = fork() r1 = getpgid(r0) r2 = getpgid(r1) wait4(r2, 0x0, 0x4, 0x0) 13:22:54 executing program 4: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4027, &(0x7f0000000000)={0x0, 0x21dd, 0x2, 0x0, 0x13f, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000d80)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000740)={0x5c4, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x558, 0x8, 0x0, 0x1, [{0x4ec, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "30060b4b05d511f3222eeb148f2b98bfb7e749fe1655699f4a04c1c92ccfd9b2"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "6d092f8ca4d5ae7b614dc08a06e6cccefcbc49347be2efa0faa5e40d062e30bf"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "98f9e41f0a2b42c24d22e4381a14e0cbb030d206ceab60d377abdc77d296778b"}, @WGPEER_A_ALLOWEDIPS={0x430, 0x9, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}, {0xb8, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x1}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x32}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xc1e}]}, {0x68, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}]}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x5c4}, 0x1, 0x0, 0x0, 0x24044c00}, 0x40000) r2 = fork() capset(&(0x7f0000000200)={0x19980330, r2}, &(0x7f0000000580)={0x4, 0x7, 0x6, 0x7f, 0x7, 0x7}) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) syz_io_uring_setup(0x1285, &(0x7f0000000340)={0x0, 0xeb33, 0x8, 0x3, 0xae}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000400)) syz_io_uring_submit(r4, r1, &(0x7f0000000440)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xf}, 0x8da) r5 = openat$vcs(0xffffff9c, &(0x7f0000000480), 0xc000, 0x0) inotify_add_watch(r5, &(0x7f00000004c0)='./file0\x00', 0x20) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x4) sendmsg$TIPC_CMD_SET_LINK_TOL(r5, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x68, 0x0, 0x928, 0x70bd2c, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x8, @media='ib\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x4208c) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x90200}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="2c0000009f04f35166aef97721d2aebc0f86d9e69565584e6593fe18893e0985ce645d56b906af4ca076eee4b25d1c6ddbdde2ffbc11cbb08df6080357", @ANYRES16=r3, @ANYBLOB="080025bd7000ff79c4000008000300000000", @ANYRES32=r6, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x44}, 0x80) 13:22:54 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:54 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) wait4(r0, &(0x7f0000000000), 0x1, &(0x7f0000000040)) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f00000000c0)="b6e97ead36370e11fec6", 0xa) 13:22:54 executing program 0: r0 = syz_io_uring_setup(0xb, &(0x7f0000000240)={0x0, 0x0, 0x4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x338b, &(0x7f00000000c0)={0x0, 0xd74a, 0x10, 0x1, 0x118, 0x0, r0}) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x100010, r0, 0x10000000) r1 = fork() wait4(r1, &(0x7f0000000000), 0x1, &(0x7f0000000040)) 13:22:54 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000240)={0x0, 0x920c, 0x1, 0x0, 0x2af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2}, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0}) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x4000, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r1, 0xc01064c2, &(0x7f0000000100)={r2, 0x1, r3}) fork() inotify_add_watch(r4, &(0x7f00000001c0)='./file0\x00', 0x14000000) r5 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r5) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000180)={0xfffffff9, 0x47504a50, 0x2, @stepwise={0xe1a, 0x9e, 0x800, 0xffff8000, 0x4, 0x4}}) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r6, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) 13:22:55 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0) fork() 13:22:55 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0) fork() 13:22:55 executing program 0: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:22:55 executing program 3: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 4: r0 = io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2654.552711][ T9721] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 2654.559416][ T9721] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2654.591754][ T9721] vhci_hcd vhci_hcd.0: Device attached [ 2654.612548][ T9731] vhci_hcd: connection closed [ 2654.615371][T29431] vhci_hcd: stop threads [ 2654.635645][T29431] vhci_hcd: release socket [ 2654.646567][T29431] vhci_hcd: disconnect device 13:22:55 executing program 1: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000080)={0x1, 0x3, 0x2914, 0x700000}) fork() r1 = fork() ioctl$BLKROSET(r0, 0x125d, &(0x7f00000000c0)=0x6) getpgid(r1) openat$vcs(0xffffff9c, &(0x7f0000000100), 0x400040, 0x0) capset(&(0x7f0000000180)={0x19980330, r1}, &(0x7f0000000140)={0xb, 0x5, 0x3ff, 0x136b, 0x1, 0x2}) capset(&(0x7f0000000000)={0x20080522, r1}, &(0x7f0000000040)={0x0, 0x1c, 0x1002, 0x20, 0x7, 0x81}) wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) wait4(r1, &(0x7f0000000240), 0x1, 0x0) r2 = openat$nullb(0xffffff9c, &(0x7f00000001c0), 0x200400, 0x0) ioctl$IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000200)={0x2}) 13:22:55 executing program 3: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:55 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0) fork() 13:22:55 executing program 4: r0 = io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, r1, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfff}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008001}, 0x4000800) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:56 executing program 3: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:22:56 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 4: r0 = io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:56 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x2, 0x4, 0x25, 0x4, 0x6, 0x5, 0x1, 0x5, 0x6dc}, 0x0) 13:22:56 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getpeername$tipc(r0, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:56 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 4: r0 = io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) [ 2655.511901][ T9772] vhci_hcd vhci_hcd.0: port 0 already used 13:22:56 executing program 5: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:56 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0xfffffffe, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) fork() 13:22:56 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) 13:22:57 executing program 4: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) 13:22:57 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0xfffffffe, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) fork() 13:22:57 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) fork() r0 = fork() ptrace$getsig(0x4202, r0, 0x1, &(0x7f0000000000)) 13:22:57 executing program 0: r0 = syz_io_uring_setup(0x1d44, &(0x7f0000000240)={0x0, 0x638b, 0x0, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$SIOCGETNODEID(r1, 0x89e1, &(0x7f0000000000)={0x2}) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r1, 0x1) fork() openat$vcs(0xffffff9c, &(0x7f0000000140), 0x101000, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f00000000c0)={0xc0000000, 0x2, 0x1, "3ca73755d8ae6732ad5d48782d2c9d61d48f3a7950a07b6536e42b3d722689a1", 0x38416761}) 13:22:57 executing program 5: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 4: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) 13:22:57 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 5: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 4: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x40b3f3, 0x6, 0x2, 0x2df}) 13:22:57 executing program 3: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:57 executing program 4: io_uring_setup(0x1627, 0x0) 13:22:57 executing program 0: getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x4) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000002e40)=ANY=[@ANYBLOB='L+\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fddbdf250000000008000100", @ANYRES32=r0, @ANYBLOB="080007001fd99894000000080007002e7c000008000100", @ANYRES32=0x0, @ANYBLOB="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"], 0x2b4c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:57 executing program 3: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) 13:22:58 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x1877, &(0x7f0000000000)={0x0, 0xb86, 0x1, 0x3, 0x1ab, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) fork() r2 = fork() waitid(0x3, r2, &(0x7f0000000100), 0x80000000, &(0x7f0000000180)) 13:22:58 executing program 2: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 4: io_uring_setup(0x1627, 0x0) 13:22:58 executing program 3: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 4: io_uring_setup(0x1627, 0x0) 13:22:58 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) fork() 13:22:58 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x40000000, 0x8}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:22:58 executing program 2: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:58 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x2, 0x2df}) 13:22:59 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x2df}) 13:22:59 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ptrace$getregs(0xe, 0x0, 0x1000, &(0x7f0000000000)=""/143) 13:22:59 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x2df}) 13:22:59 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x4, 0x70bd29, 0x25dfdbfa, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x80c4}, 0x24000000) sendmsg$TIPC_CMD_SHOW_PORTS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r1, 0x300, 0x70bd2b, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4880}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14, 0x0, 0x0, 0x8000000, 0x25dfdbfb}, 0x45}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) ioctl$sock_ifreq(r0, 0x8919, &(0x7f0000000000)={'team0\x00', @ifru_addrs=@in={0x2, 0x0, @multicast1}}) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:22:59 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x2df}) 13:22:59 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff) fork() r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, &(0x7f0000000000)={0x8, 0x8, 0x1}) 13:22:59 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ptrace$getregs(0xe, 0x0, 0x1000, &(0x7f0000000000)=""/143) 13:22:59 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:22:59 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:22:59 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) 13:23:00 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:00 executing program 1: r0 = fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x5, &(0x7f00000000c0)=""/194) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x3f, &(0x7f0000000000)=""/174) 13:23:00 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x1, 0x2, 0xfffffffc, 0x295}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0) fork() 13:23:00 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:00 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:00 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:00 executing program 4: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x2}) 13:23:00 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x101400, 0x0) setsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000140)=0x1, 0x4) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x5b4a, &(0x7f0000000000)={0x0, 0x98e4, 0x2, 0x0, 0x205, 0x0, r1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:00 executing program 1: r0 = fork() fork() wait4(r0, 0x0, 0x1, 0x0) 13:23:00 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:00 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff) fork() r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, &(0x7f0000000000)={0x8, 0x8, 0x1}) 13:23:01 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 2: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:01 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = syz_io_uring_setup(0x5368, &(0x7f0000000000)={0x0, 0x5551, 0x2, 0x3, 0x1b4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000100)=r1, 0x1) 13:23:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) capset(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000040)={0x7fffffff, 0x7, 0x101, 0x5e1, 0xffffffe1, 0xf6da}) 13:23:01 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 2: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:01 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 0: syz_io_uring_setup(0x74d8, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:01 executing program 2: io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, 0x2df}) 13:23:01 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:01 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:01 executing program 2: io_uring_setup(0x1627, 0x0) 13:23:02 executing program 1: r0 = fork() r1 = getpgid(r0) ptrace$getregs(0xe, r1, 0x5, &(0x7f0000000000)=""/4096) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:02 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) recvmsg(r1, &(0x7f0000000200)={&(0x7f0000000140)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/195, 0xc3}, {&(0x7f00000003c0)=""/164, 0xa4}, {&(0x7f0000000480)=""/174, 0xae}], 0x4, &(0x7f0000000540)=""/253, 0xfd}, 0x2040) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r2, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x3f}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x400}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xb78}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x200000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:02 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:02 executing program 2: io_uring_setup(0x1627, 0x0) 13:23:02 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:02 executing program 2: io_uring_setup(0x1627, 0x0) 13:23:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:02 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:02 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2df}) 13:23:02 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 1: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) getpgid(r1) fork() wait4(r0, 0x0, 0x4, 0x0) 13:23:03 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() io_uring_setup(0x489b, &(0x7f00000000c0)={0x0, 0xbc3c, 0x0, 0x2, 0x17a}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'}) r0 = fork() getpgid(r0) waitid(0x1, r0, &(0x7f0000000000), 0x40000000, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000200), 0x28400, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r1, 0x10f, 0x82, &(0x7f00000002c0), &(0x7f0000000300)=0x4) 13:23:03 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2df}) 13:23:03 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2df}) 13:23:03 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:03 executing program 2: io_uring_setup(0x1627, &(0x7f0000000080)={0x0, 0x0, 0x6}) 13:23:03 executing program 1: ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000140)={0x0, 0x1, 0x4, 0x20, 0x101, {0x0, 0xea60}, {0x2, 0x8, 0x48, 0x3, 0xff, 0x81, "408c3062"}, 0x5, 0x1, @userptr=0x1800000, 0x6, 0x0, 0xffffffffffffffff}) ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc04c560f, &(0x7f00000001c0)={0x39b9, 0x2, 0x4, 0x2000, 0x41, {}, {0x2, 0x2, 0x14, 0x1, 0xff, 0x1f, "475f4e93"}, 0x7, 0x2, @offset=0xa36, 0x4, 0x0, r0}) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) getsockopt$PNPIPE_IFINDEX(r1, 0x113, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4) getpgid(0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:03 executing program 4: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:03 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:04 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:04 executing program 0: fork() setsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x11, &(0x7f0000000100)=0x2, 0x4) r0 = getpgid(0x0) waitid(0x0, r0, &(0x7f0000000000), 0x40000000, &(0x7f0000000080)) 13:23:04 executing program 4: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:04 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:04 executing program 3: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:04 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x3, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0) syz_io_uring_setup(0x10cd, &(0x7f0000000080)={0x0, 0x2c4c, 0x1, 0x1, 0x115, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3, 0x10, r0, 0x10000000) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x12345}, 0xadb) fork() 13:23:04 executing program 2: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) getpgid(r1) fork() wait4(r0, 0x0, 0x4, 0x0) 13:23:04 executing program 4: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:04 executing program 1: fork() r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x3, 0x4a, 0x4, 0x4, 0x40, 0x9, 0x7f, 0x0, 0x2}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:04 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:04 executing program 3: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) getpgid(r1) fork() wait4(r0, 0x0, 0x4, 0x0) 13:23:04 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:04 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x5e65, &(0x7f0000000000)={0x0, 0x93a5, 0x10, 0x2, 0x3c0, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x6, &(0x7f0000000100)={0x0, 0x3938700}}, 0x9) fork() 13:23:04 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:05 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000000)={0x80000001}) fork() 13:23:05 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:05 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x5e65, &(0x7f0000000000)={0x0, 0x93a5, 0x10, 0x2, 0x3c0, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x6, &(0x7f0000000100)={0x0, 0x3938700}}, 0x9) fork() 13:23:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:05 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:06 executing program 0: getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000140), &(0x7f0000000180)=0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="240427bd7000fedbdf25010000000500350008000000080031000004000008002c003500000008000b0001000080b7274a87d63c3388f363c987ff89a060aaf874bd0748425b3361543aaa3c5e8790c159209486d5400dcdf4653d2d"], 0x34}, 0x1, 0x0, 0x0, 0x448d0}, 0x40c0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:06 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 1: r0 = fork() waitid(0x0, r0, &(0x7f0000000000), 0x20000002, &(0x7f0000000080)) r1 = fork() getpgid(r1) sched_setattr(r1, &(0x7f0000000100)={0x38, 0x0, 0x7, 0x401, 0x5, 0x5, 0x9, 0x8eb, 0xdc34, 0xfff}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88) 13:23:06 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000000)={0x80000001}) fork() 13:23:06 executing program 5: fork() r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x3, 0x4a, 0x4, 0x4, 0x40, 0x9, 0x7f, 0x0, 0x2}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:06 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 0: openat$drirender128(0xffffff9c, &(0x7f0000000000), 0x422200, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={0x0, 0x1, 0xffffffffffffffff}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(r1, 0xc01064c1, &(0x7f0000000140)={r0, 0x1, r1}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r2, 0xc01064c2, &(0x7f0000000080)={0x0, 0x0, r3}) syz_io_uring_setup(0x1b, &(0x7f00000000c0)={0x0, 0x0, 0x2, 0x1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:06 executing program 2: getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000140), &(0x7f0000000180)=0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="240427bd7000fedbdf25010000000500350008000000080031000004000008002c003500000008000b0001000080b7274a87d63c3388f363c987ff89a060aaf874bd0748425b3361543aaa3c5e8790c159209486d5400dcdf4653d2d"], 0x34}, 0x1, 0x0, 0x0, 0x448d0}, 0x40c0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:06 executing program 3: r0 = fork() r1 = getpgid(r0) ptrace$getregs(0xe, r1, 0x5, &(0x7f0000000000)=""/4096) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:06 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0)) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x12, r1, 0x10000000) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000040)={0x3, 0x12, 0x4, 0x1421, 0x6, {r3, r4/1000+60000}, {0x5, 0x8, 0x4, 0x6, 0x0, 0x1, "1f7f0796"}, 0x1, 0xb, @offset=0x3, 0xd71, 0x0, r1}) fork() syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffff) 13:23:06 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:06 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:07 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) capset(&(0x7f0000000000)={0x19980330, 0xffffffffffffffff}, &(0x7f0000000040)={0x0, 0x8, 0x6, 0x7, 0x77, 0xfffffb27}) 13:23:07 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:07 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = syz_io_uring_setup(0x5368, &(0x7f0000000000)={0x0, 0x5551, 0x2, 0x3, 0x1b4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000100)=r1, 0x1) 13:23:07 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000009, 0x100010, r0, 0x10000000) 13:23:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0)) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x12, r1, 0x10000000) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000040)={0x3, 0x12, 0x4, 0x1421, 0x6, {r3, r4/1000+60000}, {0x5, 0x8, 0x4, 0x6, 0x0, 0x1, "1f7f0796"}, 0x1, 0xb, @offset=0x3, 0xd71, 0x0, r1}) fork() syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffff) 13:23:07 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:07 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:07 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x8, &(0x7f0000000000)) 13:23:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0)) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x12, r1, 0x10000000) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000040)={0x3, 0x12, 0x4, 0x1421, 0x6, {r3, r4/1000+60000}, {0x5, 0x8, 0x4, 0x6, 0x0, 0x1, "1f7f0796"}, 0x1, 0xb, @offset=0x3, 0xd71, 0x0, r1}) fork() syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffff) 13:23:07 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000009, 0x100010, r0, 0x10000000) 13:23:07 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:07 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000040)={0x3000, &(0x7f0000000000), 0x4, r0, 0x4}) 13:23:08 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000009, 0x100010, r0, 0x10000000) 13:23:08 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:08 executing program 2: r0 = syz_io_uring_setup(0x1d44, &(0x7f0000000240)={0x0, 0x638b, 0x0, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$SIOCGETNODEID(r1, 0x89e1, &(0x7f0000000000)={0x2}) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r1, 0x1) fork() openat$vcs(0xffffff9c, &(0x7f0000000140), 0x101000, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f00000000c0)={0xc0000000, 0x2, 0x1, "3ca73755d8ae6732ad5d48782d2c9d61d48f3a7950a07b6536e42b3d722689a1", 0x38416761}) 13:23:08 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:08 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000009, 0x100010, r0, 0x10000000) 13:23:08 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:09 executing program 1: fork() fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) fork() 13:23:09 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:09 executing program 0: ioctl$MEDIA_REQUEST_IOC_QUEUE(0xffffffffffffffff, 0x7c80, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:09 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:09 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:09 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:09 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:09 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) 13:23:09 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:09 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:09 executing program 0: r0 = fork() syz_io_uring_setup(0x2bfb, &(0x7f0000000080)={0x0, 0x3313, 0x20, 0x1, 0x264}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r1 = getpgid(r0) ptrace$getsig(0x4202, r1, 0x3, &(0x7f0000000000)) 13:23:09 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:10 executing program 1: r0 = fork() wait4(r0, 0x0, 0x8, 0x0) 13:23:10 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) 13:23:10 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:10 executing program 0: r0 = syz_io_uring_setup(0x3514, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x64, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xc602}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x100}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000041}, 0x844) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000140)=r1, 0x1) fork() r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000080), 0x20000003, &(0x7f0000000180)={{0x0, 0x0}}) io_uring_setup(0x379b, &(0x7f0000000000)={0x0, 0x5416, 0x4, 0x2, 0x108, 0x0, r0}) socketpair(0x2a, 0xa, 0x8, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r7, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r8, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_PRI(r5, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018", @ANYRES64=r6, @ANYRES16=r8, @ANYRES64=r3], 0x68}}, 0x0) fork() sendmsg$TIPC_CMD_SHOW_STATS(r4, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r6, 0x4, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x810) 13:23:10 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:10 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:10 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) 13:23:10 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:10 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fork() 13:23:10 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:10 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:10 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:11 executing program 1: fork() fork() r0 = fork() ptrace$getregs(0xe, r0, 0x1, &(0x7f0000000000)=""/139) getpgid(r0) r1 = fork() getpgid(r1) wait4(r1, 0x0, 0x2, 0x0) 13:23:11 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) 13:23:11 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:11 executing program 0: ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, &(0x7f0000000100)={&(0x7f0000000080)=[r0, 0x0, 0x0, 0x0, 0x0, r1, 0x0], &(0x7f00000000c0)=[0x0, 0x0], 0x7, 0x1}) r2 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x8, 0x0, 0x350}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000c, 0x12, r2, 0x10000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000140)) fork() 13:23:11 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:11 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f00000000c0)) 13:23:11 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:11 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) 13:23:11 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:11 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:11 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:11 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0xdddd, 0x1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000000)) fork() 13:23:12 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) 13:23:12 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) 13:23:12 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), 0x0) 13:23:12 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x208200, 0x0) r1 = syz_usbip_server_init(0x5) write$usbip_server(r1, &(0x7f0000000100)=@ret_submit={{0x3, 0x4, 0x0, 0x1, 0x200}, 0x7, 0xfe, 0x2, 0x3b0, 0xffffffff, 0x0, "585b1c81bd23c4988e3a742449c4657faa3f89b9d8a2068674a0197c9a0f50b7507e7e93675e298ae27b13eb2e1a095b186f2c5a3523a1ebbe834578282f3034ca69877b11a65b20bb79e0b973bd9b7658f663f7efbad42db18c9e6f611dd149a1d2d015d587cd6a5aa0959b5a1e3e4d6047c86b6e18046470584ae229f331139ddef17e5412f181b975e20d7be4d4272f7ef63b0c83e29b3b710d5f0032beaffe61a3fc9e7ab50c760cee113daa74e315aa667298c60474203417ee84e2f7ee92b97bdf1d9095f92d91e74d2ec247889a540f5ca02fd73e7ba2f3060e9af2fc04414bd017e83fd6b0d77bd624f5729748013e5c299cfcc1bc17b1c3c94a", [{0x6db1, 0xfff, 0x7, 0x5}, {0x0, 0x9, 0x80, 0x9}, {0x10000, 0xfffffff7, 0x80, 0x5}, {0x2, 0xa3, 0xd88, 0x2}, {0x8, 0x3, 0x7ff, 0xfffffffb}, {0x4, 0xd74, 0x8000, 0x1}, {0x4, 0xd85c, 0x7ff, 0xffffff09}, {0x7, 0x3f3e, 0xffffffff, 0x10000}, {0x5, 0x0, 0x4, 0x7fff}, {0x7f, 0x8001, 0x6, 0x10001}, {0x8, 0x7ff, 0x8001, 0x7}, {0x81, 0x400, 0x7, 0x8}, {0x1, 0x80000001, 0x3, 0x9}, {0x9, 0x400, 0x1, 0x5}, {0x4, 0xfffffffe, 0x0, 0x100}, {0x4, 0x101, 0x8, 0xcce}, {0x3, 0x4, 0x3, 0xdfb}, {0x2, 0x0, 0xfff, 0x7fff}, {0x2, 0x84, 0x8000}, {0x8000, 0x4, 0x1f}, {0x6, 0x1, 0x1f, 0x4}, {0x9, 0x600, 0x80000000, 0x100}, {0x7, 0x4668, 0x2, 0x9}, {0x10000, 0xe73, 0xd, 0x6}, {0x2, 0x2, 0x8, 0x2}, {0x9, 0xa715, 0x74, 0x5}, {0x2, 0x7098, 0x40, 0x7}, {0x6, 0x0, 0x8863, 0x7}, {0xffffffff, 0x9, 0x8000000, 0x8}, {0x972, 0xfffffffd, 0x1ff, 0x4}, {0x4, 0x9, 0x800, 0x10000}, {0x3, 0xe76f, 0x8, 0x9}, {0x3f, 0xac, 0x1, 0x5}, {0x7fffffff, 0x1, 0x8, 0x5}, {0x0, 0x8, 0xbf2, 0x8}, {0x6c, 0x0, 0xffffff80, 0x9}, {0x2, 0x7, 0x80000001, 0xfff}, {0xec8f6194, 0x7, 0x7f, 0x38af}, {0x9, 0x1, 0x4, 0x1}, {0xa487, 0x8, 0xffffffff, 0x100}, {0x40, 0x8, 0x8, 0x9d}, {0x7, 0x78c, 0xfffffff7, 0x3}, {0x8, 0x9, 0xd727, 0x526}, {0xd8, 0x9, 0x0, 0xd3d4}, {0x6000000, 0xfffffeff, 0x0, 0x23}, {0x5, 0xfffffff9, 0xfff, 0x2}, {0x5, 0xfc6a, 0x3f, 0x1}, {0xff, 0x41, 0x3, 0xcf00}, {0xd9, 0x20, 0x4, 0xffffffff}, {0x1, 0x2, 0xaf, 0x8}, {0x1, 0xfb96, 0x1, 0x8}, {0x8, 0x5, 0x54a, 0x94}, {0x8, 0x98, 0x7, 0x1d}, {0x200, 0x3f, 0x0, 0x400}, {0x81, 0x4, 0xfff, 0x1c29}, {0x7ff, 0x400, 0xffffffff, 0x67c5}, {0x5, 0x4, 0x40, 0x1}, {0x80000000, 0x6, 0x9}, {0x2, 0x7, 0xf3a, 0x7}, {0xa3a3, 0x7, 0x4, 0xffffffff}, {0x9, 0x100, 0x1, 0x7}, {0x8282, 0x40, 0x80000001, 0x1}, {0x4, 0x3, 0x3, 0x6}, {0x10000, 0x9, 0x3, 0x8}, {0x6, 0x3, 0x68d6}, {0xd6, 0x3}, {0x1, 0x200000, 0x40, 0x5}, {0x2, 0xfffff0ff, 0x6, 0x6}, {0x10000, 0x80000, 0x9, 0xa6}, {0x3, 0x7, 0x8001, 0x10000}, {0x7f, 0xc9, 0x4bb}, {0x3, 0x5b4, 0x0, 0x4}, {0x6, 0x2, 0x0, 0xc1e}, {0xef, 0x0, 0x0, 0x4}, {0x8001, 0x8, 0x5, 0x2}, {0x401, 0x1, 0xfffffff8, 0x9}, {0xda, 0x6, 0x1f, 0x1}, {0x1, 0x126, 0x80000000, 0x8}, {0x1f, 0xfffffffc, 0x6, 0xff}, {0x2, 0x368a, 0x45, 0x6}, {0x9680, 0x5, 0x4, 0x1220}, {0x6, 0x1, 0x8, 0x8}, {0x6, 0xffff, 0x8, 0x69}, {0x2, 0x1f, 0x2, 0x400}, {0xa80, 0x1, 0x1000, 0x3}, {0x5, 0x9b33, 0xaab, 0x4}, {0x3, 0x0, 0x5, 0x5}, {0x4, 0xffff, 0x3, 0x1}, {0x2, 0x40000000, 0x3c, 0x3}, {0xcc15bc2, 0x2, 0x8, 0x4}, {0x80000000, 0x10001, 0x6, 0x7f}, {0x45a2, 0x6, 0x2, 0xffffffff}, {0xd8, 0x3, 0xffffffff, 0x1ff}, {0x1, 0xd5bf, 0x36, 0x1}, {0x6, 0x40, 0x101, 0x81}, {0x6, 0x7, 0x7, 0xffff}, {0x4, 0x5, 0x81, 0x4}, {0x5, 0x4, 0x4, 0x7f}, {0x9, 0x7, 0x81, 0x8}, {0x3, 0x5, 0x3}, {0x8, 0xffff, 0x0, 0x8}, {0x5, 0x0, 0x6, 0x80}, {0x200, 0xf0, 0x10001, 0x8}, {0x5, 0xba2, 0x401, 0x7}, {0x4ee7, 0x5, 0x59c8}, {0x7ff, 0x7, 0x7, 0xfffffff7}, {0x6, 0x6, 0x100, 0x4}, {0x47, 0xfffffffe, 0x7}, {0x3ff, 0x80, 0x0, 0x7}, {0x1, 0x7, 0x3, 0x40}, {0x1, 0x0, 0x67da, 0x91}, {0x2, 0x1, 0x8, 0x3}, {0x2, 0x65ff, 0x3, 0x2}, {0x800, 0xd54f, 0x80}, {0x3, 0x10000000, 0x101, 0x7}, {0xffff, 0x1f, 0xa17b, 0x8}, {0x0, 0x5, 0x1}, {0xe23, 0x8, 0x6, 0x20}, {0x3, 0x7, 0x0, 0x7}, {0x1, 0x8, 0x0, 0x9}, {0x9, 0x5, 0x5, 0x2}, {0x40, 0x5, 0x7, 0x6}, {0x9, 0xc94, 0x7, 0x6}, {0x2, 0x8000, 0x2, 0x800}, {0x39, 0x8, 0xce2, 0x81}, {0x7fffffff, 0x8, 0x800, 0x7}, {0x81, 0x3, 0xfffff968, 0x7c9b}, {0x3, 0x2, 0xfffffbff, 0x3}, {0x0, 0x2b, 0x400, 0x3d}, {0x3, 0x81, 0xe91, 0x200}, {0x3f, 0x9, 0x1ff, 0x5c}, {0x6, 0x10000, 0xffffffc0, 0x2}, {0x1ff, 0x8001, 0xf3}, {0x7, 0x57, 0x7, 0xfffff869}, {0x8, 0x3519, 0x3, 0x8}, {0x0, 0x6, 0x1e, 0x20}, {0xc04, 0xfff, 0xffffffff, 0x5b7a}, {0x4, 0x101, 0x80000001, 0x5}, {0x7fffffff, 0x7f, 0x3, 0xfffffff8}, {0x1ff, 0x3, 0x800, 0x6}, {0x80000001, 0x200, 0x7, 0x6}, {0x10000, 0x84, 0x1, 0x1}, {0x1f, 0xfff, 0xefc, 0xffffffff}, {0x1, 0xfffffc7c, 0x80000001, 0xfff}, {0x0, 0x1, 0x1, 0x10001}, {0x800, 0x9, 0x6, 0x7}, {0x1ff, 0x7ba6edf7, 0x7ff, 0x3f}, {0xffffffff, 0x101, 0x3, 0x1}, {0x6, 0xfffffeff, 0x6, 0x3f}, {0x5, 0x5, 0x1fe000, 0x6}, {0x7, 0x10000, 0x80000000, 0x7}, {0x7, 0x7, 0x40, 0x5}, {0x5, 0x8, 0x3aff9967, 0xcb000000}, {0x1ff, 0xd4, 0x8, 0x4}, {0x5a6, 0xddac, 0x0, 0x7ee}, {0x8, 0x6, 0x3, 0x2}, {0x1, 0x0, 0x101, 0x40}, {0x8, 0xb1, 0x4, 0x7}, {0x401, 0x9, 0xfff, 0xab6}, {0x9, 0x7, 0x2, 0x7}, {0xfffffffb, 0x2d70, 0x9, 0x4}, {0x0, 0xfffffff9, 0x5ad, 0xaee}, {0x1, 0x0, 0x0, 0x6}, {0x80, 0xffffffff, 0x76c, 0x3}, {0x6, 0x0, 0xff, 0x3}, {0xb1f7, 0x1, 0x2, 0x3f}, {0x2, 0x2, 0x6, 0x9e8}, {0x8e, 0x5, 0x8000, 0x2}, {0x3, 0x1, 0x4a, 0x1f}, {0x1a46, 0x8001, 0x6}, {0x2, 0x2, 0x101, 0x2}, {0x8, 0x3, 0x3, 0x60}, {0x7, 0x1, 0x1f, 0x1}, {0x79, 0x9, 0x0, 0x8}, {0x40, 0x5, 0x0, 0x101}, {0x6, 0x8001, 0xfffffffd, 0x8}, {0x7, 0xfff, 0x383, 0x3}, {0x8, 0x1000, 0x6, 0x3}, {0x9, 0x1, 0xfff, 0x7fffffff}, {0x1, 0x8000, 0xfff, 0x10000}, {0x7fff, 0x5, 0xbf, 0x401}, {0xc4e, 0x6, 0x3, 0xa8}, {0x4, 0x1f, 0x20, 0x401}, {0x5, 0x9, 0x1, 0x200}, {0xd27, 0x80000001, 0x8, 0x1}, {0x8001, 0x2, 0x101, 0xbb7f}, {0x0, 0x0, 0x5}, {0x40, 0xee, 0x7, 0xa1}, {0xffffffff, 0x2, 0xa55, 0xfffffc01}, {0x0, 0x5, 0x1, 0x40000000}, {0x7, 0x9, 0xab37, 0x8}, {0x1ff, 0x3, 0x40, 0x3}, {0x8, 0x7, 0x4, 0xff}, {0x97, 0x8, 0x3, 0x2}, {0x4, 0x9, 0x3, 0x7f}, {0x80000001, 0x7fffffff, 0x1, 0x9}, {0x94, 0x8, 0xfffffff9, 0x80}, {0x1, 0x10001, 0x401, 0x100}, {0x1, 0x8, 0x9, 0x1000}, {0x8, 0x83de, 0x9, 0x2}, {0x852, 0x7, 0x1, 0x3f}, {0x6, 0x80000001, 0x0, 0x5}, {0x7, 0x8, 0x52, 0x2a4}, {0xff, 0x9, 0x262f24e7, 0x6}, {0x8, 0x9, 0x5, 0xfffffffb}, {0x5, 0x0, 0x31, 0x1}, {0x5, 0x80000000, 0x7fffffff, 0x6}, {0x0, 0x1, 0x800, 0x1}, {0x1, 0x2, 0x3, 0x7}, {0x4, 0x7, 0x54, 0x1}, {0x1000, 0x4, 0x5, 0x6}, {0x3ff, 0x3f, 0x360f, 0xffffffff}, {0x8, 0x2, 0x5, 0xe1}, {0x2, 0x2, 0x1, 0x5}, {0x7ff, 0x454d, 0x0, 0x1}, {0x6, 0x5, 0x3372, 0x4}, {0x3, 0xfffffff8, 0x80, 0x5}, {0x0, 0x3f, 0x8, 0x7}, {0x0, 0x8001, 0x5, 0xffff}, {0x1, 0x80000000, 0xe, 0x100}, {0x4, 0x4, 0x7, 0xffffffff}, {0xfffffffd, 0x556, 0x1f, 0x5}, {0x100, 0x80000000, 0x3f, 0x7f}, {0x2, 0x8, 0xa6c6, 0x78b}, {0x8, 0x3b4a, 0x1, 0x9}, {0x9, 0x401, 0x8000, 0x4}, {0x5, 0x6, 0x8001, 0x10000}, {0x1, 0x3, 0x1f, 0x800}, {0x6, 0x3ff, 0xc000, 0x3}, {0x9, 0x1ff, 0xa9, 0x4c47b3b8}, {0xfffff759, 0x0, 0x20, 0x5}, {0x100, 0x1, 0x8, 0x401}, {0xe1a, 0x365, 0x1ff, 0x10001}, {0xffff, 0x7, 0x7fff, 0xffffffff}, {0x800, 0x3, 0x44, 0x7ff}, {0x3, 0x8, 0xa00000, 0x3ff}, {0x5, 0x1, 0x5, 0x5}, {0x3ff, 0x2, 0x0, 0x4}, {0x1f, 0x200, 0x6, 0x1}, {0x100, 0x80, 0x3, 0xfff}, {0x8, 0x7ff, 0x2, 0x26}, {0x7f, 0x5a, 0x8, 0x400}, {0x6, 0x3, 0x40, 0x80000001}, {0x3, 0x0, 0x2, 0xfffffffb}, {0x8001, 0x9, 0xf6cd, 0xff}, {0xf8000000, 0x6, 0x800, 0x2}, {0x40, 0x1, 0x26, 0x8}, {0x3f, 0x0, 0x7, 0x80}, {0x10001, 0x3, 0x5, 0x1}, {0xf800, 0x0, 0x9a, 0x5}, {0x1, 0x4, 0x9, 0xfb6d}, {0x0, 0xdb5, 0x3, 0xf}, {0x20, 0x6, 0x673, 0x3}, {0x1ff, 0x26d3, 0xfffffff8, 0x4}, {0x6, 0xfffffc00, 0x4, 0x200}, {0x0, 0x0, 0x400, 0x9}, {0x1, 0x10000, 0xffffff7f, 0x8}, {0x1, 0x1, 0x9, 0x3}, {0x101, 0x9, 0x8, 0x3}, {0x2, 0x1, 0x6, 0x4}, {0x80000000, 0x5, 0x80}, {0x5, 0x4, 0x10001, 0x1}, {0x35f, 0x6, 0x7f, 0x50}, {0xfffffff7, 0x3, 0x20, 0x9}, {0x0, 0x0, 0x9, 0x200}, {0x21e, 0xfff, 0xfff, 0x8}, {0x7, 0x80000000, 0x4, 0x6}, {0xfff, 0x6, 0x0, 0x4b35d8d5}, {0x2, 0xffff, 0x101, 0x461}, {0x4, 0x64c, 0x5df, 0x7ff}, {0xb1, 0x3, 0x4}, {0x9, 0x5, 0x0, 0x3}, {0x3, 0x6, 0x80, 0x1}, {0x17, 0x4, 0x35e8, 0x5}, {0x1ff, 0x2, 0x3f, 0x10001}, {0x5, 0x6, 0x2, 0x3}, {0x7, 0xffffff7a, 0x2, 0xf0cf}, {0x401, 0x2, 0x2de}, {0x1000000, 0xfffff801, 0x0, 0x80}, {0x0, 0x6, 0x833b, 0x3}, {0x401, 0x401, 0x1ff}, {0x5, 0x23e, 0x20, 0xa}, {0x2d, 0x2, 0x7, 0x1}, {0x800000, 0x3, 0x8, 0x5}, {0xfffffffc, 0x7fff, 0x1, 0x5}, {0x6, 0x924, 0x800, 0x1}, {0xfa44, 0x3, 0x6, 0x4}, {0x20, 0xfff, 0x40, 0x3}, {0x8001, 0xfff, 0x80, 0x101}, {0x1, 0x8000, 0xbd80, 0x1}, {0x400, 0x80, 0x4, 0x2}, {0x7fffffff, 0x9, 0x2, 0x1f}, {0x7, 0xd8b, 0x1, 0xfffffff9}, {0x6, 0xfffff001, 0x925, 0x11e}, {0x401, 0x3f, 0x2, 0x80000001}, {0x5, 0x3, 0x380, 0x7fffffff}, {0x2, 0x4, 0x1, 0x7}, {0x5, 0x8000, 0x7f, 0x2}, {0x3, 0x5, 0x0, 0x5}, {0x4, 0x7, 0x30000000, 0x81}, {0x7, 0x4, 0x4, 0xffffffff}, {0x4, 0x7fff, 0x9b, 0x2aa}, {0x5, 0x8000, 0x1, 0x9}, {0x0, 0x8, 0x5, 0x1f}, {0x9, 0x5, 0x197}, {0x0, 0x20, 0x0, 0x3}, {0x8000, 0xfffffff9, 0x1, 0xc76}, {0x5, 0xffff, 0x7fff, 0x3}, {0xffff, 0x5, 0xfff, 0x7}, {0x2, 0x0, 0x1f, 0x1}, {0x7ff, 0xd446, 0x7fff, 0x3}, {0x9, 0xbc3b, 0x3, 0xbce}, {0x4, 0x2, 0xffff, 0xe7f5}, {0x200, 0x81, 0x1e4, 0x3c}, {0xffffff01, 0xd3, 0x8, 0x1ff}, {0x8000, 0x5, 0x5}, {0xffff0000, 0x81, 0x40, 0xda}, {0x40, 0x8, 0x5, 0x8}, {0x9, 0x2, 0x8b5b, 0x9}, {0x7fffffff, 0x2, 0x2e, 0x1}, {0x8, 0x3, 0x400, 0x8}, {0x1ff, 0x8, 0x57b, 0x3}, {0x3, 0x1, 0x81, 0x1f}, {0x3, 0x80, 0x8, 0xfff}, {0x2, 0xfea, 0x4, 0xffff}, {0x9, 0x101, 0x1e88514b, 0x4}, {0x401, 0x2, 0x75c}, {0x3, 0x10000, 0x81, 0x1}, {0x4, 0x8, 0x7, 0x5}, {0x40, 0x6fa, 0x2, 0x18}, {0x0, 0x400, 0x1, 0x6}, {0x8, 0xffff, 0x0, 0x7}, {0xfffffbff, 0x8000, 0x7fff, 0x81b}, {0x6, 0x3, 0xffffffff, 0xfffffff8}, {0x1, 0x1000, 0x3, 0x4}, {0x0, 0xffffffff, 0x8, 0x5}, {0x400, 0x5, 0xa3, 0x1}, {0xfffffffa, 0xffc00000, 0x6, 0x100}, {0x200, 0x5, 0xcea, 0x1}, {0x3ff, 0xe77, 0x7, 0x2}, {0xfffffffb, 0x1f, 0x0, 0xff}, {0x7ff, 0xfffffffa, 0xc132, 0x1000}, {0x5f, 0xffff, 0xffffffa4, 0x10000}, {0x9, 0x5, 0x100, 0x5}, {0x1f, 0x12, 0x9, 0x6}, {0x762, 0x80000000, 0xffffffff, 0x100}, {0x7, 0x4, 0x4, 0x1}, {0x6, 0x1, 0x3, 0x4}, {0x4, 0x27a78183, 0x5, 0x5fb6}, {0x7, 0x3, 0x5, 0x7fffffff}, {0x10001, 0x1000, 0x3, 0xfffffbff}, {0xffff, 0x3, 0x8, 0x97f3}, {0x0, 0x8, 0x3f}, {0x9, 0x4, 0x8, 0x5}, {0x0, 0x1ff, 0x9b6c, 0x81c3}, {0x4499, 0x6, 0x5, 0x40}, {0xffff33e9, 0x35b, 0x0, 0x33}, {0x5435, 0x7fff, 0x95a, 0x6}, {0x20, 0xfffffffb, 0x9, 0x5}, {0xfffffff7, 0x6, 0x400, 0xfffffffe}, {0x0, 0x0, 0x3ff, 0x8}, {0x800, 0x1, 0x8, 0x4}, {0x81, 0x357, 0x3ff, 0x7}, {0x0, 0x4e9a, 0xff}, {0x5, 0x2, 0x1000, 0x9}, {0x20000000, 0x0, 0x10000, 0x8}, {0x9, 0x1, 0x7, 0x100}, {0x4f, 0x80000001, 0x9, 0x9}, {0x8, 0x20, 0x100, 0x80000000}, {0x4, 0x80, 0x7fff, 0x9}, {0x6, 0x2, 0xdf6b3497, 0x28}, {0x80000000, 0x7ff, 0x71ce77b5, 0xfffffff9}, {0x9, 0x754, 0x8683, 0x5}, {0x1f, 0x7, 0x3, 0x26ed7581}, {0x4, 0x3f, 0x4, 0x6}, {0x8, 0x2, 0x800, 0x400}, {0x7, 0x400, 0x80}, {0x33cd, 0x0, 0x8000, 0x7}, {0x3, 0xe, 0x2, 0x3ff}, {0x9, 0x5, 0x6, 0x10000}, {0x72, 0x7fffffff, 0x7, 0x4}, {0x4b2c, 0x7, 0x7d9, 0x9}, {0xfffffffc, 0x6, 0x10001, 0xbb}, {0x8000, 0xbd7, 0x3, 0xff}, {0x80000, 0x80000001, 0x200, 0xffffaeeb}, {0x0, 0xffffff4a, 0x7, 0x80}, {0x4, 0x4, 0x3, 0xffff}, {0x1a3, 0x1, 0x8, 0xfc39}, {0xffffff80, 0xfffffffe, 0x6, 0x4}, {0x1114, 0x3, 0xfff, 0x1f}, {0x8000, 0x8, 0x3ff, 0x1f}, {0x7, 0x4000, 0x29b, 0x2}, {0x2c9, 0x0, 0x4, 0xc000}, {0x59, 0x4, 0xf66f, 0x56ff}, {0x5, 0x1, 0x800, 0xff}, {0x8, 0xfff, 0x1, 0x3}, {0x5712, 0xe2b8, 0xaae4, 0xfffffffb}, {0x6, 0x3, 0x92, 0x81}, {0x2, 0x8, 0xffff, 0x81}, {0x9, 0xffffff8e, 0x8, 0x5b53}, {0x3f, 0x9, 0x4, 0xff}, {0x7, 0x2e, 0x20, 0x1}, {0x0, 0x2, 0x83, 0x81}, {0x638, 0x1, 0xa6e2, 0x80000001}, {0xfffffbff, 0x3, 0x1, 0x3}, {0x8, 0x2, 0xffff0000, 0x5}, {0x9, 0x8000, 0xc5, 0x5}, {0xfffffffa, 0x401, 0x0, 0x4}, {0x3, 0xc15, 0x3ff, 0x3}, {0x7, 0x1, 0x9}, {0x10001, 0xeb, 0xb21, 0xffff}, {0x9, 0x91ef, 0xfff, 0x80000001}, {0x100, 0x4, 0xc97, 0x3}, {0x87, 0x80000000, 0x0, 0x80000001}, {0xffff, 0x8, 0x6d3c, 0x1}, {0x6, 0x2a8, 0x3, 0x8}, {0x1, 0x8000, 0x80, 0x2a9}, {0x1f, 0x9, 0x4, 0x3}, {0x20, 0x177, 0x80000000, 0x1}, {0x3b8, 0x1f, 0x2, 0x742}, {0xffff, 0x8, 0x4, 0x4}, {0x3, 0x9, 0x80000000}, {0x3, 0x7fff, 0x5, 0x9}, {0x1, 0x80000000, 0x9, 0x1}, {0x100, 0x10000, 0x1000, 0x9}, {0x9, 0x9, 0x20000, 0x1f}, {0x1ff, 0x8, 0x0, 0xaabb}, {0xffffffff, 0x4, 0x5, 0x3f}, {0x3, 0x9, 0x2, 0x8}, {0x1, 0x2266262, 0x49, 0x20}, {0xe9d0, 0x0, 0x7, 0x2}, {0x80000000, 0x3ff, 0x3ff, 0x1}, {0xf7, 0x5ed, 0x6b5a, 0x7fffffff}, {0x7, 0xfff, 0xffffffff, 0x9}, {0x5, 0x3, 0x3ff, 0x9}, {0x2, 0x0, 0x5, 0x8}, {0x4, 0xffc, 0x2, 0xb48c}, {0x3, 0x1ff, 0x8, 0x6a}, {0x401, 0x7ff, 0x1, 0x7}, {0x8, 0xa7e, 0x8, 0x200}, {0x9, 0x3, 0x9, 0x6}, {0x7, 0x1000, 0x10000}, {0x80000000, 0xfff, 0xe4, 0x8}, {0x3, 0x401, 0x7, 0xfff}, {0xfffff32f, 0x9, 0xffff8001, 0x9}, {0x514dc89f, 0x9, 0x5, 0x8}, {0x3, 0x7ff, 0xfc8, 0x7}, {0x1, 0x3f, 0x5}, {0x68b, 0x1000, 0xfdc0, 0xeb80}, {0x101, 0xc332, 0x6, 0xffffff64}, {0x9, 0xbb, 0x5, 0x5}, {0x4, 0x0, 0x1f}, {0x9, 0x2, 0x1, 0x4}, {0x2, 0x1ff, 0x74c, 0x2}, {0x8, 0x5d2, 0x81, 0x6}, {0x9b, 0x2, 0xfff, 0x6}, {0x80000001, 0x7fff, 0x1d49, 0x8}, {0x101, 0x8f, 0xd162}, {0x200, 0xc7, 0x2e0, 0x80000001}, {0x200, 0x6, 0x9, 0xab6}, {0x6, 0xffff, 0x6, 0x8}, {0x81, 0x11, 0x3, 0x5}, {0xfffffffc, 0x800, 0x5}, {0xc43d, 0x1, 0x5, 0x6}, {0x6, 0x40, 0x401, 0x4}, {0x9, 0x6, 0x2, 0x9}, {0x0, 0x20, 0x1d1}, {0x4, 0x1, 0x2, 0x10000}, {0x81, 0x6, 0x3ff, 0x1}, {0x99, 0xff, 0x7ff, 0x6}, {0x3, 0x6, 0x7f, 0xffff}, {0x1, 0x0, 0x1, 0xffff}, {0x80000000, 0x2, 0x400, 0x3}, {0x6, 0xe0c5, 0xc209, 0x3}, {0x0, 0x6, 0x3, 0xff}, {0x8, 0x5d67, 0x3, 0x101}, {0x0, 0x5, 0x8, 0x7}, {0x1, 0x7, 0x45dd, 0x5}, {0x691, 0x3ff, 0xc6bd, 0x6e09}, {0x2, 0x8, 0x1ff, 0x6}, {0x5, 0x8, 0x109, 0x10000}, {0x9, 0x1ff, 0x6, 0x7}, {0x9, 0x6, 0xffff, 0x8000}, {0x1, 0x5, 0xe08f, 0x5}, {0x4, 0x1, 0x9, 0x1}, {0x401, 0x400, 0x9, 0xfff}, {0x87, 0x7, 0x9, 0x81}, {0x4, 0x7f, 0x7, 0x1c}, {0xd4, 0x0, 0x8, 0x80000001}, {0xdd, 0x5, 0xd3, 0x2}, {0x6, 0x1, 0x8dd, 0x7}, {0x0, 0x80, 0xced4, 0x3}, {0x5, 0x4eb3, 0xff, 0x7f5b}, {0xfffffbff, 0x2, 0x7, 0x5}, {0x7, 0x3, 0x6, 0x5}, {0x7f, 0x3, 0xffff8001, 0x81}, {0x73c0, 0x4, 0xfffffc01, 0x9}, {0x8, 0x4, 0x9}, {0x8, 0x5, 0x20, 0x5}, {0x7eaa, 0xa5, 0x2, 0x1}, {0x9, 0x6, 0x9, 0x3}, {0x7, 0x8000, 0x3, 0x1f}, {0x9, 0x3, 0x5, 0x107}, {0x4, 0x6, 0xf, 0x2e70}, {0x6, 0x6, 0x400, 0x2e}, {0x7, 0xa948, 0x3, 0x263}, {0x5, 0x9, 0x7f, 0x3}, {0x3, 0x7ff, 0x2, 0x800}, {0x4, 0x4, 0x8b, 0x80000000}, {0x9, 0x3, 0x23, 0xff}, {0x200, 0x7fffffff, 0x234, 0x1440000}, {0x3, 0x6, 0x2, 0x2}, {0x1000, 0x9, 0xff, 0xfffffffc}, {0x7fffffff, 0x3, 0x3, 0x200}, {0x1, 0x96, 0x7fff, 0x3}, {0xfffffffa, 0x82, 0xffff, 0x2}, {0x401, 0x9, 0x9, 0x72}, {0x100, 0xffff, 0x1, 0x9}, {0x1, 0x2, 0x1000, 0x8}, {0x3, 0xc5, 0x8f7, 0x8}, {0x3f, 0x6, 0x39f1d655, 0x8}, {0xffffffc1, 0x8, 0x1}, {0x400, 0x9, 0x3, 0x9}, {0x72, 0x40, 0x6, 0x1}, {0x6, 0x7, 0x2, 0x5}, {0x10000, 0x7, 0x573, 0xd7ca}, {0x9e, 0x49, 0xffffffff, 0x5}, {0x501a, 0x7, 0x3f, 0x6}, {0x3, 0x800, 0x3f}, {0x5, 0x2, 0x3f, 0x9}, {0x0, 0xff, 0xce35, 0x101}, {0x62, 0x0, 0x3f, 0x3}, {0x9, 0x6e2, 0xffff2a91, 0xfff}, {0x3ff, 0xfffffeff, 0x0, 0xc5}, {0x3, 0x6, 0xd1, 0x100}, {0xffffffff, 0x0, 0xbed, 0x2c4f}, {0xb8000000, 0x100, 0xf4, 0x101}, {0x8, 0x5, 0xb9c, 0x78}, {0x7ff, 0x2, 0x4, 0xd39}, {0x400, 0x20e3, 0x3, 0x2}, {0xffffff00, 0x7, 0xf4, 0x1000}, {0x5, 0x5, 0x6a500, 0x91}, {0x5d, 0x6f5, 0x8001, 0xffff}, {0x80000000, 0x8000, 0x9}, {0x1, 0xffff, 0x0, 0x394}, {0x5f, 0xc73, 0x6, 0x1}, {0x73, 0x6, 0x275, 0x3}, {0x81, 0x9, 0x1}, {0x80000000, 0x1f, 0x8, 0x7}, {0x8, 0x7, 0xacb, 0x4}, {0xe148, 0xfffffffe, 0x5, 0x80}, {0xffffffff, 0x2, 0x3, 0x4}, {0x8, 0x4, 0x80000000, 0x10001}, {0x7ff, 0x1000, 0x4, 0x7}, {0x10000, 0x1, 0x4606, 0x91}, {0x4, 0x0, 0x1f, 0xab300}, {0xdcd, 0x4, 0x7fffffff, 0x2}, {0x4954fecf, 0xfffffff8, 0x1, 0xfff}, {0x1, 0xda, 0x6, 0xffffffff}, {0x9, 0x80000000, 0x7fffffff, 0x6}, {0x4, 0x200, 0x0, 0x10000000}, {0xffffffff, 0x6, 0x9, 0xffffffff}, {0x3ff, 0x4, 0x0, 0x6}, {0xbd, 0xff43, 0x3ff, 0x7}, {0x5, 0x7c7, 0x4, 0x4}, {0x1000, 0x8, 0x7, 0x1}, {0x8, 0x401, 0x5, 0x1}, {0x3f, 0x8000, 0x6, 0x3f}, {0x2, 0x2, 0x4, 0x8}, {0x7, 0x9, 0xff, 0x5}, {0x1, 0x10001, 0x4, 0x9}, {0x7, 0x1, 0x401, 0xd10b}, {0x9, 0x1, 0xafdd, 0xff}, {0x81, 0xfffffffa, 0x8, 0x4}, {0x2, 0x4, 0x3, 0x5}, {0x15d8, 0x8001, 0x31, 0x100}, {0x80000000, 0x5e22, 0x9, 0x1ff}, {0x14000, 0x0, 0x8, 0xffffffff}, {0x3, 0x5, 0xffff, 0x44}, {0x9, 0x7ff, 0x7fffffff, 0x40}, {0x20, 0x5, 0x4, 0x596}, {0x3, 0x0, 0x46e, 0x6}, {0x3ff, 0x9, 0x3, 0x100}, {0x8, 0x80000001, 0xffff167d, 0x3ab}, {0x3f, 0xffff69f8, 0x10000, 0x80000000}, {0x7fff, 0x9, 0x4, 0x8001}, {0x6, 0x3, 0xfa, 0x3ff}, {0xfffffffc, 0x8, 0x69, 0x3f}, {0x9, 0x10001, 0x8, 0x20}, {0x4, 0x10001, 0x6, 0x5}, {0x61d, 0x6, 0x100, 0xca}, {0x2, 0x80000001, 0xbde00000, 0x8001}, {0x6, 0x2, 0xfffffffc, 0x2}, {0x100, 0x0, 0x8, 0x2}, {0x6, 0x6, 0x200, 0x2}, {0x80000000, 0x8001, 0x7fffffff, 0xca}, {0x4, 0x3, 0x9da0000, 0x9}, {0x800, 0xa4000000, 0xffff, 0x7f}, {0x8, 0x3, 0x3, 0xcff9}, {0x1, 0x5, 0x8, 0x40}, {0xb6, 0x9, 0x3, 0x81}, {0x2, 0x6, 0x8, 0x3}, {0x8000, 0x10000, 0x1, 0x1}, {0x5, 0x9, 0x0, 0x1f}, {0x8, 0x7, 0x8001, 0x7}, {0x9, 0x889, 0x7ff, 0x2}, {0x100, 0x5, 0x3, 0x7}, {0x5, 0xfffff001, 0x8, 0x400}, {0xfffffffb, 0x80000001, 0x15dc2244, 0x7}, {0x1f, 0x7f, 0x7fff, 0x3}, {0x0, 0x300000, 0x2, 0x4}, {0x8, 0x9, 0x8, 0x7ff}, {0x5, 0x5, 0x7, 0x1}, {0x1, 0x9, 0x7, 0x20}, {0x7, 0x2, 0xc5, 0xcea}, {0x6, 0x101, 0x7, 0x8}, {0x1, 0x7fff, 0x1, 0x6}, {0x6, 0xb0, 0x1f, 0x1}, {0x4, 0x400, 0x0, 0x1}, {0x1, 0x3, 0x9e, 0x6}, {0x10000, 0xe9f, 0xffff, 0xff}, {0xfc, 0x7, 0x16, 0x1f}, {0x6b, 0x3bd, 0x3f, 0xb25a}, {0x8, 0x2, 0x3, 0xc1dd}, {0x7b3, 0xffffffff, 0x3, 0x80}, {0xdb, 0x10000, 0x7fffffff, 0xa624}, {0x1978, 0x4, 0x5, 0xe}, {0x4, 0x5, 0x0, 0x7}, {0x3f, 0x400, 0x3ba48801}, {0xff, 0x6, 0x1, 0x100}, {0x10001, 0x7fffffff, 0x6, 0x9a6}, {0x400, 0x9, 0x4, 0x2}, {0x96, 0x0, 0x7}, {0x76, 0x1, 0x70a7, 0xfffffffb}, {0x3, 0x2, 0x7, 0x133f}, {0x3, 0x0, 0x7, 0x80000001}, {0x0, 0x8, 0xaa, 0x155ddb6a}, {0x0, 0x0, 0x6f7, 0x9}, {0x20000, 0x0, 0xfff}, {0x4774, 0xbcbc, 0x9, 0x4}, {0x10000, 0x0, 0x8, 0x1}, {0x4, 0xe49d, 0x2, 0x2c3}, {0xef9, 0x176e, 0x6, 0xfffffff7}, {0x3, 0x9, 0x80, 0x4}, {0xa2, 0x31d, 0x3, 0x1ad}, {0x3f, 0x81, 0x8, 0x81}, {0x7f, 0x3, 0x4, 0x2}, {0x80, 0x2, 0x1ff, 0x1f}, {0x1f, 0x9d, 0xfffffffd, 0x9}, {0x4, 0x81, 0x80000001, 0x70000}, {0x4, 0x1, 0xc35f, 0x3}, {0xb10a, 0x4c, 0x8, 0x6}, {0x5, 0xfffffff8, 0x7, 0x8001}, {0x7ff, 0x2, 0x5, 0xffffffff}, {0x80000001, 0x3, 0x891, 0x20}, {0x2, 0x8000, 0xff, 0x5}, {0xfffff800, 0x0, 0x9, 0x1000}, {0xfff, 0x80, 0x7fffffff, 0x4e}, {0x5, 0x8, 0x800, 0x1}, {0xfffff800, 0x1, 0x5, 0x9}, {0x5000, 0x9, 0xffffffff, 0x6}, {0x6, 0x6, 0x9}, {0x5, 0x4, 0x2932}, {0x7ff, 0x4697, 0x9, 0xfffffe43}, {0x401, 0x0, 0x6, 0x4}, {0x8, 0x9, 0x1, 0x6}, {0x0, 0x8, 0x9, 0x1ff}, {0x9, 0x9, 0x1, 0x5}, {0xffffffff, 0x3f, 0xf4, 0x9}, {0x0, 0x7fff, 0x2c, 0x3f}, {0x1e19c0a7, 0x8d, 0xff, 0x2}, {0x1fa, 0x401, 0x5, 0xca48}, {0x6, 0x8001, 0x8000, 0x3f}, {0x1, 0x100, 0x2, 0xffffb8c4}, {0x0, 0x7ff, 0xfba, 0x1f}, {0x7ff, 0xffffffff, 0x8000, 0x7}, {0x3e6e512f, 0x5, 0x7, 0x7fffffff}, {0x200, 0x7, 0x0, 0x81}, {0xffff, 0xe1e, 0x7}, {0xbffe, 0x8, 0x2, 0x1f}, {0x314b, 0x4a, 0x3ff, 0x101}, {0x8, 0x1, 0xffffffff}, {0x4, 0x64, 0x5, 0x3}, {0x5, 0x9, 0x7fffffff, 0xb76}, {0x40, 0x2, 0x1000, 0x2}, {0xfff, 0x8, 0x6, 0x5}, {0x1, 0x7, 0x10000, 0x1}, {0x8, 0xb615, 0x401, 0xffffffff}, {0x1c9, 0x81, 0x284, 0x6}, {0x1, 0x0, 0x2a1, 0x80}, {0x400, 0x3, 0x4, 0x8}, {0x1, 0x401, 0x7, 0x7}, {0x5, 0x2, 0x80000000, 0x8}, {0x6, 0x6, 0x3, 0x200}, {0x1, 0x3, 0x8, 0x4}, {0xffff, 0x7, 0x80000000, 0x40}, {0xb99, 0x6, 0x101, 0x1}, {0x5, 0x7fff, 0x5, 0x20}, {0x7fea9abe, 0x80000001, 0x5, 0x4c8}, {0x3f, 0x0, 0x5, 0x8}, {0x7, 0x4, 0x0, 0x7}, {0x4, 0x800, 0xea8, 0x7e}, {0x86c9, 0xc383, 0x7, 0x9}, {0x9, 0x7, 0x9, 0x6}, {0x7, 0x3, 0x100, 0xbdd}, {0x6, 0x4, 0x80, 0x19}, {0x3, 0x4, 0x2, 0x8}, {0x3ff, 0x2, 0x7, 0x8001}, {0x8, 0x69, 0x10000, 0x401}, {0x7, 0x200, 0x6f, 0x7}, {0x7fffffff, 0xfffffff7, 0x3, 0x94}, {0x80000000, 0x7, 0x2, 0x9}, {0x9, 0x3, 0x5, 0x3f}, {0x0, 0x8, 0x6cb7, 0x8}, {0x0, 0x7, 0x80000001, 0x5}, {0x2, 0x80000000, 0x1f, 0xfffffffd}, {0x7, 0x4, 0xfffffffe, 0x1f}, {0xefd, 0x1, 0x4, 0x8}, {0x9ed0, 0x7e, 0x2, 0x3}, {0xe7, 0x7fff, 0x6ff, 0x40}, {0x1, 0x1, 0x1, 0x80000000}, {0x0, 0x4, 0xd6c, 0x9}, {0x401, 0x1ff, 0x6, 0x1}, {0x2c, 0x8, 0x1c, 0x6}, {0xfb7c, 0x4420, 0x5, 0x33c4}, {0xfffffffd, 0x7, 0x5cde}, {0x0, 0xac9a, 0x7, 0x4}, {0x20, 0x0, 0xffff8001}, {0x7, 0x40, 0x0, 0x80000000}, {0xfffff65e, 0x0, 0x9, 0x15}, {0x7, 0x2, 0x1, 0x1}, {0x20, 0x8000, 0x6, 0x4}, {0x81, 0xdd4f, 0x700000, 0x7}, {0x6e, 0x3ff, 0x7f5a4b87, 0xd7a}, {0x5, 0x3, 0xffff, 0x80000001}, {0x10001, 0x6, 0x3, 0x7}, {0xef, 0x1f, 0xfffffff9, 0x9}, {0x3, 0x8, 0x7fff}, {0x101, 0x5, 0xfffffffe, 0x1e780f49}, {0x1, 0x4, 0x1f, 0x8}, {0x1, 0x7ae, 0xebf, 0x3}, {0x1, 0x9, 0x80, 0x7fff}, {0xbc9e, 0x7fff, 0x3, 0x101}, {0x65, 0x800, 0xb52a, 0x7ff}, {0xfffffffb, 0x7ff, 0x8001, 0x9}, {0x1a4c, 0x9e59, 0x3, 0xfffffff9}, {0xfffffff7, 0x7fffffff, 0x62ab, 0x80000001}, {0x1, 0xec1, 0x5, 0x80}, {0x1f, 0x101, 0xd9e, 0x5}, {0x8, 0x8000, 0xc6d, 0x3}, {0x0, 0x1000, 0x1, 0x1}, {0xfcd, 0x6, 0x7, 0x800}, {0x5, 0x358d, 0xf063}, {0xb2e4, 0x8, 0x6, 0x7}, {0x6, 0xaf, 0x80000001, 0x8}, {0x0, 0xe7d, 0x97, 0x9}, {0x7, 0x4, 0x8, 0x9}, {0x6, 0x284efd65, 0x99f, 0x4}, {0x10001, 0x7, 0x3, 0x8001}, {0x7, 0x4e4fc59a, 0x90b3, 0x3}, {0x1, 0x5892, 0x1, 0x3f}, {0x4, 0xffffff05, 0x6, 0x3}, {0xa6a, 0x6306, 0x0, 0x3}, {0x7, 0x3, 0x9, 0x3}, {0x7, 0x9, 0x6, 0x6}, {0x7fffffff, 0x2, 0x80000001, 0x3}, {0x80000000, 0x40, 0x405, 0x400}, {0x3ff80000, 0x2, 0x6, 0xfff}, {0x2, 0x80000000, 0x80000001, 0x24}, {0x89, 0x1, 0x9, 0x1ff}, {0x80000001, 0x3, 0x7, 0xfffeffff}, {0x18dc, 0x9, 0x6, 0x1}, {0x1f, 0x101, 0x7, 0x7}, {0xffffffe9, 0x4, 0x4607, 0x7fff}, {0x0, 0x1, 0xfff, 0x400}, {0x80000000, 0x7fff, 0xda, 0x7ff}, {0x400, 0xffffffff, 0xd94}, {0x6, 0x200, 0x3, 0x100}, {0x1d6bc7b4, 0x7, 0x1000, 0x6}, {0x3, 0x8, 0x9, 0x8}, {0xf7, 0x9, 0x4, 0x8000}, {0x200, 0x2, 0x6, 0x3}, {0x8, 0xffffffff, 0x9, 0x4}, {0x3, 0x7, 0x8001, 0x20}, {0x258, 0x6, 0x3f, 0x2d2}, {0x8000, 0x3, 0x0, 0x8}, {0x7ff, 0x5, 0x10000, 0x5}, {0x9, 0xe1, 0x0, 0x1}, {0x0, 0x1ff, 0x0, 0x3}, {0x9, 0xe1e, 0x3, 0x100}, {0x5, 0xfffffffd, 0x0, 0x9}, {0x80000001, 0x3, 0x98, 0x2}, {0x6, 0x1, 0x50, 0xffffffff}, {0x7e00, 0x4, 0x9, 0x2}, {0x0, 0x1f, 0x8001, 0x1da}, {0xfffffff9, 0x5, 0xffff8001, 0x3}, {0x1ff, 0x7, 0x8, 0x5}, {0x5, 0xc, 0x800, 0x9}, {0x9, 0x6, 0x800, 0x7fffffff}, {0x57c, 0xffffc844, 0x1f, 0x7f}, {0x7, 0x1, 0x0, 0x3f}, {0x6, 0x6, 0x0, 0x80000000}, {0x81, 0x5, 0x9, 0x1}, {0x6816, 0xfff, 0x9, 0x7}, {0x0, 0x7fffffff, 0x1, 0x8}, {0x7fff, 0x6, 0x6, 0x7f}, {0x4, 0x1, 0x30d}, {0x1, 0x0, 0x101, 0x9}, {0x6, 0xd3ed, 0x0, 0x200}, {0x101, 0x6, 0x7}, {0x6, 0x81, 0xa592, 0x80000000}, {0x2, 0x4, 0x7, 0x8000}, {0x9, 0x2, 0x40, 0xa0000}, {0x82, 0x1f, 0x8f, 0xf5}, {0x2, 0x2, 0x2, 0x2}, {0x0, 0x5, 0x2, 0x7fffffff}, {0x80000000, 0x10001, 0x2, 0x7}, {0x7f, 0x9, 0x9, 0x4}, {0xd03, 0x10001, 0x5, 0x1}, {0x8, 0x0, 0x1bd2, 0x400}, {0x9, 0x5, 0x0, 0x4}, {0x80000000, 0x0, 0x7, 0x3}, {0x0, 0x7, 0x9, 0x1}, {0x1800000, 0x100, 0x7fffffff, 0x1f}, {0x8001, 0x1, 0x100, 0x1}, {0xec6, 0x81, 0x10000, 0x9}, {0x8, 0x1, 0x66d8, 0x9}, {0x27e8, 0x0, 0x3f, 0x6}, {0x20, 0x4, 0x8, 0x48}, {0x9, 0x4703, 0x9, 0x1f}, {0x1, 0x6, 0x3f, 0x6}, {0x0, 0xb4, 0x2df8, 0xffffffff}, {0x32, 0x1b, 0x3, 0x4}, {0x800, 0xfffffc01, 0x0, 0x4}, {0x100, 0x4, 0xfffffffe, 0x3}, {0x401, 0x6, 0x81, 0x2}, {0x2, 0xc000000, 0x3}, {0x3ff, 0x5, 0x400, 0x73}, {0xffff, 0x3, 0x8, 0x3}, {0xffffffff, 0x1, 0x1, 0x2}, {0xfffffffc, 0x1, 0xffff}, {0x0, 0x3ff, 0x8001, 0x70e}, {0xa0a, 0x9, 0x7, 0xb7e8}, {0x80, 0x8, 0x7, 0xff}, {0x6, 0x101, 0x9, 0x10000}, {0x40, 0x4, 0x0, 0x10000}, {0x80, 0x1000, 0x7}, {0x2, 0x10000, 0x0, 0x3}, {0xff, 0xfff, 0x8}, {0x9, 0x1000, 0x8, 0x40}, {0x4bfa162, 0x101, 0x8, 0xaad}, {0xff, 0x44b, 0x9, 0x1f}, {0x6, 0x2, 0xcc23, 0x6}, {0x6, 0x1, 0x1, 0x3}, {0x7fff, 0x400, 0x4, 0x7}, {0x45, 0x7, 0xe907, 0x4}, {0x1f, 0x2, 0x21, 0x9}, {0x6, 0x6, 0x2, 0x8}, {0x7, 0x800, 0x7, 0xb2d}, {0x9, 0x401, 0xfffffffa, 0x200}, {0x1f, 0x3, 0x4, 0x80000000}, {0x2, 0x8e9a, 0x5, 0x4}, {0xffff7781, 0xffffffbd, 0xe7f, 0x2}, {0x7, 0x7, 0x8, 0x2}, {0x0, 0x800}, {0xfffffffd, 0xc155, 0x0, 0x800}, {0x2, 0x10000, 0x6, 0x2}, {0x5, 0x0, 0x20, 0x7}, {0x7ff, 0x1ff, 0xbae, 0x8}, {0x1, 0xfff, 0x20, 0x10000}, {0x8, 0x6, 0x2, 0x5}, {0x8, 0x2, 0x7, 0x6}, {0xe61a, 0x4, 0x1, 0x3}, {0x6, 0x0, 0x6, 0x6}, {0x9, 0x0, 0xb60b, 0x1ff}, {0x4, 0x3, 0x2e39ef45, 0xffffffff}, {0xfffffffd, 0x6, 0x7}, {0x6, 0x2ef, 0x2, 0x8}, {0x2311, 0x2, 0x3ff, 0x1000}, {0x1, 0xfffffff9, 0x622f, 0x20}, {0x80000001, 0x8, 0x1000, 0x2}, {0x7, 0x7, 0x10000, 0xeb}, {0x0, 0x40, 0x0, 0xd93a}, {0x10001, 0x0, 0x7, 0x8}, {0x6, 0x800, 0xffffd84f, 0x3f}, {0x7c3, 0xb8, 0x6, 0x100}, {0x10000, 0x5, 0x3ff, 0xfffffbff}, {0x35, 0x80, 0x3, 0x4b9}, {0x2, 0x7, 0x4, 0x401}, {0x3, 0x9, 0x7ff, 0x1000}, {0x4, 0x7, 0x1f, 0xffffffff}, {0x1, 0x19, 0x0, 0x7}, {0x8, 0x2, 0x8, 0x7fffffff}, {0x4800, 0x902c, 0x1000, 0x1}, {0x9d, 0x1, 0x7fffffff, 0x22}, {0x0, 0x40, 0x2276, 0xd7}, {0x7, 0x2, 0x5, 0x8}, {0x0, 0xffff, 0x6, 0x80}, {0x6, 0x7, 0x4, 0x7d9}, {0xc8, 0xf389, 0x7, 0x8}, {0xafb2, 0x20, 0x5ab, 0x63b5}, {0x7, 0x6, 0x0, 0x3}, {0x1bd5, 0x1000, 0x5, 0x3}, {0x0, 0x5, 0xda, 0xebf1}, {0xd3fd, 0x2, 0x2, 0x3ff}, {0x6, 0x7, 0x6dd2, 0x50}, {0x8673, 0x2, 0x7, 0x4}, {0x200, 0x8, 0x3, 0x4}, {0x6d30, 0x7fffffff, 0x4, 0x9}, {0xff, 0x7, 0x191, 0x8}, {0x5, 0x7ee3, 0x3, 0x5}, {0xe0, 0xfffffff8, 0x10000, 0x1}, {0x5b19, 0xfff, 0x800, 0x4}, {0x9, 0x9, 0x1000, 0x2}, {0xe04, 0x48000, 0x1, 0x9}, {0x2, 0x6ee, 0x786c0000, 0x8001}, {0x1ff, 0x0, 0x95c, 0x5}, {0x2, 0x2, 0x8, 0x7}, {0x403, 0x8, 0x50f, 0x29e7}, {0xffffeb18, 0x6, 0x9, 0x6}, {0x4498, 0x8, 0x2, 0x2}, {0xfffffffa, 0x633, 0xffff7fff, 0x100}, {0x6, 0x2ae4, 0x8, 0x1}, {0x380, 0xc2, 0xbc, 0x100}, {0x8, 0x2, 0x4, 0x2}, {0x6, 0x80000001, 0x4, 0x8}, {0x91, 0x9ac, 0x100, 0x2}, {0x4, 0x40, 0x8, 0x2020}, {0x20000000, 0x2787, 0xfffffffc, 0x472}, {0x4, 0x9, 0x100, 0x9}, {0xf6, 0xff, 0x9, 0x6}, {0x637, 0x4, 0x4, 0x80000000}, {0x5, 0x51, 0x240, 0x8001}, {0x5, 0xa1ca2583, 0xa00000, 0x7fff}, {0x4, 0xffffff80, 0xffffffc1, 0xf0}, {0x7ff, 0x1ff, 0x4, 0x5}, {0xfffffff9, 0x3, 0xc3, 0x8}, {0x7ff, 0x3, 0x1}, {0x62b, 0x3, 0x7, 0x4}, {0x87b, 0xd3, 0x5, 0x3}, {0x1, 0x7fff, 0x6, 0x5}, {0x1, 0x9, 0xdad, 0x4}, {0x8, 0x3, 0x5, 0x200}, {0x6, 0x8, 0x7, 0x4}]}, 0x3c2e) syz_io_uring_setup(0x1e, &(0x7f0000000080)={0x0, 0x3, 0x1, 0x0, 0x78, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:12 executing program 1: fork() r0 = fork() getpgid(r0) r1 = fork() r2 = fork() getpgid(r2) getpgid(r2) r3 = fork() getpgid(r3) r4 = fork() getpgid(r4) r5 = getpgid(r4) getpgid(r5) wait4(r1, 0x0, 0x8, 0x0) 13:23:12 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2671.208442][T10585] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 2671.215018][T10585] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) 13:23:12 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) [ 2671.308340][T10585] vhci_hcd vhci_hcd.0: Device attached 13:23:12 executing program 4: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 3: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) [ 2671.570997][ T7764] usb 10-1: SetAddress Request (6) to port 0 [ 2671.578583][ T7764] usb 10-1: new SuperSpeed USB device number 6 using vhci_hcd 13:23:12 executing program 3: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 4: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:12 executing program 5: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2671.859868][T10585] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(4) [ 2671.866441][T10585] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 2671.938923][T10585] vhci_hcd vhci_hcd.0: Device attached [ 2671.969837][T10620] vhci_hcd: connection closed [ 2671.970512][T10685] vhci_hcd: stop threads 13:23:13 executing program 0: ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000000)={"541424d701f702da1d86dbb05f741026", 0x0, 0x0, {0x9, 0x40}, {0x40, 0x8}, 0x7fff, [0x0, 0x7f, 0x6, 0xfffffffffffffffa, 0x3, 0xe16, 0x8001, 0xb5, 0xfffffffffffffe00, 0x5, 0xb18e, 0x0, 0x9, 0x4, 0x6, 0x100000000]}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() [ 2671.986845][T10685] vhci_hcd: release socket [ 2671.992844][T10685] vhci_hcd: disconnect device 13:23:13 executing program 1: wait4(0x0, 0x0, 0x4, 0x0) 13:23:13 executing program 3: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) 13:23:13 executing program 4: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 5: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) socketpair(0x2a, 0xa, 0x6, &(0x7f0000000900)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x28, 0x0, 0x317bac6676e7da29, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}]}, 0x28}, 0x1, 0x0, 0x0, 0x40048c2}, 0x20000080) recvmsg(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)=""/15, 0xf}, {&(0x7f0000000380)=""/132, 0x84}, {&(0x7f0000000680)=""/148, 0x94}, {&(0x7f0000000480)=""/66, 0x42}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/16, 0x10}], 0x6, &(0x7f0000000500)=""/112, 0x70}, 0x100a1) r2 = openat$vim2m(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$vim2m_VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f00000001c0)) setsockopt$inet6_dccp_int(r1, 0x21, 0x1, &(0x7f0000000180)=0x9, 0x4) r3 = openat$vcs(0xffffff9c, &(0x7f0000001440), 0x10000, 0x0) accept4$phonet_pipe(r3, 0x0, &(0x7f0000001480), 0x80000) ioctl$I2C_SMBUS(r3, 0x720, &(0x7f0000000300)={0x0, 0x3, 0x6, &(0x7f00000002c0)={0x1f, "7e0ae29eee0f52806f84bbc6befe520d084ca334a8e550574592f44fb67505f848"}}) fork() 13:23:13 executing program 5: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 0: syz_io_uring_setup(0x36db, &(0x7f0000000240)={0x0, 0x4, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0cc5604, &(0x7f0000000000)={0x3, @vbi={0x1, 0x2, 0x6, 0x384c4150, [0x0, 0x7], [0x0, 0x2], 0x1}}) fork() 13:23:13 executing program 1: ioctl$BLKSECTGET(0xffffffffffffffff, 0x1267, &(0x7f0000000000)) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:13 executing program 2: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:13 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = eventfd(0x4) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r1, 0x1) fork() r2 = fork() getpgid(r2) r3 = fork() r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) openat$cgroup_int(r4, &(0x7f00000000c0)='cpu.weight.nice\x00', 0x2, 0x0) getpgid(r3) ptrace$getregs(0xc, r3, 0xfff, &(0x7f0000000140)=""/213) sched_setattr(r2, &(0x7f0000000000)={0x38, 0x5, 0x10000040, 0xffffffff, 0x9, 0x200000000000, 0x8000, 0x81, 0x10000, 0x2}, 0x0) 13:23:14 executing program 2: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 3: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 2: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 3: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 1: r0 = fork() wait4(r0, 0x0, 0x8, 0x0) 13:23:14 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 2: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x4000010, r0, 0x10000000) io_uring_setup(0x5d6d, &(0x7f00000001c0)={0x0, 0xa51, 0x1, 0x2, 0x3d, 0x0, r0}) r1 = syz_io_uring_setup(0x538, &(0x7f0000000000)={0x0, 0xddd7, 0x8, 0x1, 0x380, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000100)=r2, 0x1) r3 = fork() r4 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) wait4(r3, 0x0, 0x2, &(0x7f00000002c0)) ioctl$IOC_PR_CLEAR(r4, 0x401070cd, &(0x7f0000000180)={0x90d}) 13:23:14 executing program 3: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 4: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 2: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 3: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 2: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:14 executing program 4: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 1: fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) ptrace$getregs(0xc, r1, 0x8, &(0x7f0000000040)=""/164) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x6, 0x68, 0x40, 0x9, 0x6, 0xd44, 0x1ff, 0x6, 0xfffffff7}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:15 executing program 2: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 4: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000000), &(0x7f0000000040)=0x4) fork() 13:23:15 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 2: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:15 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) fork() 13:23:16 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 1: socketpair(0x2b, 0x4744f643e43f1668, 0x7, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f00000001c0)={"a7f4706f59963aeca84169a5634c6f13", 0x0, 0x0, {0x592, 0x8}, {0xfffffffffffffffd, 0x5}, 0x1, [0xfffffffffffff800, 0x81, 0x3, 0x3f, 0xdc86, 0x5, 0x33a2, 0x1, 0x8, 0x6, 0x80000000, 0x8, 0x3, 0x7, 0x8, 0x7]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c09425, &(0x7f0000000280)={"85f700b5ee8e873138041028e0116924", r1, 0x0, {0x9, 0x7}, {0x100000001, 0x4b2}, 0xec97, [0x2, 0x1, 0x100, 0x1ff, 0x2, 0x1, 0x4, 0x6, 0x4, 0x9b, 0x9, 0x6, 0x6, 0x100000000, 0x101, 0x8]}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fbdbdf25010000000000000008410000004c0018"], 0x68}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r4, 0x200, 0x9, 0x25dfdbfc, {{}, {}, {0x14, 0x18, {0x7, @bearer=@udp='udp:syz2\x00'}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0xc080}, 0x1) r5 = fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) wait4(r5, 0x0, 0x80000000, 0x0) r6 = fork() ptrace$getregs(0xc, r6, 0x7f, &(0x7f0000000000)=""/62) 13:23:16 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 2: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x40, r1, 0x20, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xffffff01}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x40044}, 0x8004) r2 = getpgid(r0) wait4(r0, 0x0, 0x1000000, &(0x7f0000000000)) r3 = getpgid(r2) wait4(r3, &(0x7f00000001c0), 0x1, 0x0) r4 = getpgid(r0) waitid(0x1, r4, &(0x7f00000002c0), 0x2, &(0x7f0000000340)) 13:23:16 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = syz_io_uring_setup(0xcb8, &(0x7f0000000000)={0x0, 0xeabe, 0x4, 0x3, 0x382}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000200), &(0x7f00000002c0)) r1 = io_uring_setup(0x2b68, &(0x7f0000000180)={0x0, 0xf61e, 0x4, 0x0, 0x2b0, 0x0, r0}) syz_io_uring_setup(0x63f5, &(0x7f0000000080)={0x0, 0xae65, 0x2, 0x0, 0x13f, 0x0, r1}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)) 13:23:16 executing program 5: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:16 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:17 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:17 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000040)=0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f00000001c0)={"8bc2b056d3b4d4f89e2dc1ebe9391575", 0x0, 0x0, {0x7ff, 0x6}, {0x100000001, 0x200}, 0x6, [0x200000, 0x7fffffff, 0x0, 0x2, 0x80000001, 0x8d8b, 0x3ff, 0x3800000, 0x1, 0x3, 0x4, 0x3ff, 0x1, 0x3f, 0x3]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c09425, &(0x7f0000000280)={"64603bdd8975c0af55ed867712ed06c2", r2, r3, {0x10000, 0x5}, {0x5, 0x7ff}, 0x9, [0xeb, 0x10000, 0x0, 0x2, 0x9, 0x4d, 0x2, 0xffffffffffffffe0, 0x61d, 0x8d, 0x5, 0x5, 0x20, 0xf28, 0x4, 0x4fd]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r4, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0000000000000000000004000000e6772ece29af337b4985f103ccd82a08351a1b8b197f2719b4263d1739bd253400b5ef6bfadd70de84a66160fc"], 0x14}}, 0x0) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_GET_DEVICE(r6, &(0x7f0000000500)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000001f00)={0xf60, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24}, @WGDEVICE_A_PEERS={0xf10, 0x8, 0x0, 0x1, [{0x354, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @multicast2}}, @WGPEER_A_ALLOWEDIPS={0x0, 0x9, 0x0, 0x1, [{0x0, 0x0, 0x0, 0x1, [@ipv6={{}, {0x0, 0x2, @mcast1}, {0x0, 0x3, 0x3}}, @ipv4={{}, {0x0, 0x2, @empty}, {0x0, 0x3, 0x3}}, @ipv6={{}, {0x0, 0x2, @local}, {0x0, 0x3, 0x2}}, @ipv6={{}, {0x0, 0x2, @empty}}, @ipv6={{}, {0x0, 0x2, @private2}, {0x0, 0x3, 0x2}}]}, {0x0, 0x0, 0x0, 0x1, [@ipv4={{}, {0x0, 0x2, @loopback}}, @ipv4={{}, {0x0, 0x2, @multicast1}, {0x0, 0x3, 0x1}}, @ipv6={{}, {0x0, 0x2, @private1}}, @ipv6={{}, {0x0, 0x2, @loopback}}, @ipv4={{}, {0x0, 0x2, @broadcast}, {0x0, 0x3, 0x3}}, @ipv4={{}, {0x0, 0x2, @dev={0xac, 0x14, 0x14, 0x43}}, {0x0, 0x3, 0x2}}, @ipv4={{}, {0x0, 0x2, @multicast1}, {0x0, 0x3, 0x1}}]}, {0x0, 0x0, 0x0, 0x1, [@ipv6={{}, {0x0, 0x2, @private2}, {0x0, 0x3, 0x1}}, @ipv6={{}, {0x0, 0x2, @loopback}}]}]}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @multicast1}}, @WGPEER_A_ALLOWEDIPS={0x304, 0x9, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, [@ipv4={{}, {0x0, 0x2, @broadcast}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0xfffffffffffffd9d, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x2}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}, {0x5}}]}, {0x124, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x10}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x15}}, {0x5, 0x3, 0x80}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @multicast2}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_FLAGS={0x0, 0x3, 0x1}]}, {0x598, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x570, 0x9, 0x0, 0x1, [{0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x23}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x12}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0x118, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x10}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x1}}]}, {0x64}, {0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3b}}, {0x5, 0x3, 0x2}}]}, {0x130, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x25}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x1}}]}, {0xd0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @remote}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "73c02c3717c6628ce6930196ad80443e82daf7dd2c1b46527265cbe3a6d77b65"}]}, {0xb0, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x1}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x20}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "affe3bd5c2fe61e69bd3e24440c4d0e9482a6b2aafc632d5037a781c7ec0950f"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x2b}}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "7852baa56e7c65b359d07aa0f956f5bcbbd34967ef96a59504237e248e3a426e"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "22b22f899d2be77cec546c54b434081865765d31e7837d9e88b35786357e298c"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @broadcast}}]}, {0xa0, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @local}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @broadcast}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xfffeffff, @mcast2, 0xbd}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x1000, @local, 0x79}}]}, {0x228, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xfff7}, @WGPEER_A_ALLOWEDIPS={0x1b8, 0x9, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0xa}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}, {0xd0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}]}, {0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @local}}, @WGPEER_A_PUBLIC_KEY={0x24}]}, {0x90, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x8, @remote, 0x2ed654d}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x1ff, @loopback, 0xffffff19}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x4}, @WGPEER_A_FLAGS={0x0, 0x3, 0x6}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x180, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xd8, 0x9, 0x0, 0x1, [{0xac, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5}}]}]}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "a22076c402dc8421f686cf7e8b133e83805d3e44f82aa0ecd0f50fe452e54731"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @broadcast}}, @WGPEER_A_PUBLIC_KEY={0x24}]}, {0x30, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}, {0x68, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xffff, @ipv4={'\x00', '\xff\xff', @remote}, 0xda}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x6}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}]}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0xf60}}, 0x4008001) sendmsg$BATADV_CMD_SET_VLAN(r6, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r5, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r5, 0x200, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) ioctl$BTRFS_IOC_START_SYNC(r4, 0x80089418, &(0x7f00000000c0)) syz_io_uring_setup(0xfce, &(0x7f0000000140)={0x0, 0x0, 0x4, 0x0, 0x4, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r7 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r7) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000440)={0x0, 0x1, r7}) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0, 0xa4499b10ce5c8edb, r7}) 13:23:17 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:17 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:17 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:18 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x40, r1, 0x20, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xffffff01}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x40044}, 0x8004) r2 = getpgid(r0) wait4(r0, 0x0, 0x1000000, &(0x7f0000000000)) r3 = getpgid(r2) wait4(r3, &(0x7f00000001c0), 0x1, 0x0) r4 = getpgid(r0) waitid(0x1, r4, &(0x7f00000002c0), 0x2, &(0x7f0000000340)) 13:23:18 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:18 executing program 0: syz_io_uring_setup(0x388a, &(0x7f0000000000)={0x0, 0xc937, 0x1, 0x3, 0x30c}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x20010, 0xffffffffffffffff, 0x10000000) r2 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x8002, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000400)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r2, 0x0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="1edd015afc604941e9fa3a99fe62e62489574a8aac60dd89afa8397bb6e25e21e1b7d86bd1c6950d896a9c42c89a0a1a439f2ad0b499151deadac505fd7c9bea13eaa37405e417cda1a766f6b6f95308d4f7e5c2800f574f0bece53c9ea0e525324bf37037202736b52389a5fae5c06dd1556f8310d748d699864c1ba8306ab842a9312a784412f87d8e1bfdbfec4e56f77bd4b24ca39b8bb8681b3978db100a1578df472f761e8fe59e3f25433c0788c7a068181b8055a474", 0xb9}, {&(0x7f00000002c0)="e5577434e98d6828dce16c526ce076322ead2e2d4aed4d59f603b3a39eeeeecc063c4cc5fb5200fd0d8a66528cf0a75c18547fb551c4205214e312dbdaeda6594ccb452e32a351202e278c1f8d4439402602867e13b0a5c9ec59795ccf436831d6fdb4156e5e9d7c6d2410c7553be8e5d420a91741b44b3c87c1fd", 0x7b}, {&(0x7f0000000200)="3f2077c12b62788d5b00f7fa94c1fe4dc076af822c8b6099273e6c82195e24fab98d5dd58f2eac469fb934351d", 0x2d}, {&(0x7f0000000340)="847117195602e8bbd8f86be0e3ac5d47f5ea682249d0279f6598fb8ce2809d", 0x1f}], 0x4}, 0x0, 0x4000015, 0x1}, 0x7fffffff) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r2, 0xc00864c0, &(0x7f0000000440)) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:18 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:18 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:18 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 0: ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, &(0x7f0000000000)=0xfffffff7) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, &(0x7f0000000040)) 13:23:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:18 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:18 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:18 executing program 0: syz_io_uring_setup(0x2100, &(0x7f0000000000)={0x0, 0x0, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc04c565d, &(0x7f0000000140)={0xb8f, 0x0, 0x4, 0x10000, 0x15, {r2, r3/1000+60000}, {0x5, 0x2, 0x3, 0xd6, 0x3f, 0x9, "f25d5d15"}, 0x0, 0x4, @planes=&(0x7f0000000100)={0xff, 0x3, @userptr=0x7, 0x1ff}, 0x1, 0x0, 0xffffffffffffffff}) ioctl$vim2m_VIDIOC_QBUF(r0, 0xc04c560f, &(0x7f00000001c0)={0x8000, 0x1, 0x4, 0x0, 0x10000, {0x77359400}, {0x5, 0x1, 0x7f, 0x4, 0x6, 0x1f, "7ca8ce61"}, 0x800, 0x0, @fd=r1, 0xffff8286, 0x0, r4}) 13:23:18 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:18 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:19 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = getpgid(0x0) ptrace$getsig(0x4202, r0, 0x81, &(0x7f0000000080)) waitid(0x2, r0, &(0x7f0000000000), 0x2, 0x0) 13:23:19 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:19 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:19 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:19 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:19 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 5: ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, &(0x7f0000000000)=0xfffffff7) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, &(0x7f0000000040)) 13:23:19 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:19 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:19 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB=' \x00\x00', @ANYRES16=0x0, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x105, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x8}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000005}, 0x24008880) 13:23:20 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 1: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:20 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 1: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 0: r0 = syz_io_uring_setup(0x6df, &(0x7f0000000000)={0x0, 0xffe8, 0x20, 0x3, 0x178}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000180)) syz_io_uring_setup(0x5961, &(0x7f0000000240)={0x0, 0x0, 0x4, 0x0, 0x1a7, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0) fork() r1 = fork() syz_open_dev$vim2m(&(0x7f0000000140), 0x10000, 0x2) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x2, &(0x7f0000000100)=""/50) 13:23:20 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 4: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:20 executing program 1: syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:20 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:20 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:20 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x130}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="000422bd7000fbdbdf25070000004700290001000000d1e7672b7c8e6971493896a2f79f1cf8f983eefd3ada26"], 0x1c}, 0x1, 0x0, 0x0, 0x55}, 0x20020800) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), r2) fork() io_uring_setup(0x48cb, &(0x7f0000000140)={0x0, 0x39ad, 0x20, 0x1, 0x3af, 0x0, r0}) 13:23:20 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:21 executing program 5: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:21 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:21 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:21 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10, 0x800) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x3, 0x1}, 0x10) 13:23:21 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 5: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:21 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:21 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:21 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = eventfd(0x4) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r1, 0x1) fork() r2 = fork() getpgid(r2) r3 = fork() r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) openat$cgroup_int(r4, &(0x7f00000000c0)='cpu.weight.nice\x00', 0x2, 0x0) getpgid(r3) ptrace$getregs(0xc, r3, 0xfff, &(0x7f0000000140)=""/213) sched_setattr(r2, &(0x7f0000000000)={0x38, 0x5, 0x10000040, 0xffffffff, 0x9, 0x200000000000, 0x8000, 0x81, 0x10000, 0x2}, 0x0) 13:23:21 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, &(0x7f00000000c0)) 13:23:21 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:21 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() fork() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x1ff, &(0x7f00000002c0)=""/4096) 13:23:21 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10, 0x800) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x3, 0x1}, 0x10) 13:23:21 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 3: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:22 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x202}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:22 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:22 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 2: syz_io_uring_setup(0x36db, &(0x7f0000000240)={0x0, 0x4, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0cc5604, &(0x7f0000000000)={0x3, @vbi={0x1, 0x2, 0x6, 0x384c4150, [0x0, 0x7], [0x0, 0x2], 0x1}}) fork() 13:23:22 executing program 3: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:22 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ioctl$IOC_PR_REGISTER(0xffffffffffffffff, 0x401870c8, &(0x7f0000000000)={0x5, 0x401, 0x1}) 13:23:22 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) socketpair(0x2a, 0xa, 0x6, &(0x7f0000000900)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x28, 0x0, 0x317bac6676e7da29, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}]}, 0x28}, 0x1, 0x0, 0x0, 0x40048c2}, 0x20000080) recvmsg(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)=""/15, 0xf}, {&(0x7f0000000380)=""/132, 0x84}, {&(0x7f0000000680)=""/148, 0x94}, {&(0x7f0000000480)=""/66, 0x42}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/16, 0x10}], 0x6, &(0x7f0000000500)=""/112, 0x70}, 0x100a1) r2 = openat$vim2m(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$vim2m_VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f00000001c0)) setsockopt$inet6_dccp_int(r1, 0x21, 0x1, &(0x7f0000000180)=0x9, 0x4) r3 = openat$vcs(0xffffff9c, &(0x7f0000001440), 0x10000, 0x0) accept4$phonet_pipe(r3, 0x0, &(0x7f0000001480), 0x80000) ioctl$I2C_SMBUS(r3, 0x720, &(0x7f0000000300)={0x0, 0x3, 0x6, &(0x7f00000002c0)={0x1f, "7e0ae29eee0f52806f84bbc6befe520d084ca334a8e550574592f44fb67505f848"}}) fork() 13:23:22 executing program 3: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) openat$vcs(0xffffff9c, &(0x7f0000000140), 0x55de80, 0x0) 13:23:22 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:22 executing program 1: r0 = syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:22 executing program 2: fork() r0 = fork() getpgid(r0) r1 = fork() r2 = fork() getpgid(r2) getpgid(r2) r3 = fork() getpgid(r3) r4 = fork() getpgid(r4) r5 = getpgid(r4) getpgid(r5) wait4(r1, 0x0, 0x8, 0x0) 13:23:23 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r1, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xfffffffd}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xb9a}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4800}, 0x4008810) r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x244902, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r3, 0x1) 13:23:23 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x208200, 0x0) r1 = syz_usbip_server_init(0x5) write$usbip_server(r1, &(0x7f0000000100)=@ret_submit={{0x3, 0x4, 0x0, 0x1, 0x200}, 0x7, 0xfe, 0x2, 0x3b0, 0xffffffff, 0x0, "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", [{0x6db1, 0xfff, 0x7, 0x5}, {0x0, 0x9, 0x80, 0x9}, {0x10000, 0xfffffff7, 0x80, 0x5}, {0x2, 0xa3, 0xd88, 0x2}, {0x8, 0x3, 0x7ff, 0xfffffffb}, {0x4, 0xd74, 0x8000, 0x1}, {0x4, 0xd85c, 0x7ff, 0xffffff09}, {0x7, 0x3f3e, 0xffffffff, 0x10000}, {0x5, 0x0, 0x4, 0x7fff}, {0x7f, 0x8001, 0x6, 0x10001}, {0x8, 0x7ff, 0x8001, 0x7}, {0x81, 0x400, 0x7, 0x8}, {0x1, 0x80000001, 0x3, 0x9}, {0x9, 0x400, 0x1, 0x5}, {0x4, 0xfffffffe, 0x0, 0x100}, {0x4, 0x101, 0x8, 0xcce}, {0x3, 0x4, 0x3, 0xdfb}, {0x2, 0x0, 0xfff, 0x7fff}, {0x2, 0x84, 0x8000}, {0x8000, 0x4, 0x1f}, {0x6, 0x1, 0x1f, 0x4}, {0x9, 0x600, 0x80000000, 0x100}, {0x7, 0x4668, 0x2, 0x9}, {0x10000, 0xe73, 0xd, 0x6}, {0x2, 0x2, 0x8, 0x2}, {0x9, 0xa715, 0x74, 0x5}, {0x2, 0x7098, 0x40, 0x7}, {0x6, 0x0, 0x8863, 0x7}, {0xffffffff, 0x9, 0x8000000, 0x8}, {0x972, 0xfffffffd, 0x1ff, 0x4}, {0x4, 0x9, 0x800, 0x10000}, {0x3, 0xe76f, 0x8, 0x9}, {0x3f, 0xac, 0x1, 0x5}, {0x7fffffff, 0x1, 0x8, 0x5}, {0x0, 0x8, 0xbf2, 0x8}, {0x6c, 0x0, 0xffffff80, 0x9}, {0x2, 0x7, 0x80000001, 0xfff}, {0xec8f6194, 0x7, 0x7f, 0x38af}, {0x9, 0x1, 0x4, 0x1}, {0xa487, 0x8, 0xffffffff, 0x100}, {0x40, 0x8, 0x8, 0x9d}, {0x7, 0x78c, 0xfffffff7, 0x3}, {0x8, 0x9, 0xd727, 0x526}, {0xd8, 0x9, 0x0, 0xd3d4}, {0x6000000, 0xfffffeff, 0x0, 0x23}, {0x5, 0xfffffff9, 0xfff, 0x2}, {0x5, 0xfc6a, 0x3f, 0x1}, {0xff, 0x41, 0x3, 0xcf00}, {0xd9, 0x20, 0x4, 0xffffffff}, {0x1, 0x2, 0xaf, 0x8}, {0x1, 0xfb96, 0x1, 0x8}, {0x8, 0x5, 0x54a, 0x94}, {0x8, 0x98, 0x7, 0x1d}, {0x200, 0x3f, 0x0, 0x400}, {0x81, 0x4, 0xfff, 0x1c29}, {0x7ff, 0x400, 0xffffffff, 0x67c5}, {0x5, 0x4, 0x40, 0x1}, {0x80000000, 0x6, 0x9}, {0x2, 0x7, 0xf3a, 0x7}, {0xa3a3, 0x7, 0x4, 0xffffffff}, {0x9, 0x100, 0x1, 0x7}, {0x8282, 0x40, 0x80000001, 0x1}, {0x4, 0x3, 0x3, 0x6}, {0x10000, 0x9, 0x3, 0x8}, {0x6, 0x3, 0x68d6}, {0xd6, 0x3}, {0x1, 0x200000, 0x40, 0x5}, {0x2, 0xfffff0ff, 0x6, 0x6}, {0x10000, 0x80000, 0x9, 0xa6}, {0x3, 0x7, 0x8001, 0x10000}, {0x7f, 0xc9, 0x4bb}, {0x3, 0x5b4, 0x0, 0x4}, {0x6, 0x2, 0x0, 0xc1e}, {0xef, 0x0, 0x0, 0x4}, {0x8001, 0x8, 0x5, 0x2}, {0x401, 0x1, 0xfffffff8, 0x9}, {0xda, 0x6, 0x1f, 0x1}, {0x1, 0x126, 0x80000000, 0x8}, {0x1f, 0xfffffffc, 0x6, 0xff}, {0x2, 0x368a, 0x45, 0x6}, {0x9680, 0x5, 0x4, 0x1220}, {0x6, 0x1, 0x8, 0x8}, {0x6, 0xffff, 0x8, 0x69}, {0x2, 0x1f, 0x2, 0x400}, {0xa80, 0x1, 0x1000, 0x3}, {0x5, 0x9b33, 0xaab, 0x4}, {0x3, 0x0, 0x5, 0x5}, {0x4, 0xffff, 0x3, 0x1}, {0x2, 0x40000000, 0x3c, 0x3}, {0xcc15bc2, 0x2, 0x8, 0x4}, {0x80000000, 0x10001, 0x6, 0x7f}, {0x45a2, 0x6, 0x2, 0xffffffff}, {0xd8, 0x3, 0xffffffff, 0x1ff}, {0x1, 0xd5bf, 0x36, 0x1}, {0x6, 0x40, 0x101, 0x81}, {0x6, 0x7, 0x7, 0xffff}, {0x4, 0x5, 0x81, 0x4}, {0x5, 0x4, 0x4, 0x7f}, {0x9, 0x7, 0x81, 0x8}, {0x3, 0x5, 0x3}, {0x8, 0xffff, 0x0, 0x8}, {0x5, 0x0, 0x6, 0x80}, {0x200, 0xf0, 0x10001, 0x8}, {0x5, 0xba2, 0x401, 0x7}, {0x4ee7, 0x5, 0x59c8}, {0x7ff, 0x7, 0x7, 0xfffffff7}, {0x6, 0x6, 0x100, 0x4}, {0x47, 0xfffffffe, 0x7}, {0x3ff, 0x80, 0x0, 0x7}, {0x1, 0x7, 0x3, 0x40}, {0x1, 0x0, 0x67da, 0x91}, {0x2, 0x1, 0x8, 0x3}, {0x2, 0x65ff, 0x3, 0x2}, {0x800, 0xd54f, 0x80}, {0x3, 0x10000000, 0x101, 0x7}, {0xffff, 0x1f, 0xa17b, 0x8}, {0x0, 0x5, 0x1}, {0xe23, 0x8, 0x6, 0x20}, {0x3, 0x7, 0x0, 0x7}, {0x1, 0x8, 0x0, 0x9}, {0x9, 0x5, 0x5, 0x2}, {0x40, 0x5, 0x7, 0x6}, {0x9, 0xc94, 0x7, 0x6}, {0x2, 0x8000, 0x2, 0x800}, {0x39, 0x8, 0xce2, 0x81}, {0x7fffffff, 0x8, 0x800, 0x7}, {0x81, 0x3, 0xfffff968, 0x7c9b}, {0x3, 0x2, 0xfffffbff, 0x3}, {0x0, 0x2b, 0x400, 0x3d}, {0x3, 0x81, 0xe91, 0x200}, {0x3f, 0x9, 0x1ff, 0x5c}, {0x6, 0x10000, 0xffffffc0, 0x2}, {0x1ff, 0x8001, 0xf3}, {0x7, 0x57, 0x7, 0xfffff869}, {0x8, 0x3519, 0x3, 0x8}, {0x0, 0x6, 0x1e, 0x20}, {0xc04, 0xfff, 0xffffffff, 0x5b7a}, {0x4, 0x101, 0x80000001, 0x5}, {0x7fffffff, 0x7f, 0x3, 0xfffffff8}, {0x1ff, 0x3, 0x800, 0x6}, {0x80000001, 0x200, 0x7, 0x6}, {0x10000, 0x84, 0x1, 0x1}, {0x1f, 0xfff, 0xefc, 0xffffffff}, {0x1, 0xfffffc7c, 0x80000001, 0xfff}, {0x0, 0x1, 0x1, 0x10001}, {0x800, 0x9, 0x6, 0x7}, {0x1ff, 0x7ba6edf7, 0x7ff, 0x3f}, {0xffffffff, 0x101, 0x3, 0x1}, {0x6, 0xfffffeff, 0x6, 0x3f}, {0x5, 0x5, 0x1fe000, 0x6}, {0x7, 0x10000, 0x80000000, 0x7}, {0x7, 0x7, 0x40, 0x5}, {0x5, 0x8, 0x3aff9967, 0xcb000000}, {0x1ff, 0xd4, 0x8, 0x4}, {0x5a6, 0xddac, 0x0, 0x7ee}, {0x8, 0x6, 0x3, 0x2}, {0x1, 0x0, 0x101, 0x40}, {0x8, 0xb1, 0x4, 0x7}, {0x401, 0x9, 0xfff, 0xab6}, {0x9, 0x7, 0x2, 0x7}, {0xfffffffb, 0x2d70, 0x9, 0x4}, {0x0, 0xfffffff9, 0x5ad, 0xaee}, {0x1, 0x0, 0x0, 0x6}, {0x80, 0xffffffff, 0x76c, 0x3}, {0x6, 0x0, 0xff, 0x3}, {0xb1f7, 0x1, 0x2, 0x3f}, {0x2, 0x2, 0x6, 0x9e8}, {0x8e, 0x5, 0x8000, 0x2}, {0x3, 0x1, 0x4a, 0x1f}, {0x1a46, 0x8001, 0x6}, {0x2, 0x2, 0x101, 0x2}, {0x8, 0x3, 0x3, 0x60}, {0x7, 0x1, 0x1f, 0x1}, {0x79, 0x9, 0x0, 0x8}, {0x40, 0x5, 0x0, 0x101}, {0x6, 0x8001, 0xfffffffd, 0x8}, {0x7, 0xfff, 0x383, 0x3}, {0x8, 0x1000, 0x6, 0x3}, {0x9, 0x1, 0xfff, 0x7fffffff}, {0x1, 0x8000, 0xfff, 0x10000}, {0x7fff, 0x5, 0xbf, 0x401}, {0xc4e, 0x6, 0x3, 0xa8}, {0x4, 0x1f, 0x20, 0x401}, {0x5, 0x9, 0x1, 0x200}, {0xd27, 0x80000001, 0x8, 0x1}, {0x8001, 0x2, 0x101, 0xbb7f}, {0x0, 0x0, 0x5}, {0x40, 0xee, 0x7, 0xa1}, {0xffffffff, 0x2, 0xa55, 0xfffffc01}, {0x0, 0x5, 0x1, 0x40000000}, {0x7, 0x9, 0xab37, 0x8}, {0x1ff, 0x3, 0x40, 0x3}, {0x8, 0x7, 0x4, 0xff}, {0x97, 0x8, 0x3, 0x2}, {0x4, 0x9, 0x3, 0x7f}, {0x80000001, 0x7fffffff, 0x1, 0x9}, {0x94, 0x8, 0xfffffff9, 0x80}, {0x1, 0x10001, 0x401, 0x100}, {0x1, 0x8, 0x9, 0x1000}, {0x8, 0x83de, 0x9, 0x2}, {0x852, 0x7, 0x1, 0x3f}, {0x6, 0x80000001, 0x0, 0x5}, {0x7, 0x8, 0x52, 0x2a4}, {0xff, 0x9, 0x262f24e7, 0x6}, {0x8, 0x9, 0x5, 0xfffffffb}, {0x5, 0x0, 0x31, 0x1}, {0x5, 0x80000000, 0x7fffffff, 0x6}, {0x0, 0x1, 0x800, 0x1}, {0x1, 0x2, 0x3, 0x7}, {0x4, 0x7, 0x54, 0x1}, {0x1000, 0x4, 0x5, 0x6}, {0x3ff, 0x3f, 0x360f, 0xffffffff}, {0x8, 0x2, 0x5, 0xe1}, {0x2, 0x2, 0x1, 0x5}, {0x7ff, 0x454d, 0x0, 0x1}, {0x6, 0x5, 0x3372, 0x4}, {0x3, 0xfffffff8, 0x80, 0x5}, {0x0, 0x3f, 0x8, 0x7}, {0x0, 0x8001, 0x5, 0xffff}, {0x1, 0x80000000, 0xe, 0x100}, {0x4, 0x4, 0x7, 0xffffffff}, {0xfffffffd, 0x556, 0x1f, 0x5}, {0x100, 0x80000000, 0x3f, 0x7f}, {0x2, 0x8, 0xa6c6, 0x78b}, {0x8, 0x3b4a, 0x1, 0x9}, {0x9, 0x401, 0x8000, 0x4}, {0x5, 0x6, 0x8001, 0x10000}, {0x1, 0x3, 0x1f, 0x800}, {0x6, 0x3ff, 0xc000, 0x3}, {0x9, 0x1ff, 0xa9, 0x4c47b3b8}, {0xfffff759, 0x0, 0x20, 0x5}, {0x100, 0x1, 0x8, 0x401}, {0xe1a, 0x365, 0x1ff, 0x10001}, {0xffff, 0x7, 0x7fff, 0xffffffff}, {0x800, 0x3, 0x44, 0x7ff}, {0x3, 0x8, 0xa00000, 0x3ff}, {0x5, 0x1, 0x5, 0x5}, {0x3ff, 0x2, 0x0, 0x4}, {0x1f, 0x200, 0x6, 0x1}, {0x100, 0x80, 0x3, 0xfff}, {0x8, 0x7ff, 0x2, 0x26}, {0x7f, 0x5a, 0x8, 0x400}, {0x6, 0x3, 0x40, 0x80000001}, {0x3, 0x0, 0x2, 0xfffffffb}, {0x8001, 0x9, 0xf6cd, 0xff}, {0xf8000000, 0x6, 0x800, 0x2}, {0x40, 0x1, 0x26, 0x8}, {0x3f, 0x0, 0x7, 0x80}, {0x10001, 0x3, 0x5, 0x1}, {0xf800, 0x0, 0x9a, 0x5}, {0x1, 0x4, 0x9, 0xfb6d}, {0x0, 0xdb5, 0x3, 0xf}, {0x20, 0x6, 0x673, 0x3}, {0x1ff, 0x26d3, 0xfffffff8, 0x4}, {0x6, 0xfffffc00, 0x4, 0x200}, {0x0, 0x0, 0x400, 0x9}, {0x1, 0x10000, 0xffffff7f, 0x8}, {0x1, 0x1, 0x9, 0x3}, {0x101, 0x9, 0x8, 0x3}, {0x2, 0x1, 0x6, 0x4}, {0x80000000, 0x5, 0x80}, {0x5, 0x4, 0x10001, 0x1}, {0x35f, 0x6, 0x7f, 0x50}, {0xfffffff7, 0x3, 0x20, 0x9}, {0x0, 0x0, 0x9, 0x200}, {0x21e, 0xfff, 0xfff, 0x8}, {0x7, 0x80000000, 0x4, 0x6}, {0xfff, 0x6, 0x0, 0x4b35d8d5}, {0x2, 0xffff, 0x101, 0x461}, {0x4, 0x64c, 0x5df, 0x7ff}, {0xb1, 0x3, 0x4}, {0x9, 0x5, 0x0, 0x3}, {0x3, 0x6, 0x80, 0x1}, {0x17, 0x4, 0x35e8, 0x5}, {0x1ff, 0x2, 0x3f, 0x10001}, {0x5, 0x6, 0x2, 0x3}, {0x7, 0xffffff7a, 0x2, 0xf0cf}, {0x401, 0x2, 0x2de}, {0x1000000, 0xfffff801, 0x0, 0x80}, {0x0, 0x6, 0x833b, 0x3}, {0x401, 0x401, 0x1ff}, {0x5, 0x23e, 0x20, 0xa}, {0x2d, 0x2, 0x7, 0x1}, {0x800000, 0x3, 0x8, 0x5}, {0xfffffffc, 0x7fff, 0x1, 0x5}, {0x6, 0x924, 0x800, 0x1}, {0xfa44, 0x3, 0x6, 0x4}, {0x20, 0xfff, 0x40, 0x3}, {0x8001, 0xfff, 0x80, 0x101}, {0x1, 0x8000, 0xbd80, 0x1}, {0x400, 0x80, 0x4, 0x2}, {0x7fffffff, 0x9, 0x2, 0x1f}, {0x7, 0xd8b, 0x1, 0xfffffff9}, {0x6, 0xfffff001, 0x925, 0x11e}, {0x401, 0x3f, 0x2, 0x80000001}, {0x5, 0x3, 0x380, 0x7fffffff}, {0x2, 0x4, 0x1, 0x7}, {0x5, 0x8000, 0x7f, 0x2}, {0x3, 0x5, 0x0, 0x5}, {0x4, 0x7, 0x30000000, 0x81}, {0x7, 0x4, 0x4, 0xffffffff}, {0x4, 0x7fff, 0x9b, 0x2aa}, {0x5, 0x8000, 0x1, 0x9}, {0x0, 0x8, 0x5, 0x1f}, {0x9, 0x5, 0x197}, {0x0, 0x20, 0x0, 0x3}, {0x8000, 0xfffffff9, 0x1, 0xc76}, {0x5, 0xffff, 0x7fff, 0x3}, {0xffff, 0x5, 0xfff, 0x7}, {0x2, 0x0, 0x1f, 0x1}, {0x7ff, 0xd446, 0x7fff, 0x3}, {0x9, 0xbc3b, 0x3, 0xbce}, {0x4, 0x2, 0xffff, 0xe7f5}, {0x200, 0x81, 0x1e4, 0x3c}, {0xffffff01, 0xd3, 0x8, 0x1ff}, {0x8000, 0x5, 0x5}, {0xffff0000, 0x81, 0x40, 0xda}, {0x40, 0x8, 0x5, 0x8}, {0x9, 0x2, 0x8b5b, 0x9}, {0x7fffffff, 0x2, 0x2e, 0x1}, {0x8, 0x3, 0x400, 0x8}, {0x1ff, 0x8, 0x57b, 0x3}, {0x3, 0x1, 0x81, 0x1f}, {0x3, 0x80, 0x8, 0xfff}, {0x2, 0xfea, 0x4, 0xffff}, {0x9, 0x101, 0x1e88514b, 0x4}, {0x401, 0x2, 0x75c}, {0x3, 0x10000, 0x81, 0x1}, {0x4, 0x8, 0x7, 0x5}, {0x40, 0x6fa, 0x2, 0x18}, {0x0, 0x400, 0x1, 0x6}, {0x8, 0xffff, 0x0, 0x7}, {0xfffffbff, 0x8000, 0x7fff, 0x81b}, {0x6, 0x3, 0xffffffff, 0xfffffff8}, {0x1, 0x1000, 0x3, 0x4}, {0x0, 0xffffffff, 0x8, 0x5}, {0x400, 0x5, 0xa3, 0x1}, {0xfffffffa, 0xffc00000, 0x6, 0x100}, {0x200, 0x5, 0xcea, 0x1}, {0x3ff, 0xe77, 0x7, 0x2}, {0xfffffffb, 0x1f, 0x0, 0xff}, {0x7ff, 0xfffffffa, 0xc132, 0x1000}, {0x5f, 0xffff, 0xffffffa4, 0x10000}, {0x9, 0x5, 0x100, 0x5}, {0x1f, 0x12, 0x9, 0x6}, {0x762, 0x80000000, 0xffffffff, 0x100}, {0x7, 0x4, 0x4, 0x1}, {0x6, 0x1, 0x3, 0x4}, {0x4, 0x27a78183, 0x5, 0x5fb6}, {0x7, 0x3, 0x5, 0x7fffffff}, {0x10001, 0x1000, 0x3, 0xfffffbff}, {0xffff, 0x3, 0x8, 0x97f3}, {0x0, 0x8, 0x3f}, {0x9, 0x4, 0x8, 0x5}, {0x0, 0x1ff, 0x9b6c, 0x81c3}, {0x4499, 0x6, 0x5, 0x40}, {0xffff33e9, 0x35b, 0x0, 0x33}, {0x5435, 0x7fff, 0x95a, 0x6}, {0x20, 0xfffffffb, 0x9, 0x5}, {0xfffffff7, 0x6, 0x400, 0xfffffffe}, {0x0, 0x0, 0x3ff, 0x8}, {0x800, 0x1, 0x8, 0x4}, {0x81, 0x357, 0x3ff, 0x7}, {0x0, 0x4e9a, 0xff}, {0x5, 0x2, 0x1000, 0x9}, {0x20000000, 0x0, 0x10000, 0x8}, {0x9, 0x1, 0x7, 0x100}, {0x4f, 0x80000001, 0x9, 0x9}, {0x8, 0x20, 0x100, 0x80000000}, {0x4, 0x80, 0x7fff, 0x9}, {0x6, 0x2, 0xdf6b3497, 0x28}, {0x80000000, 0x7ff, 0x71ce77b5, 0xfffffff9}, {0x9, 0x754, 0x8683, 0x5}, {0x1f, 0x7, 0x3, 0x26ed7581}, {0x4, 0x3f, 0x4, 0x6}, {0x8, 0x2, 0x800, 0x400}, {0x7, 0x400, 0x80}, {0x33cd, 0x0, 0x8000, 0x7}, {0x3, 0xe, 0x2, 0x3ff}, {0x9, 0x5, 0x6, 0x10000}, {0x72, 0x7fffffff, 0x7, 0x4}, {0x4b2c, 0x7, 0x7d9, 0x9}, {0xfffffffc, 0x6, 0x10001, 0xbb}, {0x8000, 0xbd7, 0x3, 0xff}, {0x80000, 0x80000001, 0x200, 0xffffaeeb}, {0x0, 0xffffff4a, 0x7, 0x80}, {0x4, 0x4, 0x3, 0xffff}, {0x1a3, 0x1, 0x8, 0xfc39}, {0xffffff80, 0xfffffffe, 0x6, 0x4}, {0x1114, 0x3, 0xfff, 0x1f}, {0x8000, 0x8, 0x3ff, 0x1f}, {0x7, 0x4000, 0x29b, 0x2}, {0x2c9, 0x0, 0x4, 0xc000}, {0x59, 0x4, 0xf66f, 0x56ff}, {0x5, 0x1, 0x800, 0xff}, {0x8, 0xfff, 0x1, 0x3}, {0x5712, 0xe2b8, 0xaae4, 0xfffffffb}, {0x6, 0x3, 0x92, 0x81}, {0x2, 0x8, 0xffff, 0x81}, {0x9, 0xffffff8e, 0x8, 0x5b53}, {0x3f, 0x9, 0x4, 0xff}, {0x7, 0x2e, 0x20, 0x1}, {0x0, 0x2, 0x83, 0x81}, {0x638, 0x1, 0xa6e2, 0x80000001}, {0xfffffbff, 0x3, 0x1, 0x3}, {0x8, 0x2, 0xffff0000, 0x5}, {0x9, 0x8000, 0xc5, 0x5}, {0xfffffffa, 0x401, 0x0, 0x4}, {0x3, 0xc15, 0x3ff, 0x3}, {0x7, 0x1, 0x9}, {0x10001, 0xeb, 0xb21, 0xffff}, {0x9, 0x91ef, 0xfff, 0x80000001}, {0x100, 0x4, 0xc97, 0x3}, {0x87, 0x80000000, 0x0, 0x80000001}, {0xffff, 0x8, 0x6d3c, 0x1}, {0x6, 0x2a8, 0x3, 0x8}, {0x1, 0x8000, 0x80, 0x2a9}, {0x1f, 0x9, 0x4, 0x3}, {0x20, 0x177, 0x80000000, 0x1}, {0x3b8, 0x1f, 0x2, 0x742}, {0xffff, 0x8, 0x4, 0x4}, {0x3, 0x9, 0x80000000}, {0x3, 0x7fff, 0x5, 0x9}, {0x1, 0x80000000, 0x9, 0x1}, {0x100, 0x10000, 0x1000, 0x9}, {0x9, 0x9, 0x20000, 0x1f}, {0x1ff, 0x8, 0x0, 0xaabb}, {0xffffffff, 0x4, 0x5, 0x3f}, {0x3, 0x9, 0x2, 0x8}, {0x1, 0x2266262, 0x49, 0x20}, {0xe9d0, 0x0, 0x7, 0x2}, {0x80000000, 0x3ff, 0x3ff, 0x1}, {0xf7, 0x5ed, 0x6b5a, 0x7fffffff}, {0x7, 0xfff, 0xffffffff, 0x9}, {0x5, 0x3, 0x3ff, 0x9}, {0x2, 0x0, 0x5, 0x8}, {0x4, 0xffc, 0x2, 0xb48c}, {0x3, 0x1ff, 0x8, 0x6a}, {0x401, 0x7ff, 0x1, 0x7}, {0x8, 0xa7e, 0x8, 0x200}, {0x9, 0x3, 0x9, 0x6}, {0x7, 0x1000, 0x10000}, {0x80000000, 0xfff, 0xe4, 0x8}, {0x3, 0x401, 0x7, 0xfff}, {0xfffff32f, 0x9, 0xffff8001, 0x9}, {0x514dc89f, 0x9, 0x5, 0x8}, {0x3, 0x7ff, 0xfc8, 0x7}, {0x1, 0x3f, 0x5}, {0x68b, 0x1000, 0xfdc0, 0xeb80}, {0x101, 0xc332, 0x6, 0xffffff64}, {0x9, 0xbb, 0x5, 0x5}, {0x4, 0x0, 0x1f}, {0x9, 0x2, 0x1, 0x4}, {0x2, 0x1ff, 0x74c, 0x2}, {0x8, 0x5d2, 0x81, 0x6}, {0x9b, 0x2, 0xfff, 0x6}, {0x80000001, 0x7fff, 0x1d49, 0x8}, {0x101, 0x8f, 0xd162}, {0x200, 0xc7, 0x2e0, 0x80000001}, {0x200, 0x6, 0x9, 0xab6}, {0x6, 0xffff, 0x6, 0x8}, {0x81, 0x11, 0x3, 0x5}, {0xfffffffc, 0x800, 0x5}, {0xc43d, 0x1, 0x5, 0x6}, {0x6, 0x40, 0x401, 0x4}, {0x9, 0x6, 0x2, 0x9}, {0x0, 0x20, 0x1d1}, {0x4, 0x1, 0x2, 0x10000}, {0x81, 0x6, 0x3ff, 0x1}, {0x99, 0xff, 0x7ff, 0x6}, {0x3, 0x6, 0x7f, 0xffff}, {0x1, 0x0, 0x1, 0xffff}, {0x80000000, 0x2, 0x400, 0x3}, {0x6, 0xe0c5, 0xc209, 0x3}, {0x0, 0x6, 0x3, 0xff}, {0x8, 0x5d67, 0x3, 0x101}, {0x0, 0x5, 0x8, 0x7}, {0x1, 0x7, 0x45dd, 0x5}, {0x691, 0x3ff, 0xc6bd, 0x6e09}, {0x2, 0x8, 0x1ff, 0x6}, {0x5, 0x8, 0x109, 0x10000}, {0x9, 0x1ff, 0x6, 0x7}, {0x9, 0x6, 0xffff, 0x8000}, {0x1, 0x5, 0xe08f, 0x5}, {0x4, 0x1, 0x9, 0x1}, {0x401, 0x400, 0x9, 0xfff}, {0x87, 0x7, 0x9, 0x81}, {0x4, 0x7f, 0x7, 0x1c}, {0xd4, 0x0, 0x8, 0x80000001}, {0xdd, 0x5, 0xd3, 0x2}, {0x6, 0x1, 0x8dd, 0x7}, {0x0, 0x80, 0xced4, 0x3}, {0x5, 0x4eb3, 0xff, 0x7f5b}, {0xfffffbff, 0x2, 0x7, 0x5}, {0x7, 0x3, 0x6, 0x5}, {0x7f, 0x3, 0xffff8001, 0x81}, {0x73c0, 0x4, 0xfffffc01, 0x9}, {0x8, 0x4, 0x9}, {0x8, 0x5, 0x20, 0x5}, {0x7eaa, 0xa5, 0x2, 0x1}, {0x9, 0x6, 0x9, 0x3}, {0x7, 0x8000, 0x3, 0x1f}, {0x9, 0x3, 0x5, 0x107}, {0x4, 0x6, 0xf, 0x2e70}, {0x6, 0x6, 0x400, 0x2e}, {0x7, 0xa948, 0x3, 0x263}, {0x5, 0x9, 0x7f, 0x3}, {0x3, 0x7ff, 0x2, 0x800}, {0x4, 0x4, 0x8b, 0x80000000}, {0x9, 0x3, 0x23, 0xff}, {0x200, 0x7fffffff, 0x234, 0x1440000}, {0x3, 0x6, 0x2, 0x2}, {0x1000, 0x9, 0xff, 0xfffffffc}, {0x7fffffff, 0x3, 0x3, 0x200}, {0x1, 0x96, 0x7fff, 0x3}, {0xfffffffa, 0x82, 0xffff, 0x2}, {0x401, 0x9, 0x9, 0x72}, {0x100, 0xffff, 0x1, 0x9}, {0x1, 0x2, 0x1000, 0x8}, {0x3, 0xc5, 0x8f7, 0x8}, {0x3f, 0x6, 0x39f1d655, 0x8}, {0xffffffc1, 0x8, 0x1}, {0x400, 0x9, 0x3, 0x9}, {0x72, 0x40, 0x6, 0x1}, {0x6, 0x7, 0x2, 0x5}, {0x10000, 0x7, 0x573, 0xd7ca}, {0x9e, 0x49, 0xffffffff, 0x5}, {0x501a, 0x7, 0x3f, 0x6}, {0x3, 0x800, 0x3f}, {0x5, 0x2, 0x3f, 0x9}, {0x0, 0xff, 0xce35, 0x101}, {0x62, 0x0, 0x3f, 0x3}, {0x9, 0x6e2, 0xffff2a91, 0xfff}, {0x3ff, 0xfffffeff, 0x0, 0xc5}, {0x3, 0x6, 0xd1, 0x100}, {0xffffffff, 0x0, 0xbed, 0x2c4f}, {0xb8000000, 0x100, 0xf4, 0x101}, {0x8, 0x5, 0xb9c, 0x78}, {0x7ff, 0x2, 0x4, 0xd39}, {0x400, 0x20e3, 0x3, 0x2}, {0xffffff00, 0x7, 0xf4, 0x1000}, {0x5, 0x5, 0x6a500, 0x91}, {0x5d, 0x6f5, 0x8001, 0xffff}, {0x80000000, 0x8000, 0x9}, {0x1, 0xffff, 0x0, 0x394}, {0x5f, 0xc73, 0x6, 0x1}, {0x73, 0x6, 0x275, 0x3}, {0x81, 0x9, 0x1}, {0x80000000, 0x1f, 0x8, 0x7}, {0x8, 0x7, 0xacb, 0x4}, {0xe148, 0xfffffffe, 0x5, 0x80}, {0xffffffff, 0x2, 0x3, 0x4}, {0x8, 0x4, 0x80000000, 0x10001}, {0x7ff, 0x1000, 0x4, 0x7}, {0x10000, 0x1, 0x4606, 0x91}, {0x4, 0x0, 0x1f, 0xab300}, {0xdcd, 0x4, 0x7fffffff, 0x2}, {0x4954fecf, 0xfffffff8, 0x1, 0xfff}, {0x1, 0xda, 0x6, 0xffffffff}, {0x9, 0x80000000, 0x7fffffff, 0x6}, {0x4, 0x200, 0x0, 0x10000000}, {0xffffffff, 0x6, 0x9, 0xffffffff}, {0x3ff, 0x4, 0x0, 0x6}, {0xbd, 0xff43, 0x3ff, 0x7}, {0x5, 0x7c7, 0x4, 0x4}, {0x1000, 0x8, 0x7, 0x1}, {0x8, 0x401, 0x5, 0x1}, {0x3f, 0x8000, 0x6, 0x3f}, {0x2, 0x2, 0x4, 0x8}, {0x7, 0x9, 0xff, 0x5}, {0x1, 0x10001, 0x4, 0x9}, {0x7, 0x1, 0x401, 0xd10b}, {0x9, 0x1, 0xafdd, 0xff}, {0x81, 0xfffffffa, 0x8, 0x4}, {0x2, 0x4, 0x3, 0x5}, {0x15d8, 0x8001, 0x31, 0x100}, {0x80000000, 0x5e22, 0x9, 0x1ff}, {0x14000, 0x0, 0x8, 0xffffffff}, {0x3, 0x5, 0xffff, 0x44}, {0x9, 0x7ff, 0x7fffffff, 0x40}, {0x20, 0x5, 0x4, 0x596}, {0x3, 0x0, 0x46e, 0x6}, {0x3ff, 0x9, 0x3, 0x100}, {0x8, 0x80000001, 0xffff167d, 0x3ab}, {0x3f, 0xffff69f8, 0x10000, 0x80000000}, {0x7fff, 0x9, 0x4, 0x8001}, {0x6, 0x3, 0xfa, 0x3ff}, {0xfffffffc, 0x8, 0x69, 0x3f}, {0x9, 0x10001, 0x8, 0x20}, {0x4, 0x10001, 0x6, 0x5}, {0x61d, 0x6, 0x100, 0xca}, {0x2, 0x80000001, 0xbde00000, 0x8001}, {0x6, 0x2, 0xfffffffc, 0x2}, {0x100, 0x0, 0x8, 0x2}, {0x6, 0x6, 0x200, 0x2}, {0x80000000, 0x8001, 0x7fffffff, 0xca}, {0x4, 0x3, 0x9da0000, 0x9}, {0x800, 0xa4000000, 0xffff, 0x7f}, {0x8, 0x3, 0x3, 0xcff9}, {0x1, 0x5, 0x8, 0x40}, {0xb6, 0x9, 0x3, 0x81}, {0x2, 0x6, 0x8, 0x3}, {0x8000, 0x10000, 0x1, 0x1}, {0x5, 0x9, 0x0, 0x1f}, {0x8, 0x7, 0x8001, 0x7}, {0x9, 0x889, 0x7ff, 0x2}, {0x100, 0x5, 0x3, 0x7}, {0x5, 0xfffff001, 0x8, 0x400}, {0xfffffffb, 0x80000001, 0x15dc2244, 0x7}, {0x1f, 0x7f, 0x7fff, 0x3}, {0x0, 0x300000, 0x2, 0x4}, {0x8, 0x9, 0x8, 0x7ff}, {0x5, 0x5, 0x7, 0x1}, {0x1, 0x9, 0x7, 0x20}, {0x7, 0x2, 0xc5, 0xcea}, {0x6, 0x101, 0x7, 0x8}, {0x1, 0x7fff, 0x1, 0x6}, {0x6, 0xb0, 0x1f, 0x1}, {0x4, 0x400, 0x0, 0x1}, {0x1, 0x3, 0x9e, 0x6}, {0x10000, 0xe9f, 0xffff, 0xff}, {0xfc, 0x7, 0x16, 0x1f}, {0x6b, 0x3bd, 0x3f, 0xb25a}, {0x8, 0x2, 0x3, 0xc1dd}, {0x7b3, 0xffffffff, 0x3, 0x80}, {0xdb, 0x10000, 0x7fffffff, 0xa624}, {0x1978, 0x4, 0x5, 0xe}, {0x4, 0x5, 0x0, 0x7}, {0x3f, 0x400, 0x3ba48801}, {0xff, 0x6, 0x1, 0x100}, {0x10001, 0x7fffffff, 0x6, 0x9a6}, {0x400, 0x9, 0x4, 0x2}, {0x96, 0x0, 0x7}, {0x76, 0x1, 0x70a7, 0xfffffffb}, {0x3, 0x2, 0x7, 0x133f}, {0x3, 0x0, 0x7, 0x80000001}, {0x0, 0x8, 0xaa, 0x155ddb6a}, {0x0, 0x0, 0x6f7, 0x9}, {0x20000, 0x0, 0xfff}, {0x4774, 0xbcbc, 0x9, 0x4}, {0x10000, 0x0, 0x8, 0x1}, {0x4, 0xe49d, 0x2, 0x2c3}, {0xef9, 0x176e, 0x6, 0xfffffff7}, {0x3, 0x9, 0x80, 0x4}, {0xa2, 0x31d, 0x3, 0x1ad}, {0x3f, 0x81, 0x8, 0x81}, {0x7f, 0x3, 0x4, 0x2}, {0x80, 0x2, 0x1ff, 0x1f}, {0x1f, 0x9d, 0xfffffffd, 0x9}, {0x4, 0x81, 0x80000001, 0x70000}, {0x4, 0x1, 0xc35f, 0x3}, {0xb10a, 0x4c, 0x8, 0x6}, {0x5, 0xfffffff8, 0x7, 0x8001}, {0x7ff, 0x2, 0x5, 0xffffffff}, {0x80000001, 0x3, 0x891, 0x20}, {0x2, 0x8000, 0xff, 0x5}, {0xfffff800, 0x0, 0x9, 0x1000}, {0xfff, 0x80, 0x7fffffff, 0x4e}, {0x5, 0x8, 0x800, 0x1}, {0xfffff800, 0x1, 0x5, 0x9}, {0x5000, 0x9, 0xffffffff, 0x6}, {0x6, 0x6, 0x9}, {0x5, 0x4, 0x2932}, {0x7ff, 0x4697, 0x9, 0xfffffe43}, {0x401, 0x0, 0x6, 0x4}, {0x8, 0x9, 0x1, 0x6}, {0x0, 0x8, 0x9, 0x1ff}, {0x9, 0x9, 0x1, 0x5}, {0xffffffff, 0x3f, 0xf4, 0x9}, {0x0, 0x7fff, 0x2c, 0x3f}, {0x1e19c0a7, 0x8d, 0xff, 0x2}, {0x1fa, 0x401, 0x5, 0xca48}, {0x6, 0x8001, 0x8000, 0x3f}, {0x1, 0x100, 0x2, 0xffffb8c4}, {0x0, 0x7ff, 0xfba, 0x1f}, {0x7ff, 0xffffffff, 0x8000, 0x7}, {0x3e6e512f, 0x5, 0x7, 0x7fffffff}, {0x200, 0x7, 0x0, 0x81}, {0xffff, 0xe1e, 0x7}, {0xbffe, 0x8, 0x2, 0x1f}, {0x314b, 0x4a, 0x3ff, 0x101}, {0x8, 0x1, 0xffffffff}, {0x4, 0x64, 0x5, 0x3}, {0x5, 0x9, 0x7fffffff, 0xb76}, {0x40, 0x2, 0x1000, 0x2}, {0xfff, 0x8, 0x6, 0x5}, {0x1, 0x7, 0x10000, 0x1}, {0x8, 0xb615, 0x401, 0xffffffff}, {0x1c9, 0x81, 0x284, 0x6}, {0x1, 0x0, 0x2a1, 0x80}, {0x400, 0x3, 0x4, 0x8}, {0x1, 0x401, 0x7, 0x7}, {0x5, 0x2, 0x80000000, 0x8}, {0x6, 0x6, 0x3, 0x200}, {0x1, 0x3, 0x8, 0x4}, {0xffff, 0x7, 0x80000000, 0x40}, {0xb99, 0x6, 0x101, 0x1}, {0x5, 0x7fff, 0x5, 0x20}, {0x7fea9abe, 0x80000001, 0x5, 0x4c8}, {0x3f, 0x0, 0x5, 0x8}, {0x7, 0x4, 0x0, 0x7}, {0x4, 0x800, 0xea8, 0x7e}, {0x86c9, 0xc383, 0x7, 0x9}, {0x9, 0x7, 0x9, 0x6}, {0x7, 0x3, 0x100, 0xbdd}, {0x6, 0x4, 0x80, 0x19}, {0x3, 0x4, 0x2, 0x8}, {0x3ff, 0x2, 0x7, 0x8001}, {0x8, 0x69, 0x10000, 0x401}, {0x7, 0x200, 0x6f, 0x7}, {0x7fffffff, 0xfffffff7, 0x3, 0x94}, {0x80000000, 0x7, 0x2, 0x9}, {0x9, 0x3, 0x5, 0x3f}, {0x0, 0x8, 0x6cb7, 0x8}, {0x0, 0x7, 0x80000001, 0x5}, {0x2, 0x80000000, 0x1f, 0xfffffffd}, {0x7, 0x4, 0xfffffffe, 0x1f}, {0xefd, 0x1, 0x4, 0x8}, {0x9ed0, 0x7e, 0x2, 0x3}, {0xe7, 0x7fff, 0x6ff, 0x40}, {0x1, 0x1, 0x1, 0x80000000}, {0x0, 0x4, 0xd6c, 0x9}, {0x401, 0x1ff, 0x6, 0x1}, {0x2c, 0x8, 0x1c, 0x6}, {0xfb7c, 0x4420, 0x5, 0x33c4}, {0xfffffffd, 0x7, 0x5cde}, {0x0, 0xac9a, 0x7, 0x4}, {0x20, 0x0, 0xffff8001}, {0x7, 0x40, 0x0, 0x80000000}, {0xfffff65e, 0x0, 0x9, 0x15}, {0x7, 0x2, 0x1, 0x1}, {0x20, 0x8000, 0x6, 0x4}, {0x81, 0xdd4f, 0x700000, 0x7}, {0x6e, 0x3ff, 0x7f5a4b87, 0xd7a}, {0x5, 0x3, 0xffff, 0x80000001}, {0x10001, 0x6, 0x3, 0x7}, {0xef, 0x1f, 0xfffffff9, 0x9}, {0x3, 0x8, 0x7fff}, {0x101, 0x5, 0xfffffffe, 0x1e780f49}, {0x1, 0x4, 0x1f, 0x8}, {0x1, 0x7ae, 0xebf, 0x3}, {0x1, 0x9, 0x80, 0x7fff}, {0xbc9e, 0x7fff, 0x3, 0x101}, {0x65, 0x800, 0xb52a, 0x7ff}, {0xfffffffb, 0x7ff, 0x8001, 0x9}, {0x1a4c, 0x9e59, 0x3, 0xfffffff9}, {0xfffffff7, 0x7fffffff, 0x62ab, 0x80000001}, {0x1, 0xec1, 0x5, 0x80}, {0x1f, 0x101, 0xd9e, 0x5}, {0x8, 0x8000, 0xc6d, 0x3}, {0x0, 0x1000, 0x1, 0x1}, {0xfcd, 0x6, 0x7, 0x800}, {0x5, 0x358d, 0xf063}, {0xb2e4, 0x8, 0x6, 0x7}, {0x6, 0xaf, 0x80000001, 0x8}, {0x0, 0xe7d, 0x97, 0x9}, {0x7, 0x4, 0x8, 0x9}, {0x6, 0x284efd65, 0x99f, 0x4}, {0x10001, 0x7, 0x3, 0x8001}, {0x7, 0x4e4fc59a, 0x90b3, 0x3}, {0x1, 0x5892, 0x1, 0x3f}, {0x4, 0xffffff05, 0x6, 0x3}, {0xa6a, 0x6306, 0x0, 0x3}, {0x7, 0x3, 0x9, 0x3}, {0x7, 0x9, 0x6, 0x6}, {0x7fffffff, 0x2, 0x80000001, 0x3}, {0x80000000, 0x40, 0x405, 0x400}, {0x3ff80000, 0x2, 0x6, 0xfff}, {0x2, 0x80000000, 0x80000001, 0x24}, {0x89, 0x1, 0x9, 0x1ff}, {0x80000001, 0x3, 0x7, 0xfffeffff}, {0x18dc, 0x9, 0x6, 0x1}, {0x1f, 0x101, 0x7, 0x7}, {0xffffffe9, 0x4, 0x4607, 0x7fff}, {0x0, 0x1, 0xfff, 0x400}, {0x80000000, 0x7fff, 0xda, 0x7ff}, {0x400, 0xffffffff, 0xd94}, {0x6, 0x200, 0x3, 0x100}, {0x1d6bc7b4, 0x7, 0x1000, 0x6}, {0x3, 0x8, 0x9, 0x8}, {0xf7, 0x9, 0x4, 0x8000}, {0x200, 0x2, 0x6, 0x3}, {0x8, 0xffffffff, 0x9, 0x4}, {0x3, 0x7, 0x8001, 0x20}, {0x258, 0x6, 0x3f, 0x2d2}, {0x8000, 0x3, 0x0, 0x8}, {0x7ff, 0x5, 0x10000, 0x5}, {0x9, 0xe1, 0x0, 0x1}, {0x0, 0x1ff, 0x0, 0x3}, {0x9, 0xe1e, 0x3, 0x100}, {0x5, 0xfffffffd, 0x0, 0x9}, {0x80000001, 0x3, 0x98, 0x2}, {0x6, 0x1, 0x50, 0xffffffff}, {0x7e00, 0x4, 0x9, 0x2}, {0x0, 0x1f, 0x8001, 0x1da}, {0xfffffff9, 0x5, 0xffff8001, 0x3}, {0x1ff, 0x7, 0x8, 0x5}, {0x5, 0xc, 0x800, 0x9}, {0x9, 0x6, 0x800, 0x7fffffff}, {0x57c, 0xffffc844, 0x1f, 0x7f}, {0x7, 0x1, 0x0, 0x3f}, {0x6, 0x6, 0x0, 0x80000000}, {0x81, 0x5, 0x9, 0x1}, {0x6816, 0xfff, 0x9, 0x7}, {0x0, 0x7fffffff, 0x1, 0x8}, {0x7fff, 0x6, 0x6, 0x7f}, {0x4, 0x1, 0x30d}, {0x1, 0x0, 0x101, 0x9}, {0x6, 0xd3ed, 0x0, 0x200}, {0x101, 0x6, 0x7}, {0x6, 0x81, 0xa592, 0x80000000}, {0x2, 0x4, 0x7, 0x8000}, {0x9, 0x2, 0x40, 0xa0000}, {0x82, 0x1f, 0x8f, 0xf5}, {0x2, 0x2, 0x2, 0x2}, {0x0, 0x5, 0x2, 0x7fffffff}, {0x80000000, 0x10001, 0x2, 0x7}, {0x7f, 0x9, 0x9, 0x4}, {0xd03, 0x10001, 0x5, 0x1}, {0x8, 0x0, 0x1bd2, 0x400}, {0x9, 0x5, 0x0, 0x4}, {0x80000000, 0x0, 0x7, 0x3}, {0x0, 0x7, 0x9, 0x1}, {0x1800000, 0x100, 0x7fffffff, 0x1f}, {0x8001, 0x1, 0x100, 0x1}, {0xec6, 0x81, 0x10000, 0x9}, {0x8, 0x1, 0x66d8, 0x9}, {0x27e8, 0x0, 0x3f, 0x6}, {0x20, 0x4, 0x8, 0x48}, {0x9, 0x4703, 0x9, 0x1f}, {0x1, 0x6, 0x3f, 0x6}, {0x0, 0xb4, 0x2df8, 0xffffffff}, {0x32, 0x1b, 0x3, 0x4}, {0x800, 0xfffffc01, 0x0, 0x4}, {0x100, 0x4, 0xfffffffe, 0x3}, {0x401, 0x6, 0x81, 0x2}, {0x2, 0xc000000, 0x3}, {0x3ff, 0x5, 0x400, 0x73}, {0xffff, 0x3, 0x8, 0x3}, {0xffffffff, 0x1, 0x1, 0x2}, {0xfffffffc, 0x1, 0xffff}, {0x0, 0x3ff, 0x8001, 0x70e}, {0xa0a, 0x9, 0x7, 0xb7e8}, {0x80, 0x8, 0x7, 0xff}, {0x6, 0x101, 0x9, 0x10000}, {0x40, 0x4, 0x0, 0x10000}, {0x80, 0x1000, 0x7}, {0x2, 0x10000, 0x0, 0x3}, {0xff, 0xfff, 0x8}, {0x9, 0x1000, 0x8, 0x40}, {0x4bfa162, 0x101, 0x8, 0xaad}, {0xff, 0x44b, 0x9, 0x1f}, {0x6, 0x2, 0xcc23, 0x6}, {0x6, 0x1, 0x1, 0x3}, {0x7fff, 0x400, 0x4, 0x7}, {0x45, 0x7, 0xe907, 0x4}, {0x1f, 0x2, 0x21, 0x9}, {0x6, 0x6, 0x2, 0x8}, {0x7, 0x800, 0x7, 0xb2d}, {0x9, 0x401, 0xfffffffa, 0x200}, {0x1f, 0x3, 0x4, 0x80000000}, {0x2, 0x8e9a, 0x5, 0x4}, {0xffff7781, 0xffffffbd, 0xe7f, 0x2}, {0x7, 0x7, 0x8, 0x2}, {0x0, 0x800}, {0xfffffffd, 0xc155, 0x0, 0x800}, {0x2, 0x10000, 0x6, 0x2}, {0x5, 0x0, 0x20, 0x7}, {0x7ff, 0x1ff, 0xbae, 0x8}, {0x1, 0xfff, 0x20, 0x10000}, {0x8, 0x6, 0x2, 0x5}, {0x8, 0x2, 0x7, 0x6}, {0xe61a, 0x4, 0x1, 0x3}, {0x6, 0x0, 0x6, 0x6}, {0x9, 0x0, 0xb60b, 0x1ff}, {0x4, 0x3, 0x2e39ef45, 0xffffffff}, {0xfffffffd, 0x6, 0x7}, {0x6, 0x2ef, 0x2, 0x8}, {0x2311, 0x2, 0x3ff, 0x1000}, {0x1, 0xfffffff9, 0x622f, 0x20}, {0x80000001, 0x8, 0x1000, 0x2}, {0x7, 0x7, 0x10000, 0xeb}, {0x0, 0x40, 0x0, 0xd93a}, {0x10001, 0x0, 0x7, 0x8}, {0x6, 0x800, 0xffffd84f, 0x3f}, {0x7c3, 0xb8, 0x6, 0x100}, {0x10000, 0x5, 0x3ff, 0xfffffbff}, {0x35, 0x80, 0x3, 0x4b9}, {0x2, 0x7, 0x4, 0x401}, {0x3, 0x9, 0x7ff, 0x1000}, {0x4, 0x7, 0x1f, 0xffffffff}, {0x1, 0x19, 0x0, 0x7}, {0x8, 0x2, 0x8, 0x7fffffff}, {0x4800, 0x902c, 0x1000, 0x1}, {0x9d, 0x1, 0x7fffffff, 0x22}, {0x0, 0x40, 0x2276, 0xd7}, {0x7, 0x2, 0x5, 0x8}, {0x0, 0xffff, 0x6, 0x80}, {0x6, 0x7, 0x4, 0x7d9}, {0xc8, 0xf389, 0x7, 0x8}, {0xafb2, 0x20, 0x5ab, 0x63b5}, {0x7, 0x6, 0x0, 0x3}, {0x1bd5, 0x1000, 0x5, 0x3}, {0x0, 0x5, 0xda, 0xebf1}, {0xd3fd, 0x2, 0x2, 0x3ff}, {0x6, 0x7, 0x6dd2, 0x50}, {0x8673, 0x2, 0x7, 0x4}, {0x200, 0x8, 0x3, 0x4}, {0x6d30, 0x7fffffff, 0x4, 0x9}, {0xff, 0x7, 0x191, 0x8}, {0x5, 0x7ee3, 0x3, 0x5}, {0xe0, 0xfffffff8, 0x10000, 0x1}, {0x5b19, 0xfff, 0x800, 0x4}, {0x9, 0x9, 0x1000, 0x2}, {0xe04, 0x48000, 0x1, 0x9}, {0x2, 0x6ee, 0x786c0000, 0x8001}, {0x1ff, 0x0, 0x95c, 0x5}, {0x2, 0x2, 0x8, 0x7}, {0x403, 0x8, 0x50f, 0x29e7}, {0xffffeb18, 0x6, 0x9, 0x6}, {0x4498, 0x8, 0x2, 0x2}, {0xfffffffa, 0x633, 0xffff7fff, 0x100}, {0x6, 0x2ae4, 0x8, 0x1}, {0x380, 0xc2, 0xbc, 0x100}, {0x8, 0x2, 0x4, 0x2}, {0x6, 0x80000001, 0x4, 0x8}, {0x91, 0x9ac, 0x100, 0x2}, {0x4, 0x40, 0x8, 0x2020}, {0x20000000, 0x2787, 0xfffffffc, 0x472}, {0x4, 0x9, 0x100, 0x9}, {0xf6, 0xff, 0x9, 0x6}, {0x637, 0x4, 0x4, 0x80000000}, {0x5, 0x51, 0x240, 0x8001}, {0x5, 0xa1ca2583, 0xa00000, 0x7fff}, {0x4, 0xffffff80, 0xffffffc1, 0xf0}, {0x7ff, 0x1ff, 0x4, 0x5}, {0xfffffff9, 0x3, 0xc3, 0x8}, {0x7ff, 0x3, 0x1}, {0x62b, 0x3, 0x7, 0x4}, {0x87b, 0xd3, 0x5, 0x3}, {0x1, 0x7fff, 0x6, 0x5}, {0x1, 0x9, 0xdad, 0x4}, {0x8, 0x3, 0x5, 0x200}, {0x6, 0x8, 0x7, 0x4}]}, 0x3c2e) syz_io_uring_setup(0x1e, &(0x7f0000000080)={0x0, 0x3, 0x1, 0x0, 0x78, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:23 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) 13:23:23 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x208200, 0x0) r1 = syz_usbip_server_init(0x5) write$usbip_server(r1, &(0x7f0000000100)=@ret_submit={{0x3, 0x4, 0x0, 0x1, 0x200}, 0x7, 0xfe, 0x2, 0x3b0, 0xffffffff, 0x0, "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", [{0x6db1, 0xfff, 0x7, 0x5}, {0x0, 0x9, 0x80, 0x9}, {0x10000, 0xfffffff7, 0x80, 0x5}, {0x2, 0xa3, 0xd88, 0x2}, {0x8, 0x3, 0x7ff, 0xfffffffb}, {0x4, 0xd74, 0x8000, 0x1}, {0x4, 0xd85c, 0x7ff, 0xffffff09}, {0x7, 0x3f3e, 0xffffffff, 0x10000}, {0x5, 0x0, 0x4, 0x7fff}, {0x7f, 0x8001, 0x6, 0x10001}, {0x8, 0x7ff, 0x8001, 0x7}, {0x81, 0x400, 0x7, 0x8}, {0x1, 0x80000001, 0x3, 0x9}, {0x9, 0x400, 0x1, 0x5}, {0x4, 0xfffffffe, 0x0, 0x100}, {0x4, 0x101, 0x8, 0xcce}, {0x3, 0x4, 0x3, 0xdfb}, {0x2, 0x0, 0xfff, 0x7fff}, {0x2, 0x84, 0x8000}, {0x8000, 0x4, 0x1f}, {0x6, 0x1, 0x1f, 0x4}, {0x9, 0x600, 0x80000000, 0x100}, {0x7, 0x4668, 0x2, 0x9}, {0x10000, 0xe73, 0xd, 0x6}, {0x2, 0x2, 0x8, 0x2}, {0x9, 0xa715, 0x74, 0x5}, {0x2, 0x7098, 0x40, 0x7}, {0x6, 0x0, 0x8863, 0x7}, {0xffffffff, 0x9, 0x8000000, 0x8}, {0x972, 0xfffffffd, 0x1ff, 0x4}, {0x4, 0x9, 0x800, 0x10000}, {0x3, 0xe76f, 0x8, 0x9}, {0x3f, 0xac, 0x1, 0x5}, {0x7fffffff, 0x1, 0x8, 0x5}, {0x0, 0x8, 0xbf2, 0x8}, {0x6c, 0x0, 0xffffff80, 0x9}, {0x2, 0x7, 0x80000001, 0xfff}, {0xec8f6194, 0x7, 0x7f, 0x38af}, {0x9, 0x1, 0x4, 0x1}, {0xa487, 0x8, 0xffffffff, 0x100}, {0x40, 0x8, 0x8, 0x9d}, {0x7, 0x78c, 0xfffffff7, 0x3}, {0x8, 0x9, 0xd727, 0x526}, {0xd8, 0x9, 0x0, 0xd3d4}, {0x6000000, 0xfffffeff, 0x0, 0x23}, {0x5, 0xfffffff9, 0xfff, 0x2}, {0x5, 0xfc6a, 0x3f, 0x1}, {0xff, 0x41, 0x3, 0xcf00}, {0xd9, 0x20, 0x4, 0xffffffff}, {0x1, 0x2, 0xaf, 0x8}, {0x1, 0xfb96, 0x1, 0x8}, {0x8, 0x5, 0x54a, 0x94}, {0x8, 0x98, 0x7, 0x1d}, {0x200, 0x3f, 0x0, 0x400}, {0x81, 0x4, 0xfff, 0x1c29}, {0x7ff, 0x400, 0xffffffff, 0x67c5}, {0x5, 0x4, 0x40, 0x1}, {0x80000000, 0x6, 0x9}, {0x2, 0x7, 0xf3a, 0x7}, {0xa3a3, 0x7, 0x4, 0xffffffff}, {0x9, 0x100, 0x1, 0x7}, {0x8282, 0x40, 0x80000001, 0x1}, {0x4, 0x3, 0x3, 0x6}, {0x10000, 0x9, 0x3, 0x8}, {0x6, 0x3, 0x68d6}, {0xd6, 0x3}, {0x1, 0x200000, 0x40, 0x5}, {0x2, 0xfffff0ff, 0x6, 0x6}, {0x10000, 0x80000, 0x9, 0xa6}, {0x3, 0x7, 0x8001, 0x10000}, {0x7f, 0xc9, 0x4bb}, {0x3, 0x5b4, 0x0, 0x4}, {0x6, 0x2, 0x0, 0xc1e}, {0xef, 0x0, 0x0, 0x4}, {0x8001, 0x8, 0x5, 0x2}, {0x401, 0x1, 0xfffffff8, 0x9}, {0xda, 0x6, 0x1f, 0x1}, {0x1, 0x126, 0x80000000, 0x8}, {0x1f, 0xfffffffc, 0x6, 0xff}, {0x2, 0x368a, 0x45, 0x6}, {0x9680, 0x5, 0x4, 0x1220}, {0x6, 0x1, 0x8, 0x8}, {0x6, 0xffff, 0x8, 0x69}, {0x2, 0x1f, 0x2, 0x400}, {0xa80, 0x1, 0x1000, 0x3}, {0x5, 0x9b33, 0xaab, 0x4}, {0x3, 0x0, 0x5, 0x5}, {0x4, 0xffff, 0x3, 0x1}, {0x2, 0x40000000, 0x3c, 0x3}, {0xcc15bc2, 0x2, 0x8, 0x4}, {0x80000000, 0x10001, 0x6, 0x7f}, {0x45a2, 0x6, 0x2, 0xffffffff}, {0xd8, 0x3, 0xffffffff, 0x1ff}, {0x1, 0xd5bf, 0x36, 0x1}, {0x6, 0x40, 0x101, 0x81}, {0x6, 0x7, 0x7, 0xffff}, {0x4, 0x5, 0x81, 0x4}, {0x5, 0x4, 0x4, 0x7f}, {0x9, 0x7, 0x81, 0x8}, {0x3, 0x5, 0x3}, {0x8, 0xffff, 0x0, 0x8}, {0x5, 0x0, 0x6, 0x80}, {0x200, 0xf0, 0x10001, 0x8}, {0x5, 0xba2, 0x401, 0x7}, {0x4ee7, 0x5, 0x59c8}, {0x7ff, 0x7, 0x7, 0xfffffff7}, {0x6, 0x6, 0x100, 0x4}, {0x47, 0xfffffffe, 0x7}, {0x3ff, 0x80, 0x0, 0x7}, {0x1, 0x7, 0x3, 0x40}, {0x1, 0x0, 0x67da, 0x91}, {0x2, 0x1, 0x8, 0x3}, {0x2, 0x65ff, 0x3, 0x2}, {0x800, 0xd54f, 0x80}, {0x3, 0x10000000, 0x101, 0x7}, {0xffff, 0x1f, 0xa17b, 0x8}, {0x0, 0x5, 0x1}, {0xe23, 0x8, 0x6, 0x20}, {0x3, 0x7, 0x0, 0x7}, {0x1, 0x8, 0x0, 0x9}, {0x9, 0x5, 0x5, 0x2}, {0x40, 0x5, 0x7, 0x6}, {0x9, 0xc94, 0x7, 0x6}, {0x2, 0x8000, 0x2, 0x800}, {0x39, 0x8, 0xce2, 0x81}, {0x7fffffff, 0x8, 0x800, 0x7}, {0x81, 0x3, 0xfffff968, 0x7c9b}, {0x3, 0x2, 0xfffffbff, 0x3}, {0x0, 0x2b, 0x400, 0x3d}, {0x3, 0x81, 0xe91, 0x200}, {0x3f, 0x9, 0x1ff, 0x5c}, {0x6, 0x10000, 0xffffffc0, 0x2}, {0x1ff, 0x8001, 0xf3}, {0x7, 0x57, 0x7, 0xfffff869}, {0x8, 0x3519, 0x3, 0x8}, {0x0, 0x6, 0x1e, 0x20}, {0xc04, 0xfff, 0xffffffff, 0x5b7a}, {0x4, 0x101, 0x80000001, 0x5}, {0x7fffffff, 0x7f, 0x3, 0xfffffff8}, {0x1ff, 0x3, 0x800, 0x6}, {0x80000001, 0x200, 0x7, 0x6}, {0x10000, 0x84, 0x1, 0x1}, {0x1f, 0xfff, 0xefc, 0xffffffff}, {0x1, 0xfffffc7c, 0x80000001, 0xfff}, {0x0, 0x1, 0x1, 0x10001}, {0x800, 0x9, 0x6, 0x7}, {0x1ff, 0x7ba6edf7, 0x7ff, 0x3f}, {0xffffffff, 0x101, 0x3, 0x1}, {0x6, 0xfffffeff, 0x6, 0x3f}, {0x5, 0x5, 0x1fe000, 0x6}, {0x7, 0x10000, 0x80000000, 0x7}, {0x7, 0x7, 0x40, 0x5}, {0x5, 0x8, 0x3aff9967, 0xcb000000}, {0x1ff, 0xd4, 0x8, 0x4}, {0x5a6, 0xddac, 0x0, 0x7ee}, {0x8, 0x6, 0x3, 0x2}, {0x1, 0x0, 0x101, 0x40}, {0x8, 0xb1, 0x4, 0x7}, {0x401, 0x9, 0xfff, 0xab6}, {0x9, 0x7, 0x2, 0x7}, {0xfffffffb, 0x2d70, 0x9, 0x4}, {0x0, 0xfffffff9, 0x5ad, 0xaee}, {0x1, 0x0, 0x0, 0x6}, {0x80, 0xffffffff, 0x76c, 0x3}, {0x6, 0x0, 0xff, 0x3}, {0xb1f7, 0x1, 0x2, 0x3f}, {0x2, 0x2, 0x6, 0x9e8}, {0x8e, 0x5, 0x8000, 0x2}, {0x3, 0x1, 0x4a, 0x1f}, {0x1a46, 0x8001, 0x6}, {0x2, 0x2, 0x101, 0x2}, {0x8, 0x3, 0x3, 0x60}, {0x7, 0x1, 0x1f, 0x1}, {0x79, 0x9, 0x0, 0x8}, {0x40, 0x5, 0x0, 0x101}, {0x6, 0x8001, 0xfffffffd, 0x8}, {0x7, 0xfff, 0x383, 0x3}, {0x8, 0x1000, 0x6, 0x3}, {0x9, 0x1, 0xfff, 0x7fffffff}, {0x1, 0x8000, 0xfff, 0x10000}, {0x7fff, 0x5, 0xbf, 0x401}, {0xc4e, 0x6, 0x3, 0xa8}, {0x4, 0x1f, 0x20, 0x401}, {0x5, 0x9, 0x1, 0x200}, {0xd27, 0x80000001, 0x8, 0x1}, {0x8001, 0x2, 0x101, 0xbb7f}, {0x0, 0x0, 0x5}, {0x40, 0xee, 0x7, 0xa1}, {0xffffffff, 0x2, 0xa55, 0xfffffc01}, {0x0, 0x5, 0x1, 0x40000000}, {0x7, 0x9, 0xab37, 0x8}, {0x1ff, 0x3, 0x40, 0x3}, {0x8, 0x7, 0x4, 0xff}, {0x97, 0x8, 0x3, 0x2}, {0x4, 0x9, 0x3, 0x7f}, {0x80000001, 0x7fffffff, 0x1, 0x9}, {0x94, 0x8, 0xfffffff9, 0x80}, {0x1, 0x10001, 0x401, 0x100}, {0x1, 0x8, 0x9, 0x1000}, {0x8, 0x83de, 0x9, 0x2}, {0x852, 0x7, 0x1, 0x3f}, {0x6, 0x80000001, 0x0, 0x5}, {0x7, 0x8, 0x52, 0x2a4}, {0xff, 0x9, 0x262f24e7, 0x6}, {0x8, 0x9, 0x5, 0xfffffffb}, {0x5, 0x0, 0x31, 0x1}, {0x5, 0x80000000, 0x7fffffff, 0x6}, {0x0, 0x1, 0x800, 0x1}, {0x1, 0x2, 0x3, 0x7}, {0x4, 0x7, 0x54, 0x1}, {0x1000, 0x4, 0x5, 0x6}, {0x3ff, 0x3f, 0x360f, 0xffffffff}, {0x8, 0x2, 0x5, 0xe1}, {0x2, 0x2, 0x1, 0x5}, {0x7ff, 0x454d, 0x0, 0x1}, {0x6, 0x5, 0x3372, 0x4}, {0x3, 0xfffffff8, 0x80, 0x5}, {0x0, 0x3f, 0x8, 0x7}, {0x0, 0x8001, 0x5, 0xffff}, {0x1, 0x80000000, 0xe, 0x100}, {0x4, 0x4, 0x7, 0xffffffff}, {0xfffffffd, 0x556, 0x1f, 0x5}, {0x100, 0x80000000, 0x3f, 0x7f}, {0x2, 0x8, 0xa6c6, 0x78b}, {0x8, 0x3b4a, 0x1, 0x9}, {0x9, 0x401, 0x8000, 0x4}, {0x5, 0x6, 0x8001, 0x10000}, {0x1, 0x3, 0x1f, 0x800}, {0x6, 0x3ff, 0xc000, 0x3}, {0x9, 0x1ff, 0xa9, 0x4c47b3b8}, {0xfffff759, 0x0, 0x20, 0x5}, {0x100, 0x1, 0x8, 0x401}, {0xe1a, 0x365, 0x1ff, 0x10001}, {0xffff, 0x7, 0x7fff, 0xffffffff}, {0x800, 0x3, 0x44, 0x7ff}, {0x3, 0x8, 0xa00000, 0x3ff}, {0x5, 0x1, 0x5, 0x5}, {0x3ff, 0x2, 0x0, 0x4}, {0x1f, 0x200, 0x6, 0x1}, {0x100, 0x80, 0x3, 0xfff}, {0x8, 0x7ff, 0x2, 0x26}, {0x7f, 0x5a, 0x8, 0x400}, {0x6, 0x3, 0x40, 0x80000001}, {0x3, 0x0, 0x2, 0xfffffffb}, {0x8001, 0x9, 0xf6cd, 0xff}, {0xf8000000, 0x6, 0x800, 0x2}, {0x40, 0x1, 0x26, 0x8}, {0x3f, 0x0, 0x7, 0x80}, {0x10001, 0x3, 0x5, 0x1}, {0xf800, 0x0, 0x9a, 0x5}, {0x1, 0x4, 0x9, 0xfb6d}, {0x0, 0xdb5, 0x3, 0xf}, {0x20, 0x6, 0x673, 0x3}, {0x1ff, 0x26d3, 0xfffffff8, 0x4}, {0x6, 0xfffffc00, 0x4, 0x200}, {0x0, 0x0, 0x400, 0x9}, {0x1, 0x10000, 0xffffff7f, 0x8}, {0x1, 0x1, 0x9, 0x3}, {0x101, 0x9, 0x8, 0x3}, {0x2, 0x1, 0x6, 0x4}, {0x80000000, 0x5, 0x80}, {0x5, 0x4, 0x10001, 0x1}, {0x35f, 0x6, 0x7f, 0x50}, {0xfffffff7, 0x3, 0x20, 0x9}, {0x0, 0x0, 0x9, 0x200}, {0x21e, 0xfff, 0xfff, 0x8}, {0x7, 0x80000000, 0x4, 0x6}, {0xfff, 0x6, 0x0, 0x4b35d8d5}, {0x2, 0xffff, 0x101, 0x461}, {0x4, 0x64c, 0x5df, 0x7ff}, {0xb1, 0x3, 0x4}, {0x9, 0x5, 0x0, 0x3}, {0x3, 0x6, 0x80, 0x1}, {0x17, 0x4, 0x35e8, 0x5}, {0x1ff, 0x2, 0x3f, 0x10001}, {0x5, 0x6, 0x2, 0x3}, {0x7, 0xffffff7a, 0x2, 0xf0cf}, {0x401, 0x2, 0x2de}, {0x1000000, 0xfffff801, 0x0, 0x80}, {0x0, 0x6, 0x833b, 0x3}, {0x401, 0x401, 0x1ff}, {0x5, 0x23e, 0x20, 0xa}, {0x2d, 0x2, 0x7, 0x1}, {0x800000, 0x3, 0x8, 0x5}, {0xfffffffc, 0x7fff, 0x1, 0x5}, {0x6, 0x924, 0x800, 0x1}, {0xfa44, 0x3, 0x6, 0x4}, {0x20, 0xfff, 0x40, 0x3}, {0x8001, 0xfff, 0x80, 0x101}, {0x1, 0x8000, 0xbd80, 0x1}, {0x400, 0x80, 0x4, 0x2}, {0x7fffffff, 0x9, 0x2, 0x1f}, {0x7, 0xd8b, 0x1, 0xfffffff9}, {0x6, 0xfffff001, 0x925, 0x11e}, {0x401, 0x3f, 0x2, 0x80000001}, {0x5, 0x3, 0x380, 0x7fffffff}, {0x2, 0x4, 0x1, 0x7}, {0x5, 0x8000, 0x7f, 0x2}, {0x3, 0x5, 0x0, 0x5}, {0x4, 0x7, 0x30000000, 0x81}, {0x7, 0x4, 0x4, 0xffffffff}, {0x4, 0x7fff, 0x9b, 0x2aa}, {0x5, 0x8000, 0x1, 0x9}, {0x0, 0x8, 0x5, 0x1f}, {0x9, 0x5, 0x197}, {0x0, 0x20, 0x0, 0x3}, {0x8000, 0xfffffff9, 0x1, 0xc76}, {0x5, 0xffff, 0x7fff, 0x3}, {0xffff, 0x5, 0xfff, 0x7}, {0x2, 0x0, 0x1f, 0x1}, {0x7ff, 0xd446, 0x7fff, 0x3}, {0x9, 0xbc3b, 0x3, 0xbce}, {0x4, 0x2, 0xffff, 0xe7f5}, {0x200, 0x81, 0x1e4, 0x3c}, {0xffffff01, 0xd3, 0x8, 0x1ff}, {0x8000, 0x5, 0x5}, {0xffff0000, 0x81, 0x40, 0xda}, {0x40, 0x8, 0x5, 0x8}, {0x9, 0x2, 0x8b5b, 0x9}, {0x7fffffff, 0x2, 0x2e, 0x1}, {0x8, 0x3, 0x400, 0x8}, {0x1ff, 0x8, 0x57b, 0x3}, {0x3, 0x1, 0x81, 0x1f}, {0x3, 0x80, 0x8, 0xfff}, {0x2, 0xfea, 0x4, 0xffff}, {0x9, 0x101, 0x1e88514b, 0x4}, {0x401, 0x2, 0x75c}, {0x3, 0x10000, 0x81, 0x1}, {0x4, 0x8, 0x7, 0x5}, {0x40, 0x6fa, 0x2, 0x18}, {0x0, 0x400, 0x1, 0x6}, {0x8, 0xffff, 0x0, 0x7}, {0xfffffbff, 0x8000, 0x7fff, 0x81b}, {0x6, 0x3, 0xffffffff, 0xfffffff8}, {0x1, 0x1000, 0x3, 0x4}, {0x0, 0xffffffff, 0x8, 0x5}, {0x400, 0x5, 0xa3, 0x1}, {0xfffffffa, 0xffc00000, 0x6, 0x100}, {0x200, 0x5, 0xcea, 0x1}, {0x3ff, 0xe77, 0x7, 0x2}, {0xfffffffb, 0x1f, 0x0, 0xff}, {0x7ff, 0xfffffffa, 0xc132, 0x1000}, {0x5f, 0xffff, 0xffffffa4, 0x10000}, {0x9, 0x5, 0x100, 0x5}, {0x1f, 0x12, 0x9, 0x6}, {0x762, 0x80000000, 0xffffffff, 0x100}, {0x7, 0x4, 0x4, 0x1}, {0x6, 0x1, 0x3, 0x4}, {0x4, 0x27a78183, 0x5, 0x5fb6}, {0x7, 0x3, 0x5, 0x7fffffff}, {0x10001, 0x1000, 0x3, 0xfffffbff}, {0xffff, 0x3, 0x8, 0x97f3}, {0x0, 0x8, 0x3f}, {0x9, 0x4, 0x8, 0x5}, {0x0, 0x1ff, 0x9b6c, 0x81c3}, {0x4499, 0x6, 0x5, 0x40}, {0xffff33e9, 0x35b, 0x0, 0x33}, {0x5435, 0x7fff, 0x95a, 0x6}, {0x20, 0xfffffffb, 0x9, 0x5}, {0xfffffff7, 0x6, 0x400, 0xfffffffe}, {0x0, 0x0, 0x3ff, 0x8}, {0x800, 0x1, 0x8, 0x4}, {0x81, 0x357, 0x3ff, 0x7}, {0x0, 0x4e9a, 0xff}, {0x5, 0x2, 0x1000, 0x9}, {0x20000000, 0x0, 0x10000, 0x8}, {0x9, 0x1, 0x7, 0x100}, {0x4f, 0x80000001, 0x9, 0x9}, {0x8, 0x20, 0x100, 0x80000000}, {0x4, 0x80, 0x7fff, 0x9}, {0x6, 0x2, 0xdf6b3497, 0x28}, {0x80000000, 0x7ff, 0x71ce77b5, 0xfffffff9}, {0x9, 0x754, 0x8683, 0x5}, {0x1f, 0x7, 0x3, 0x26ed7581}, {0x4, 0x3f, 0x4, 0x6}, {0x8, 0x2, 0x800, 0x400}, {0x7, 0x400, 0x80}, {0x33cd, 0x0, 0x8000, 0x7}, {0x3, 0xe, 0x2, 0x3ff}, {0x9, 0x5, 0x6, 0x10000}, {0x72, 0x7fffffff, 0x7, 0x4}, {0x4b2c, 0x7, 0x7d9, 0x9}, {0xfffffffc, 0x6, 0x10001, 0xbb}, {0x8000, 0xbd7, 0x3, 0xff}, {0x80000, 0x80000001, 0x200, 0xffffaeeb}, {0x0, 0xffffff4a, 0x7, 0x80}, {0x4, 0x4, 0x3, 0xffff}, {0x1a3, 0x1, 0x8, 0xfc39}, {0xffffff80, 0xfffffffe, 0x6, 0x4}, {0x1114, 0x3, 0xfff, 0x1f}, {0x8000, 0x8, 0x3ff, 0x1f}, {0x7, 0x4000, 0x29b, 0x2}, {0x2c9, 0x0, 0x4, 0xc000}, {0x59, 0x4, 0xf66f, 0x56ff}, {0x5, 0x1, 0x800, 0xff}, {0x8, 0xfff, 0x1, 0x3}, {0x5712, 0xe2b8, 0xaae4, 0xfffffffb}, {0x6, 0x3, 0x92, 0x81}, {0x2, 0x8, 0xffff, 0x81}, {0x9, 0xffffff8e, 0x8, 0x5b53}, {0x3f, 0x9, 0x4, 0xff}, {0x7, 0x2e, 0x20, 0x1}, {0x0, 0x2, 0x83, 0x81}, {0x638, 0x1, 0xa6e2, 0x80000001}, {0xfffffbff, 0x3, 0x1, 0x3}, {0x8, 0x2, 0xffff0000, 0x5}, {0x9, 0x8000, 0xc5, 0x5}, {0xfffffffa, 0x401, 0x0, 0x4}, {0x3, 0xc15, 0x3ff, 0x3}, {0x7, 0x1, 0x9}, {0x10001, 0xeb, 0xb21, 0xffff}, {0x9, 0x91ef, 0xfff, 0x80000001}, {0x100, 0x4, 0xc97, 0x3}, {0x87, 0x80000000, 0x0, 0x80000001}, {0xffff, 0x8, 0x6d3c, 0x1}, {0x6, 0x2a8, 0x3, 0x8}, {0x1, 0x8000, 0x80, 0x2a9}, {0x1f, 0x9, 0x4, 0x3}, {0x20, 0x177, 0x80000000, 0x1}, {0x3b8, 0x1f, 0x2, 0x742}, {0xffff, 0x8, 0x4, 0x4}, {0x3, 0x9, 0x80000000}, {0x3, 0x7fff, 0x5, 0x9}, {0x1, 0x80000000, 0x9, 0x1}, {0x100, 0x10000, 0x1000, 0x9}, {0x9, 0x9, 0x20000, 0x1f}, {0x1ff, 0x8, 0x0, 0xaabb}, {0xffffffff, 0x4, 0x5, 0x3f}, {0x3, 0x9, 0x2, 0x8}, {0x1, 0x2266262, 0x49, 0x20}, {0xe9d0, 0x0, 0x7, 0x2}, {0x80000000, 0x3ff, 0x3ff, 0x1}, {0xf7, 0x5ed, 0x6b5a, 0x7fffffff}, {0x7, 0xfff, 0xffffffff, 0x9}, {0x5, 0x3, 0x3ff, 0x9}, {0x2, 0x0, 0x5, 0x8}, {0x4, 0xffc, 0x2, 0xb48c}, {0x3, 0x1ff, 0x8, 0x6a}, {0x401, 0x7ff, 0x1, 0x7}, {0x8, 0xa7e, 0x8, 0x200}, {0x9, 0x3, 0x9, 0x6}, {0x7, 0x1000, 0x10000}, {0x80000000, 0xfff, 0xe4, 0x8}, {0x3, 0x401, 0x7, 0xfff}, {0xfffff32f, 0x9, 0xffff8001, 0x9}, {0x514dc89f, 0x9, 0x5, 0x8}, {0x3, 0x7ff, 0xfc8, 0x7}, {0x1, 0x3f, 0x5}, {0x68b, 0x1000, 0xfdc0, 0xeb80}, {0x101, 0xc332, 0x6, 0xffffff64}, {0x9, 0xbb, 0x5, 0x5}, {0x4, 0x0, 0x1f}, {0x9, 0x2, 0x1, 0x4}, {0x2, 0x1ff, 0x74c, 0x2}, {0x8, 0x5d2, 0x81, 0x6}, {0x9b, 0x2, 0xfff, 0x6}, {0x80000001, 0x7fff, 0x1d49, 0x8}, {0x101, 0x8f, 0xd162}, {0x200, 0xc7, 0x2e0, 0x80000001}, {0x200, 0x6, 0x9, 0xab6}, {0x6, 0xffff, 0x6, 0x8}, {0x81, 0x11, 0x3, 0x5}, {0xfffffffc, 0x800, 0x5}, {0xc43d, 0x1, 0x5, 0x6}, {0x6, 0x40, 0x401, 0x4}, {0x9, 0x6, 0x2, 0x9}, {0x0, 0x20, 0x1d1}, {0x4, 0x1, 0x2, 0x10000}, {0x81, 0x6, 0x3ff, 0x1}, {0x99, 0xff, 0x7ff, 0x6}, {0x3, 0x6, 0x7f, 0xffff}, {0x1, 0x0, 0x1, 0xffff}, {0x80000000, 0x2, 0x400, 0x3}, {0x6, 0xe0c5, 0xc209, 0x3}, {0x0, 0x6, 0x3, 0xff}, {0x8, 0x5d67, 0x3, 0x101}, {0x0, 0x5, 0x8, 0x7}, {0x1, 0x7, 0x45dd, 0x5}, {0x691, 0x3ff, 0xc6bd, 0x6e09}, {0x2, 0x8, 0x1ff, 0x6}, {0x5, 0x8, 0x109, 0x10000}, {0x9, 0x1ff, 0x6, 0x7}, {0x9, 0x6, 0xffff, 0x8000}, {0x1, 0x5, 0xe08f, 0x5}, {0x4, 0x1, 0x9, 0x1}, {0x401, 0x400, 0x9, 0xfff}, {0x87, 0x7, 0x9, 0x81}, {0x4, 0x7f, 0x7, 0x1c}, {0xd4, 0x0, 0x8, 0x80000001}, {0xdd, 0x5, 0xd3, 0x2}, {0x6, 0x1, 0x8dd, 0x7}, {0x0, 0x80, 0xced4, 0x3}, {0x5, 0x4eb3, 0xff, 0x7f5b}, {0xfffffbff, 0x2, 0x7, 0x5}, {0x7, 0x3, 0x6, 0x5}, {0x7f, 0x3, 0xffff8001, 0x81}, {0x73c0, 0x4, 0xfffffc01, 0x9}, {0x8, 0x4, 0x9}, {0x8, 0x5, 0x20, 0x5}, {0x7eaa, 0xa5, 0x2, 0x1}, {0x9, 0x6, 0x9, 0x3}, {0x7, 0x8000, 0x3, 0x1f}, {0x9, 0x3, 0x5, 0x107}, {0x4, 0x6, 0xf, 0x2e70}, {0x6, 0x6, 0x400, 0x2e}, {0x7, 0xa948, 0x3, 0x263}, {0x5, 0x9, 0x7f, 0x3}, {0x3, 0x7ff, 0x2, 0x800}, {0x4, 0x4, 0x8b, 0x80000000}, {0x9, 0x3, 0x23, 0xff}, {0x200, 0x7fffffff, 0x234, 0x1440000}, {0x3, 0x6, 0x2, 0x2}, {0x1000, 0x9, 0xff, 0xfffffffc}, {0x7fffffff, 0x3, 0x3, 0x200}, {0x1, 0x96, 0x7fff, 0x3}, {0xfffffffa, 0x82, 0xffff, 0x2}, {0x401, 0x9, 0x9, 0x72}, {0x100, 0xffff, 0x1, 0x9}, {0x1, 0x2, 0x1000, 0x8}, {0x3, 0xc5, 0x8f7, 0x8}, {0x3f, 0x6, 0x39f1d655, 0x8}, {0xffffffc1, 0x8, 0x1}, {0x400, 0x9, 0x3, 0x9}, {0x72, 0x40, 0x6, 0x1}, {0x6, 0x7, 0x2, 0x5}, {0x10000, 0x7, 0x573, 0xd7ca}, {0x9e, 0x49, 0xffffffff, 0x5}, {0x501a, 0x7, 0x3f, 0x6}, {0x3, 0x800, 0x3f}, {0x5, 0x2, 0x3f, 0x9}, {0x0, 0xff, 0xce35, 0x101}, {0x62, 0x0, 0x3f, 0x3}, {0x9, 0x6e2, 0xffff2a91, 0xfff}, {0x3ff, 0xfffffeff, 0x0, 0xc5}, {0x3, 0x6, 0xd1, 0x100}, {0xffffffff, 0x0, 0xbed, 0x2c4f}, {0xb8000000, 0x100, 0xf4, 0x101}, {0x8, 0x5, 0xb9c, 0x78}, {0x7ff, 0x2, 0x4, 0xd39}, {0x400, 0x20e3, 0x3, 0x2}, {0xffffff00, 0x7, 0xf4, 0x1000}, {0x5, 0x5, 0x6a500, 0x91}, {0x5d, 0x6f5, 0x8001, 0xffff}, {0x80000000, 0x8000, 0x9}, {0x1, 0xffff, 0x0, 0x394}, {0x5f, 0xc73, 0x6, 0x1}, {0x73, 0x6, 0x275, 0x3}, {0x81, 0x9, 0x1}, {0x80000000, 0x1f, 0x8, 0x7}, {0x8, 0x7, 0xacb, 0x4}, {0xe148, 0xfffffffe, 0x5, 0x80}, {0xffffffff, 0x2, 0x3, 0x4}, {0x8, 0x4, 0x80000000, 0x10001}, {0x7ff, 0x1000, 0x4, 0x7}, {0x10000, 0x1, 0x4606, 0x91}, {0x4, 0x0, 0x1f, 0xab300}, {0xdcd, 0x4, 0x7fffffff, 0x2}, {0x4954fecf, 0xfffffff8, 0x1, 0xfff}, {0x1, 0xda, 0x6, 0xffffffff}, {0x9, 0x80000000, 0x7fffffff, 0x6}, {0x4, 0x200, 0x0, 0x10000000}, {0xffffffff, 0x6, 0x9, 0xffffffff}, {0x3ff, 0x4, 0x0, 0x6}, {0xbd, 0xff43, 0x3ff, 0x7}, {0x5, 0x7c7, 0x4, 0x4}, {0x1000, 0x8, 0x7, 0x1}, {0x8, 0x401, 0x5, 0x1}, {0x3f, 0x8000, 0x6, 0x3f}, {0x2, 0x2, 0x4, 0x8}, {0x7, 0x9, 0xff, 0x5}, {0x1, 0x10001, 0x4, 0x9}, {0x7, 0x1, 0x401, 0xd10b}, {0x9, 0x1, 0xafdd, 0xff}, {0x81, 0xfffffffa, 0x8, 0x4}, {0x2, 0x4, 0x3, 0x5}, {0x15d8, 0x8001, 0x31, 0x100}, {0x80000000, 0x5e22, 0x9, 0x1ff}, {0x14000, 0x0, 0x8, 0xffffffff}, {0x3, 0x5, 0xffff, 0x44}, {0x9, 0x7ff, 0x7fffffff, 0x40}, {0x20, 0x5, 0x4, 0x596}, {0x3, 0x0, 0x46e, 0x6}, {0x3ff, 0x9, 0x3, 0x100}, {0x8, 0x80000001, 0xffff167d, 0x3ab}, {0x3f, 0xffff69f8, 0x10000, 0x80000000}, {0x7fff, 0x9, 0x4, 0x8001}, {0x6, 0x3, 0xfa, 0x3ff}, {0xfffffffc, 0x8, 0x69, 0x3f}, {0x9, 0x10001, 0x8, 0x20}, {0x4, 0x10001, 0x6, 0x5}, {0x61d, 0x6, 0x100, 0xca}, {0x2, 0x80000001, 0xbde00000, 0x8001}, {0x6, 0x2, 0xfffffffc, 0x2}, {0x100, 0x0, 0x8, 0x2}, {0x6, 0x6, 0x200, 0x2}, {0x80000000, 0x8001, 0x7fffffff, 0xca}, {0x4, 0x3, 0x9da0000, 0x9}, {0x800, 0xa4000000, 0xffff, 0x7f}, {0x8, 0x3, 0x3, 0xcff9}, {0x1, 0x5, 0x8, 0x40}, {0xb6, 0x9, 0x3, 0x81}, {0x2, 0x6, 0x8, 0x3}, {0x8000, 0x10000, 0x1, 0x1}, {0x5, 0x9, 0x0, 0x1f}, {0x8, 0x7, 0x8001, 0x7}, {0x9, 0x889, 0x7ff, 0x2}, {0x100, 0x5, 0x3, 0x7}, {0x5, 0xfffff001, 0x8, 0x400}, {0xfffffffb, 0x80000001, 0x15dc2244, 0x7}, {0x1f, 0x7f, 0x7fff, 0x3}, {0x0, 0x300000, 0x2, 0x4}, {0x8, 0x9, 0x8, 0x7ff}, {0x5, 0x5, 0x7, 0x1}, {0x1, 0x9, 0x7, 0x20}, {0x7, 0x2, 0xc5, 0xcea}, {0x6, 0x101, 0x7, 0x8}, {0x1, 0x7fff, 0x1, 0x6}, {0x6, 0xb0, 0x1f, 0x1}, {0x4, 0x400, 0x0, 0x1}, {0x1, 0x3, 0x9e, 0x6}, {0x10000, 0xe9f, 0xffff, 0xff}, {0xfc, 0x7, 0x16, 0x1f}, {0x6b, 0x3bd, 0x3f, 0xb25a}, {0x8, 0x2, 0x3, 0xc1dd}, {0x7b3, 0xffffffff, 0x3, 0x80}, {0xdb, 0x10000, 0x7fffffff, 0xa624}, {0x1978, 0x4, 0x5, 0xe}, {0x4, 0x5, 0x0, 0x7}, {0x3f, 0x400, 0x3ba48801}, {0xff, 0x6, 0x1, 0x100}, {0x10001, 0x7fffffff, 0x6, 0x9a6}, {0x400, 0x9, 0x4, 0x2}, {0x96, 0x0, 0x7}, {0x76, 0x1, 0x70a7, 0xfffffffb}, {0x3, 0x2, 0x7, 0x133f}, {0x3, 0x0, 0x7, 0x80000001}, {0x0, 0x8, 0xaa, 0x155ddb6a}, {0x0, 0x0, 0x6f7, 0x9}, {0x20000, 0x0, 0xfff}, {0x4774, 0xbcbc, 0x9, 0x4}, {0x10000, 0x0, 0x8, 0x1}, {0x4, 0xe49d, 0x2, 0x2c3}, {0xef9, 0x176e, 0x6, 0xfffffff7}, {0x3, 0x9, 0x80, 0x4}, {0xa2, 0x31d, 0x3, 0x1ad}, {0x3f, 0x81, 0x8, 0x81}, {0x7f, 0x3, 0x4, 0x2}, {0x80, 0x2, 0x1ff, 0x1f}, {0x1f, 0x9d, 0xfffffffd, 0x9}, {0x4, 0x81, 0x80000001, 0x70000}, {0x4, 0x1, 0xc35f, 0x3}, {0xb10a, 0x4c, 0x8, 0x6}, {0x5, 0xfffffff8, 0x7, 0x8001}, {0x7ff, 0x2, 0x5, 0xffffffff}, {0x80000001, 0x3, 0x891, 0x20}, {0x2, 0x8000, 0xff, 0x5}, {0xfffff800, 0x0, 0x9, 0x1000}, {0xfff, 0x80, 0x7fffffff, 0x4e}, {0x5, 0x8, 0x800, 0x1}, {0xfffff800, 0x1, 0x5, 0x9}, {0x5000, 0x9, 0xffffffff, 0x6}, {0x6, 0x6, 0x9}, {0x5, 0x4, 0x2932}, {0x7ff, 0x4697, 0x9, 0xfffffe43}, {0x401, 0x0, 0x6, 0x4}, {0x8, 0x9, 0x1, 0x6}, {0x0, 0x8, 0x9, 0x1ff}, {0x9, 0x9, 0x1, 0x5}, {0xffffffff, 0x3f, 0xf4, 0x9}, {0x0, 0x7fff, 0x2c, 0x3f}, {0x1e19c0a7, 0x8d, 0xff, 0x2}, {0x1fa, 0x401, 0x5, 0xca48}, {0x6, 0x8001, 0x8000, 0x3f}, {0x1, 0x100, 0x2, 0xffffb8c4}, {0x0, 0x7ff, 0xfba, 0x1f}, {0x7ff, 0xffffffff, 0x8000, 0x7}, {0x3e6e512f, 0x5, 0x7, 0x7fffffff}, {0x200, 0x7, 0x0, 0x81}, {0xffff, 0xe1e, 0x7}, {0xbffe, 0x8, 0x2, 0x1f}, {0x314b, 0x4a, 0x3ff, 0x101}, {0x8, 0x1, 0xffffffff}, {0x4, 0x64, 0x5, 0x3}, {0x5, 0x9, 0x7fffffff, 0xb76}, {0x40, 0x2, 0x1000, 0x2}, {0xfff, 0x8, 0x6, 0x5}, {0x1, 0x7, 0x10000, 0x1}, {0x8, 0xb615, 0x401, 0xffffffff}, {0x1c9, 0x81, 0x284, 0x6}, {0x1, 0x0, 0x2a1, 0x80}, {0x400, 0x3, 0x4, 0x8}, {0x1, 0x401, 0x7, 0x7}, {0x5, 0x2, 0x80000000, 0x8}, {0x6, 0x6, 0x3, 0x200}, {0x1, 0x3, 0x8, 0x4}, {0xffff, 0x7, 0x80000000, 0x40}, {0xb99, 0x6, 0x101, 0x1}, {0x5, 0x7fff, 0x5, 0x20}, {0x7fea9abe, 0x80000001, 0x5, 0x4c8}, {0x3f, 0x0, 0x5, 0x8}, {0x7, 0x4, 0x0, 0x7}, {0x4, 0x800, 0xea8, 0x7e}, {0x86c9, 0xc383, 0x7, 0x9}, {0x9, 0x7, 0x9, 0x6}, {0x7, 0x3, 0x100, 0xbdd}, {0x6, 0x4, 0x80, 0x19}, {0x3, 0x4, 0x2, 0x8}, {0x3ff, 0x2, 0x7, 0x8001}, {0x8, 0x69, 0x10000, 0x401}, {0x7, 0x200, 0x6f, 0x7}, {0x7fffffff, 0xfffffff7, 0x3, 0x94}, {0x80000000, 0x7, 0x2, 0x9}, {0x9, 0x3, 0x5, 0x3f}, {0x0, 0x8, 0x6cb7, 0x8}, {0x0, 0x7, 0x80000001, 0x5}, {0x2, 0x80000000, 0x1f, 0xfffffffd}, {0x7, 0x4, 0xfffffffe, 0x1f}, {0xefd, 0x1, 0x4, 0x8}, {0x9ed0, 0x7e, 0x2, 0x3}, {0xe7, 0x7fff, 0x6ff, 0x40}, {0x1, 0x1, 0x1, 0x80000000}, {0x0, 0x4, 0xd6c, 0x9}, {0x401, 0x1ff, 0x6, 0x1}, {0x2c, 0x8, 0x1c, 0x6}, {0xfb7c, 0x4420, 0x5, 0x33c4}, {0xfffffffd, 0x7, 0x5cde}, {0x0, 0xac9a, 0x7, 0x4}, {0x20, 0x0, 0xffff8001}, {0x7, 0x40, 0x0, 0x80000000}, {0xfffff65e, 0x0, 0x9, 0x15}, {0x7, 0x2, 0x1, 0x1}, {0x20, 0x8000, 0x6, 0x4}, {0x81, 0xdd4f, 0x700000, 0x7}, {0x6e, 0x3ff, 0x7f5a4b87, 0xd7a}, {0x5, 0x3, 0xffff, 0x80000001}, {0x10001, 0x6, 0x3, 0x7}, {0xef, 0x1f, 0xfffffff9, 0x9}, {0x3, 0x8, 0x7fff}, {0x101, 0x5, 0xfffffffe, 0x1e780f49}, {0x1, 0x4, 0x1f, 0x8}, {0x1, 0x7ae, 0xebf, 0x3}, {0x1, 0x9, 0x80, 0x7fff}, {0xbc9e, 0x7fff, 0x3, 0x101}, {0x65, 0x800, 0xb52a, 0x7ff}, {0xfffffffb, 0x7ff, 0x8001, 0x9}, {0x1a4c, 0x9e59, 0x3, 0xfffffff9}, {0xfffffff7, 0x7fffffff, 0x62ab, 0x80000001}, {0x1, 0xec1, 0x5, 0x80}, {0x1f, 0x101, 0xd9e, 0x5}, {0x8, 0x8000, 0xc6d, 0x3}, {0x0, 0x1000, 0x1, 0x1}, {0xfcd, 0x6, 0x7, 0x800}, {0x5, 0x358d, 0xf063}, {0xb2e4, 0x8, 0x6, 0x7}, {0x6, 0xaf, 0x80000001, 0x8}, {0x0, 0xe7d, 0x97, 0x9}, {0x7, 0x4, 0x8, 0x9}, {0x6, 0x284efd65, 0x99f, 0x4}, {0x10001, 0x7, 0x3, 0x8001}, {0x7, 0x4e4fc59a, 0x90b3, 0x3}, {0x1, 0x5892, 0x1, 0x3f}, {0x4, 0xffffff05, 0x6, 0x3}, {0xa6a, 0x6306, 0x0, 0x3}, {0x7, 0x3, 0x9, 0x3}, {0x7, 0x9, 0x6, 0x6}, {0x7fffffff, 0x2, 0x80000001, 0x3}, {0x80000000, 0x40, 0x405, 0x400}, {0x3ff80000, 0x2, 0x6, 0xfff}, {0x2, 0x80000000, 0x80000001, 0x24}, {0x89, 0x1, 0x9, 0x1ff}, {0x80000001, 0x3, 0x7, 0xfffeffff}, {0x18dc, 0x9, 0x6, 0x1}, {0x1f, 0x101, 0x7, 0x7}, {0xffffffe9, 0x4, 0x4607, 0x7fff}, {0x0, 0x1, 0xfff, 0x400}, {0x80000000, 0x7fff, 0xda, 0x7ff}, {0x400, 0xffffffff, 0xd94}, {0x6, 0x200, 0x3, 0x100}, {0x1d6bc7b4, 0x7, 0x1000, 0x6}, {0x3, 0x8, 0x9, 0x8}, {0xf7, 0x9, 0x4, 0x8000}, {0x200, 0x2, 0x6, 0x3}, {0x8, 0xffffffff, 0x9, 0x4}, {0x3, 0x7, 0x8001, 0x20}, {0x258, 0x6, 0x3f, 0x2d2}, {0x8000, 0x3, 0x0, 0x8}, {0x7ff, 0x5, 0x10000, 0x5}, {0x9, 0xe1, 0x0, 0x1}, {0x0, 0x1ff, 0x0, 0x3}, {0x9, 0xe1e, 0x3, 0x100}, {0x5, 0xfffffffd, 0x0, 0x9}, {0x80000001, 0x3, 0x98, 0x2}, {0x6, 0x1, 0x50, 0xffffffff}, {0x7e00, 0x4, 0x9, 0x2}, {0x0, 0x1f, 0x8001, 0x1da}, {0xfffffff9, 0x5, 0xffff8001, 0x3}, {0x1ff, 0x7, 0x8, 0x5}, {0x5, 0xc, 0x800, 0x9}, {0x9, 0x6, 0x800, 0x7fffffff}, {0x57c, 0xffffc844, 0x1f, 0x7f}, {0x7, 0x1, 0x0, 0x3f}, {0x6, 0x6, 0x0, 0x80000000}, {0x81, 0x5, 0x9, 0x1}, {0x6816, 0xfff, 0x9, 0x7}, {0x0, 0x7fffffff, 0x1, 0x8}, {0x7fff, 0x6, 0x6, 0x7f}, {0x4, 0x1, 0x30d}, {0x1, 0x0, 0x101, 0x9}, {0x6, 0xd3ed, 0x0, 0x200}, {0x101, 0x6, 0x7}, {0x6, 0x81, 0xa592, 0x80000000}, {0x2, 0x4, 0x7, 0x8000}, {0x9, 0x2, 0x40, 0xa0000}, {0x82, 0x1f, 0x8f, 0xf5}, {0x2, 0x2, 0x2, 0x2}, {0x0, 0x5, 0x2, 0x7fffffff}, {0x80000000, 0x10001, 0x2, 0x7}, {0x7f, 0x9, 0x9, 0x4}, {0xd03, 0x10001, 0x5, 0x1}, {0x8, 0x0, 0x1bd2, 0x400}, {0x9, 0x5, 0x0, 0x4}, {0x80000000, 0x0, 0x7, 0x3}, {0x0, 0x7, 0x9, 0x1}, {0x1800000, 0x100, 0x7fffffff, 0x1f}, {0x8001, 0x1, 0x100, 0x1}, {0xec6, 0x81, 0x10000, 0x9}, {0x8, 0x1, 0x66d8, 0x9}, {0x27e8, 0x0, 0x3f, 0x6}, {0x20, 0x4, 0x8, 0x48}, {0x9, 0x4703, 0x9, 0x1f}, {0x1, 0x6, 0x3f, 0x6}, {0x0, 0xb4, 0x2df8, 0xffffffff}, {0x32, 0x1b, 0x3, 0x4}, {0x800, 0xfffffc01, 0x0, 0x4}, {0x100, 0x4, 0xfffffffe, 0x3}, {0x401, 0x6, 0x81, 0x2}, {0x2, 0xc000000, 0x3}, {0x3ff, 0x5, 0x400, 0x73}, {0xffff, 0x3, 0x8, 0x3}, {0xffffffff, 0x1, 0x1, 0x2}, {0xfffffffc, 0x1, 0xffff}, {0x0, 0x3ff, 0x8001, 0x70e}, {0xa0a, 0x9, 0x7, 0xb7e8}, {0x80, 0x8, 0x7, 0xff}, {0x6, 0x101, 0x9, 0x10000}, {0x40, 0x4, 0x0, 0x10000}, {0x80, 0x1000, 0x7}, {0x2, 0x10000, 0x0, 0x3}, {0xff, 0xfff, 0x8}, {0x9, 0x1000, 0x8, 0x40}, {0x4bfa162, 0x101, 0x8, 0xaad}, {0xff, 0x44b, 0x9, 0x1f}, {0x6, 0x2, 0xcc23, 0x6}, {0x6, 0x1, 0x1, 0x3}, {0x7fff, 0x400, 0x4, 0x7}, {0x45, 0x7, 0xe907, 0x4}, {0x1f, 0x2, 0x21, 0x9}, {0x6, 0x6, 0x2, 0x8}, {0x7, 0x800, 0x7, 0xb2d}, {0x9, 0x401, 0xfffffffa, 0x200}, {0x1f, 0x3, 0x4, 0x80000000}, {0x2, 0x8e9a, 0x5, 0x4}, {0xffff7781, 0xffffffbd, 0xe7f, 0x2}, {0x7, 0x7, 0x8, 0x2}, {0x0, 0x800}, {0xfffffffd, 0xc155, 0x0, 0x800}, {0x2, 0x10000, 0x6, 0x2}, {0x5, 0x0, 0x20, 0x7}, {0x7ff, 0x1ff, 0xbae, 0x8}, {0x1, 0xfff, 0x20, 0x10000}, {0x8, 0x6, 0x2, 0x5}, {0x8, 0x2, 0x7, 0x6}, {0xe61a, 0x4, 0x1, 0x3}, {0x6, 0x0, 0x6, 0x6}, {0x9, 0x0, 0xb60b, 0x1ff}, {0x4, 0x3, 0x2e39ef45, 0xffffffff}, {0xfffffffd, 0x6, 0x7}, {0x6, 0x2ef, 0x2, 0x8}, {0x2311, 0x2, 0x3ff, 0x1000}, {0x1, 0xfffffff9, 0x622f, 0x20}, {0x80000001, 0x8, 0x1000, 0x2}, {0x7, 0x7, 0x10000, 0xeb}, {0x0, 0x40, 0x0, 0xd93a}, {0x10001, 0x0, 0x7, 0x8}, {0x6, 0x800, 0xffffd84f, 0x3f}, {0x7c3, 0xb8, 0x6, 0x100}, {0x10000, 0x5, 0x3ff, 0xfffffbff}, {0x35, 0x80, 0x3, 0x4b9}, {0x2, 0x7, 0x4, 0x401}, {0x3, 0x9, 0x7ff, 0x1000}, {0x4, 0x7, 0x1f, 0xffffffff}, {0x1, 0x19, 0x0, 0x7}, {0x8, 0x2, 0x8, 0x7fffffff}, {0x4800, 0x902c, 0x1000, 0x1}, {0x9d, 0x1, 0x7fffffff, 0x22}, {0x0, 0x40, 0x2276, 0xd7}, {0x7, 0x2, 0x5, 0x8}, {0x0, 0xffff, 0x6, 0x80}, {0x6, 0x7, 0x4, 0x7d9}, {0xc8, 0xf389, 0x7, 0x8}, {0xafb2, 0x20, 0x5ab, 0x63b5}, {0x7, 0x6, 0x0, 0x3}, {0x1bd5, 0x1000, 0x5, 0x3}, {0x0, 0x5, 0xda, 0xebf1}, {0xd3fd, 0x2, 0x2, 0x3ff}, {0x6, 0x7, 0x6dd2, 0x50}, {0x8673, 0x2, 0x7, 0x4}, {0x200, 0x8, 0x3, 0x4}, {0x6d30, 0x7fffffff, 0x4, 0x9}, {0xff, 0x7, 0x191, 0x8}, {0x5, 0x7ee3, 0x3, 0x5}, {0xe0, 0xfffffff8, 0x10000, 0x1}, {0x5b19, 0xfff, 0x800, 0x4}, {0x9, 0x9, 0x1000, 0x2}, {0xe04, 0x48000, 0x1, 0x9}, {0x2, 0x6ee, 0x786c0000, 0x8001}, {0x1ff, 0x0, 0x95c, 0x5}, {0x2, 0x2, 0x8, 0x7}, {0x403, 0x8, 0x50f, 0x29e7}, {0xffffeb18, 0x6, 0x9, 0x6}, {0x4498, 0x8, 0x2, 0x2}, {0xfffffffa, 0x633, 0xffff7fff, 0x100}, {0x6, 0x2ae4, 0x8, 0x1}, {0x380, 0xc2, 0xbc, 0x100}, {0x8, 0x2, 0x4, 0x2}, {0x6, 0x80000001, 0x4, 0x8}, {0x91, 0x9ac, 0x100, 0x2}, {0x4, 0x40, 0x8, 0x2020}, {0x20000000, 0x2787, 0xfffffffc, 0x472}, {0x4, 0x9, 0x100, 0x9}, {0xf6, 0xff, 0x9, 0x6}, {0x637, 0x4, 0x4, 0x80000000}, {0x5, 0x51, 0x240, 0x8001}, {0x5, 0xa1ca2583, 0xa00000, 0x7fff}, {0x4, 0xffffff80, 0xffffffc1, 0xf0}, {0x7ff, 0x1ff, 0x4, 0x5}, {0xfffffff9, 0x3, 0xc3, 0x8}, {0x7ff, 0x3, 0x1}, {0x62b, 0x3, 0x7, 0x4}, {0x87b, 0xd3, 0x5, 0x3}, {0x1, 0x7fff, 0x6, 0x5}, {0x1, 0x9, 0xdad, 0x4}, {0x8, 0x3, 0x5, 0x200}, {0x6, 0x8, 0x7, 0x4}]}, 0x3c2e) syz_io_uring_setup(0x1e, &(0x7f0000000080)={0x0, 0x3, 0x1, 0x0, 0x78, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:23 executing program 1: syz_io_uring_setup(0x4fc6, &(0x7f0000000000)={0x0, 0x8758, 0x0, 0x2, 0xc}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2682.016613][T11083] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 2682.023313][T11083] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 2682.108142][T11083] vhci_hcd vhci_hcd.0: Device attached 13:23:23 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) [ 2682.201835][T11097] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4) [ 2682.208420][T11097] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) 13:23:23 executing program 0: syz_io_uring_setup(0x1d, &(0x7f0000000080)={0x0, 0x10000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x42, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000040)=r0, 0x1) 13:23:23 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x689a, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 2682.293095][T11097] vhci_hcd vhci_hcd.0: Device attached [ 2682.391304][ T7749] usb 16-1: SetAddress Request (12) to port 0 [ 2682.399815][ T7749] usb 16-1: new SuperSpeed USB device number 12 using vhci_hcd 13:23:23 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) [ 2682.600865][T27003] usb 20-1: SetAddress Request (6) to port 0 [ 2682.613266][T27003] usb 20-1: new SuperSpeed USB device number 6 using vhci_hcd 13:23:23 executing program 1: fork() syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:23 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, 0x0) 13:23:24 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:24 executing program 0: sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8840}, 0x2044) syz_io_uring_setup(0x1ffc, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x0, 0xe4}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:24 executing program 3: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x208200, 0x0) r1 = syz_usbip_server_init(0x5) write$usbip_server(r1, &(0x7f0000000100)=@ret_submit={{0x3, 0x4, 0x0, 0x1, 0x200}, 0x7, 0xfe, 0x2, 0x3b0, 0xffffffff, 0x0, "585b1c81bd23c4988e3a742449c4657faa3f89b9d8a2068674a0197c9a0f50b7507e7e93675e298ae27b13eb2e1a095b186f2c5a3523a1ebbe834578282f3034ca69877b11a65b20bb79e0b973bd9b7658f663f7efbad42db18c9e6f611dd149a1d2d015d587cd6a5aa0959b5a1e3e4d6047c86b6e18046470584ae229f331139ddef17e5412f181b975e20d7be4d4272f7ef63b0c83e29b3b710d5f0032beaffe61a3fc9e7ab50c760cee113daa74e315aa667298c60474203417ee84e2f7ee92b97bdf1d9095f92d91e74d2ec247889a540f5ca02fd73e7ba2f3060e9af2fc04414bd017e83fd6b0d77bd624f5729748013e5c299cfcc1bc17b1c3c94a", [{0x6db1, 0xfff, 0x7, 0x5}, {0x0, 0x9, 0x80, 0x9}, {0x10000, 0xfffffff7, 0x80, 0x5}, {0x2, 0xa3, 0xd88, 0x2}, {0x8, 0x3, 0x7ff, 0xfffffffb}, {0x4, 0xd74, 0x8000, 0x1}, {0x4, 0xd85c, 0x7ff, 0xffffff09}, {0x7, 0x3f3e, 0xffffffff, 0x10000}, {0x5, 0x0, 0x4, 0x7fff}, {0x7f, 0x8001, 0x6, 0x10001}, {0x8, 0x7ff, 0x8001, 0x7}, {0x81, 0x400, 0x7, 0x8}, {0x1, 0x80000001, 0x3, 0x9}, {0x9, 0x400, 0x1, 0x5}, {0x4, 0xfffffffe, 0x0, 0x100}, {0x4, 0x101, 0x8, 0xcce}, {0x3, 0x4, 0x3, 0xdfb}, {0x2, 0x0, 0xfff, 0x7fff}, {0x2, 0x84, 0x8000}, {0x8000, 0x4, 0x1f}, {0x6, 0x1, 0x1f, 0x4}, {0x9, 0x600, 0x80000000, 0x100}, {0x7, 0x4668, 0x2, 0x9}, {0x10000, 0xe73, 0xd, 0x6}, {0x2, 0x2, 0x8, 0x2}, {0x9, 0xa715, 0x74, 0x5}, {0x2, 0x7098, 0x40, 0x7}, {0x6, 0x0, 0x8863, 0x7}, {0xffffffff, 0x9, 0x8000000, 0x8}, {0x972, 0xfffffffd, 0x1ff, 0x4}, {0x4, 0x9, 0x800, 0x10000}, {0x3, 0xe76f, 0x8, 0x9}, {0x3f, 0xac, 0x1, 0x5}, {0x7fffffff, 0x1, 0x8, 0x5}, {0x0, 0x8, 0xbf2, 0x8}, {0x6c, 0x0, 0xffffff80, 0x9}, {0x2, 0x7, 0x80000001, 0xfff}, {0xec8f6194, 0x7, 0x7f, 0x38af}, {0x9, 0x1, 0x4, 0x1}, {0xa487, 0x8, 0xffffffff, 0x100}, {0x40, 0x8, 0x8, 0x9d}, {0x7, 0x78c, 0xfffffff7, 0x3}, {0x8, 0x9, 0xd727, 0x526}, {0xd8, 0x9, 0x0, 0xd3d4}, {0x6000000, 0xfffffeff, 0x0, 0x23}, {0x5, 0xfffffff9, 0xfff, 0x2}, {0x5, 0xfc6a, 0x3f, 0x1}, {0xff, 0x41, 0x3, 0xcf00}, {0xd9, 0x20, 0x4, 0xffffffff}, {0x1, 0x2, 0xaf, 0x8}, {0x1, 0xfb96, 0x1, 0x8}, {0x8, 0x5, 0x54a, 0x94}, {0x8, 0x98, 0x7, 0x1d}, {0x200, 0x3f, 0x0, 0x400}, {0x81, 0x4, 0xfff, 0x1c29}, {0x7ff, 0x400, 0xffffffff, 0x67c5}, {0x5, 0x4, 0x40, 0x1}, {0x80000000, 0x6, 0x9}, {0x2, 0x7, 0xf3a, 0x7}, {0xa3a3, 0x7, 0x4, 0xffffffff}, {0x9, 0x100, 0x1, 0x7}, {0x8282, 0x40, 0x80000001, 0x1}, {0x4, 0x3, 0x3, 0x6}, {0x10000, 0x9, 0x3, 0x8}, {0x6, 0x3, 0x68d6}, {0xd6, 0x3}, {0x1, 0x200000, 0x40, 0x5}, {0x2, 0xfffff0ff, 0x6, 0x6}, {0x10000, 0x80000, 0x9, 0xa6}, {0x3, 0x7, 0x8001, 0x10000}, {0x7f, 0xc9, 0x4bb}, {0x3, 0x5b4, 0x0, 0x4}, {0x6, 0x2, 0x0, 0xc1e}, {0xef, 0x0, 0x0, 0x4}, {0x8001, 0x8, 0x5, 0x2}, {0x401, 0x1, 0xfffffff8, 0x9}, {0xda, 0x6, 0x1f, 0x1}, {0x1, 0x126, 0x80000000, 0x8}, {0x1f, 0xfffffffc, 0x6, 0xff}, {0x2, 0x368a, 0x45, 0x6}, {0x9680, 0x5, 0x4, 0x1220}, {0x6, 0x1, 0x8, 0x8}, {0x6, 0xffff, 0x8, 0x69}, {0x2, 0x1f, 0x2, 0x400}, {0xa80, 0x1, 0x1000, 0x3}, {0x5, 0x9b33, 0xaab, 0x4}, {0x3, 0x0, 0x5, 0x5}, {0x4, 0xffff, 0x3, 0x1}, {0x2, 0x40000000, 0x3c, 0x3}, {0xcc15bc2, 0x2, 0x8, 0x4}, {0x80000000, 0x10001, 0x6, 0x7f}, {0x45a2, 0x6, 0x2, 0xffffffff}, {0xd8, 0x3, 0xffffffff, 0x1ff}, {0x1, 0xd5bf, 0x36, 0x1}, {0x6, 0x40, 0x101, 0x81}, {0x6, 0x7, 0x7, 0xffff}, {0x4, 0x5, 0x81, 0x4}, {0x5, 0x4, 0x4, 0x7f}, {0x9, 0x7, 0x81, 0x8}, {0x3, 0x5, 0x3}, {0x8, 0xffff, 0x0, 0x8}, {0x5, 0x0, 0x6, 0x80}, {0x200, 0xf0, 0x10001, 0x8}, {0x5, 0xba2, 0x401, 0x7}, {0x4ee7, 0x5, 0x59c8}, {0x7ff, 0x7, 0x7, 0xfffffff7}, {0x6, 0x6, 0x100, 0x4}, {0x47, 0xfffffffe, 0x7}, {0x3ff, 0x80, 0x0, 0x7}, {0x1, 0x7, 0x3, 0x40}, {0x1, 0x0, 0x67da, 0x91}, {0x2, 0x1, 0x8, 0x3}, {0x2, 0x65ff, 0x3, 0x2}, {0x800, 0xd54f, 0x80}, {0x3, 0x10000000, 0x101, 0x7}, {0xffff, 0x1f, 0xa17b, 0x8}, {0x0, 0x5, 0x1}, {0xe23, 0x8, 0x6, 0x20}, {0x3, 0x7, 0x0, 0x7}, {0x1, 0x8, 0x0, 0x9}, {0x9, 0x5, 0x5, 0x2}, {0x40, 0x5, 0x7, 0x6}, {0x9, 0xc94, 0x7, 0x6}, {0x2, 0x8000, 0x2, 0x800}, {0x39, 0x8, 0xce2, 0x81}, {0x7fffffff, 0x8, 0x800, 0x7}, {0x81, 0x3, 0xfffff968, 0x7c9b}, {0x3, 0x2, 0xfffffbff, 0x3}, {0x0, 0x2b, 0x400, 0x3d}, {0x3, 0x81, 0xe91, 0x200}, {0x3f, 0x9, 0x1ff, 0x5c}, {0x6, 0x10000, 0xffffffc0, 0x2}, {0x1ff, 0x8001, 0xf3}, {0x7, 0x57, 0x7, 0xfffff869}, {0x8, 0x3519, 0x3, 0x8}, {0x0, 0x6, 0x1e, 0x20}, {0xc04, 0xfff, 0xffffffff, 0x5b7a}, {0x4, 0x101, 0x80000001, 0x5}, {0x7fffffff, 0x7f, 0x3, 0xfffffff8}, {0x1ff, 0x3, 0x800, 0x6}, {0x80000001, 0x200, 0x7, 0x6}, {0x10000, 0x84, 0x1, 0x1}, {0x1f, 0xfff, 0xefc, 0xffffffff}, {0x1, 0xfffffc7c, 0x80000001, 0xfff}, {0x0, 0x1, 0x1, 0x10001}, {0x800, 0x9, 0x6, 0x7}, {0x1ff, 0x7ba6edf7, 0x7ff, 0x3f}, {0xffffffff, 0x101, 0x3, 0x1}, {0x6, 0xfffffeff, 0x6, 0x3f}, {0x5, 0x5, 0x1fe000, 0x6}, {0x7, 0x10000, 0x80000000, 0x7}, {0x7, 0x7, 0x40, 0x5}, {0x5, 0x8, 0x3aff9967, 0xcb000000}, {0x1ff, 0xd4, 0x8, 0x4}, {0x5a6, 0xddac, 0x0, 0x7ee}, {0x8, 0x6, 0x3, 0x2}, {0x1, 0x0, 0x101, 0x40}, {0x8, 0xb1, 0x4, 0x7}, {0x401, 0x9, 0xfff, 0xab6}, {0x9, 0x7, 0x2, 0x7}, {0xfffffffb, 0x2d70, 0x9, 0x4}, {0x0, 0xfffffff9, 0x5ad, 0xaee}, {0x1, 0x0, 0x0, 0x6}, {0x80, 0xffffffff, 0x76c, 0x3}, {0x6, 0x0, 0xff, 0x3}, {0xb1f7, 0x1, 0x2, 0x3f}, {0x2, 0x2, 0x6, 0x9e8}, {0x8e, 0x5, 0x8000, 0x2}, {0x3, 0x1, 0x4a, 0x1f}, {0x1a46, 0x8001, 0x6}, {0x2, 0x2, 0x101, 0x2}, {0x8, 0x3, 0x3, 0x60}, {0x7, 0x1, 0x1f, 0x1}, {0x79, 0x9, 0x0, 0x8}, {0x40, 0x5, 0x0, 0x101}, {0x6, 0x8001, 0xfffffffd, 0x8}, {0x7, 0xfff, 0x383, 0x3}, {0x8, 0x1000, 0x6, 0x3}, {0x9, 0x1, 0xfff, 0x7fffffff}, {0x1, 0x8000, 0xfff, 0x10000}, {0x7fff, 0x5, 0xbf, 0x401}, {0xc4e, 0x6, 0x3, 0xa8}, {0x4, 0x1f, 0x20, 0x401}, {0x5, 0x9, 0x1, 0x200}, {0xd27, 0x80000001, 0x8, 0x1}, {0x8001, 0x2, 0x101, 0xbb7f}, {0x0, 0x0, 0x5}, {0x40, 0xee, 0x7, 0xa1}, {0xffffffff, 0x2, 0xa55, 0xfffffc01}, {0x0, 0x5, 0x1, 0x40000000}, {0x7, 0x9, 0xab37, 0x8}, {0x1ff, 0x3, 0x40, 0x3}, {0x8, 0x7, 0x4, 0xff}, {0x97, 0x8, 0x3, 0x2}, {0x4, 0x9, 0x3, 0x7f}, {0x80000001, 0x7fffffff, 0x1, 0x9}, {0x94, 0x8, 0xfffffff9, 0x80}, {0x1, 0x10001, 0x401, 0x100}, {0x1, 0x8, 0x9, 0x1000}, {0x8, 0x83de, 0x9, 0x2}, {0x852, 0x7, 0x1, 0x3f}, {0x6, 0x80000001, 0x0, 0x5}, {0x7, 0x8, 0x52, 0x2a4}, {0xff, 0x9, 0x262f24e7, 0x6}, {0x8, 0x9, 0x5, 0xfffffffb}, {0x5, 0x0, 0x31, 0x1}, {0x5, 0x80000000, 0x7fffffff, 0x6}, {0x0, 0x1, 0x800, 0x1}, {0x1, 0x2, 0x3, 0x7}, {0x4, 0x7, 0x54, 0x1}, {0x1000, 0x4, 0x5, 0x6}, {0x3ff, 0x3f, 0x360f, 0xffffffff}, {0x8, 0x2, 0x5, 0xe1}, {0x2, 0x2, 0x1, 0x5}, {0x7ff, 0x454d, 0x0, 0x1}, {0x6, 0x5, 0x3372, 0x4}, {0x3, 0xfffffff8, 0x80, 0x5}, {0x0, 0x3f, 0x8, 0x7}, {0x0, 0x8001, 0x5, 0xffff}, {0x1, 0x80000000, 0xe, 0x100}, {0x4, 0x4, 0x7, 0xffffffff}, {0xfffffffd, 0x556, 0x1f, 0x5}, {0x100, 0x80000000, 0x3f, 0x7f}, {0x2, 0x8, 0xa6c6, 0x78b}, {0x8, 0x3b4a, 0x1, 0x9}, {0x9, 0x401, 0x8000, 0x4}, {0x5, 0x6, 0x8001, 0x10000}, {0x1, 0x3, 0x1f, 0x800}, {0x6, 0x3ff, 0xc000, 0x3}, {0x9, 0x1ff, 0xa9, 0x4c47b3b8}, {0xfffff759, 0x0, 0x20, 0x5}, {0x100, 0x1, 0x8, 0x401}, {0xe1a, 0x365, 0x1ff, 0x10001}, {0xffff, 0x7, 0x7fff, 0xffffffff}, {0x800, 0x3, 0x44, 0x7ff}, {0x3, 0x8, 0xa00000, 0x3ff}, {0x5, 0x1, 0x5, 0x5}, {0x3ff, 0x2, 0x0, 0x4}, {0x1f, 0x200, 0x6, 0x1}, {0x100, 0x80, 0x3, 0xfff}, {0x8, 0x7ff, 0x2, 0x26}, {0x7f, 0x5a, 0x8, 0x400}, {0x6, 0x3, 0x40, 0x80000001}, {0x3, 0x0, 0x2, 0xfffffffb}, {0x8001, 0x9, 0xf6cd, 0xff}, {0xf8000000, 0x6, 0x800, 0x2}, {0x40, 0x1, 0x26, 0x8}, {0x3f, 0x0, 0x7, 0x80}, {0x10001, 0x3, 0x5, 0x1}, {0xf800, 0x0, 0x9a, 0x5}, {0x1, 0x4, 0x9, 0xfb6d}, {0x0, 0xdb5, 0x3, 0xf}, {0x20, 0x6, 0x673, 0x3}, {0x1ff, 0x26d3, 0xfffffff8, 0x4}, {0x6, 0xfffffc00, 0x4, 0x200}, {0x0, 0x0, 0x400, 0x9}, {0x1, 0x10000, 0xffffff7f, 0x8}, {0x1, 0x1, 0x9, 0x3}, {0x101, 0x9, 0x8, 0x3}, {0x2, 0x1, 0x6, 0x4}, {0x80000000, 0x5, 0x80}, {0x5, 0x4, 0x10001, 0x1}, {0x35f, 0x6, 0x7f, 0x50}, {0xfffffff7, 0x3, 0x20, 0x9}, {0x0, 0x0, 0x9, 0x200}, {0x21e, 0xfff, 0xfff, 0x8}, {0x7, 0x80000000, 0x4, 0x6}, {0xfff, 0x6, 0x0, 0x4b35d8d5}, {0x2, 0xffff, 0x101, 0x461}, {0x4, 0x64c, 0x5df, 0x7ff}, {0xb1, 0x3, 0x4}, {0x9, 0x5, 0x0, 0x3}, {0x3, 0x6, 0x80, 0x1}, {0x17, 0x4, 0x35e8, 0x5}, {0x1ff, 0x2, 0x3f, 0x10001}, {0x5, 0x6, 0x2, 0x3}, {0x7, 0xffffff7a, 0x2, 0xf0cf}, {0x401, 0x2, 0x2de}, {0x1000000, 0xfffff801, 0x0, 0x80}, {0x0, 0x6, 0x833b, 0x3}, {0x401, 0x401, 0x1ff}, {0x5, 0x23e, 0x20, 0xa}, {0x2d, 0x2, 0x7, 0x1}, {0x800000, 0x3, 0x8, 0x5}, {0xfffffffc, 0x7fff, 0x1, 0x5}, {0x6, 0x924, 0x800, 0x1}, {0xfa44, 0x3, 0x6, 0x4}, {0x20, 0xfff, 0x40, 0x3}, {0x8001, 0xfff, 0x80, 0x101}, {0x1, 0x8000, 0xbd80, 0x1}, {0x400, 0x80, 0x4, 0x2}, {0x7fffffff, 0x9, 0x2, 0x1f}, {0x7, 0xd8b, 0x1, 0xfffffff9}, {0x6, 0xfffff001, 0x925, 0x11e}, {0x401, 0x3f, 0x2, 0x80000001}, {0x5, 0x3, 0x380, 0x7fffffff}, {0x2, 0x4, 0x1, 0x7}, {0x5, 0x8000, 0x7f, 0x2}, {0x3, 0x5, 0x0, 0x5}, {0x4, 0x7, 0x30000000, 0x81}, {0x7, 0x4, 0x4, 0xffffffff}, {0x4, 0x7fff, 0x9b, 0x2aa}, {0x5, 0x8000, 0x1, 0x9}, {0x0, 0x8, 0x5, 0x1f}, {0x9, 0x5, 0x197}, {0x0, 0x20, 0x0, 0x3}, {0x8000, 0xfffffff9, 0x1, 0xc76}, {0x5, 0xffff, 0x7fff, 0x3}, {0xffff, 0x5, 0xfff, 0x7}, {0x2, 0x0, 0x1f, 0x1}, {0x7ff, 0xd446, 0x7fff, 0x3}, {0x9, 0xbc3b, 0x3, 0xbce}, {0x4, 0x2, 0xffff, 0xe7f5}, {0x200, 0x81, 0x1e4, 0x3c}, {0xffffff01, 0xd3, 0x8, 0x1ff}, {0x8000, 0x5, 0x5}, {0xffff0000, 0x81, 0x40, 0xda}, {0x40, 0x8, 0x5, 0x8}, {0x9, 0x2, 0x8b5b, 0x9}, {0x7fffffff, 0x2, 0x2e, 0x1}, {0x8, 0x3, 0x400, 0x8}, {0x1ff, 0x8, 0x57b, 0x3}, {0x3, 0x1, 0x81, 0x1f}, {0x3, 0x80, 0x8, 0xfff}, {0x2, 0xfea, 0x4, 0xffff}, {0x9, 0x101, 0x1e88514b, 0x4}, {0x401, 0x2, 0x75c}, {0x3, 0x10000, 0x81, 0x1}, {0x4, 0x8, 0x7, 0x5}, {0x40, 0x6fa, 0x2, 0x18}, {0x0, 0x400, 0x1, 0x6}, {0x8, 0xffff, 0x0, 0x7}, {0xfffffbff, 0x8000, 0x7fff, 0x81b}, {0x6, 0x3, 0xffffffff, 0xfffffff8}, {0x1, 0x1000, 0x3, 0x4}, {0x0, 0xffffffff, 0x8, 0x5}, {0x400, 0x5, 0xa3, 0x1}, {0xfffffffa, 0xffc00000, 0x6, 0x100}, {0x200, 0x5, 0xcea, 0x1}, {0x3ff, 0xe77, 0x7, 0x2}, {0xfffffffb, 0x1f, 0x0, 0xff}, {0x7ff, 0xfffffffa, 0xc132, 0x1000}, {0x5f, 0xffff, 0xffffffa4, 0x10000}, {0x9, 0x5, 0x100, 0x5}, {0x1f, 0x12, 0x9, 0x6}, {0x762, 0x80000000, 0xffffffff, 0x100}, {0x7, 0x4, 0x4, 0x1}, {0x6, 0x1, 0x3, 0x4}, {0x4, 0x27a78183, 0x5, 0x5fb6}, {0x7, 0x3, 0x5, 0x7fffffff}, {0x10001, 0x1000, 0x3, 0xfffffbff}, {0xffff, 0x3, 0x8, 0x97f3}, {0x0, 0x8, 0x3f}, {0x9, 0x4, 0x8, 0x5}, {0x0, 0x1ff, 0x9b6c, 0x81c3}, {0x4499, 0x6, 0x5, 0x40}, {0xffff33e9, 0x35b, 0x0, 0x33}, {0x5435, 0x7fff, 0x95a, 0x6}, {0x20, 0xfffffffb, 0x9, 0x5}, {0xfffffff7, 0x6, 0x400, 0xfffffffe}, {0x0, 0x0, 0x3ff, 0x8}, {0x800, 0x1, 0x8, 0x4}, {0x81, 0x357, 0x3ff, 0x7}, {0x0, 0x4e9a, 0xff}, {0x5, 0x2, 0x1000, 0x9}, {0x20000000, 0x0, 0x10000, 0x8}, {0x9, 0x1, 0x7, 0x100}, {0x4f, 0x80000001, 0x9, 0x9}, {0x8, 0x20, 0x100, 0x80000000}, {0x4, 0x80, 0x7fff, 0x9}, {0x6, 0x2, 0xdf6b3497, 0x28}, {0x80000000, 0x7ff, 0x71ce77b5, 0xfffffff9}, {0x9, 0x754, 0x8683, 0x5}, {0x1f, 0x7, 0x3, 0x26ed7581}, {0x4, 0x3f, 0x4, 0x6}, {0x8, 0x2, 0x800, 0x400}, {0x7, 0x400, 0x80}, {0x33cd, 0x0, 0x8000, 0x7}, {0x3, 0xe, 0x2, 0x3ff}, {0x9, 0x5, 0x6, 0x10000}, {0x72, 0x7fffffff, 0x7, 0x4}, {0x4b2c, 0x7, 0x7d9, 0x9}, {0xfffffffc, 0x6, 0x10001, 0xbb}, {0x8000, 0xbd7, 0x3, 0xff}, {0x80000, 0x80000001, 0x200, 0xffffaeeb}, {0x0, 0xffffff4a, 0x7, 0x80}, {0x4, 0x4, 0x3, 0xffff}, {0x1a3, 0x1, 0x8, 0xfc39}, {0xffffff80, 0xfffffffe, 0x6, 0x4}, {0x1114, 0x3, 0xfff, 0x1f}, {0x8000, 0x8, 0x3ff, 0x1f}, {0x7, 0x4000, 0x29b, 0x2}, {0x2c9, 0x0, 0x4, 0xc000}, {0x59, 0x4, 0xf66f, 0x56ff}, {0x5, 0x1, 0x800, 0xff}, {0x8, 0xfff, 0x1, 0x3}, {0x5712, 0xe2b8, 0xaae4, 0xfffffffb}, {0x6, 0x3, 0x92, 0x81}, {0x2, 0x8, 0xffff, 0x81}, {0x9, 0xffffff8e, 0x8, 0x5b53}, {0x3f, 0x9, 0x4, 0xff}, {0x7, 0x2e, 0x20, 0x1}, {0x0, 0x2, 0x83, 0x81}, {0x638, 0x1, 0xa6e2, 0x80000001}, {0xfffffbff, 0x3, 0x1, 0x3}, {0x8, 0x2, 0xffff0000, 0x5}, {0x9, 0x8000, 0xc5, 0x5}, {0xfffffffa, 0x401, 0x0, 0x4}, {0x3, 0xc15, 0x3ff, 0x3}, {0x7, 0x1, 0x9}, {0x10001, 0xeb, 0xb21, 0xffff}, {0x9, 0x91ef, 0xfff, 0x80000001}, {0x100, 0x4, 0xc97, 0x3}, {0x87, 0x80000000, 0x0, 0x80000001}, {0xffff, 0x8, 0x6d3c, 0x1}, {0x6, 0x2a8, 0x3, 0x8}, {0x1, 0x8000, 0x80, 0x2a9}, {0x1f, 0x9, 0x4, 0x3}, {0x20, 0x177, 0x80000000, 0x1}, {0x3b8, 0x1f, 0x2, 0x742}, {0xffff, 0x8, 0x4, 0x4}, {0x3, 0x9, 0x80000000}, {0x3, 0x7fff, 0x5, 0x9}, {0x1, 0x80000000, 0x9, 0x1}, {0x100, 0x10000, 0x1000, 0x9}, {0x9, 0x9, 0x20000, 0x1f}, {0x1ff, 0x8, 0x0, 0xaabb}, {0xffffffff, 0x4, 0x5, 0x3f}, {0x3, 0x9, 0x2, 0x8}, {0x1, 0x2266262, 0x49, 0x20}, {0xe9d0, 0x0, 0x7, 0x2}, {0x80000000, 0x3ff, 0x3ff, 0x1}, {0xf7, 0x5ed, 0x6b5a, 0x7fffffff}, {0x7, 0xfff, 0xffffffff, 0x9}, {0x5, 0x3, 0x3ff, 0x9}, {0x2, 0x0, 0x5, 0x8}, {0x4, 0xffc, 0x2, 0xb48c}, {0x3, 0x1ff, 0x8, 0x6a}, {0x401, 0x7ff, 0x1, 0x7}, {0x8, 0xa7e, 0x8, 0x200}, {0x9, 0x3, 0x9, 0x6}, {0x7, 0x1000, 0x10000}, {0x80000000, 0xfff, 0xe4, 0x8}, {0x3, 0x401, 0x7, 0xfff}, {0xfffff32f, 0x9, 0xffff8001, 0x9}, {0x514dc89f, 0x9, 0x5, 0x8}, {0x3, 0x7ff, 0xfc8, 0x7}, {0x1, 0x3f, 0x5}, {0x68b, 0x1000, 0xfdc0, 0xeb80}, {0x101, 0xc332, 0x6, 0xffffff64}, {0x9, 0xbb, 0x5, 0x5}, {0x4, 0x0, 0x1f}, {0x9, 0x2, 0x1, 0x4}, {0x2, 0x1ff, 0x74c, 0x2}, {0x8, 0x5d2, 0x81, 0x6}, {0x9b, 0x2, 0xfff, 0x6}, {0x80000001, 0x7fff, 0x1d49, 0x8}, {0x101, 0x8f, 0xd162}, {0x200, 0xc7, 0x2e0, 0x80000001}, {0x200, 0x6, 0x9, 0xab6}, {0x6, 0xffff, 0x6, 0x8}, {0x81, 0x11, 0x3, 0x5}, {0xfffffffc, 0x800, 0x5}, {0xc43d, 0x1, 0x5, 0x6}, {0x6, 0x40, 0x401, 0x4}, {0x9, 0x6, 0x2, 0x9}, {0x0, 0x20, 0x1d1}, {0x4, 0x1, 0x2, 0x10000}, {0x81, 0x6, 0x3ff, 0x1}, {0x99, 0xff, 0x7ff, 0x6}, {0x3, 0x6, 0x7f, 0xffff}, {0x1, 0x0, 0x1, 0xffff}, {0x80000000, 0x2, 0x400, 0x3}, {0x6, 0xe0c5, 0xc209, 0x3}, {0x0, 0x6, 0x3, 0xff}, {0x8, 0x5d67, 0x3, 0x101}, {0x0, 0x5, 0x8, 0x7}, {0x1, 0x7, 0x45dd, 0x5}, {0x691, 0x3ff, 0xc6bd, 0x6e09}, {0x2, 0x8, 0x1ff, 0x6}, {0x5, 0x8, 0x109, 0x10000}, {0x9, 0x1ff, 0x6, 0x7}, {0x9, 0x6, 0xffff, 0x8000}, {0x1, 0x5, 0xe08f, 0x5}, {0x4, 0x1, 0x9, 0x1}, {0x401, 0x400, 0x9, 0xfff}, {0x87, 0x7, 0x9, 0x81}, {0x4, 0x7f, 0x7, 0x1c}, {0xd4, 0x0, 0x8, 0x80000001}, {0xdd, 0x5, 0xd3, 0x2}, {0x6, 0x1, 0x8dd, 0x7}, {0x0, 0x80, 0xced4, 0x3}, {0x5, 0x4eb3, 0xff, 0x7f5b}, {0xfffffbff, 0x2, 0x7, 0x5}, {0x7, 0x3, 0x6, 0x5}, {0x7f, 0x3, 0xffff8001, 0x81}, {0x73c0, 0x4, 0xfffffc01, 0x9}, {0x8, 0x4, 0x9}, {0x8, 0x5, 0x20, 0x5}, {0x7eaa, 0xa5, 0x2, 0x1}, {0x9, 0x6, 0x9, 0x3}, {0x7, 0x8000, 0x3, 0x1f}, {0x9, 0x3, 0x5, 0x107}, {0x4, 0x6, 0xf, 0x2e70}, {0x6, 0x6, 0x400, 0x2e}, {0x7, 0xa948, 0x3, 0x263}, {0x5, 0x9, 0x7f, 0x3}, {0x3, 0x7ff, 0x2, 0x800}, {0x4, 0x4, 0x8b, 0x80000000}, {0x9, 0x3, 0x23, 0xff}, {0x200, 0x7fffffff, 0x234, 0x1440000}, {0x3, 0x6, 0x2, 0x2}, {0x1000, 0x9, 0xff, 0xfffffffc}, {0x7fffffff, 0x3, 0x3, 0x200}, {0x1, 0x96, 0x7fff, 0x3}, {0xfffffffa, 0x82, 0xffff, 0x2}, {0x401, 0x9, 0x9, 0x72}, {0x100, 0xffff, 0x1, 0x9}, {0x1, 0x2, 0x1000, 0x8}, {0x3, 0xc5, 0x8f7, 0x8}, {0x3f, 0x6, 0x39f1d655, 0x8}, {0xffffffc1, 0x8, 0x1}, {0x400, 0x9, 0x3, 0x9}, {0x72, 0x40, 0x6, 0x1}, {0x6, 0x7, 0x2, 0x5}, {0x10000, 0x7, 0x573, 0xd7ca}, {0x9e, 0x49, 0xffffffff, 0x5}, {0x501a, 0x7, 0x3f, 0x6}, {0x3, 0x800, 0x3f}, {0x5, 0x2, 0x3f, 0x9}, {0x0, 0xff, 0xce35, 0x101}, {0x62, 0x0, 0x3f, 0x3}, {0x9, 0x6e2, 0xffff2a91, 0xfff}, {0x3ff, 0xfffffeff, 0x0, 0xc5}, {0x3, 0x6, 0xd1, 0x100}, {0xffffffff, 0x0, 0xbed, 0x2c4f}, {0xb8000000, 0x100, 0xf4, 0x101}, {0x8, 0x5, 0xb9c, 0x78}, {0x7ff, 0x2, 0x4, 0xd39}, {0x400, 0x20e3, 0x3, 0x2}, {0xffffff00, 0x7, 0xf4, 0x1000}, {0x5, 0x5, 0x6a500, 0x91}, {0x5d, 0x6f5, 0x8001, 0xffff}, {0x80000000, 0x8000, 0x9}, {0x1, 0xffff, 0x0, 0x394}, {0x5f, 0xc73, 0x6, 0x1}, {0x73, 0x6, 0x275, 0x3}, {0x81, 0x9, 0x1}, {0x80000000, 0x1f, 0x8, 0x7}, {0x8, 0x7, 0xacb, 0x4}, {0xe148, 0xfffffffe, 0x5, 0x80}, {0xffffffff, 0x2, 0x3, 0x4}, {0x8, 0x4, 0x80000000, 0x10001}, {0x7ff, 0x1000, 0x4, 0x7}, {0x10000, 0x1, 0x4606, 0x91}, {0x4, 0x0, 0x1f, 0xab300}, {0xdcd, 0x4, 0x7fffffff, 0x2}, {0x4954fecf, 0xfffffff8, 0x1, 0xfff}, {0x1, 0xda, 0x6, 0xffffffff}, {0x9, 0x80000000, 0x7fffffff, 0x6}, {0x4, 0x200, 0x0, 0x10000000}, {0xffffffff, 0x6, 0x9, 0xffffffff}, {0x3ff, 0x4, 0x0, 0x6}, {0xbd, 0xff43, 0x3ff, 0x7}, {0x5, 0x7c7, 0x4, 0x4}, {0x1000, 0x8, 0x7, 0x1}, {0x8, 0x401, 0x5, 0x1}, {0x3f, 0x8000, 0x6, 0x3f}, {0x2, 0x2, 0x4, 0x8}, {0x7, 0x9, 0xff, 0x5}, {0x1, 0x10001, 0x4, 0x9}, {0x7, 0x1, 0x401, 0xd10b}, {0x9, 0x1, 0xafdd, 0xff}, {0x81, 0xfffffffa, 0x8, 0x4}, {0x2, 0x4, 0x3, 0x5}, {0x15d8, 0x8001, 0x31, 0x100}, {0x80000000, 0x5e22, 0x9, 0x1ff}, {0x14000, 0x0, 0x8, 0xffffffff}, {0x3, 0x5, 0xffff, 0x44}, {0x9, 0x7ff, 0x7fffffff, 0x40}, {0x20, 0x5, 0x4, 0x596}, {0x3, 0x0, 0x46e, 0x6}, {0x3ff, 0x9, 0x3, 0x100}, {0x8, 0x80000001, 0xffff167d, 0x3ab}, {0x3f, 0xffff69f8, 0x10000, 0x80000000}, {0x7fff, 0x9, 0x4, 0x8001}, {0x6, 0x3, 0xfa, 0x3ff}, {0xfffffffc, 0x8, 0x69, 0x3f}, {0x9, 0x10001, 0x8, 0x20}, {0x4, 0x10001, 0x6, 0x5}, {0x61d, 0x6, 0x100, 0xca}, {0x2, 0x80000001, 0xbde00000, 0x8001}, {0x6, 0x2, 0xfffffffc, 0x2}, {0x100, 0x0, 0x8, 0x2}, {0x6, 0x6, 0x200, 0x2}, {0x80000000, 0x8001, 0x7fffffff, 0xca}, {0x4, 0x3, 0x9da0000, 0x9}, {0x800, 0xa4000000, 0xffff, 0x7f}, {0x8, 0x3, 0x3, 0xcff9}, {0x1, 0x5, 0x8, 0x40}, {0xb6, 0x9, 0x3, 0x81}, {0x2, 0x6, 0x8, 0x3}, {0x8000, 0x10000, 0x1, 0x1}, {0x5, 0x9, 0x0, 0x1f}, {0x8, 0x7, 0x8001, 0x7}, {0x9, 0x889, 0x7ff, 0x2}, {0x100, 0x5, 0x3, 0x7}, {0x5, 0xfffff001, 0x8, 0x400}, {0xfffffffb, 0x80000001, 0x15dc2244, 0x7}, {0x1f, 0x7f, 0x7fff, 0x3}, {0x0, 0x300000, 0x2, 0x4}, {0x8, 0x9, 0x8, 0x7ff}, {0x5, 0x5, 0x7, 0x1}, {0x1, 0x9, 0x7, 0x20}, {0x7, 0x2, 0xc5, 0xcea}, {0x6, 0x101, 0x7, 0x8}, {0x1, 0x7fff, 0x1, 0x6}, {0x6, 0xb0, 0x1f, 0x1}, {0x4, 0x400, 0x0, 0x1}, {0x1, 0x3, 0x9e, 0x6}, {0x10000, 0xe9f, 0xffff, 0xff}, {0xfc, 0x7, 0x16, 0x1f}, {0x6b, 0x3bd, 0x3f, 0xb25a}, {0x8, 0x2, 0x3, 0xc1dd}, {0x7b3, 0xffffffff, 0x3, 0x80}, {0xdb, 0x10000, 0x7fffffff, 0xa624}, {0x1978, 0x4, 0x5, 0xe}, {0x4, 0x5, 0x0, 0x7}, {0x3f, 0x400, 0x3ba48801}, {0xff, 0x6, 0x1, 0x100}, {0x10001, 0x7fffffff, 0x6, 0x9a6}, {0x400, 0x9, 0x4, 0x2}, {0x96, 0x0, 0x7}, {0x76, 0x1, 0x70a7, 0xfffffffb}, {0x3, 0x2, 0x7, 0x133f}, {0x3, 0x0, 0x7, 0x80000001}, {0x0, 0x8, 0xaa, 0x155ddb6a}, {0x0, 0x0, 0x6f7, 0x9}, {0x20000, 0x0, 0xfff}, {0x4774, 0xbcbc, 0x9, 0x4}, {0x10000, 0x0, 0x8, 0x1}, {0x4, 0xe49d, 0x2, 0x2c3}, {0xef9, 0x176e, 0x6, 0xfffffff7}, {0x3, 0x9, 0x80, 0x4}, {0xa2, 0x31d, 0x3, 0x1ad}, {0x3f, 0x81, 0x8, 0x81}, {0x7f, 0x3, 0x4, 0x2}, {0x80, 0x2, 0x1ff, 0x1f}, {0x1f, 0x9d, 0xfffffffd, 0x9}, {0x4, 0x81, 0x80000001, 0x70000}, {0x4, 0x1, 0xc35f, 0x3}, {0xb10a, 0x4c, 0x8, 0x6}, {0x5, 0xfffffff8, 0x7, 0x8001}, {0x7ff, 0x2, 0x5, 0xffffffff}, {0x80000001, 0x3, 0x891, 0x20}, {0x2, 0x8000, 0xff, 0x5}, {0xfffff800, 0x0, 0x9, 0x1000}, {0xfff, 0x80, 0x7fffffff, 0x4e}, {0x5, 0x8, 0x800, 0x1}, {0xfffff800, 0x1, 0x5, 0x9}, {0x5000, 0x9, 0xffffffff, 0x6}, {0x6, 0x6, 0x9}, {0x5, 0x4, 0x2932}, {0x7ff, 0x4697, 0x9, 0xfffffe43}, {0x401, 0x0, 0x6, 0x4}, {0x8, 0x9, 0x1, 0x6}, {0x0, 0x8, 0x9, 0x1ff}, {0x9, 0x9, 0x1, 0x5}, {0xffffffff, 0x3f, 0xf4, 0x9}, {0x0, 0x7fff, 0x2c, 0x3f}, {0x1e19c0a7, 0x8d, 0xff, 0x2}, {0x1fa, 0x401, 0x5, 0xca48}, {0x6, 0x8001, 0x8000, 0x3f}, {0x1, 0x100, 0x2, 0xffffb8c4}, {0x0, 0x7ff, 0xfba, 0x1f}, {0x7ff, 0xffffffff, 0x8000, 0x7}, {0x3e6e512f, 0x5, 0x7, 0x7fffffff}, {0x200, 0x7, 0x0, 0x81}, {0xffff, 0xe1e, 0x7}, {0xbffe, 0x8, 0x2, 0x1f}, {0x314b, 0x4a, 0x3ff, 0x101}, {0x8, 0x1, 0xffffffff}, {0x4, 0x64, 0x5, 0x3}, {0x5, 0x9, 0x7fffffff, 0xb76}, {0x40, 0x2, 0x1000, 0x2}, {0xfff, 0x8, 0x6, 0x5}, {0x1, 0x7, 0x10000, 0x1}, {0x8, 0xb615, 0x401, 0xffffffff}, {0x1c9, 0x81, 0x284, 0x6}, {0x1, 0x0, 0x2a1, 0x80}, {0x400, 0x3, 0x4, 0x8}, {0x1, 0x401, 0x7, 0x7}, {0x5, 0x2, 0x80000000, 0x8}, {0x6, 0x6, 0x3, 0x200}, {0x1, 0x3, 0x8, 0x4}, {0xffff, 0x7, 0x80000000, 0x40}, {0xb99, 0x6, 0x101, 0x1}, {0x5, 0x7fff, 0x5, 0x20}, {0x7fea9abe, 0x80000001, 0x5, 0x4c8}, {0x3f, 0x0, 0x5, 0x8}, {0x7, 0x4, 0x0, 0x7}, {0x4, 0x800, 0xea8, 0x7e}, {0x86c9, 0xc383, 0x7, 0x9}, {0x9, 0x7, 0x9, 0x6}, {0x7, 0x3, 0x100, 0xbdd}, {0x6, 0x4, 0x80, 0x19}, {0x3, 0x4, 0x2, 0x8}, {0x3ff, 0x2, 0x7, 0x8001}, {0x8, 0x69, 0x10000, 0x401}, {0x7, 0x200, 0x6f, 0x7}, {0x7fffffff, 0xfffffff7, 0x3, 0x94}, {0x80000000, 0x7, 0x2, 0x9}, {0x9, 0x3, 0x5, 0x3f}, {0x0, 0x8, 0x6cb7, 0x8}, {0x0, 0x7, 0x80000001, 0x5}, {0x2, 0x80000000, 0x1f, 0xfffffffd}, {0x7, 0x4, 0xfffffffe, 0x1f}, {0xefd, 0x1, 0x4, 0x8}, {0x9ed0, 0x7e, 0x2, 0x3}, {0xe7, 0x7fff, 0x6ff, 0x40}, {0x1, 0x1, 0x1, 0x80000000}, {0x0, 0x4, 0xd6c, 0x9}, {0x401, 0x1ff, 0x6, 0x1}, {0x2c, 0x8, 0x1c, 0x6}, {0xfb7c, 0x4420, 0x5, 0x33c4}, {0xfffffffd, 0x7, 0x5cde}, {0x0, 0xac9a, 0x7, 0x4}, {0x20, 0x0, 0xffff8001}, {0x7, 0x40, 0x0, 0x80000000}, {0xfffff65e, 0x0, 0x9, 0x15}, {0x7, 0x2, 0x1, 0x1}, {0x20, 0x8000, 0x6, 0x4}, {0x81, 0xdd4f, 0x700000, 0x7}, {0x6e, 0x3ff, 0x7f5a4b87, 0xd7a}, {0x5, 0x3, 0xffff, 0x80000001}, {0x10001, 0x6, 0x3, 0x7}, {0xef, 0x1f, 0xfffffff9, 0x9}, {0x3, 0x8, 0x7fff}, {0x101, 0x5, 0xfffffffe, 0x1e780f49}, {0x1, 0x4, 0x1f, 0x8}, {0x1, 0x7ae, 0xebf, 0x3}, {0x1, 0x9, 0x80, 0x7fff}, {0xbc9e, 0x7fff, 0x3, 0x101}, {0x65, 0x800, 0xb52a, 0x7ff}, {0xfffffffb, 0x7ff, 0x8001, 0x9}, {0x1a4c, 0x9e59, 0x3, 0xfffffff9}, {0xfffffff7, 0x7fffffff, 0x62ab, 0x80000001}, {0x1, 0xec1, 0x5, 0x80}, {0x1f, 0x101, 0xd9e, 0x5}, {0x8, 0x8000, 0xc6d, 0x3}, {0x0, 0x1000, 0x1, 0x1}, {0xfcd, 0x6, 0x7, 0x800}, {0x5, 0x358d, 0xf063}, {0xb2e4, 0x8, 0x6, 0x7}, {0x6, 0xaf, 0x80000001, 0x8}, {0x0, 0xe7d, 0x97, 0x9}, {0x7, 0x4, 0x8, 0x9}, {0x6, 0x284efd65, 0x99f, 0x4}, {0x10001, 0x7, 0x3, 0x8001}, {0x7, 0x4e4fc59a, 0x90b3, 0x3}, {0x1, 0x5892, 0x1, 0x3f}, {0x4, 0xffffff05, 0x6, 0x3}, {0xa6a, 0x6306, 0x0, 0x3}, {0x7, 0x3, 0x9, 0x3}, {0x7, 0x9, 0x6, 0x6}, {0x7fffffff, 0x2, 0x80000001, 0x3}, {0x80000000, 0x40, 0x405, 0x400}, {0x3ff80000, 0x2, 0x6, 0xfff}, {0x2, 0x80000000, 0x80000001, 0x24}, {0x89, 0x1, 0x9, 0x1ff}, {0x80000001, 0x3, 0x7, 0xfffeffff}, {0x18dc, 0x9, 0x6, 0x1}, {0x1f, 0x101, 0x7, 0x7}, {0xffffffe9, 0x4, 0x4607, 0x7fff}, {0x0, 0x1, 0xfff, 0x400}, {0x80000000, 0x7fff, 0xda, 0x7ff}, {0x400, 0xffffffff, 0xd94}, {0x6, 0x200, 0x3, 0x100}, {0x1d6bc7b4, 0x7, 0x1000, 0x6}, {0x3, 0x8, 0x9, 0x8}, {0xf7, 0x9, 0x4, 0x8000}, {0x200, 0x2, 0x6, 0x3}, {0x8, 0xffffffff, 0x9, 0x4}, {0x3, 0x7, 0x8001, 0x20}, {0x258, 0x6, 0x3f, 0x2d2}, {0x8000, 0x3, 0x0, 0x8}, {0x7ff, 0x5, 0x10000, 0x5}, {0x9, 0xe1, 0x0, 0x1}, {0x0, 0x1ff, 0x0, 0x3}, {0x9, 0xe1e, 0x3, 0x100}, {0x5, 0xfffffffd, 0x0, 0x9}, {0x80000001, 0x3, 0x98, 0x2}, {0x6, 0x1, 0x50, 0xffffffff}, {0x7e00, 0x4, 0x9, 0x2}, {0x0, 0x1f, 0x8001, 0x1da}, {0xfffffff9, 0x5, 0xffff8001, 0x3}, {0x1ff, 0x7, 0x8, 0x5}, {0x5, 0xc, 0x800, 0x9}, {0x9, 0x6, 0x800, 0x7fffffff}, {0x57c, 0xffffc844, 0x1f, 0x7f}, {0x7, 0x1, 0x0, 0x3f}, {0x6, 0x6, 0x0, 0x80000000}, {0x81, 0x5, 0x9, 0x1}, {0x6816, 0xfff, 0x9, 0x7}, {0x0, 0x7fffffff, 0x1, 0x8}, {0x7fff, 0x6, 0x6, 0x7f}, {0x4, 0x1, 0x30d}, {0x1, 0x0, 0x101, 0x9}, {0x6, 0xd3ed, 0x0, 0x200}, {0x101, 0x6, 0x7}, {0x6, 0x81, 0xa592, 0x80000000}, {0x2, 0x4, 0x7, 0x8000}, {0x9, 0x2, 0x40, 0xa0000}, {0x82, 0x1f, 0x8f, 0xf5}, {0x2, 0x2, 0x2, 0x2}, {0x0, 0x5, 0x2, 0x7fffffff}, {0x80000000, 0x10001, 0x2, 0x7}, {0x7f, 0x9, 0x9, 0x4}, {0xd03, 0x10001, 0x5, 0x1}, {0x8, 0x0, 0x1bd2, 0x400}, {0x9, 0x5, 0x0, 0x4}, {0x80000000, 0x0, 0x7, 0x3}, {0x0, 0x7, 0x9, 0x1}, {0x1800000, 0x100, 0x7fffffff, 0x1f}, {0x8001, 0x1, 0x100, 0x1}, {0xec6, 0x81, 0x10000, 0x9}, {0x8, 0x1, 0x66d8, 0x9}, {0x27e8, 0x0, 0x3f, 0x6}, {0x20, 0x4, 0x8, 0x48}, {0x9, 0x4703, 0x9, 0x1f}, {0x1, 0x6, 0x3f, 0x6}, {0x0, 0xb4, 0x2df8, 0xffffffff}, {0x32, 0x1b, 0x3, 0x4}, {0x800, 0xfffffc01, 0x0, 0x4}, {0x100, 0x4, 0xfffffffe, 0x3}, {0x401, 0x6, 0x81, 0x2}, {0x2, 0xc000000, 0x3}, {0x3ff, 0x5, 0x400, 0x73}, {0xffff, 0x3, 0x8, 0x3}, {0xffffffff, 0x1, 0x1, 0x2}, {0xfffffffc, 0x1, 0xffff}, {0x0, 0x3ff, 0x8001, 0x70e}, {0xa0a, 0x9, 0x7, 0xb7e8}, {0x80, 0x8, 0x7, 0xff}, {0x6, 0x101, 0x9, 0x10000}, {0x40, 0x4, 0x0, 0x10000}, {0x80, 0x1000, 0x7}, {0x2, 0x10000, 0x0, 0x3}, {0xff, 0xfff, 0x8}, {0x9, 0x1000, 0x8, 0x40}, {0x4bfa162, 0x101, 0x8, 0xaad}, {0xff, 0x44b, 0x9, 0x1f}, {0x6, 0x2, 0xcc23, 0x6}, {0x6, 0x1, 0x1, 0x3}, {0x7fff, 0x400, 0x4, 0x7}, {0x45, 0x7, 0xe907, 0x4}, {0x1f, 0x2, 0x21, 0x9}, {0x6, 0x6, 0x2, 0x8}, {0x7, 0x800, 0x7, 0xb2d}, {0x9, 0x401, 0xfffffffa, 0x200}, {0x1f, 0x3, 0x4, 0x80000000}, {0x2, 0x8e9a, 0x5, 0x4}, {0xffff7781, 0xffffffbd, 0xe7f, 0x2}, {0x7, 0x7, 0x8, 0x2}, {0x0, 0x800}, {0xfffffffd, 0xc155, 0x0, 0x800}, {0x2, 0x10000, 0x6, 0x2}, {0x5, 0x0, 0x20, 0x7}, {0x7ff, 0x1ff, 0xbae, 0x8}, {0x1, 0xfff, 0x20, 0x10000}, {0x8, 0x6, 0x2, 0x5}, {0x8, 0x2, 0x7, 0x6}, {0xe61a, 0x4, 0x1, 0x3}, {0x6, 0x0, 0x6, 0x6}, {0x9, 0x0, 0xb60b, 0x1ff}, {0x4, 0x3, 0x2e39ef45, 0xffffffff}, {0xfffffffd, 0x6, 0x7}, {0x6, 0x2ef, 0x2, 0x8}, {0x2311, 0x2, 0x3ff, 0x1000}, {0x1, 0xfffffff9, 0x622f, 0x20}, {0x80000001, 0x8, 0x1000, 0x2}, {0x7, 0x7, 0x10000, 0xeb}, {0x0, 0x40, 0x0, 0xd93a}, {0x10001, 0x0, 0x7, 0x8}, {0x6, 0x800, 0xffffd84f, 0x3f}, {0x7c3, 0xb8, 0x6, 0x100}, {0x10000, 0x5, 0x3ff, 0xfffffbff}, {0x35, 0x80, 0x3, 0x4b9}, {0x2, 0x7, 0x4, 0x401}, {0x3, 0x9, 0x7ff, 0x1000}, {0x4, 0x7, 0x1f, 0xffffffff}, {0x1, 0x19, 0x0, 0x7}, {0x8, 0x2, 0x8, 0x7fffffff}, {0x4800, 0x902c, 0x1000, 0x1}, {0x9d, 0x1, 0x7fffffff, 0x22}, {0x0, 0x40, 0x2276, 0xd7}, {0x7, 0x2, 0x5, 0x8}, {0x0, 0xffff, 0x6, 0x80}, {0x6, 0x7, 0x4, 0x7d9}, {0xc8, 0xf389, 0x7, 0x8}, {0xafb2, 0x20, 0x5ab, 0x63b5}, {0x7, 0x6, 0x0, 0x3}, {0x1bd5, 0x1000, 0x5, 0x3}, {0x0, 0x5, 0xda, 0xebf1}, {0xd3fd, 0x2, 0x2, 0x3ff}, {0x6, 0x7, 0x6dd2, 0x50}, {0x8673, 0x2, 0x7, 0x4}, {0x200, 0x8, 0x3, 0x4}, {0x6d30, 0x7fffffff, 0x4, 0x9}, {0xff, 0x7, 0x191, 0x8}, {0x5, 0x7ee3, 0x3, 0x5}, {0xe0, 0xfffffff8, 0x10000, 0x1}, {0x5b19, 0xfff, 0x800, 0x4}, {0x9, 0x9, 0x1000, 0x2}, {0xe04, 0x48000, 0x1, 0x9}, {0x2, 0x6ee, 0x786c0000, 0x8001}, {0x1ff, 0x0, 0x95c, 0x5}, {0x2, 0x2, 0x8, 0x7}, {0x403, 0x8, 0x50f, 0x29e7}, {0xffffeb18, 0x6, 0x9, 0x6}, {0x4498, 0x8, 0x2, 0x2}, {0xfffffffa, 0x633, 0xffff7fff, 0x100}, {0x6, 0x2ae4, 0x8, 0x1}, {0x380, 0xc2, 0xbc, 0x100}, {0x8, 0x2, 0x4, 0x2}, {0x6, 0x80000001, 0x4, 0x8}, {0x91, 0x9ac, 0x100, 0x2}, {0x4, 0x40, 0x8, 0x2020}, {0x20000000, 0x2787, 0xfffffffc, 0x472}, {0x4, 0x9, 0x100, 0x9}, {0xf6, 0xff, 0x9, 0x6}, {0x637, 0x4, 0x4, 0x80000000}, {0x5, 0x51, 0x240, 0x8001}, {0x5, 0xa1ca2583, 0xa00000, 0x7fff}, {0x4, 0xffffff80, 0xffffffc1, 0xf0}, {0x7ff, 0x1ff, 0x4, 0x5}, {0xfffffff9, 0x3, 0xc3, 0x8}, {0x7ff, 0x3, 0x1}, {0x62b, 0x3, 0x7, 0x4}, {0x87b, 0xd3, 0x5, 0x3}, {0x1, 0x7fff, 0x6, 0x5}, {0x1, 0x9, 0xdad, 0x4}, {0x8, 0x3, 0x5, 0x200}, {0x6, 0x8, 0x7, 0x4}]}, 0x3c2e) syz_io_uring_setup(0x1e, &(0x7f0000000080)={0x0, 0x3, 0x1, 0x0, 0x78, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:24 executing program 1: syz_io_uring_setup(0x1d, &(0x7f0000000080)={0x0, 0x10000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x42, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000040)=r0, 0x1) 13:23:24 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, 0x0) 13:23:24 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000080), 0x0) [ 2683.023234][T11132] vhci_hcd vhci_hcd.0: port 0 already used 13:23:24 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x4fc6, &(0x7f0000000000), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001000/0x3000)=nil, 0x0, 0x0) 13:23:24 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:24 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x689a, &(0x7f0000000000)={0x0, 0x2d39, 0x10, 0x2, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 13:23:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, r1, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfff}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008001}, 0x4000800) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:24 executing program 0: ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000000)={0xae9, 0x2, 0x4, 0x70000, 0x0, {0x0, 0xea60}, {0x4, 0x0, 0x7, 0x8, 0x3, 0x2b, "b44670a8"}, 0x5, 0x1, @userptr=0x83, 0x9}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc04c5609, &(0x7f0000000140)={0x2, 0x4, 0x4, 0x100000, 0x9, {0x77359400}, {0x5, 0x2, 0x41, 0xdf, 0x20, 0x97, "23356af6"}, 0x7fffffff, 0x4, @offset=0x4ea8b879, 0x7, 0x0, r1}) ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000080)={0x7, 0x2, 0x4, 0x2, 0x5, {0x77359400}, {0x4, 0x8, 0x3f, 0x9, 0x20, 0x6, "d9cff517"}, 0x10000000, 0x2, @fd, 0x8, 0x0, r0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000502e0d92f75ed8c5e8fe3edc650f0d21ab94eac6612e7d22d9f0ee15dcdb1fb58340e001e5632b8090190e5a64f534be99d5b4f7f5cea0632d0bff8d89a114da6f5dfdf2128c58b40e7fc8497728c7afaeca98519a9ae8eb8ac7d1f56ca4a1f13019f2940dd96079785a1d9b28eb9aa2ed8cc77784782b8730832a47f05177578e6dd668b99828fd3037eda37502bdf04ebca69a1c66e1ff3b451a917ceb174792df81", @ANYRES16=0x0, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f00000001c0)) 13:23:24 executing program 4: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000080)={0x1, 0x3, 0x2914, 0x700000}) fork() r1 = fork() ioctl$BLKROSET(r0, 0x125d, &(0x7f00000000c0)=0x6) getpgid(r1) openat$vcs(0xffffff9c, &(0x7f0000000100), 0x400040, 0x0) capset(&(0x7f0000000180)={0x19980330, r1}, &(0x7f0000000140)={0xb, 0x5, 0x3ff, 0x136b, 0x1, 0x2}) capset(&(0x7f0000000000)={0x20080522, r1}, &(0x7f0000000040)={0x0, 0x1c, 0x1002, 0x20, 0x7, 0x81}) wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) wait4(r1, &(0x7f0000000240), 0x1, 0x0) r2 = openat$nullb(0xffffff9c, &(0x7f00000001c0), 0x200400, 0x0) ioctl$IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000200)={0x2}) 13:23:24 executing program 1: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000080)={0x1, 0x3, 0x2914, 0x700000}) fork() r1 = fork() ioctl$BLKROSET(r0, 0x125d, &(0x7f00000000c0)=0x6) getpgid(r1) openat$vcs(0xffffff9c, &(0x7f0000000100), 0x400040, 0x0) capset(&(0x7f0000000180)={0x19980330, r1}, &(0x7f0000000140)={0xb, 0x5, 0x3ff, 0x136b, 0x1, 0x2}) capset(&(0x7f0000000000)={0x20080522, r1}, &(0x7f0000000040)={0x0, 0x1c, 0x1002, 0x20, 0x7, 0x81}) wait4(0xffffffffffffffff, 0x0, 0x1000000, 0x0) wait4(r1, &(0x7f0000000240), 0x1, 0x0) r2 = openat$nullb(0xffffff9c, &(0x7f00000001c0), 0x200400, 0x0) ioctl$IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000200)={0x2}) 13:23:24 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:23:25 executing program 3: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:23:25 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:23:25 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() openat$vcs(0xffffff9c, &(0x7f0000000000), 0x240, 0x0) r0 = fork() getpgid(r0) getpgid(r0) 13:23:25 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) wait4(r0, &(0x7f0000000000), 0x1, &(0x7f0000000040)) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f00000000c0)="b6e97ead36370e11fec6", 0xa) 13:23:25 executing program 4: io_uring_setup(0x11b4, &(0x7f0000000000)={0x0, 0xadc, 0x4, 0x3, 0x92}) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x82, 0x0) syz_io_uring_setup(0x269d, &(0x7f00000000c0)={0x0, 0x6e8a, 0x10, 0x0, 0x36e, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000140), 0x8001, 0x2) fork() ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000180)={0x1}) [ 2683.953660][T11167] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2683.960310][T11167] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2683.989937][T11167] vhci_hcd vhci_hcd.0: Device attached [ 2684.026822][T11178] vhci_hcd: connection closed [ 2684.027746][ T7418] vhci_hcd: stop threads [ 2684.040557][ T7418] vhci_hcd: release socket [ 2684.067674][ T7418] vhci_hcd: disconnect device 13:23:25 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) [ 2684.322101][T11187] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 2684.328757][T11187] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) 13:23:25 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x271}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x28fd, &(0x7f0000000080)={0x0, 0xcec3, 0x8, 0x0, 0x88, 0x0, r0}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000040), 0x1) fork() [ 2684.382825][T11177] vhci_hcd vhci_hcd.0: port 0 already used [ 2684.415823][T11187] vhci_hcd vhci_hcd.0: Device attached [ 2684.462251][T11201] vhci_hcd: connection closed [ 2684.462661][ T118] vhci_hcd: stop threads [ 2684.489827][ T118] vhci_hcd: release socket 13:23:25 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() openat$vcs(0xffffff9c, &(0x7f0000000000), 0x240, 0x0) r0 = fork() getpgid(r0) getpgid(r0) [ 2684.520351][ T118] vhci_hcd: disconnect device 13:23:25 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) clock_gettime(0x2, &(0x7f00000000c0)) fork() 13:23:25 executing program 0: syz_io_uring_setup(0x1c, &(0x7f0000000240)={0x0, 0x22c6, 0x1}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x10000004, 0x3, 0x0, 0xfe3, 0x9, 0x15a244bb, 0x4, 0x2}, 0x0) [ 2684.754322][T11211] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2684.760886][T11211] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2684.810092][T11211] vhci_hcd vhci_hcd.0: Device attached 13:23:26 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) clock_gettime(0x2, &(0x7f00000000c0)) fork() [ 2684.859437][T11227] vhci_hcd: connection closed [ 2684.860047][T10685] vhci_hcd: stop threads [ 2684.889654][T10685] vhci_hcd: release socket [ 2684.925004][T10685] vhci_hcd: disconnect device 13:23:26 executing program 1: wait4(0x0, 0x0, 0x4, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x2, &(0x7f00000000c0)=""/30, &(0x7f0000000100)=0x1e) r0 = getpgid(0x0) wait4(r0, &(0x7f0000000000), 0x40000000, &(0x7f0000000040)) wait4(r0, 0x0, 0x0, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x4, &(0x7f0000000140)=""/67) 13:23:26 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4040014) wait4(0x0, 0x0, 0x4, 0x0) 13:23:26 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) waitid(0x2, r0, &(0x7f0000000000), 0x0, &(0x7f0000000080)) 13:23:26 executing program 4: r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x2, 0x0) 13:23:26 executing program 1: syz_io_uring_setup(0x39f2, &(0x7f0000000240)={0x0, 0x0, 0x8, 0xffffffff, 0xfffffffe}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, 0x0, 0x0) fork() clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000040)={0xddf, 0x0, 0x4, 0x70000, 0x1, {r0, r1/1000+10000}, {0x1, 0x8, 0x7f, 0x0, 0x0, 0xd8, "3cb836ae"}, 0x5, 0x3, @offset=0x5, 0x9, 0x0, 0xffffffffffffffff}) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f00000000c0)={0x8001, 0x6, 0x4, 0x10, 0x9, {0x77359400}, {0x5, 0xc, 0x7, 0x80, 0x1, 0xff, "cccfbaca"}, 0x7fffffff, 0x1, @userptr=0x7, 0x1, 0x0, r2}) 13:23:26 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4040014) wait4(0x0, 0x0, 0x4, 0x0) 13:23:26 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) clock_gettime(0x2, &(0x7f00000000c0)) fork() 13:23:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x1, 0x0, 0x0, {{}, {0x0, 0x4101}, {0xc, 0x14, 'syz0\x00'}}}, 0x28}}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockname(r0, &(0x7f0000000100)=@can, &(0x7f0000000180)=0x80) ioctl$vim2m_VIDIOC_G_FMT(0xffffffffffffffff, 0xc0cc5604, &(0x7f00000001c0)={0x2, @pix_mp={0xba53, 0x4, 0x48524742, 0x8, 0xc, [{0x20000000, 0x6}, {0x40, 0x10000}, {0x3, 0x9}, {0x96, 0x19a03cf5}, {0x7, 0x3b09}, {}, {0x7, 0x2}, {0xc5, 0x6}], 0x2, 0x0, 0x2}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008804}, 0x0) r1 = fork() ptrace$getregs(0xc, r1, 0x8, &(0x7f0000000000)=""/127) waitid(0x0, r1, 0x0, 0x80000002, &(0x7f00000003c0)) 13:23:26 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4040014) wait4(0x0, 0x0, 0x4, 0x0) 13:23:26 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = fork() r1 = getpgid(r0) waitid(0x1, r1, &(0x7f0000000000), 0x80000000, &(0x7f0000000080)) [ 2685.570203][T11244] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2685.576849][T11244] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2685.621810][T11244] vhci_hcd vhci_hcd.0: Device attached 13:23:26 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) clock_gettime(0x2, &(0x7f00000000c0)) [ 2685.654477][T11266] vhci_hcd: connection closed [ 2685.657681][ T40] vhci_hcd: stop threads [ 2685.673559][ T40] vhci_hcd: release socket [ 2685.692626][ T40] vhci_hcd: disconnect device 13:23:26 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4040014) 13:23:27 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) 13:23:27 executing program 1: ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f0000000180)={0x1}) r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x3, 0x0, 0x0, 0x8000065}, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = io_uring_setup(0x25fe, &(0x7f0000000000)={0x0, 0x583e, 0x20, 0x3, 0x338, 0x0, r0}) syz_io_uring_setup(0x4ca5, &(0x7f0000000080)={0x0, 0x1b65, 0x8, 0x2, 0x3c6, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fork() [ 2686.050819][T11284] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2686.057387][T11284] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) 13:23:27 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = fork() r1 = getpgid(r0) waitid(0x1, r1, &(0x7f0000000000), 0x80000000, &(0x7f0000000080)) 13:23:27 executing program 3: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x1245) 13:23:27 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000), &(0x7f0000000040)=0x4) 13:23:27 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) [ 2686.094697][T11284] vhci_hcd vhci_hcd.0: Device attached [ 2686.109322][T11288] vhci_hcd: connection closed [ 2686.133138][T29431] vhci_hcd: stop threads [ 2686.168149][T29431] vhci_hcd: release socket [ 2686.198828][T29431] vhci_hcd: disconnect device 13:23:27 executing program 1: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000000), 0x4001, 0x0) 13:23:27 executing program 3: clock_gettime(0x0, &(0x7f0000000000)) ioctl$vim2m_VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000100)) 13:23:27 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) syz_usbip_server_init(0x1) 13:23:27 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) socket$nl_generic(0x10, 0x3, 0x10) 13:23:27 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) 13:23:27 executing program 3: clock_gettime(0x0, &(0x7f0000000000)) 13:23:27 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) 13:23:27 executing program 0: syz_io_uring_setup(0x94f, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x7c}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:27 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) [ 2686.627483][T11310] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2686.634050][T11310] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2686.687194][T11310] vhci_hcd vhci_hcd.0: Device attached 13:23:27 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) [ 2686.718357][T11317] vhci_hcd: connection closed [ 2686.731094][ T118] vhci_hcd: stop threads [ 2686.742714][ T118] vhci_hcd: release socket [ 2686.767572][ T118] vhci_hcd: disconnect device 13:23:28 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) 13:23:28 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r1, 0x1}, 0x14}}, 0x0) 13:23:28 executing program 1: clock_gettime(0x0, &(0x7f0000000000)) 13:23:28 executing program 3: clock_gettime(0x0, 0x0) 13:23:28 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3, 0x110, r0, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)="78c174", 0x0, 0x0, 0x0, {0x3}}, 0x1c000000) fork() r2 = fork() ptrace$getsig(0x4202, r2, 0x7, &(0x7f0000000080)) 13:23:28 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:28 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) socket$nl_generic(0x10, 0x3, 0x10) 13:23:28 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) 13:23:28 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) 13:23:28 executing program 3: clock_gettime(0x0, 0x0) 13:23:28 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:28 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000000280)=""/121, 0x79}], 0x2, &(0x7f0000000340)=""/88, 0x58}, 0x20002000) 13:23:28 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:28 executing program 1: clock_gettime(0x0, &(0x7f0000000000)) 13:23:28 executing program 3: clock_gettime(0x0, 0x0) 13:23:28 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfe, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:28 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080)={0x23, 0x2, 0x1f, 0x1}, 0x10) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:28 executing program 2: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:29 executing program 1: clock_gettime(0x0, &(0x7f0000000000)) 13:23:29 executing program 3: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:29 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 2: socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, 0x334}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:29 executing program 1: clock_gettime(0x0, 0x0) 13:23:29 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:29 executing program 2: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 4: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 1: clock_gettime(0x0, 0x0) 13:23:29 executing program 3: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x400000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:29 executing program 4: socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 2: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 1: clock_gettime(0x0, 0x0) 13:23:29 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:29 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000003280), 0x50000, 0x0) sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f0000003380)={&(0x7f00000032c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003340)={&(0x7f0000003300)={0x1c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8809}, 0x4000040) syz_io_uring_setup(0x1b, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x4004840) 13:23:29 executing program 3: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 4: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 2: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:29 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x400000}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:30 executing program 3: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:30 executing program 4: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 2: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:30 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:30 executing program 2: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 4: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 3: socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x2, 0x2430e81d1cfb8bfd}) fork() r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000b, 0x8010, 0xffffffffffffffff, 0x10000000) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r3 = socket$inet6_dccp(0xa, 0x6, 0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x4, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r3, r0], 0x4, 0x0, 0x1}, 0x9598) 13:23:30 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:30 executing program 3: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 4: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$getsig(0x4202, r0, 0xfffffff9, &(0x7f0000000000)) 13:23:30 executing program 2: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 1: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 3: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:30 executing program 4: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:31 executing program 3: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 1: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:31 executing program 4: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:31 executing program 0: ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, &(0x7f0000000000)={0x0, 0x35315241, 0x3, @stepwise={0x0, 0x5, 0xff, 0x3, 0x3, 0xbdb}}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) syz_io_uring_setup(0x3bbe, &(0x7f0000000080)={0x0, 0x7b17, 0x10, 0x2, 0x26e, 0x0, r0}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) setsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000040)=0x2b, 0x4) fork() 13:23:31 executing program 1: ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 3: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:31 executing program 1: socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) ptrace$getregs(0xe, r0, 0x1f, &(0x7f0000000000)=""/183) fork() 13:23:31 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:31 executing program 4: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:31 executing program 3: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 1: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:31 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:32 executing program 3: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:32 executing program 1: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:32 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:32 executing program 4: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:32 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() socketpair(0x4, 0x2, 0xffff, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$SIOCGETLINKNAME(r0, 0x89e0, &(0x7f0000000100)={0x2}) syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x416400) r1 = fork() capset(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000040)={0xff, 0x5, 0x6, 0xfffffffc, 0x18000, 0x8}) 13:23:32 executing program 1: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:32 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:32 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:32 executing program 2: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:32 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:32 executing program 4: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:32 executing program 1: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:32 executing program 2: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:32 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0xfffffffe}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) getpgid(r0) 13:23:32 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:32 executing program 2: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 4: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 1: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:33 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 4: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:33 executing program 0: ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80041272, &(0x7f0000000000)) setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() setsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000040)=0xfffffffa, 0x4) 13:23:33 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 4: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 1: socketpair(0x2, 0x0, 0x3, &(0x7f00000000c0)) 13:23:33 executing program 3: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000), 0x1) 13:23:33 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:33 executing program 3: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:33 executing program 1: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:34 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'gretap0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0xc040, 0x40, 0x22c, 0x2, {{0x5, 0x4, 0x2, 0x0, 0x14, 0x68, 0x0, 0x92, 0x4, 0x0, @multicast2, @empty}}}}) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000080), 0x1) 13:23:34 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:34 executing program 3: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:34 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:34 executing program 1: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:34 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:34 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:34 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x56ac}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0xff}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x75}]}, 0x64}, 0x1, 0x0, 0x0, 0x8804}, 0x20004880) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:34 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:34 executing program 1: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:35 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x161f64a895cf9f3, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xffffff7f}]}, 0x1c}}, 0x10000084) syz_io_uring_setup(0x1b, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1b7}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) fork() r1 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040)) ioctl$BLKGETSIZE64(r1, 0x80041272, &(0x7f0000000000)) 13:23:35 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 1: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:35 executing program 5: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 1: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:35 executing program 0: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000)=r1, 0x1) 13:23:35 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 1: socketpair(0x2, 0x3, 0x3, 0x0) 13:23:35 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:35 executing program 0: getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000880), &(0x7f00000008c0)=0x4) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000b80)=0x0, &(0x7f0000000bc0)=0x4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000cc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c00)={0x5c, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x74c7}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r0}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x3d}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24000040}, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:36 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x7000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x81}]}, 0x1c}}, 0x20000080) syz_io_uring_setup(0x652c, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x800, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:36 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 0: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000000)={0xfc1a, 0x81, 0x3f, 0x80}) r1 = openat$nullb(0xffffff9c, &(0x7f0000000080), 0x8803, 0x0) ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000000140)={0x80, 0x1000}) ioctl$BLKRESETZONE(r1, 0x40101283, &(0x7f00000000c0)={0xfffffffffffffe01, 0x66b9}) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() openat$nullb(0xffffff9c, &(0x7f0000000100), 0x182, 0x0) 13:23:36 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 2: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:36 executing program 0: io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000000), 0x1) fork() 13:23:37 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x6, 0x0, 0x2, 0x40f3, 0xffffffff9c1cc803, 0x1, 0x2, 0x3615, 0xf83}, 0x0) openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x432082, 0x0) 13:23:37 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 2: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 4: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 2: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:37 executing program 0: syz_io_uring_setup(0x58e7, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = fork() getpgid(r1) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0xfff, &(0x7f0000000000)=""/91) ptrace$getsig(0x4202, r0, 0x47, &(0x7f0000000080)) 13:23:37 executing program 1: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r0 = fork() sched_setattr(r0, &(0x7f0000000000)={0x38, 0x6, 0x0, 0x2, 0x40f3, 0xffffffff9c1cc803, 0x1, 0x2, 0x3615, 0xf83}, 0x0) openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x432082, 0x0) 13:23:37 executing program 4: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 2: openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 0: ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x89ed, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)={0x0, 0xfffffffa}) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000000c0)={0x0, 0x1}) r1 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000200), &(0x7f00000002c0)=0x10, 0x80000) getsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, &(0x7f0000000300), &(0x7f00000001c0)=0x4) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000140)={r0}) r2 = fork() sched_setattr(r2, &(0x7f0000000000)={0x38, 0x2, 0xa3, 0x7fffffff, 0xa9c, 0x6, 0x2, 0x2, 0xffffffff, 0x8}, 0x0) r3 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r3) getsockopt$PNPIPE_HANDLE(r3, 0x113, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) 13:23:38 executing program 4: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 3: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 2: openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:38 executing program 1: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 3: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:38 executing program 2: openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:39 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x6e51, &(0x7f0000000000)={0x0, 0x62fd, 0x0, 0x0, 0x13}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, {0x8}, 0x1}, 0xe76) fork() 13:23:39 executing program 3: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 1: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:39 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 3: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x5a7}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:39 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:39 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:39 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 3: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 0: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:40 executing program 3: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:40 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:40 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 4: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:41 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:41 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:41 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:41 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:41 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:42 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:42 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:42 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:43 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 1: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:43 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 1: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:43 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:44 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 5: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 1: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:44 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:44 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:44 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:44 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:44 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:45 executing program 0: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:45 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:45 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:45 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:45 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:45 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:45 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:45 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:45 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:45 executing program 0: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:45 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:45 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:46 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:46 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:46 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:46 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:46 executing program 0: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:46 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:46 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:46 executing program 3: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:47 executing program 2: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x6e51, &(0x7f0000000000)={0x0, 0x62fd, 0x0, 0x0, 0x13}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, {0x8}, 0x1}, 0xe76) fork() 13:23:47 executing program 4: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:47 executing program 5: openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:47 executing program 0: fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:47 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:47 executing program 2: syz_io_uring_setup(0x58e7, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = fork() getpgid(r1) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0xfff, &(0x7f0000000000)=""/91) ptrace$getsig(0x4202, r0, 0x47, &(0x7f0000000080)) 13:23:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x7000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x81}]}, 0x1c}}, 0x20000080) syz_io_uring_setup(0x652c, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x800, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:47 executing program 4: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000)=r1, 0x1) 13:23:47 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 3: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 5: r0 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x161f64a895cf9f3, 0x0) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xffffff7f}]}, 0x1c}}, 0x10000084) syz_io_uring_setup(0x1b, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1b7}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) fork() r1 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040)) ioctl$BLKGETSIZE64(r1, 0x80041272, &(0x7f0000000000)) 13:23:48 executing program 0: syz_io_uring_setup(0x1b, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 2: r0 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'gretap0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0xc040, 0x40, 0x22c, 0x2, {{0x5, 0x4, 0x2, 0x0, 0x14, 0x68, 0x0, 0x92, 0x4, 0x0, @multicast2, @empty}}}}) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000080), 0x1) 13:23:48 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0xfffffffe}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() getpgid(r0) getpgid(r0) 13:23:48 executing program 2: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:48 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 3: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:49 executing program 4: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 5: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:49 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 0: socketpair(0x0, 0x3, 0x3, &(0x7f00000000c0)) 13:23:49 executing program 3: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:49 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:50 executing program 2: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:50 executing program 0: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:50 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:50 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:50 executing program 4: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, 0x334}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:50 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, 0x334}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() 13:23:50 executing program 2: socketpair(0x0, 0x3, 0x0, &(0x7f00000000c0)) 13:23:50 executing program 0: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) syz_usbip_server_init(0x1) 13:23:50 executing program 5: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) syz_usbip_server_init(0x1) 13:23:50 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:50 executing program 2: socketpair(0x0, 0x3, 0x0, &(0x7f00000000c0)) 13:23:50 executing program 3: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000), &(0x7f0000000040)=0x4) 13:23:50 executing program 4: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() r0 = fork() r1 = getpgid(r0) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xd65a, 0x1, 0x3, 0x173, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x7, &(0x7f0000000100)=""/36) getpgid(r0) r3 = syz_usbip_server_init(0x1) write$usbip_server(r3, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x2}, {0x5}}, 0x30) [ 2709.789914][T12675] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 2709.796525][T12675] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 2709.851699][T12675] vhci_hcd vhci_hcd.0: Device attached [ 2709.868487][T12678] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 2709.875059][T12678] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) 13:23:51 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) [ 2709.904625][T12688] vhci_hcd: connection closed [ 2709.904898][T10189] vhci_hcd: stop threads [ 2709.939387][T12678] vhci_hcd vhci_hcd.0: Device attached 13:23:51 executing program 2: socketpair(0x0, 0x3, 0x0, &(0x7f00000000c0)) [ 2709.954652][T10189] vhci_hcd: release socket [ 2709.985848][T10189] vhci_hcd: disconnect device [ 2709.996742][T12692] vhci_hcd: connection closed [ 2710.057150][T10189] vhci_hcd: stop threads 13:23:51 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, &(0x7f0000000200)) 13:23:51 executing program 3: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_dccp_int(r0, 0x21, 0x6, &(0x7f0000000140)=0x52, 0x4) r1 = syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_HANDLE(r2, 0x113, 0x3, &(0x7f0000000180)=0x30, 0x4) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000002, 0x4052, r1, 0x10000000) fork() r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0) sendmsg$TIPC_CMD_RESET_LINK_STATS(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="f3000000", @ANYRES16=0x0, @ANYBLOB="000226bd7000ffdbdf2501000000000000000c410000000c001473797a3000000000"], 0x28}, 0x1, 0x0, 0x0, 0x40080}, 0x4000) [ 2710.124466][T10189] vhci_hcd: release socket [ 2710.155371][T10189] vhci_hcd: disconnect device 13:23:51 executing program 2: socketpair(0x2, 0x0, 0x0, &(0x7f00000000c0)) 13:23:51 executing program 5: socketpair(0x0, 0x3, 0x0, &(0x7f00000000c0)) 13:23:51 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) [ 2710.386319][T12696] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 2710.392891][T12696] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) 13:23:51 executing program 3: fork() r0 = getpgid(0x0) wait4(r0, 0x0, 0x4, &(0x7f0000000000)) [ 2710.479965][T12696] vhci_hcd vhci_hcd.0: Device attached 13:23:51 executing program 5: ioctl$SIOCGETLINKNAME(0xffffffffffffffff, 0x89e0, &(0x7f0000000000)={0x3, 0x3}) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) [ 2710.536586][T12722] vhci_hcd: connection closed [ 2710.537309][T10685] vhci_hcd: stop threads [ 2710.550341][T10685] vhci_hcd: release socket 13:23:51 executing program 2: socketpair(0x2, 0x0, 0x0, &(0x7f00000000c0)) [ 2710.585692][T10685] vhci_hcd: disconnect device 13:23:51 executing program 4: fork() wait4(0x0, 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x2226, &(0x7f0000000140), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), 0x0) 13:23:51 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:51 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:52 executing program 3: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r0, 0x1}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4008001}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r0, 0x200, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3ff}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x24060091) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_VLAN(r4, &(0x7f0000000f40)={&(0x7f0000000e80), 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x14, r3, 0x1}, 0x14}}, 0x0) ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000000200)={0x0, @xdp={0x2c, 0xc, 0x0, 0x33}, @nfc={0x27, 0x0, 0x0, 0x5}, @vsock={0x28, 0x0, 0x2710, @my=0x1}, 0x3, 0x0, 0x0, 0x0, 0x6, &(0x7f00000001c0)='team_slave_1\x00', 0xbe1, 0x1ff}) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r3, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x7ff}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x81}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x44}}, 0x800) 13:23:52 executing program 2: socketpair(0x2, 0x0, 0x0, &(0x7f00000000c0)) 13:23:52 executing program 3: fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) r0 = fork() getpgid(r0) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x6, 0x0, 0x100, 0x101, 0x0, 0x0, 0x100, 0x8000, 0x5}, 0x0) 13:23:52 executing program 1: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), 0x0) 13:23:52 executing program 2: socketpair(0x2, 0x3, 0x0, 0x0) 13:23:52 executing program 0: r0 = fork() ptrace$getregs(0xc, r0, 0x330c, &(0x7f0000000000)) 13:23:52 executing program 2: socketpair(0x2, 0x3, 0x0, 0x0) 13:23:52 executing program 5: ioctl$SIOCGETLINKNAME(0xffffffffffffffff, 0x89e0, &(0x7f0000000000)={0x3, 0x3}) fork() wait4(0xffffffffffffffff, 0x0, 0x8, 0x0) 13:23:52 executing program 1: fork() wait4(0x0, 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x2226, &(0x7f0000000140), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000200)) 13:23:52 executing program 4: r0 = fork() arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) ptrace$getsig(0x4202, r0, 0x5, &(0x7f0000000000)) 13:23:52 executing program 2: socketpair(0x2, 0x3, 0x0, 0x0) 13:23:52 executing program 0: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) fork() sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0) 13:23:53 executing program 4: r0 = fork() arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) ptrace$getsig(0x4202, r0, 0x5, &(0x7f0000000000)) 13:23:53 executing program 2: r0 = fork() r1 = getpgid(r0) getpgid(r1) r2 = fork() getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4) getpgid(r2) wait4(r0, 0x0, 0xffffff, 0x0) 13:23:53 executing program 3: fork() wait4(0x0, 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x2226, &(0x7f0000000140), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:53 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) [ 2712.211034][ T9270] usb 1-1: new high-speed USB device number 10 using dummy_hcd 13:23:53 executing program 2: fork() wait4(0x0, 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x2226, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x45}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:53 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:23:53 executing program 1: r0 = fork() r1 = getpgid(r0) r2 = getpgid(r1) r3 = getpgid(r1) capset(&(0x7f0000000100)={0x20080522, r3}, &(0x7f0000000140)={0x1000, 0x6, 0x7, 0x4, 0x3, 0xffff}) wait4(r2, 0x0, 0x20000000, &(0x7f0000000080)) ptrace$getsig(0x4202, r1, 0x38000002, &(0x7f0000000000)) 13:23:53 executing program 5: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000000), 0x4, &(0x7f00000000c0)) 13:23:53 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) [ 2712.771677][ T9270] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2712.782056][ T9270] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2712.813180][ T9270] usb 1-1: Product: syz [ 2712.837439][ T9270] usb 1-1: Manufacturer: syz 13:23:54 executing program 1: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) r2 = fork() getpgid(r2) wait4(r2, &(0x7f0000000000), 0x4, &(0x7f00000000c0)) [ 2712.865227][ T9270] usb 1-1: SerialNumber: syz [ 2712.971599][ T9270] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 13:23:54 executing program 4: wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) [ 2713.202199][ T3261] ieee802154 phy0 wpan0: encryption failed: -22 [ 2713.208541][ T3261] ieee802154 phy1 wpan1: encryption failed: -22 [ 2713.670857][ T9270] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 13:23:55 executing program 0: fork() wait4(0x0, 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x2226, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:55 executing program 3: wait4(0x0, 0x0, 0x4, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) r2 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r2) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE(r0, 0xc01064c2, &(0x7f0000000040)={r1, 0x1, r2}) 13:23:55 executing program 2: r0 = fork() r1 = getpgid(r0) r2 = getpgid(r1) wait4(r2, &(0x7f0000000000), 0x20000000, &(0x7f0000000040)) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000280)={'tunl0\x00', &(0x7f00000003c0)=ANY=[]}) fork() r4 = fork() getpgid(r4) r5 = fork() getpgid(r5) wait4(r5, 0x0, 0x4, 0x0) 13:23:55 executing program 4: wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:23:55 executing program 5: r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000100)={0x0, 0xb9c, 0x1, 0x8000}) ioctl$BLKROSET(r0, 0x125d, &(0x7f00000003c0)=0x8) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000300)={&(0x7f0000000280)=[0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f0000000380)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, r2, 0x0], &(0x7f0000000340)=[r3, 0x0, 0x0, 0x0, 0x0, 0x0], 0x5}) wait4(0x0, 0x0, 0x4, 0x0) r4 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4) accept4$phonet_pipe(r4, &(0x7f0000000400), &(0x7f0000000440)=0x10, 0x0) fork() r5 = fork() getpgid(r5) waitid(0x0, 0x0, &(0x7f0000000180), 0x2, &(0x7f0000000200)) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000480)={0xffffffffffffffff, 0x4, 0x1000, r1}) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000140)={0x0, 0x20}) 13:23:55 executing program 1: ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, &(0x7f0000000140)=0x2) fork() r0 = getpgid(0x0) waitid(0x2, r0, &(0x7f0000000040), 0x8, &(0x7f00000000c0)) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x10000020, 0x7000, 0x20, 0x2, 0xb5, 0x7895, 0xc8, 0x80000000}, 0x0) [ 2713.900074][T12728] usb 1-1: USB disconnect, device number 10 13:23:55 executing program 3 (fault-call:0 fault-nth:0): socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:55 executing program 4: wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) [ 2714.339571][T12876] FAULT_INJECTION: forcing a failure. [ 2714.339571][T12876] name failslab, interval 1, probability 0, space 0, times 0 [ 2714.372849][T12876] CPU: 0 PID: 12876 Comm: syz-executor.3 Not tainted 5.13.0-syzkaller #0 [ 2714.381310][T12876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2714.391383][T12876] Call Trace: [ 2714.394684][T12876] dump_stack_lvl+0xcd/0x134 [ 2714.399311][T12876] should_fail.cold+0x5/0xa [ 2714.403844][T12876] ? __anon_vma_prepare+0x62/0x560 [ 2714.409039][T12876] should_failslab+0x5/0x10 [ 2714.413566][T12876] kmem_cache_alloc+0x5e/0x4a0 [ 2714.418355][T12876] __anon_vma_prepare+0x62/0x560 [ 2714.423420][T12876] do_huge_pmd_anonymous_page+0xd8a/0x2590 [ 2714.429252][T12876] ? mark_lock+0xef/0x17b0 [ 2714.433698][T12876] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2714.439708][T12876] __handle_mm_fault+0x2ffb/0x5320 [ 2714.444861][T12876] ? vm_iomap_memory+0x190/0x190 [ 2714.449854][T12876] handle_mm_fault+0x1c8/0x7f0 [ 2714.454648][T12876] do_user_addr_fault+0x483/0x1210 [ 2714.459800][T12876] exc_page_fault+0x9e/0x180 [ 2714.464510][T12876] asm_exc_page_fault+0x1e/0x30 [ 2714.469384][T12876] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 2714.475128][T12876] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 2714.494769][T12876] RSP: 0018:ffffc90025a67e20 EFLAGS: 00010297 [ 2714.500862][T12876] RAX: 0000000000000004 RBX: 00007fffffffeffd RCX: 00000000200000c0 [ 2714.508971][T12876] RDX: 0000000000040000 RSI: ffffffff870980cb RDI: 0000000000000000 [ 2714.516969][T12876] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 2714.524962][T12876] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000004 [ 2714.532962][T12876] R13: 0000000000000005 R14: 0000000000000000 R15: dffffc0000000000 [ 2714.540966][T12876] ? __sys_socketpair+0xfb/0x570 [ 2714.545934][T12876] __sys_socketpair+0x107/0x570 [ 2714.550803][T12876] ? __ia32_sys_socket+0xb0/0xb0 [ 2714.555771][T12876] __ia32_sys_socketpair+0x92/0xf0 [ 2714.560901][T12876] ? lockdep_hardirqs_on+0x79/0x100 [ 2714.566122][T12876] __do_fast_syscall_32+0x65/0xf0 [ 2714.571163][T12876] do_fast_syscall_32+0x2f/0x70 [ 2714.576031][T12876] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2714.582383][T12876] RIP: 0023:0xf7f14549 [ 2714.586461][T12876] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2714.606093][T12876] RSP: 002b:00000000f550e5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000168 [ 2714.614532][T12876] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000003 [ 2714.622519][T12876] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000000 [ 2714.630513][T12876] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 13:23:55 executing program 2 (fault-call:3 fault-nth:0): syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:55 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 2714.638847][T12876] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2714.646832][T12876] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2714.721019][ T9270] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 2714.732295][ T9270] ath9k_htc: Failed to initialize the device [ 2714.743199][T12884] FAULT_INJECTION: forcing a failure. [ 2714.743199][T12884] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2714.756533][T12728] usb 1-1: ath9k_htc: USB layer deinitialized 13:23:56 executing program 3 (fault-call:0 fault-nth:1): socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:56 executing program 5 (fault-call:3 fault-nth:0): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2714.904714][T12884] CPU: 0 PID: 12884 Comm: syz-executor.2 Not tainted 5.13.0-syzkaller #0 [ 2714.913188][T12884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2714.923354][T12884] Call Trace: [ 2714.926650][T12884] dump_stack_lvl+0xcd/0x134 [ 2714.931276][T12884] should_fail.cold+0x5/0xa [ 2714.935811][T12884] _copy_from_user+0x2c/0x180 [ 2714.940520][T12884] io_uring_setup+0x91/0x2b50 [ 2714.945307][T12884] ? io_drain_req+0xbf0/0xbf0 [ 2714.950011][T12884] ? lock_downgrade+0x6e0/0x6e0 [ 2714.954883][T12884] ? lock_downgrade+0x6e0/0x6e0 [ 2714.959778][T12884] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2714.966411][T12884] __do_fast_syscall_32+0x65/0xf0 [ 2714.971462][T12884] do_fast_syscall_32+0x2f/0x70 [ 2714.976381][T12884] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2714.982735][T12884] RIP: 0023:0xf7fe4549 [ 2714.986839][T12884] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2714.993156][T12893] FAULT_INJECTION: forcing a failure. [ 2714.993156][T12893] name failslab, interval 1, probability 0, space 0, times 0 [ 2715.006468][T12884] RSP: 002b:00000000f55bd5ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2715.006509][T12884] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2715.006528][T12884] RDX: 0000000046ad1c00 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2715.006545][T12884] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2715.006561][T12884] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2715.006575][T12884] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2715.067383][T12893] CPU: 1 PID: 12893 Comm: syz-executor.3 Not tainted 5.13.0-syzkaller #0 [ 2715.075830][T12893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2715.085897][T12893] Call Trace: [ 2715.089167][T12893] dump_stack_lvl+0xcd/0x134 [ 2715.093766][T12893] should_fail.cold+0x5/0xa [ 2715.098263][T12893] ? __anon_vma_prepare+0x2d8/0x560 [ 2715.103452][T12893] should_failslab+0x5/0x10 [ 2715.107946][T12893] kmem_cache_alloc+0x5e/0x4a0 [ 2715.112706][T12893] __anon_vma_prepare+0x2d8/0x560 [ 2715.117725][T12893] do_huge_pmd_anonymous_page+0xd8a/0x2590 [ 2715.123525][T12893] ? mark_lock+0xef/0x17b0 [ 2715.128045][T12893] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2715.134366][T12893] __handle_mm_fault+0x2ffb/0x5320 [ 2715.139476][T12893] ? vm_iomap_memory+0x190/0x190 [ 2715.144424][T12893] handle_mm_fault+0x1c8/0x7f0 [ 2715.149190][T12893] do_user_addr_fault+0x483/0x1210 [ 2715.154301][T12893] exc_page_fault+0x9e/0x180 [ 2715.158887][T12893] asm_exc_page_fault+0x1e/0x30 [ 2715.163725][T12893] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 2715.169439][T12893] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 2715.189067][T12893] RSP: 0018:ffffc900258b7e20 EFLAGS: 00010297 [ 2715.195123][T12893] RAX: 0000000000000004 RBX: 00007fffffffeffd RCX: 00000000200000c0 [ 2715.203084][T12893] RDX: 0000000000040000 RSI: ffffffff870980cb RDI: 0000000000000000 [ 2715.211094][T12893] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 2715.219059][T12893] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000004 [ 2715.227019][T12893] R13: 0000000000000005 R14: 0000000000000000 R15: dffffc0000000000 [ 2715.235336][T12893] ? __sys_socketpair+0xfb/0x570 [ 2715.240269][T12893] __sys_socketpair+0x107/0x570 [ 2715.245114][T12893] ? __ia32_sys_socket+0xb0/0xb0 [ 2715.250060][T12893] __ia32_sys_socketpair+0x92/0xf0 [ 2715.255181][T12893] ? lockdep_hardirqs_on+0x79/0x100 [ 2715.260376][T12893] __do_fast_syscall_32+0x65/0xf0 [ 2715.265397][T12893] do_fast_syscall_32+0x2f/0x70 [ 2715.270241][T12893] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2715.276561][T12893] RIP: 0023:0xf7f14549 [ 2715.280634][T12893] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2715.300235][T12893] RSP: 002b:00000000f550e5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000168 [ 2715.308638][T12893] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000003 [ 2715.316600][T12893] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000000 [ 2715.324561][T12893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2715.332522][T12893] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2715.340481][T12893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:23:56 executing program 0 (fault-call:3 fault-nth:0): syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:56 executing program 1: ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, &(0x7f0000000140)=0x2) fork() r0 = getpgid(0x0) waitid(0x2, r0, &(0x7f0000000040), 0x8, &(0x7f00000000c0)) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x10000020, 0x7000, 0x20, 0x2, 0xb5, 0x7895, 0xc8, 0x80000000}, 0x0) [ 2715.408149][T12895] FAULT_INJECTION: forcing a failure. [ 2715.408149][T12895] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2715.440821][T12895] CPU: 0 PID: 12895 Comm: syz-executor.5 Not tainted 5.13.0-syzkaller #0 [ 2715.449284][T12895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2715.459359][T12895] Call Trace: [ 2715.462655][T12895] dump_stack_lvl+0xcd/0x134 [ 2715.467280][T12895] should_fail.cold+0x5/0xa [ 2715.471821][T12895] _copy_from_user+0x2c/0x180 [ 2715.476526][T12895] io_uring_setup+0x91/0x2b50 [ 2715.481243][T12895] ? io_drain_req+0xbf0/0xbf0 [ 2715.485944][T12895] ? lock_downgrade+0x6e0/0x6e0 [ 2715.490816][T12895] ? lock_downgrade+0x6e0/0x6e0 [ 2715.495703][T12895] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2715.502342][T12895] __do_fast_syscall_32+0x65/0xf0 [ 2715.507416][T12895] do_fast_syscall_32+0x2f/0x70 [ 2715.512295][T12895] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2715.518644][T12895] RIP: 0023:0xf7f9e549 [ 2715.522721][T12895] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2715.542460][T12895] RSP: 002b:00000000f55985ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2715.550899][T12895] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 13:23:56 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 2715.558893][T12895] RDX: 00000000ec97d700 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2715.566887][T12895] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2715.574881][T12895] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2715.582881][T12895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:23:56 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:56 executing program 5 (fault-call:3 fault-nth:1): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:57 executing program 3 (fault-call:0 fault-nth:2): socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) [ 2715.781654][T12902] FAULT_INJECTION: forcing a failure. [ 2715.781654][T12902] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2715.830725][T12902] CPU: 0 PID: 12902 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2715.839194][T12902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2715.849272][T12902] Call Trace: [ 2715.852570][T12902] dump_stack_lvl+0xcd/0x134 [ 2715.857195][T12902] should_fail.cold+0x5/0xa [ 2715.861734][T12902] _copy_from_user+0x2c/0x180 [ 2715.866454][T12902] io_uring_setup+0x91/0x2b50 [ 2715.871301][T12902] ? io_drain_req+0xbf0/0xbf0 [ 2715.876003][T12902] ? lock_downgrade+0x6e0/0x6e0 [ 2715.880875][T12902] ? lock_downgrade+0x6e0/0x6e0 [ 2715.885770][T12902] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2715.892394][T12902] __do_fast_syscall_32+0x65/0xf0 [ 2715.897458][T12902] do_fast_syscall_32+0x2f/0x70 [ 2715.902331][T12902] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2715.908695][T12902] RIP: 0023:0xf7f78549 [ 2715.912778][T12902] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2715.932412][T12902] RSP: 002b:00000000f55725ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2715.940851][T12902] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2715.948869][T12902] RDX: 00000000daf78200 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2715.956882][T12902] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2715.964884][T12902] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2715.972885][T12902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2716.077107][T12915] FAULT_INJECTION: forcing a failure. [ 2716.077107][T12915] name failslab, interval 1, probability 0, space 0, times 0 [ 2716.094259][T12915] CPU: 0 PID: 12915 Comm: syz-executor.5 Not tainted 5.13.0-syzkaller #0 [ 2716.102724][T12915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2716.112803][T12915] Call Trace: [ 2716.116102][T12915] dump_stack_lvl+0xcd/0x134 [ 2716.120811][T12915] should_fail.cold+0x5/0xa [ 2716.125344][T12915] ? io_uring_setup+0x27d/0x2b50 [ 2716.130319][T12915] should_failslab+0x5/0x10 [ 2716.134856][T12915] kmem_cache_alloc_trace+0x55/0x3c0 [ 2716.140179][T12915] io_uring_setup+0x27d/0x2b50 [ 2716.144989][T12915] ? io_drain_req+0xbf0/0xbf0 [ 2716.149710][T12919] FAULT_INJECTION: forcing a failure. [ 2716.149710][T12919] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2716.149719][T12915] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2716.169516][T12915] __do_fast_syscall_32+0x65/0xf0 [ 2716.174567][T12915] do_fast_syscall_32+0x2f/0x70 [ 2716.179464][T12915] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2716.185812][T12915] RIP: 0023:0xf7f9e549 [ 2716.189901][T12915] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2716.209524][T12915] RSP: 002b:00000000f55985ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2716.217956][T12915] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2716.225946][T12915] RDX: 00000000ec97d700 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2716.233927][T12915] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2716.242037][T12915] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2716.250018][T12915] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2716.260317][T12919] CPU: 1 PID: 12919 Comm: syz-executor.3 Not tainted 5.13.0-syzkaller #0 [ 2716.268781][T12919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2716.278852][T12919] Call Trace: [ 2716.282145][T12919] dump_stack_lvl+0xcd/0x134 [ 2716.286768][T12919] should_fail.cold+0x5/0xa [ 2716.291309][T12919] prepare_alloc_pages+0x17b/0x580 [ 2716.296454][T12919] ? lock_downgrade+0x6e0/0x6e0 [ 2716.301329][T12919] __alloc_pages+0x12f/0x500 [ 2716.305955][T12919] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2716.312765][T12919] ? rwlock_bug.part.0+0x90/0x90 [ 2716.317745][T12919] ? rcu_read_lock_sched_held+0x3a/0x70 [ 2716.323315][T12919] ? anon_vma_interval_tree_insert+0x2d4/0x4c0 [ 2716.329511][T12919] alloc_pages_vma+0x5ab/0x770 [ 2716.334304][T12919] do_huge_pmd_anonymous_page+0x42b/0x2590 [ 2716.340138][T12919] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2716.346138][T12919] __handle_mm_fault+0x2ffb/0x5320 [ 2716.351288][T12919] ? vm_iomap_memory+0x190/0x190 [ 2716.356273][T12919] handle_mm_fault+0x1c8/0x7f0 [ 2716.361066][T12919] do_user_addr_fault+0x483/0x1210 [ 2716.366198][T12919] exc_page_fault+0x9e/0x180 [ 2716.370801][T12919] asm_exc_page_fault+0x1e/0x30 [ 2716.375658][T12919] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 2716.381380][T12919] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 2716.400980][T12919] RSP: 0018:ffffc90025bf7e20 EFLAGS: 00010297 [ 2716.407070][T12919] RAX: 0000000000000004 RBX: 00007fffffffeffd RCX: 00000000200000c0 [ 2716.415037][T12919] RDX: 0000000000040000 RSI: ffffffff870980cb RDI: 0000000000000000 [ 2716.422993][T12919] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 2716.430947][T12919] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000004 [ 2716.438906][T12919] R13: 0000000000000005 R14: 0000000000000000 R15: dffffc0000000000 [ 2716.446876][T12919] ? __sys_socketpair+0xfb/0x570 [ 2716.451812][T12919] __sys_socketpair+0x107/0x570 [ 2716.456658][T12919] ? __ia32_sys_socket+0xb0/0xb0 [ 2716.461595][T12919] __ia32_sys_socketpair+0x92/0xf0 [ 2716.466715][T12919] ? lockdep_hardirqs_on+0x79/0x100 [ 2716.471912][T12919] __do_fast_syscall_32+0x65/0xf0 [ 2716.476950][T12919] do_fast_syscall_32+0x2f/0x70 [ 2716.481795][T12919] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2716.488114][T12919] RIP: 0023:0xf7f14549 [ 2716.492173][T12919] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2716.511771][T12919] RSP: 002b:00000000f550e5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000168 [ 2716.520171][T12919] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000003 13:23:57 executing program 5 (fault-call:3 fault-nth:2): syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:57 executing program 0 (fault-call:3 fault-nth:1): syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2716.528132][T12919] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000000 [ 2716.536089][T12919] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2716.544050][T12919] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2716.552012][T12919] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:23:57 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) 13:23:57 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:57 executing program 3 (fault-call:0 fault-nth:3): socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:23:57 executing program 1 (fault-call:3 fault-nth:0): openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2716.829597][T12925] FAULT_INJECTION: forcing a failure. [ 2716.829597][T12925] name failslab, interval 1, probability 0, space 0, times 0 [ 2716.846554][T12924] FAULT_INJECTION: forcing a failure. [ 2716.846554][T12924] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2716.850043][T12934] FAULT_INJECTION: forcing a failure. [ 2716.850043][T12934] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2716.885579][T12925] CPU: 1 PID: 12925 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0 [ 2716.894053][T12925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2716.904108][T12925] Call Trace: [ 2716.907381][T12925] dump_stack_lvl+0xcd/0x134 [ 2716.911975][T12925] should_fail.cold+0x5/0xa [ 2716.916480][T12925] ? io_uring_setup+0x27d/0x2b50 [ 2716.921417][T12925] should_failslab+0x5/0x10 [ 2716.925912][T12925] kmem_cache_alloc_trace+0x55/0x3c0 [ 2716.931195][T12925] io_uring_setup+0x27d/0x2b50 [ 2716.936390][T12925] ? io_drain_req+0xbf0/0xbf0 [ 2716.941075][T12925] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2716.947662][T12925] __do_fast_syscall_32+0x65/0xf0 [ 2716.952682][T12925] do_fast_syscall_32+0x2f/0x70 [ 2716.957539][T12925] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2716.963865][T12925] RIP: 0023:0xf7f78549 [ 2716.967940][T12925] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2716.987538][T12925] RSP: 002b:00000000f55725ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2716.995948][T12925] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2717.003918][T12925] RDX: 00000000daf78200 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2717.011898][T12925] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2717.020428][T12925] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2717.028387][T12925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2717.062416][T12924] CPU: 1 PID: 12924 Comm: syz-executor.5 Not tainted 5.13.0-syzkaller #0 [ 2717.070886][T12924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2717.080960][T12924] Call Trace: [ 2717.084244][T12924] dump_stack_lvl+0xcd/0x134 [ 2717.088842][T12924] should_fail.cold+0x5/0xa [ 2717.093345][T12924] prepare_alloc_pages+0x17b/0x580 [ 2717.098484][T12924] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 2717.104487][T12924] __alloc_pages+0x12f/0x500 [ 2717.109105][T12924] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2717.115884][T12924] ? fs_reclaim_release+0x9c/0xf0 [ 2717.120920][T12924] alloc_pages+0x18c/0x2a0 [ 2717.125334][T12924] kmalloc_order+0x34/0xf0 [ 2717.129749][T12924] kmalloc_order_trace+0x14/0x120 [ 2717.135189][T12924] io_uring_setup+0x37e/0x2b50 [ 2717.139970][T12924] ? io_drain_req+0xbf0/0xbf0 [ 2717.144656][T12924] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2717.151436][T12924] __do_fast_syscall_32+0x65/0xf0 [ 2717.156452][T12924] do_fast_syscall_32+0x2f/0x70 [ 2717.161295][T12924] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2717.167638][T12924] RIP: 0023:0xf7f9e549 [ 2717.171697][T12924] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2717.191299][T12924] RSP: 002b:00000000f55985ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2717.199719][T12924] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2717.207702][T12924] RDX: 00000000ec97d700 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2717.215672][T12924] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2717.223633][T12924] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2717.231608][T12924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2717.260428][T12934] CPU: 0 PID: 12934 Comm: syz-executor.3 Not tainted 5.13.0-syzkaller #0 [ 2717.268915][T12934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2717.278989][T12934] Call Trace: [ 2717.282288][T12934] dump_stack_lvl+0xcd/0x134 [ 2717.286926][T12934] should_fail.cold+0x5/0xa [ 2717.291521][T12934] prepare_alloc_pages+0x17b/0x580 [ 2717.296680][T12934] ? rcu_read_lock_sched_held+0x3a/0x70 [ 2717.302271][T12934] __alloc_pages+0x12f/0x500 [ 2717.306900][T12934] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 2717.313715][T12934] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 2717.319995][T12934] alloc_pages+0x18c/0x2a0 [ 2717.324448][T12934] pte_alloc_one+0x16/0x230 [ 2717.328987][T12934] __pte_alloc+0x1f/0x2d0 [ 2717.333691][T12934] __handle_mm_fault+0x43d5/0x5320 [ 2717.338833][T12934] ? vm_iomap_memory+0x190/0x190 [ 2717.343817][T12934] handle_mm_fault+0x1c8/0x7f0 [ 2717.348635][T12934] do_user_addr_fault+0x483/0x1210 [ 2717.353780][T12934] exc_page_fault+0x9e/0x180 [ 2717.358405][T12934] asm_exc_page_fault+0x1e/0x30 [ 2717.359639][T12942] FAULT_INJECTION: forcing a failure. [ 2717.359639][T12942] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2717.363272][T12934] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 2717.363309][T12934] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 2717.363333][T12934] RSP: 0018:ffffc90025c77e20 EFLAGS: 00010297 [ 2717.363356][T12934] RAX: 0000000000000004 RBX: 00007fffffffeffd RCX: 00000000200000c0 [ 2717.415696][T12934] RDX: 0000000000040000 RSI: ffffffff870980cb RDI: 0000000000000000 [ 2717.423670][T12934] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 2717.431642][T12934] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000004 [ 2717.439623][T12934] R13: 0000000000000005 R14: 0000000000000000 R15: dffffc0000000000 [ 2717.447622][T12934] ? __sys_socketpair+0xfb/0x570 [ 2717.452606][T12934] __sys_socketpair+0x107/0x570 [ 2717.457488][T12934] ? __ia32_sys_socket+0xb0/0xb0 [ 2717.462455][T12934] __ia32_sys_socketpair+0x92/0xf0 [ 2717.467589][T12934] ? lockdep_hardirqs_on+0x79/0x100 [ 2717.472798][T12934] __do_fast_syscall_32+0x65/0xf0 [ 2717.477835][T12934] do_fast_syscall_32+0x2f/0x70 [ 2717.482702][T12934] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2717.489034][T12934] RIP: 0023:0xf7f14549 [ 2717.493097][T12934] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2717.512712][T12934] RSP: 002b:00000000f550e5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000168 [ 2717.521160][T12934] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000003 [ 2717.529152][T12934] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000000 [ 2717.537156][T12934] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2717.545126][T12934] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2717.553093][T12934] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2717.568779][T12942] CPU: 1 PID: 12942 Comm: syz-executor.1 Not tainted 5.13.0-syzkaller #0 [ 2717.577333][T12942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2717.587397][T12942] Call Trace: [ 2717.590691][T12942] dump_stack_lvl+0xcd/0x134 [ 2717.595323][T12942] should_fail.cold+0x5/0xa [ 2717.599850][T12942] _copy_from_user+0x2c/0x180 [ 2717.604550][T12942] io_uring_setup+0x91/0x2b50 [ 2717.609252][T12942] ? io_drain_req+0xbf0/0xbf0 [ 2717.613965][T12942] ? lock_downgrade+0x6e0/0x6e0 [ 2717.618833][T12942] ? lock_downgrade+0x6e0/0x6e0 [ 2717.623728][T12942] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2717.630362][T12942] __do_fast_syscall_32+0x65/0xf0 [ 2717.635407][T12942] do_fast_syscall_32+0x2f/0x70 [ 2717.640279][T12942] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2717.646733][T12942] RIP: 0023:0xf7f47549 13:23:58 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2717.650822][T12942] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2717.670454][T12942] RSP: 002b:00000000f55415ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9 [ 2717.678887][T12942] RAX: ffffffffffffffda RBX: 0000000000006ba5 RCX: 0000000020000140 [ 2717.686880][T12942] RDX: 000000009e761d00 RSI: 0000000000000000 RDI: 0000000020ffa000 [ 2717.694967][T12942] RBP: 0000000020000200 R08: 0000000000000000 R09: 0000000000000000 [ 2717.702949][T12942] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2717.710913][T12942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:23:58 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 4 (fault-call:1 fault-nth:0): fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:23:59 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:23:59 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2718.434556][T12975] FAULT_INJECTION: forcing a failure. [ 2718.434556][T12975] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2718.526732][T12975] CPU: 1 PID: 12975 Comm: syz-executor.4 Not tainted 5.13.0-syzkaller #0 [ 2718.535204][T12975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2718.545279][T12975] Call Trace: [ 2718.548578][T12975] dump_stack_lvl+0xcd/0x134 [ 2718.553206][T12975] should_fail.cold+0x5/0xa [ 2718.557747][T12975] _copy_to_user+0x2c/0x150 [ 2718.562274][T12975] simple_read_from_buffer+0xcc/0x160 [ 2718.567693][T12975] proc_fail_nth_read+0x187/0x220 [ 2718.572748][T12975] ? proc_fault_inject_read+0x220/0x220 [ 2718.578328][T12975] ? security_file_permission+0x248/0x560 [ 2718.584083][T12975] ? proc_fault_inject_read+0x220/0x220 [ 2718.589638][T12975] vfs_read+0x1b5/0x570 [ 2718.593793][T12975] ksys_read+0x12d/0x250 [ 2718.598027][T12975] ? vfs_write+0xa30/0xa30 [ 2718.602436][T12975] ? syscall_enter_from_user_mode_prepare+0x17/0x40 [ 2718.609042][T12975] __do_fast_syscall_32+0x65/0xf0 [ 2718.614061][T12975] do_fast_syscall_32+0x2f/0x70 [ 2718.618904][T12975] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2718.625222][T12975] RIP: 0023:0xf7f9c549 [ 2718.629280][T12975] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2718.648895][T12975] RSP: 002b:00000000f5575600 EFLAGS: 00000282 ORIG_RAX: 0000000000000003 [ 2718.657307][T12975] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5575690 [ 2718.665272][T12975] RDX: 000000000000000f RSI: 000000000816c000 RDI: 0000000000000000 [ 2718.673244][T12975] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2718.681215][T12975] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2718.689174][T12975] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:23:59 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:24:00 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:00 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x7, 0x0) 13:24:00 executing program 3: socketpair(0x4, 0x3, 0x0, &(0x7f00000000c0)) 13:24:00 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:00 executing program 4: fork() r0 = fork() r1 = fork() r2 = getpgid(r1) capset(&(0x7f00000001c0)={0x20071026, r1}, &(0x7f0000000200)={0x1ff, 0xfffffffa, 0x7, 0xfffffffb, 0x7, 0x2}) wait4(r2, &(0x7f0000000240), 0x2, &(0x7f0000000280)) waitid(0x2, r0, &(0x7f0000000000), 0x8, &(0x7f0000000080)) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:01 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 3: socketpair(0x7, 0x3, 0x0, &(0x7f00000000c0)) 13:24:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 4: ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000000)={0x4}) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0xffffffffffffffff, 0xfffffffe, &(0x7f0000000040)=""/165) 13:24:01 executing program 3: socketpair(0xa, 0x3, 0x0, &(0x7f00000000c0)) 13:24:01 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 4: fork() r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000000), &(0x7f0000000040)=0x4) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:01 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 3: socketpair(0x2c, 0x3, 0x0, &(0x7f00000000c0)) 13:24:01 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:01 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 3: socketpair(0x2, 0x4, 0x0, &(0x7f00000000c0)) 13:24:02 executing program 4: r0 = fork() getpgid(r0) r1 = fork() wait4(r1, 0x0, 0x40000000, 0x0) r2 = getpgid(r1) ptrace$getregs(0xc, r2, 0x0, &(0x7f0000000000)=""/81) 13:24:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 3: socketpair(0x2, 0xa, 0x0, &(0x7f00000000c0)) 13:24:02 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:02 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x12}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2721.736389][T13201] syz-executor.3 uses obsolete (PF_INET,SOCK_PACKET) 13:24:03 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:24:03 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) waitid(0x0, r0, 0x0, 0x4, 0x0) 13:24:03 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x18}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 3: socketpair(0x2, 0x3, 0x2, &(0x7f00000000c0)) 13:24:03 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:03 executing program 3: socketpair(0x2, 0x3, 0x3, &(0x7f00000000c0)) 13:24:04 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x12}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 3: socketpair(0x2, 0x3, 0x4, &(0x7f00000000c0)) 13:24:04 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x18}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = fork() ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000140)={0x9, 0x2, 0x4, 0x20, 0xffffffff, {0x0, 0x2710}, {0x5, 0xc, 0x0, 0xc, 0x0, 0xff, "5507faab"}, 0x0, 0x4, @offset=0x64d, 0x6}) capset(&(0x7f00000000c0)={0x20071026, r0}, &(0x7f0000000100)={0x1, 0x100, 0x9, 0x2, 0x0, 0x214ec672}) wait4(r0, &(0x7f0000000000), 0x8, &(0x7f0000000040)) 13:24:04 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:04 executing program 3: socketpair(0x2, 0x3, 0x5, &(0x7f00000000c0)) 13:24:04 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x12}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 3: socketpair(0x2, 0x3, 0x6, &(0x7f00000000c0)) 13:24:05 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x18}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 3: socketpair(0x2, 0x3, 0x7, &(0x7f00000000c0)) 13:24:05 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x12}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 3: socketpair(0x2, 0x3, 0xa, &(0x7f00000000c0)) 13:24:05 executing program 4: fork() r0 = fork() getpgid(r0) fork() r1 = fork() r2 = getpgid(r1) wait4(r2, 0x0, 0x8, 0x0) 13:24:05 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x24}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x24}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x18}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:05 executing program 3: socketpair(0x2, 0x3, 0x10, &(0x7f00000000c0)) 13:24:05 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 3: socketpair(0x2, 0x3, 0x48, &(0x7f00000000c0)) 13:24:06 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 3: socketpair(0x2, 0x3, 0x4c, &(0x7f00000000c0)) 13:24:06 executing program 4: fork() r0 = inotify_init1(0x80800) r1 = inotify_init() r2 = inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x800) inotify_rm_watch(r1, r2) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:06 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x24}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x30}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 3: socketpair(0x2, 0x3, 0x68, &(0x7f00000000c0)) 13:24:06 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x30}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:06 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 3: socketpair(0x2, 0x3, 0x6c, &(0x7f00000000c0)) 13:24:07 executing program 4: fork() r0 = fork() r1 = fork() getpgid(r1) r2 = fork() getpgid(r2) r3 = fork() getpgid(r3) r4 = fork() getpgid(r4) getpgid(r4) wait4(r0, 0x0, 0x40000000, 0x0) 13:24:07 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x36}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 3: socketpair(0x2, 0x3, 0x74, &(0x7f00000000c0)) 13:24:07 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x36}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 3: socketpair(0x2, 0x3, 0x7a, &(0x7f00000000c0)) 13:24:07 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x30}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:07 executing program 3: socketpair(0x2, 0x3, 0x106, &(0x7f00000000c0)) 13:24:08 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x42}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x24}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 3: socketpair(0x2, 0x3, 0x300, &(0x7f00000000c0)) 13:24:08 executing program 4: fork() r0 = fork() getpgid(r0) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x1, 0x7a, 0x5, 0x5, 0xfe, 0x800, 0x2, 0x61c1, 0xcba}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:08 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x36}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x42}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 3: socketpair(0x2, 0x3, 0x500, &(0x7f00000000c0)) 13:24:08 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x45}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:08 executing program 3: socketpair(0x2, 0x3, 0x600, &(0x7f00000000c0)) 13:24:08 executing program 4: io_uring_setup(0x3fc2, &(0x7f0000000000)={0x0, 0x687c, 0x0, 0x3, 0x122}) syz_io_uring_setup(0x307a, &(0x7f0000000080)={0x0, 0xc338, 0x10, 0x1, 0x36}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:08 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x45}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 3: socketpair(0x2, 0x3, 0x601, &(0x7f00000000c0)) 13:24:09 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x53}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x42}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x30}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0cc5604, &(0x7f0000000180)={0x3, @win={{0x6, 0xfffffffe, 0x4, 0xfffffff8}, 0x2, 0xbb, &(0x7f0000000080)={{0xffffffff, 0x7, 0x4, 0x7}, &(0x7f0000000040)={{0x2, 0x0, 0x2, 0x8}, &(0x7f0000000000)={{0x2, 0x3, 0x1, 0xfffffffe}}}}, 0xc06c, &(0x7f00000000c0)="a33ce806ab2e2b8b8427d3ed27c3f9be6a3a64c3d35ce244be3d802ee21dfe268f2cd79d0f68fcd21204a9d912baac1f442a96fb951db4d21f011f6f29882d793a57808ed8a3a390f5bf8666f029021ceb4dee19b37e2ab9a0dffb14f26712ea996bec42c2d64a967f74b2f27ee0a5f5c30dcacd9a8c1749ef27b8cd84eb35c77dd8aca405c895a700be9850484616a3cae2f705a11df68304c3e28e7a83457d501fb710cf476ae9a21819798bd3d531d88062782d4059282c7c", 0x5}}) 13:24:09 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x53}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 3: socketpair(0x2, 0x3, 0x700, &(0x7f00000000c0)) 13:24:09 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x60}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 4: sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x300, 0x70bd29, 0x25dfdbff, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4040840) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:09 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x45}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 3: socketpair(0x2, 0x3, 0xa00, &(0x7f00000000c0)) 13:24:09 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x60}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:09 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x36}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 3: socketpair(0x2, 0x3, 0x1f00, &(0x7f00000000c0)) 13:24:10 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x9c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 4: r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) r1 = accept4$phonet_pipe(r0, &(0x7f0000000040), &(0x7f00000002c0)=0x10, 0x40000) r2 = accept4$phonet_pipe(r1, &(0x7f0000000280), &(0x7f0000000240)=0x10, 0x0) getsockopt$PNPIPE_IFINDEX(r2, 0x113, 0x2, &(0x7f0000000000), &(0x7f0000000200)=0x22) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r3 = fork() waitid(0x1, r3, 0x0, 0x20000000, &(0x7f0000000180)) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000080)="8d3c33cbe3b614fb7aa2d3ba0c9c153b0be7366beada9306ac2dbc62c159c462d4aa0139ab97d9f8aa3d731cdcf0953ad8e5c9e3e090acce6ecfe5ec7a5c3976e6890a0b1f947198a442bc3f8e30f4587e9c6a68cb0a50cd3a453c6085cd78a09e67d0a79684fdb886ec58a986addc6b7cb8003f77e9bac28e6955405d440f48bfdbe1a25bcf7baae93fc5dbe0fc9ef47294ed6d42cc017d27ad6182636f9e225be9d20b2234cf567fd16483734a60c4ec9b684cda16f42c46b077c4e546f0bb39732d630152bb8cfda1aab901f1c4a6ebd592a6fd6f886979f5d848", 0xdc) 13:24:10 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xac}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x53}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 3: socketpair(0x2, 0x3, 0x2000, &(0x7f00000000c0)) 13:24:10 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x9e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 3: socketpair(0x2, 0x3, 0x3f00, &(0x7f00000000c0)) 13:24:10 executing program 4: socket$inet6_dccp(0xa, 0x6, 0x0) getsockname(0xffffffffffffffff, &(0x7f0000000040)=@xdp={0x2c, 0x0, 0x0}, &(0x7f00000000c0)=0x80) sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x55}, 0x40041) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x400, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x8040) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:10 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xae}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:10 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xbd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x60}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x42}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 3: socketpair(0x2, 0x3, 0x4000, &(0x7f00000000c0)) 13:24:11 executing program 4: fork() r0 = fork() r1 = getpgid(r0) ptrace$getregs(0xc, r1, 0x9, &(0x7f0000000000)=""/92) wait4(r1, 0x0, 0x1, 0x0) 13:24:11 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xbd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x120}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 3: socketpair(0x2, 0x3, 0x4800, &(0x7f00000000c0)) 13:24:11 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xb4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x45}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:11 executing program 4: r0 = fork() r1 = getpgid(r0) waitid(0x1, r1, &(0x7f0000000000), 0x8, 0x0) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r2 = fork() getpgid(r2) waitid(0x0, r2, &(0x7f0000000080), 0x40000000, 0x0) getgid() 13:24:11 executing program 3: socketpair(0x2, 0x3, 0x4c00, &(0x7f00000000c0)) 13:24:11 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x121}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 4: getpeername$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) wait4(0xffffffffffffffff, &(0x7f0000000080), 0x8, &(0x7f00000000c0)) waitid(0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x2, 0x0) 13:24:12 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x53}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 3: socketpair(0x2, 0x3, 0x6800, &(0x7f00000000c0)) 13:24:12 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x120}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xb6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 3: socketpair(0x2, 0x3, 0x6c00, &(0x7f00000000c0)) 13:24:12 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x16d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x121}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xbd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x60}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:12 executing program 3: socketpair(0x2, 0x3, 0x7400, &(0x7f00000000c0)) 13:24:12 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x295}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x7c59, &(0x7f0000000140)={0x0, 0xd763, 0x1, 0x2, 0x33c}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000000), &(0x7f0000000040)=0x4) 13:24:13 executing program 3: socketpair(0x2, 0x3, 0x7a00, &(0x7f00000000c0)) 13:24:13 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x16d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xbd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x120}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 3: socketpair(0x2, 0x3, 0x20000, &(0x7f00000000c0)) 13:24:13 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x4) 13:24:13 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 3: socketpair(0x2, 0x3, 0x200000, &(0x7f00000000c0)) 13:24:13 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x295}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x121}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x31d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:13 executing program 4: r0 = accept4$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, &(0x7f0000000100)=0x10, 0x100c00) r1 = accept4$tipc(r0, &(0x7f0000000000), &(0x7f0000000140)=0x10, 0x800) setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f0000000080)=0x8a0, 0x4) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:13 executing program 3: socketpair(0x2, 0x3, 0x1000000, &(0x7f00000000c0)) 13:24:14 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x31d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 3: socketpair(0x2, 0x3, 0x2000000, &(0x7f00000000c0)) 13:24:14 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x16d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x120}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x360}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 4: getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x6, &(0x7f0000000240), &(0x7f0000000280)=0x4) setsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x6, &(0x7f0000000040)=0xe9, 0x4) r0 = openat$vcs(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) getsockopt$inet6_dccp_int(r0, 0x21, 0x11, &(0x7f0000000180), &(0x7f00000001c0)=0x4) fork() ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000080)={"8a76c7454129312b85852e6a09aad0a4", 0x0, 0x0, {0x6, 0x7}, {0x7fffffff, 0x9}, 0x20, [0x1, 0x5, 0xc3fb, 0x8, 0x9, 0x7fff, 0x80000000, 0x7, 0x10000, 0xa4, 0x44f, 0x0, 0x42, 0x741, 0x0, 0x7000]}) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) socketpair(0x22, 0x1, 0x2, &(0x7f0000000000)) 13:24:14 executing program 3: socketpair(0x2, 0x3, 0x3000000, &(0x7f00000000c0)) 13:24:14 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x350}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 3: socketpair(0x2, 0x3, 0x4000000, &(0x7f00000000c0)) 13:24:14 executing program 4: fork() r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x5, &(0x7f0000000000)=""/113) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:14 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x121}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x295}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:14 executing program 3: socketpair(0x2, 0x3, 0x5000000, &(0x7f00000000c0)) 13:24:14 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x361}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x352}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 4: bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x1}}, 0x10) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:15 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x16d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 3: socketpair(0x2, 0x3, 0x6000000, &(0x7f00000000c0)) 13:24:15 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x362}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 3: socketpair(0x2, 0x3, 0x6010000, &(0x7f00000000c0)) 13:24:15 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x295}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 4: fork() fork() r0 = fork() getpgid(r0) wait4(r0, 0x0, 0x80000000, 0x0) fork() eventfd2(0x0, 0x80800) 13:24:15 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x361}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x31d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:15 executing program 3: socketpair(0x2, 0x3, 0x7000000, &(0x7f00000000c0)) 13:24:16 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 3: socketpair(0x2, 0x3, 0xa000000, &(0x7f00000000c0)) 13:24:16 executing program 4: inotify_init() fork() r0 = fork() io_uring_setup(0x5e9a, &(0x7f0000000000)={0x0, 0x64ef, 0x20, 0x1, 0x26b}) getpgid(r0) getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:16 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x31d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 3: socketpair(0x2, 0x3, 0x10000000, &(0x7f00000000c0)) 13:24:16 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x700}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 4: r0 = fork() r1 = getpgid(0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x0, &(0x7f0000000000)=""/195) wait4(r0, 0x0, 0x2, 0x0) wait4(0x0, &(0x7f0000000100), 0x80000000, 0x0) 13:24:16 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x348}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 3: socketpair(0x2, 0x3, 0x1f000000, &(0x7f00000000c0)) 13:24:16 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x361}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x700}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:16 executing program 3: socketpair(0x2, 0x3, 0x3f000000, &(0x7f00000000c0)) 13:24:17 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3e1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x34a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 3: socketpair(0x2, 0x3, 0x40000000, &(0x7f00000000c0)) 13:24:17 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 3: socketpair(0x2, 0x3, 0x48000000, &(0x7f00000000c0)) 13:24:17 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r1 = fork() getpgid(r1) r2 = getpgid(r0) waitid(0x2, r2, &(0x7f0000001000), 0x4, &(0x7f0000001080)) ptrace$getregs(0xc, r1, 0x3, &(0x7f0000000000)=""/4096) 13:24:17 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:17 executing program 3: socketpair(0x2, 0x3, 0x4c000000, &(0x7f00000000c0)) 13:24:17 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x361}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1800}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 3: socketpair(0x2, 0x3, 0x68000000, &(0x7f00000000c0)) 13:24:18 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x700}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1800}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 3: socketpair(0x2, 0x3, 0x6c000000, &(0x7f00000000c0)) 13:24:18 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = fork() getpgid(r0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x80000000, &(0x7f0000000000)=""/2) 13:24:18 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 3: socketpair(0x2, 0x3, 0x74000000, &(0x7f00000000c0)) 13:24:18 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x700}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d03}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:18 executing program 3: socketpair(0x2, 0x3, 0x7a000000, &(0x7f00000000c0)) 13:24:18 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 4: r0 = fork() getpgid(r0) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:19 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0xc00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 3: socketpair(0x2, 0x3, 0xfeffffff, &(0x7f00000000c0)) 13:24:19 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 4: fork() r0 = fork() ptrace$getsig(0x4202, r0, 0x6, &(0x7f0000000000)) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r1 = fork() capset(&(0x7f0000000180)={0x20071026, r0}, &(0x7f00000001c0)={0x6484, 0x3, 0x800, 0x10000, 0x800, 0xfffffff7}) waitid(0x0, r1, &(0x7f0000000080), 0x8, &(0x7f0000000100)) 13:24:19 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1800}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d03}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 3: socketpair(0x2, 0x3, 0xfffffffe, &(0x7f00000000c0)) 13:24:19 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:19 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_SOCK_RECVQ_DEPTH(r1, 0x10f, 0x84, &(0x7f0000000b00), &(0x7f0000000b40)=0x4) setsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000000), 0x4) r2 = openat$cgroup_root(0xffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000080)) 13:24:20 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1800}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:20 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:20 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:20 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) socketpair(0x1a, 0x4, 0x6, &(0x7f0000000000)) 13:24:20 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:20 executing program 4: r0 = fork() r1 = fork() capset(&(0x7f0000000000)={0x19980330, r0}, &(0x7f0000000040)={0x1, 0xd6, 0xbd, 0x7, 0x8000080, 0x7f}) r2 = getpgid(r1) ptrace$getregs(0xc, r2, 0x4, &(0x7f0000000180)=""/4096) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) ptrace$getregs(0xc, r0, 0x9, &(0x7f0000000080)=""/5) r3 = fork() ptrace$getregs(0xe, r3, 0x22, &(0x7f00000000c0)=""/187) 13:24:20 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d03}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:20 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 3: r0 = syz_io_uring_setup(0x7062, &(0x7f00000001c0)={0x0, 0x7fea, 0x2, 0x0, 0x3e5}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280)) io_uring_setup(0x3d12, &(0x7f00000002c0)={0x0, 0x1687, 0x4, 0x3, 0x7d, 0x0, r0}) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) r1 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x18002, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB='1\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="020029bd7000fcdbdf250c0000000800320095020000050037000000000008003400414c1bfcc57e253c760a0a0000080032000001000005002e00010000000800390007000000eed6add3961bf0edc4fbf3e74ee9e985456f78d40e1b90a87779"], 0x44}, 0x1, 0x0, 0x0, 0x40098}, 0x10000010) 13:24:21 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2001}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 4: r0 = fork() r1 = fork() getpgid(r1) wait4(r0, &(0x7f0000000080), 0x1000000, &(0x7f00000000c0)) capset(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000040)={0x9, 0x1, 0xfff, 0x5, 0x3, 0xa5}) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:21 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2101}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2001}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) getpgid(r0) wait4(r0, &(0x7f0000000000), 0x8, &(0x7f0000000040)) 13:24:21 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) r0 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000000)={0x100, 0x835}) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000080)={0x7, 0x2, 0x1}) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000100)={0xff, 0x7}) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r1, 0x0, &(0x7f0000000140)='./file0\x00', 0x1, 0x200000, 0x23456}, 0x401) 13:24:21 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1d03}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:21 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2101}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000340)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000100)=""/246, 0xf6}, {&(0x7f0000000200)=""/84, 0x54}], 0x2, &(0x7f0000000280)=""/141, 0x8d}, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r1, 0x10f, 0x82, &(0x7f0000000380), 0x4) 13:24:22 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2400}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2400}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$vim2m(0xffffff9c, &(0x7f00000014c0), 0x2, 0x0) ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000000200)={0x7fff, 0xff, 0x1}) ioctl$vim2m_VIDIOC_QBUF(r2, 0xc0245628, &(0x7f0000001440)={0x0, 0x0, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "47b8dd7c"}, 0x0, 0x0, @userptr}) getsockname(r0, &(0x7f0000000000)=@hci, &(0x7f0000000080)=0x80) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000100)="660a8c4332f8ddd91227e6e6eff0253b10c4a1f53f4579a96f573f3cced7e2764fbed6e6ec13654ba008b2e2545c9066c632bfc8be29a3fbd04a47af74377da2d50bc440d70a24490184c08af0b3d9cbb56f390ba60adb1cde89c0d153bc349cc2a54ce4105376de68e71f57903127dc2faff7da1812438f59dc86d32e666fe9624436974e8057116419c3e72f7966b4c441d6e0d18df54a28c5c0d48b928e12bd9a21b1268fe03b2cdb0f51a8a94fd316634a0501f7dfa3c098687fbdb4675fd1bb7995f8d44387859ee6375b0cb4db6982de431bcba4b06b549feaa8d87fcb7977f3142df301ca28023e6eef756a87994f2311ed63375e", 0xf8) 13:24:22 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x1f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:22 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = fork() getpgid(r0) waitid(0x2, r0, &(0x7f0000000100), 0x0, &(0x7f0000000180)) waitid(0x1, r0, &(0x7f0000000000), 0x1, &(0x7f0000000080)) 13:24:23 executing program 3: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x48, r0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xfffffffffffffdf2, 0x9, @broadcast}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfffffffc}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x40408e0}, 0x4044050) sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r0, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x13}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x8c0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:24:23 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2001}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 4: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, r0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xce9f}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xff}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xfffffb4c}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20004800}, 0x0) fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) 13:24:23 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) recvmsg$can_bcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=""/258, 0x102}], 0x1, &(0x7f0000000040)=""/52, 0x34}, 0x0) 13:24:23 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x4101, 0x0) bind$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0x2, {{0x43, 0x2}, 0x1}}, 0x10) 13:24:23 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2101}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:23 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2001}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 3: socketpair(0x2, 0x800, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, &(0x7f0000000080)=0x80) sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2010000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x4, 0x70bd26, 0x25dfdbfc, {{}, {}, {0x4c, 0x18, {0x101, @media='eth\x00'}}}, ["", "", "", "", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) 13:24:24 executing program 4: fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r0 = fork() wait4(r0, &(0x7f0000000040), 0x80000000, &(0x7f0000000080)) r1 = fork() ptrace$getsig(0x4202, r1, 0x2, &(0x7f0000001600)) sched_setattr(r0, &(0x7f0000000000)={0x38, 0x6, 0xa, 0x401, 0x1f, 0x100000000, 0xffffffff80000001, 0x3f, 0x5, 0xc1}, 0x0) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0)=0x10, 0x0) sendmsg$tipc(r2, &(0x7f00000015c0)={&(0x7f0000000300)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x4}}, 0x10, &(0x7f0000001480)=[{&(0x7f0000000340)="62df870440b4a71d29beccd08b5e1e28a4f21c7973955c35f2adf12b2508ff8cd8fa797089a7ac7a58940b1ba291baaf8691fd8c1fc44f", 0x37}, {&(0x7f0000000380)="a73e93cc95492c1d47cefcc1bad5179aef6c03b8eb115a4d5864ba7976d6f1e035e33d15d76376af4add99f97e7015eb148a3bba0583a50e644555fb7cbc3ab1a5b01d926378b5eacd2ad16cec82a1a5b6d95269f2155e093ad04329a3c4428c8a076b717a64fcd61c610b890cd89301472c794a9b810dbb123686a91f928eaffd2ca70fd153867820834babaf0049650324351eab6a3c167190ffbdd4801350e4a3a58d7ea98d", 0xa7}, {&(0x7f0000000440)="71f8fb60ccd8aa5a993cc7d4321bdbb59d26ca24c6fb47d2f791a2577c9657b606354d7c267fc0e1ced56b4e831bdfdf743bb473dd3b480cc54249d945c20d39", 0x40}, {&(0x7f0000000480)="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", 0x1000}], 0x4, &(0x7f00000014c0)="bb992e95a733fedd3a434da87aaf50b67d52b3b33f8d2b49a11b21aefb34a875142041607c08bed194b3c109660a8138bf7241d5ce0917f60a2c814af868f053e471733de17197c77a084b4c96ee1cffb99c25ce8b597b7aca70ca5e2326d9e43a8148590ce50164f888a90c1000ca6abd1ebf9b2a0391b120f4e90d1f1d82630af96bc0e0f2756b238d532b9c74606febe27b68b686d6458e38d84c452bf6ae83cd7588e24388887dc9e272660c15b5305e2f9ab3adb75872e7d7d50805f0027ad6e26df96eb6e42490f330bd469d26f74c265c291f", 0xd6, 0x4000004}, 0x48010) waitid(0x2, r0, &(0x7f0000000180), 0x2, &(0x7f0000000200)) 13:24:24 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2400}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2101}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 4: r0 = fork() r1 = getpgid(r0) wait4(r1, 0x0, 0x1, 0x0) wait4(r1, &(0x7f0000000000), 0x22caba0f5bb4cbe2, 0x0) 13:24:24 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2400}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:24 executing program 3: socketpair(0x6, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000002f80)=0x0, &(0x7f0000002fc0)=0x4) sendmsg$can_bcm(r1, &(0x7f0000003100)={&(0x7f0000003000)={0x1d, r2}, 0x10, &(0x7f00000030c0)={&(0x7f0000003040)={0x2, 0x400, 0x401, {0x0, 0x2710}, {0x0, 0xea60}, {0x3}, 0x1, @canfd={{0x4, 0x1, 0x1}, 0x3d, 0x0, 0x0, 0x0, "bb354dc0836030c59e5488f99166c7926312081c5060ba5426353528d6c2e7fa6ce4040ad2c3c0ca5f43b71c5a9a5d5247d40f08e979d99637f636cc6e33e9af"}}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 13:24:24 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 3: ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000040)={0x5000, &(0x7f0000000000), 0x2, 0xffffffffffffffff, 0x60232df60244952d}) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000100)={0x6000, &(0x7f0000000080), 0x0, 0xffffffffffffffff, 0x9}) getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000140), &(0x7f0000000180)=0x4) 13:24:25 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r1 = getpgid(r0) waitid(0x2, r1, &(0x7f0000000080), 0x1, &(0x7f0000000100)) getpgid(0xffffffffffffffff) ptrace$getregs(0xe, r0, 0x9, &(0x7f0000000200)=""/100) r2 = getpgid(r1) ptrace$getsig(0x4202, r2, 0x8001, &(0x7f0000000180)) 13:24:25 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x2a00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) r0 = socket$tipc(0x1e, 0x2, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) setsockopt$TIPC_MCAST_BROADCAST(r1, 0x10f, 0x85) getpeername$tipc(r0, &(0x7f0000000100)=@name, &(0x7f0000000140)=0x10) 13:24:25 executing program 4: r0 = fork() r1 = fork() sched_setattr(r1, &(0x7f0000000000)={0x38, 0x3, 0xc, 0x1, 0x80000000, 0x3, 0x2, 0x7, 0x400, 0x7}, 0x0) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r2 = getpgid(r0) capset(&(0x7f0000000040)={0x19980330, r2}, &(0x7f0000000080)={0x3, 0x8000, 0x0, 0x1000, 0x6, 0x1}) ioctl$BLKROSET(0xffffffffffffffff, 0x125d, &(0x7f00000000c0)=0x7fff) 13:24:25 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:25 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 4: fork() r0 = fork() waitid(0x2, r0, &(0x7f0000000000), 0x2, &(0x7f0000000080)) r1 = getpgid(r0) ptrace$getsig(0x4202, r1, 0xffff, &(0x7f0000000100)) wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r2 = getpgid(r1) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x7, &(0x7f00000001c0)=""/131) openat$vicodec0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0) waitid(0x1, r1, &(0x7f0000000280), 0x8, &(0x7f0000000300)) 13:24:26 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="94000836", @ANYRES16=0x0, @ANYBLOB="0000000000000000000004000000"], 0x14}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000001580)={'batadv_slave_0\x00', 0x0}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000001680)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001640)={&(0x7f00000015c0)={0x5c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x7, 0x2b, 0x10000}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffff80}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4014}, 0x20008010) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:24:26 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4500}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 3: socketpair(0x3, 0x3, 0x0, &(0x7f00000000c0)) 13:24:26 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:26 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x34, r2, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x45}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x8050) 13:24:27 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x5003}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 4: fork() fork() r0 = fork() getpgid(r0) r1 = fork() getpgid(r1) wait4(r1, 0x0, 0x4, 0x0) 13:24:27 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4500}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x2, 0x70bd26, 0x25dfdbfe, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004010}, 0x1) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) 13:24:27 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x3f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:27 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x5203}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 3: socketpair(0x2, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x101}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x48004}, 0x800) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_MAX_PORTS(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfc, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000012}, 0x4000000) ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, &(0x7f0000000000)={0x7fff, 0x6}) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="34000000fa70a33413c8e623c0f826197bff0700004ea685124f94beddbc052f67b8f133f5da14c1523dc819022b7141dbf69f1c44be799fe2f3acba9185b3202f46026223871f7d824e7232c67bb91c57887ce31d033fec21375ceb6df6b4f2b90431fd1ccc93f59b8ffccabc9cc2c9dbb598126d30a19a84", @ANYRES16=0x0, @ANYBLOB="020527bd7000fcdbdf252c8be7e20500300001000000050037000000000008002b000800000005002a0000000000"], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x40091) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00'}) 13:24:28 executing program 4: r0 = fork() r1 = getpgid(r0) capset(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000040)={0x200, 0x101, 0xffff, 0x823f, 0x200, 0x3}) r2 = fork() getpgid(r2) r3 = getpgid(r2) wait4(r3, 0x0, 0x1, 0x0) 13:24:28 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x5300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x5300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 3: socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000280)={&(0x7f0000000000)=@generic, 0x80, &(0x7f0000000080)=[{&(0x7f0000000100)=""/150, 0x96}, {&(0x7f00000001c0)=""/76, 0x4c}], 0x2, &(0x7f0000000240)}, 0x101) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) getsockname(r1, &(0x7f00000002c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast2}}, &(0x7f0000000240)=0x80) 13:24:28 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) r1 = getpgid(r0) ptrace$getsig(0x4202, r1, 0x37, &(0x7f0000000000)) 13:24:28 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4500}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x4200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 4: r0 = fork() wait4(r0, 0x0, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = getpgid(r0) sched_setattr(r2, &(0x7f0000000100)={0x38, 0x3, 0x0, 0x1, 0x800, 0x4, 0x100000000, 0xc42, 0x1, 0x5}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x38e}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4010}, 0xc0) [ 2747.563080][ T8505] cgroup: fork rejected by pids controller in /system.slice/ssh.service 13:24:28 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:28 executing program 5: syz_io_uring_setup(0x1b, &(0x7f0000000240), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:34 executing program 3: socketpair(0x2, 0x4, 0xd5b3e79, &(0x7f00000000c0)) r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000007, 0x10, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x1, 0x5, 0x0, 0x80000001, 0x1}, 0x1ff) [ 2759.736770][T10587] vhci_hcd: connection reset by peer [ 2760.360180][ T3595] vhci_hcd: stop threads [ 2760.364535][ T3595] vhci_hcd: release socket [ 2760.368969][ T3595] vhci_hcd: unlink cleanup rx 2 [ 2760.374008][ T3595] vhci_hcd: disconnect device [ 2760.377422][ T7764] usb 10-1: device descriptor read/8, error -110 13:24:48 executing program 4: r0 = fork() wait4(r0, 0x0, 0x2, 0x0) 13:24:50 executing program 3: r0 = fork() getpgid(r0) ptrace$getsig(0x4202, r0, 0x1, &(0x7f0000000000)) socketpair(0x2, 0x3, 0x0, &(0x7f00000000c0)) ptrace$getregs(0xc, r0, 0x6, &(0x7f0000000080)=""/5) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) r2 = fork() getpgid(r2) fork() capset(&(0x7f0000000140)={0x19980330, r2}, &(0x7f0000000180)={0x9, 0xf90e, 0x9, 0x8, 0x5, 0x4}) write$eventfd(r1, &(0x7f0000000100), 0x8) [ 2769.852981][ T7764] usb usb10-port1: Cannot enable. Maybe the USB cable is bad? [ 2769.940784][ T9604] vhci_hcd: vhci_device speed not set 13:24:51 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x5300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) [ 2770.785078][ T7764] usb usb10-port1: attempt power cycle 13:24:52 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) getsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000000), &(0x7f0000000040)=0x4) r1 = fork() getpgid(0xffffffffffffffff) r2 = fork() getpgid(r2) r3 = getpgid(r0) r4 = getpgid(r3) capset(&(0x7f0000000080)={0x20080522, r4}, &(0x7f00000000c0)={0x0, 0xffff, 0x2, 0x1, 0x0, 0x1}) r5 = fork() getpgid(r5) getpgid(r1) [ 2771.444891][ T6971] vhci_hcd: connection reset by peer [ 2771.554651][ T3595] vhci_hcd: stop threads [ 2771.558950][ T3595] vhci_hcd: release socket [ 2771.578758][ T3595] vhci_hcd: unlink cleanup rx 1 [ 2771.583799][ T3595] vhci_hcd: disconnect device [ 2771.758077][T25102] vhci_hcd: vhci_device speed not set [ 2772.261179][ T7764] usb usb10-port1: Cannot enable. Maybe the USB cable is bad? [ 2772.734909][T11099] vhci_hcd: connection reset by peer [ 2772.808968][ T3595] vhci_hcd: stop threads [ 2772.812963][ T7764] usb usb10-port1: Cannot enable. Maybe the USB cable is bad? [ 2772.814902][ T3595] vhci_hcd: release socket [ 2772.825165][ T3595] vhci_hcd: unlink cleanup rx 5 [ 2772.830859][ T3595] vhci_hcd: disconnect device [ 2772.835693][T27003] usb 20-1: device descriptor read/8, error -110 [ 2772.940685][ T7764] usb usb10-port1: unable to enumerate USB device [ 2773.393237][ T9541] vhci_hcd: vhci_device speed not set 13:24:54 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) fork() fork() syz_io_uring_setup(0x6ba5, &(0x7f0000000140)={0x0, 0x6000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 13:24:54 executing program 3: socketpair(0xd, 0x4, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000000), &(0x7f0000000040)=0x4) r1 = openat$vcs(0xffffff9c, &(0x7f0000000080), 0x400100, 0x0) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0x4, 0x5d}) r2 = openat$vim2m(0xffffff9c, &(0x7f0000000240), 0x2, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000280)={0xb579, 0x4, 0x2, "44ec8f2103701867d8054159b79fb2caec09c0ff6f08267913d3ece65a27f359", 0x43353039}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x14}, 0x14}}, 0x0) sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x0, 0x70bd2a, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x2}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40001) 13:24:54 executing program 4: r0 = fork() wait4(0xffffffffffffffff, 0x0, 0x1, 0x0) waitid(0x1, r0, &(0x7f0000000000), 0x40000000, &(0x7f0000000080)) [ 2774.521287][T27003] usb usb20-port1: Cannot enable. Maybe the USB cable is bad? [ 2774.529087][T27003] usb usb20-port1: attempt power cycle [ 2774.642256][ T3261] ieee802154 phy0 wpan0: encryption failed: -22 [ 2774.648714][ T3261] ieee802154 phy1 wpan1: encryption failed: -22 [ 2774.891545][T27003] usb usb20-port1: Cannot enable. Maybe the USB cable is bad? [ 2775.115295][T15388] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2775.200875][T27003] usb usb20-port1: Cannot enable. Maybe the USB cable is bad? [ 2775.225662][T27003] usb usb20-port1: unable to enumerate USB device [ 2775.311097][ C1] ================================================================== [ 2775.319830][ C1] BUG: KASAN: use-after-free in put_ucounts+0x1c/0x150 [ 2775.326753][ C1] Write of size 4 at addr ffff888017c3e01c by task ksoftirqd/1/19 [ 2775.334572][ C1] [ 2775.336906][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Not tainted 5.13.0-syzkaller #0 [ 2775.344816][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2775.354890][ C1] Call Trace: [ 2775.358200][ C1] dump_stack_lvl+0xcd/0x134 [ 2775.362818][ C1] print_address_description.constprop.0.cold+0x6c/0x309 [ 2775.369874][ C1] ? put_ucounts+0x1c/0x150 [ 2775.374376][ C1] ? put_ucounts+0x1c/0x150 [ 2775.378880][ C1] kasan_report.cold+0x83/0xdf [ 2775.383643][ C1] ? put_ucounts+0x1c/0x150 [ 2775.388141][ C1] kasan_check_range+0x13d/0x180 [ 2775.393078][ C1] put_ucounts+0x1c/0x150 [ 2775.397402][ C1] put_cred_rcu+0x27a/0x520 [ 2775.401916][ C1] rcu_core+0x7ab/0x1380 [ 2775.406164][ C1] ? rcu_gp_kthread+0x2300/0x2300 [ 2775.411190][ C1] __do_softirq+0x29b/0x9bd [ 2775.415693][ C1] ? __irq_exit_rcu+0x1c0/0x1c0 [ 2775.420538][ C1] run_ksoftirqd+0x2d/0x60 [ 2775.424950][ C1] smpboot_thread_fn+0x645/0x9c0 [ 2775.429881][ C1] ? __smpboot_create_thread.part.0+0x370/0x370 [ 2775.436148][ C1] kthread+0x3e5/0x4d0 [ 2775.440211][ C1] ? set_kthread_struct+0x130/0x130 [ 2775.445406][ C1] ret_from_fork+0x1f/0x30 [ 2775.449876][ C1] [ 2775.452186][ C1] Allocated by task 8489: [ 2775.456582][ C1] kasan_save_stack+0x1b/0x40 [ 2775.461252][ C1] __kasan_kmalloc+0x9b/0xd0 [ 2775.465834][ C1] alloc_ucounts+0x23d/0x5b0 [ 2775.470413][ C1] set_cred_ucounts+0x171/0x3a0 [ 2775.475254][ C1] copy_creds+0x853/0xb20 [ 2775.479573][ C1] copy_process+0x1413/0x74c0 [ 2775.484244][ C1] kernel_clone+0xe7/0xab0 [ 2775.488661][ C1] __do_compat_sys_ia32_clone+0xac/0xe0 [ 2775.494198][ C1] do_int80_syscall_32+0x46/0x90 [ 2775.499126][ C1] entry_INT80_compat+0x71/0x76 [ 2775.503981][ C1] [ 2775.506289][ C1] Freed by task 2552: [ 2775.510267][ C1] kasan_save_stack+0x1b/0x40 [ 2775.514938][ C1] kasan_set_track+0x1c/0x30 [ 2775.519525][ C1] kasan_set_free_info+0x20/0x30 [ 2775.524455][ C1] __kasan_slab_free+0xfb/0x130 [ 2775.529297][ C1] slab_free_freelist_hook+0xdf/0x240 [ 2775.534657][ C1] kfree+0xeb/0x670 [ 2775.538452][ C1] put_ucounts+0x117/0x150 [ 2775.542859][ C1] put_cred_rcu+0x27a/0x520 [ 2775.547352][ C1] rcu_core+0x7ab/0x1380 [ 2775.551584][ C1] __do_softirq+0x29b/0x9bd [ 2775.556074][ C1] [ 2775.558423][ C1] Last potentially related work creation: [ 2775.564606][ C1] kasan_save_stack+0x1b/0x40 [ 2775.569288][ C1] kasan_record_aux_stack+0xe5/0x110 [ 2775.574572][ C1] insert_work+0x48/0x370 [ 2775.578898][ C1] __queue_work+0x5c1/0xed0 [ 2775.583401][ C1] queue_work_on+0xee/0x110 [ 2775.587906][ C1] call_usermodehelper_exec+0x1f0/0x4c0 [ 2775.593463][ C1] kobject_uevent_env+0xf8f/0x1650 [ 2775.598563][ C1] kobject_synth_uevent+0x701/0x850 [ 2775.603748][ C1] uevent_store+0x42/0x90 [ 2775.608140][ C1] drv_attr_store+0x6d/0xa0 [ 2775.612633][ C1] sysfs_kf_write+0x110/0x160 [ 2775.617335][ C1] kernfs_fop_write_iter+0x342/0x500 [ 2775.622645][ C1] new_sync_write+0x426/0x650 [ 2775.627403][ C1] vfs_write+0x796/0xa30 [ 2775.631635][ C1] ksys_write+0x12d/0x250 [ 2775.635958][ C1] do_syscall_64+0x35/0xb0 [ 2775.640364][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2775.646263][ C1] [ 2775.648573][ C1] Second to last potentially related work creation: [ 2775.655138][ C1] kasan_save_stack+0x1b/0x40 [ 2775.659806][ C1] kasan_record_aux_stack+0xe5/0x110 [ 2775.665094][ C1] insert_work+0x48/0x370 [ 2775.669414][ C1] __queue_work+0x5c1/0xed0 [ 2775.673911][ C1] queue_work_on+0xee/0x110 [ 2775.678410][ C1] call_usermodehelper_exec+0x1f0/0x4c0 [ 2775.683978][ C1] kobject_uevent_env+0xf8f/0x1650 [ 2775.689091][ C1] param_sysfs_init+0x3bf/0x498 [ 2775.694014][ C1] do_one_initcall+0x103/0x650 [ 2775.698788][ C1] kernel_init_freeable+0x6b8/0x741 [ 2775.703985][ C1] kernel_init+0x1a/0x1d0 [ 2775.708311][ C1] ret_from_fork+0x1f/0x30 [ 2775.712718][ C1] [ 2775.715028][ C1] The buggy address belongs to the object at ffff888017c3e000 [ 2775.715028][ C1] which belongs to the cache kmalloc-192 of size 192 [ 2775.729067][ C1] The buggy address is located 28 bytes inside of [ 2775.729067][ C1] 192-byte region [ffff888017c3e000, ffff888017c3e0c0) [ 2775.742243][ C1] The buggy address belongs to the page: [ 2775.747853][ C1] page:ffffea00005f0f80 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888017c3eb00 pfn:0x17c3e [ 2775.759297][ C1] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff) [ 2775.766842][ C1] raw: 00fff00000000200 ffffea0000526c88 ffffea000060afc8 ffff888011041a00 [ 2775.775419][ C1] raw: ffff888017c3eb00 0000000000100008 00000001ffffffff 0000000000000000 [ 2775.783987][ C1] page dumped because: kasan: bad access detected [ 2775.790379][ C1] page_owner tracks the page as allocated [ 2775.796075][ C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, ts 2994513961, free_ts 2993133901 [ 2775.811686][ C1] get_page_from_freelist+0xa72/0x2f80 [ 2775.817138][ C1] __alloc_pages+0x1b2/0x500 [ 2775.821721][ C1] alloc_page_interleave+0x1e/0x200 [ 2775.826906][ C1] alloc_pages+0x238/0x2a0 [ 2775.831313][ C1] allocate_slab+0x32b/0x4c0 [ 2775.835893][ C1] ___slab_alloc+0x4ba/0x820 [ 2775.840469][ C1] __slab_alloc.constprop.0+0xa7/0xf0 [ 2775.845830][ C1] kmem_cache_alloc_trace+0x325/0x3c0 [ 2775.851195][ C1] call_usermodehelper_setup+0x97/0x340 [ 2775.856732][ C1] kobject_uevent_env+0xf73/0x1650 [ 2775.861833][ C1] param_sysfs_init+0x3bf/0x498 [ 2775.866680][ C1] do_one_initcall+0x103/0x650 [ 2775.871438][ C1] kernel_init_freeable+0x6b8/0x741 [ 2775.876633][ C1] kernel_init+0x1a/0x1d0 [ 2775.880954][ C1] ret_from_fork+0x1f/0x30 [ 2775.885369][ C1] page last free stack trace: [ 2775.890031][ C1] free_pcp_prepare+0x2c5/0x780 [ 2775.894881][ C1] free_unref_page+0x19/0x690 [ 2775.899640][ C1] __vunmap+0x783/0xb70 [ 2775.903786][ C1] free_work+0x58/0x70 [ 2775.907843][ C1] process_one_work+0x98d/0x1630 [ 2775.912780][ C1] worker_thread+0x658/0x11f0 [ 2775.917450][ C1] kthread+0x3e5/0x4d0 [ 2775.921509][ C1] ret_from_fork+0x1f/0x30 [ 2775.925927][ C1] [ 2775.928234][ C1] Memory state around the buggy address: [ 2775.933852][ C1] ffff888017c3df00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2775.941904][ C1] ffff888017c3df80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2775.949953][ C1] >ffff888017c3e000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 2775.958003][ C1] ^ [ 2775.962836][ C1] ffff888017c3e080: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 2775.970889][ C1] ffff888017c3e100: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 2775.979546][ C1] ================================================================== [ 2775.987587][ C1] Disabling lock debugging due to kernel taint [ 2775.993782][ C1] Kernel panic - not syncing: panic_on_warn set ... [ 2776.000380][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Tainted: G B 5.13.0-syzkaller #0 [ 2776.009693][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2776.019770][ C1] Call Trace: [ 2776.023042][ C1] dump_stack_lvl+0xcd/0x134 [ 2776.028149][ C1] panic+0x306/0x73d [ 2776.032081][ C1] ? __warn_printk+0xf3/0xf3 [ 2776.036666][ C1] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2776.042835][ C1] ? trace_hardirqs_on+0x38/0x1c0 [ 2776.047905][ C1] ? trace_hardirqs_on+0x51/0x1c0 [ 2776.052963][ C1] ? put_ucounts+0x1c/0x150 [ 2776.057478][ C1] ? put_ucounts+0x1c/0x150 [ 2776.061983][ C1] end_report.cold+0x5a/0x5a [ 2776.066585][ C1] kasan_report.cold+0x71/0xdf [ 2776.071354][ C1] ? put_ucounts+0x1c/0x150 [ 2776.075851][ C1] kasan_check_range+0x13d/0x180 [ 2776.080790][ C1] put_ucounts+0x1c/0x150 [ 2776.085116][ C1] put_cred_rcu+0x27a/0x520 [ 2776.089613][ C1] rcu_core+0x7ab/0x1380 [ 2776.093853][ C1] ? rcu_gp_kthread+0x2300/0x2300 [ 2776.098868][ C1] __do_softirq+0x29b/0x9bd [ 2776.103360][ C1] ? __irq_exit_rcu+0x1c0/0x1c0 [ 2776.108200][ C1] run_ksoftirqd+0x2d/0x60 [ 2776.112619][ C1] smpboot_thread_fn+0x645/0x9c0 [ 2776.117547][ C1] ? __smpboot_create_thread.part.0+0x370/0x370 [ 2776.123778][ C1] kthread+0x3e5/0x4d0 [ 2776.127833][ C1] ? set_kthread_struct+0x130/0x130 [ 2776.133022][ C1] ret_from_fork+0x1f/0x30 [ 2776.138671][ C1] Kernel Offset: disabled [ 2776.143080][ C1] Rebooting in 86400 seconds..