= mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x2a00000000000000, 0x0, 0x0)

11:46:47 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x6000000)

11:46:47 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000240)={&(0x7f0000000200), &(0x7f00000002c0)=""/251, 0xfb})
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r3 = signalfd4(r1, &(0x7f0000000180)={[0x101]}, 0x8, 0x800)
ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000001c0)=""/47, 0x2f})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:46:47 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x8, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f0000000140)={&(0x7f0000000040), &(0x7f00000000c0)=""/55, 0x37})

11:46:47 executing program 0:
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f0000000040)={0x2bc, 0x0, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x140, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @local}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'batadv0\x00'}}, @TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}]}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e24, @local}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}]}]}, @TIPC_NLA_MEDIA={0x28, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x528}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_LINK={0x50, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x664}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf930}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA={0x64, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa666}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x80}]}]}, 0x2bc}, 0x1, 0x0, 0x0, 0x8080}, 0x4000)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="b8000000", @ANYRES16=r3, @ANYBLOB="010027bd7000ffdbdf25040000003c00028005000d000000000006000e004e22000006000b000a0000000800040001000000080008000100008006000e004e210000060002004e21000008000500ee0400001c000280080004000600000006000e004e22000005000d000000000008000600599e00003c00018008000b0073697000080008000300000014000300000000000000000000000000000000000c0007001400000005000002080006006f766600"], 0xb8}, 0x1, 0x0, 0x0, 0x4}, 0x20004801)
sendmsg$IPVS_CMD_SET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x7c, r3, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8c3d}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6d}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x6}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x56}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf800000}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:46:47 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x9393000)

11:46:47 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@vsock={0x28, 0x0, 0x0, @host}, &(0x7f0000000280)=0x80, 0x80000)
fsetxattr$trusted_overlay_upper(r1, &(0x7f00000002c0), &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x99, 0x1)
r2 = gettid()
r3 = gettid()
kcmp(r2, r3, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00012bbd7000fedbdf250300000006000a004e200000050003003b00000014000700fe8000000000000000000000000000bb08000600ac1414bb14000700ff01000000000000000000000000000108000800e000000108000b00cdc2a53baef2fa4567036756dc4c9d", @ANYRES32=r4, @ANYBLOB="0500040001000000"], 0x6c}, 0x1, 0x0, 0x0, 0x14}, 0x200040c0)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

[ 2391.896316] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11565 comm=syz-executor.0
[ 2391.916789] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11577 comm=syz-executor.0
11:46:47 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x9393000)

11:46:47 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:46:47 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x14, 0x0, 0x0, 0x0)

11:46:47 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x200000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:46:47 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:46:47 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x3000000000000000, 0x0, 0x0)

11:46:47 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x100003, 0x200000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0xcfe9, 0x301000)

11:46:47 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x9393000)

11:46:47 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc000000)

11:47:03 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:03 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x15, 0x0, 0x0, 0x0)

11:47:03 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
mmap$usbmon(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x100010, 0xffffffffffffffff, 0x401)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
fstat(r1, &(0x7f0000000140))
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r2 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x100, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000040))

11:47:03 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000000)={0x0, 0x0})

11:47:03 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, 0xffffffffffffffff, 0x9393000)

11:47:03 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x12000000)

11:47:03 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x3600000000000000, 0x0, 0x0)

11:47:03 executing program 0:
prctl$PR_PAC_RESET_KEYS(0x36, 0x12)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:47:03 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, 0xffffffffffffffff, 0x9393000)

11:47:04 executing program 1:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:04 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
fstat(r1, &(0x7f0000000040))

11:47:04 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x3c00000000000000, 0x0, 0x0)

11:47:04 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, 0xffffffffffffffff, 0x9393000)

11:47:04 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x16, 0x0, 0x0, 0x0)

11:47:04 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x18000000)

11:47:04 executing program 1:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:04 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)

11:47:04 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x17, 0x0, 0x0, 0x0)

11:47:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e000000)

11:47:17 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

11:47:17 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r2, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:47:17 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0xff, 0x3a1540)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:47:17 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)

11:47:17 executing program 0:
r0 = semget$private(0x0, 0x0, 0x401)
semget$private(0x0, 0x1, 0x3a805f7f2a303c7b)
r1 = semget$private(0x0, 0x6, 0x0)
semctl$IPC_RMID(r1, 0x0, 0xb)
r2 = getegid()
setresgid(0x0, 0xee00, r2)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000340)={{0x2, 0x0, 0xee00, 0x0, r2, 0xc2, 0x8}, 0xc4, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x100})
clock_gettime(0x0, &(0x7f0000000140)={<r3=>0x0, <r4=>0x0})
semtimedop(r1, &(0x7f0000000100)=[{0x3, 0x8, 0x1000}, {0x4, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r3, r4+60000000})
semctl$SEM_INFO(r1, 0x2, 0x13, &(0x7f0000000000)=""/22)
semctl$IPC_RMID(r1, 0x0, 0x0)
syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f00000000c0))
semget$private(0x0, 0x4, 0x2)
semctl$SEM_STAT_ANY(0xffffffffffffffff, 0x2, 0x14, &(0x7f00000000c0)=""/129)
semctl$SEM_STAT(r0, 0x2, 0x12, &(0x7f0000000000)=""/153)
semget$private(0x0, 0x4, 0x632)
semget$private(0x0, 0x3, 0x200)
r5 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r5, 0x0)

11:47:17 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

11:47:17 executing program 1:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:17 executing program 1:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:17 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x6, 0x185480)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
fstat(r2, &(0x7f0000000000))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:47:17 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/4096, 0x1000})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0, 0x77})

11:47:17 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)

11:47:17 executing program 1:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x6)

11:47:32 executing program 5:
sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x50}, 0x1, 0x0, 0x0, 0x1c000}, 0x4000040)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x7fffffff, 0x2320)
r1 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x440080, 0xc8, 0x15}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000040)={0x0, 0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
openat$incfs(r4, &(0x7f0000000300)='.log\x00', 0x4100, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000000)={0x0, 0x0})
ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000180)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x6})

11:47:32 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000000)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000013c0)=[{&(0x7f0000000040)=""/61, 0x3d}, {&(0x7f0000000140)=""/135, 0x87}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/230, 0xe6}, {&(0x7f0000001300)=""/118, 0x76}, {&(0x7f0000001380)=""/4, 0x4}], 0x6, &(0x7f0000001900)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000000001000000010000001d13701b496cccaf26893b58cab746b5dc6ba4ca58c32a3bf36a420a3ed257856c9eb37e1f9322bc8b4def00f8f7fdc27c195b7c9d425e61e9ef68afdc346a29ea6a555375417b2d1616f7050baeb4a89eb3451700"/131, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002599400", @ANYBLOB="3a4ec494bbf5ae91a7148ad300e78dfb33e27580e4376e5f2a501c48358eb0ce5945543e74f9fefdf2ec486617802e2060324f637272afeb04ce8343b2d36c4c5cbdec2360701360d8", @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES64, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xd0}, 0x20)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000001600)={&(0x7f0000001440), &(0x7f0000003580)=""/102400, 0x19000})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x52, 0xc21, 0x70bd27, 0x25dfdbfc, {0xa}}, 0x14}}, 0x24000810)
mmap$usbmon(&(0x7f0000ff5000/0xa000)=nil, 0xa000, 0x1, 0x4000010, r2, 0x5)

11:47:32 executing program 1:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:32 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

11:47:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)

11:47:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x19, 0x0, 0x0, 0x0)

11:47:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f0000000000))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$TCSETSW(r5, 0x5403, &(0x7f0000000180)={0x0, 0x0, 0x4, 0x1, 0xe, "c71c2810346c527d50303b559a1fe38cb1bac9"})
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x0, r2, 0x5, 0x100, 0x10001, 0x3})

11:47:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)

11:47:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc)

11:47:32 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(0xffffffffffffffff, 0x80045301, &(0x7f0000000000))
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, <r4=>0x0})
syz_open_procfs(r4, &(0x7f0000000200)='net/igmp\x00')
sendmsg$nl_generic(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x78, 0x28, 0x100, 0x70bd28, 0x25dfdbfb, {0x4}, [@generic="ba68021776442827a26b2a72db9766de3ee042d45916c779ea7ae5aae2e21133d35a", @generic="cb878bebb74e2a424385076341ec94edb6cfa2562cd609f7be633e4310019b6cbdffa22a788b039ddb25", @typed={0x8, 0x75, 0x0, 0x0, @u32}, @typed={0x8, 0x79, 0x0, 0x0, @ipv4=@private=0xa010102}, @typed={0x8, 0x74, 0x0, 0x0, @pid=r4}]}, 0x78}, 0x1, 0x0, 0x0, 0x11}, 0x4000)
r5 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r6 = openat$incfs(r5, &(0x7f00000000c0)='.log\x00', 0x80080, 0x102)
ioctl$MON_IOCX_GETX(r6, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:47:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1a, 0x0, 0x0, 0x0)

11:47:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x161)

11:47:32 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x24000000)

11:47:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:47:32 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:47:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="bdfaa6ea8cef7014ad2a6299"], 0x1c}}, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0xffffffff, 0xffff, 0x2, 0x8, 0xcdfa})
r3 = dup2(r2, r0)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000000)=<r4=>0x0)
syz_open_procfs(r4, &(0x7f0000000080)='net/unix\x00')
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:47:46 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a000000)

11:47:46 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1b, 0x0, 0x0, 0x0)

11:47:46 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:46 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xfffffffffffffffc, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:47:46 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xffffffffffffffff, 0xa6900)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000011c0)={&(0x7f0000001140), &(0x7f00000000c0)=""/48, 0x30})
r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0xce, 0x2)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000140)={&(0x7f0000000040), &(0x7f0000002200)=""/4096, 0x1000})
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f00000002c0)={&(0x7f00000001c0), &(0x7f0000000200)=""/183, 0xb7})

11:47:46 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x12)

11:47:46 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:47:46 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x80000000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:47:46 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3, 0x80010, r0, 0x78889000)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f0000000140)=""/148, 0x94})

11:47:46 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:47:46 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/159, 0x9f})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:47:46 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:47:46 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x1, 0x200040)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:47:46 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1c, 0x0, 0x0, 0x0)

11:47:46 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x18)

11:47:46 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x30000000)

11:48:01 executing program 0:
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000100)={0x1, 0x3, 0x1000, 0xb9, &(0x7f0000000000)="af104b79cea6b1eb944e0dc4137a7f067d3d768efc73803b2e4f2a616908a3e8b658d63a8f3b9182cc2f3604f9d7a6e3532a7347a3be471624c61c2ac49190309b878102ba30b93019dabbc5676b6e023c0acd83c9b71478417ad2c7735adef820a57b4c17cec66c9ee990e65b7b04980d496b4838cbff459412d5ba6db12c9ef90c2cb7ccd241b37cd4844da985f87b66ce4e0b4dd0504b05f9d194c9f4c014fdc3bc3a7647534f405fae9126894ca7a08721f5f000000000", 0xd, 0x0, &(0x7f00000000c0)="ce865dd862b782e11f10312b30"})
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xd7efcf74eb7d39cd, 0x12, r0, 0x0)

11:48:01 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:01 executing program 5:
fspick(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_io_uring_setup(0x2bb9, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000002a40))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x12, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
fsetxattr(r1, &(0x7f0000000080)=@random={'system.', '/dev/usbmon#\x00'}, &(0x7f0000000140)='&-^\\\x00', 0x5, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000), &(0x7f0000000040)=""/34, 0x22})

11:48:01 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x11, r0, 0xc272d000)

11:48:01 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:48:01 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x36000000)

11:48:01 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1d, 0x0, 0x0, 0x0)

11:48:01 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e)

11:48:01 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)

11:48:01 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:48:01 executing program 1:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:01 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x24)

11:48:01 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c000000)

11:48:17 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:48:17 executing program 0:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x2}, 0x6)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0)

11:48:17 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x105402)
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/binder-control\x00', 0x800, 0x0)
readv(r1, &(0x7f0000001280)=[{&(0x7f0000000040)=""/5, 0x5}, {&(0x7f00000000c0)=""/25, 0x19}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/178, 0xb2}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)}], 0x6)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:48:17 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xfffffffffffffffd, 0x103040)
socket$nl_generic(0x10, 0x3, 0x10)
openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f00000001c0)={0x0, 0x0, 0xe})
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f0000000140)=""/87, 0x57})
ioctl$MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x1f)
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)

11:48:17 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:17 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a)

11:48:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x10000000000)

11:48:17 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

11:48:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

11:48:17 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:17 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x21, 0x0, 0x0, 0x0)

11:48:17 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x9, 0x4)
fcntl$dupfd(r1, 0x0, r1)
fstat(r1, &(0x7f0000000000))

11:48:17 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:48:17 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

11:48:17 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x30)

11:48:17 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x600000000000000)

11:48:17 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
fsetxattr$security_selinux(r1, &(0x7f0000000040), &(0x7f0000000080)='system_u:object_r:semanage_trans_lock_t:s0\x00', 0x2b, 0x1)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000000)={0x3262, 0x10001, 0xffff, 0x1, 0x8})
r3 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r3, 0x0, r3)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1)

11:48:17 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:17 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

[ 2482.217324] kauditd_printk_skb: 10 callbacks suppressed
[ 2482.217362] audit: type=1400 audit(1764762497.628:72): avc:  denied  { relabelto } for  pid=11944 comm="syz-executor.0" name="UDPLITEv6" dev="sockfs" ino=45853 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:semanage_trans_lock_t:s0 tclass=rawip_socket permissive=1
11:48:17 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00000000000000)

11:48:17 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r1=>r0, 0x8000, 0xd733, 0x3})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f0000000040)={0x8000, 0x9, 0x0, 'queue0\x00', 0x83a})
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:48:17 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x22, 0x0, 0x0, 0x0)

11:48:17 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

11:48:17 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1200000000000000)

11:48:17 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x36)

11:48:32 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8001)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:48:32 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, &(0x7f0000000000), &(0x7f0000000040)=0x10)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:48:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x23, 0x0, 0x0, 0x0)

11:48:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080))

11:48:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
readahead(r1, 0x1, 0x7ff)

11:48:32 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1800000000000000)

11:48:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:48:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c)

11:48:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000080))

11:48:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:48:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x6a, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x4)

11:48:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

11:48:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000080))

11:48:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x600)

11:48:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:48:32 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e00000000000000)

11:48:47 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000080))

11:48:47 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
fsync(r0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x2800, 0x0)
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x6)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:48:47 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:48:47 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00)

11:48:47 executing program 0:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x240000)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
signalfd4(r1, &(0x7f0000000000)={[0x4]}, 0x8, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="1f1f5f669b873922538614b84053d015ac09ca3ea1ac12c3387706adccb3b05a0f1971b16ac0992e84e6c5"], 0x1c}}, 0x0)
mmap(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x0, 0x80010, r2, 0x0)

11:48:47 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

11:48:47 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

11:48:47 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = syz_io_uring_setup(0x4609, &(0x7f0000000000)={0x0, 0x945a, 0x1, 0x0, 0x40000251}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r3, 0x0, &(0x7f0000000400)="a9f581512be89d81a48e0be6c0ee364741fa2a4e627baef5d86070018ff0046e8e5027643e8c2c", 0x27, 0x0, 0x1}, 0x5)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x11, 0x80010, r1, 0x0)
r4 = syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_io_uring_setup(0x44f3, &(0x7f0000000340)={0x0, 0x57d9, 0x0, 0x0, 0x254, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000002c0)=<r7=>0x0, &(0x7f00000003c0))
r8 = syz_io_uring_complete(r7)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = fcntl$dupfd(r9, 0x0, r9)
sendmsg$nl_generic(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000005200210c0000ac46e32d6e68535f0000100055800c0002000800000000008081"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r11 = dup2(r10, r0)
syz_io_uring_setup(0x5825, &(0x7f0000000180)={0x0, 0x4bb4, 0x20, 0x0, 0x397}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)=<r12=>0x0)
syz_io_uring_submit(r5, r12, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x1}, 0x8a7)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_READY(r11, 0xc0189376, &(0x7f0000000740)=ANY=[@ANYBLOB="010000000100000018000000462a0576785b0ad183ee3a238858115b226d05914707304b6f1064c8aed1c4c13881640bda19cdfb9fa20892dcfd7c42524460ce7de195d43a28b19e5b99bcf9e4cfe6f4becca694f38cdf1b5862e7142525994959e6380285039bd9ffdc2ab18ac801127dda8d3d17b5619d1bd3098787b25b8d338a548aaed80f04d0b8f140a9fb346fb295b8d2f2fb089cd95ef7e1721284e533d1114b630d016215c0cacfd3999d38609aed1d19ac8c56071bbcfc9d87e1d43a10a3c0ee42f0847124c0b542adaaa85c91f5fbc93ada1c538f641c481fa6f5dc30c852f199e5b8ef3282", @ANYRES32, @ANYBLOB="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"])
ioctl$MON_IOCX_GETX(r8, 0x4018920a, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffffeac})

11:48:47 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), 0x0)

11:48:47 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:48:47 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2400000000000000)

11:48:47 executing program 5:
r0 = semget(0x2, 0x1, 0x8c)
semctl$SETVAL(r0, 0x2, 0x10, &(0x7f0000000040)=0x7)
r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x10001, 0xa0000)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:48:47 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

11:48:47 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1200)

11:48:47 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), 0x0)

11:48:47 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:48:47 executing program 0:
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x4aaf, &(0x7f0000000480)={0x0, 0x0, 0x1, 0x3, 0x327}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x6, 0x0}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r3, 0x0, r3)
r4 = syz_io_uring_setup(0x5e4e, &(0x7f0000000480)={0x0, 0xfffffffe, 0x0, 0x1, 0x242}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000380)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x7, 0x0}, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x2, 0x0, &(0x7f0000000040)="ee7ffc41bd7d45e6935ec0b70e999bcb8bc533d53923c3c9c42fe40591246186adb52b3e8abbfd5cd4a1f71aebbf45d0330302a41e9d312a58e79846d165535e0d9b9cf2bc5d908354ad4ac0faeed40e159e58b4e82400e53d64395a6d0dd0ed43d88ec5b1f79c294fa42fb92c1fb3ecc2df37c4f67b031e62e46e93cf83", 0x7, 0x0, 0x1}, 0x3)
fcntl$dupfd(r4, 0x406, 0xffffffffffffffff)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
r8 = socket$packet(0x11, 0x2, 0x300)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r10=>0x0})
setsockopt$packet_add_memb(r8, 0x107, 0x1, &(0x7f0000000040)={r10, 0x2, 0x6}, 0x10)
setsockopt$packet_add_memb(r8, 0x107, 0x1, &(0x7f0000000080)={r10, 0x1, 0x6}, 0x10)
setsockopt$packet_add_memb(r8, 0x107, 0x1, &(0x7f0000000340)={0x0, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="c80000d61f06ea8c334300", @ANYRES16=0x0, @ANYBLOB="010027bd7000ffdbdf2501000000080003000200000035ab00800000004000018006000100020054f66c5d55d591d0695a81ccd2609e22000008000300ffffffff08000600eeffffd4c400020009000000140004000008000300ffffffff58000180060005004e21000014000400fe800000000000000000000000000041060005004e230000140004002001000000000000000000000000000108000700e78df175a463cc2c737630fb34bc37c48812ce7e25b975769f1fffc437028dda9522595d5a3f3015ee0dde4b60f912117316a5bc58fc30df3649f11ebdbf3a9669e56718140d00bd7a740e6321256b4cc2836e31199ed5ada6b68fb45e4f2312f0f0fe4a03026be310d05e85413d990b893a61cd4392d53edaa7e599bf189d49aa7524580000000000000000000000000021283cbf801b9c85a8e30b7d6318e5c9998e70e45f8d6bb6fafc86da2a94a58826136dfa33b5b332df917a2b15ab2d6d7c7231fbaa8951f03d01c4df718bda18877942767c23075405c341366200"/390, @ANYRES16, @ANYBLOB="14000400fc0200"/20], 0xc8}, 0x1, 0x0, 0x0, 0x88c0}, 0x0)

[ 2512.407948] device syz_tun entered promiscuous mode
[ 2512.412320] device syz_tun left promiscuous mode
[ 2512.472563] device syz_tun entered promiscuous mode
[ 2512.476457] device syz_tun left promiscuous mode
[ 2516.977684] Bluetooth: hci4: command 0x0409 tx timeout
[ 2519.025685] Bluetooth: hci4: command 0x041b tx timeout
[ 2521.073701] Bluetooth: hci4: command 0x040f tx timeout
[ 2521.593942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2521.596082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2521.599008] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2521.666153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2521.667934] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2521.670306] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2521.827211] device syz_tun entered promiscuous mode
[ 2521.830735] device syz_tun left promiscuous mode
[ 2521.854526] device syz_tun entered promiscuous mode
[ 2521.860001] device syz_tun left promiscuous mode
[ 2523.121777] Bluetooth: hci4: command 0x0419 tx timeout
11:49:10 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1800)

11:49:10 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x80c00)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={0x0, 0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f00000000c0), &(0x7f0000000100)=0x10)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000002, 0x810, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x1, 0x1}, 0x2)

11:49:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), 0x0)

11:49:10 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x1ff, 0x440143)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000040)=""/45, 0x2d})
ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, &(0x7f0000000240)={&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000180)=""/130, 0x82})

11:49:10 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000006, 0x12, r0, 0x0)

11:49:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)

11:49:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

11:49:10 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a00000000000000)

11:49:10 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/216, 0xd8})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0x710, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000100)={&(0x7f00000000c0), &(0x7f0000000240)=""/112, 0x70})

11:49:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)

11:49:10 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000200)=""/156, 0x9c})
socket$nl_generic(0x10, 0x3, 0x10)

11:49:10 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000009, 0x1010, r0, 0x0)
close(r0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0)
dup2(r0, r0)
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000080)={0x70}, 0x4)
ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000040))

11:49:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

11:49:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4010, r0, 0x5062a000)

11:49:23 executing program 1:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x3c00, 0x0, 0x0)

11:49:23 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="7693bf3b7ccde7da034c5b0855e0352b9abab1ffd11ae932db7451830053ca8a8351520b807ba9137aab986b66682ad4cc946da3cbe1d695646decf65b7058209f67a836770f67c24f8d3de314155799c1f18e925f23a5dc14155e165a0a17291cebab971f946cb571b3c2ab6616e0060cd57cf39a2ccc708979702038111c51228720c59a492389d8939b1880f6ea5bae0dc732067e1d2e5961948bb4bf9f0251a544e73ee200447706ed63989c895a"], 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000000)={&(0x7f0000000180), &(0x7f0000002140)=""/4076, 0xfec})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r1, {0x0, 0xffffffffffffffff}}, './file0\x00'})
ioctl$MON_IOCX_GETX(r3, 0x4018920a, &(0x7f00000003c0)={&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000200)=""/124, 0x7c})

11:49:23 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e00)

11:49:23 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r4, 0x4018920a, &(0x7f0000000000)={0x0, 0x0})

11:49:23 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, r1, 0x329, 0x0, 0x0, {{0x11}, {@void, @val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xa4, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x9}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "571becf7d6279a9fdc533bb42d242fc4"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "4b320dc533ad34e747f27159e0ec3f99"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "3fb0b009b3ddb38190663b553427f601"}, @NL80211_ATTR_PMK={0x14, 0xfe, "03e3efe3c67c9a52e1bd9530a1140bde"}, @NL80211_ATTR_PMK={0x14, 0xfe, "365ff806953efbafe1d59b69b5f848b2"}]}, 0xa4}, 0x1, 0x0, 0x0, 0x1}, 0x40)
r3 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0x0)

11:49:23 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:49:23 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

11:49:23 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3000000000000000)

11:49:23 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:49:24 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 1)

11:49:24 executing program 0:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r0, 0x0, r0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3000001, 0x12, r0, 0x0)

11:49:24 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

[ 2548.682985] FAULT_INJECTION: forcing a failure.
[ 2548.682985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2548.687718] CPU: 1 PID: 12641 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2548.689325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2548.691212] Call Trace:
[ 2548.691842]  dump_stack+0x107/0x167
[ 2548.692680]  should_fail.cold+0x5/0xa
[ 2548.693559]  _copy_from_user+0x2e/0x1b0
[ 2548.694481]  io_uring_setup+0x9b/0x2980
[ 2548.695395]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2548.696517]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2548.697676]  ? wait_for_completion_io+0x270/0x270
[ 2548.698797]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2548.699888]  ? vfs_write+0x354/0xb10
[ 2548.700761]  ? fput_many+0x2f/0x1a0
[ 2548.701593]  ? ksys_write+0x1a9/0x260
[ 2548.702457]  ? __ia32_sys_read+0xb0/0xb0
[ 2548.703373]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2548.704569]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2548.705753]  do_syscall_64+0x33/0x40
[ 2548.706593]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2548.707758] RIP: 0033:0x7fbbed29eb19
[ 2548.708593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2548.712754] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2548.714470] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2548.716092] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2548.717699] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2548.719303] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2548.720919] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:49:24 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

11:49:24 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

11:49:24 executing program 7:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:49:24 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x2000)

11:49:24 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3600000000000000)

11:49:24 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 2)

[ 2548.933756] FAULT_INJECTION: forcing a failure.
[ 2548.933756] name failslab, interval 1, probability 0, space 0, times 0
[ 2548.936419] CPU: 1 PID: 12662 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2548.938030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2548.939988] Call Trace:
[ 2548.940610]  dump_stack+0x107/0x167
[ 2548.941462]  should_fail.cold+0x5/0xa
[ 2548.942367]  ? io_uring_setup+0x258/0x2980
[ 2548.943357]  should_failslab+0x5/0x20
[ 2548.944249]  kmem_cache_alloc_trace+0x55/0x320
[ 2548.945332]  io_uring_setup+0x258/0x2980
[ 2548.946282]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2548.947423]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2548.948619]  ? wait_for_completion_io+0x270/0x270
[ 2548.949765]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2548.950980]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2548.952204]  do_syscall_64+0x33/0x40
[ 2548.953082]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2548.954282] RIP: 0033:0x7fbbed29eb19
[ 2548.955155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2548.959453] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2548.961221] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2548.962953] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2548.964971] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2548.966988] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2548.969012] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2571.108368] FAULT_INJECTION: forcing a failure.
[ 2571.108368] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.111303] CPU: 0 PID: 12674 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2571.112712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.114355] Call Trace:
[ 2571.114891]  dump_stack+0x107/0x167
[ 2571.115946]  should_fail.cold+0x5/0xa
[ 2571.116709]  ? create_object.isra.0+0x3a/0xa30
[ 2571.117624]  should_failslab+0x5/0x20
[ 2571.118383]  kmem_cache_alloc+0x5b/0x310
[ 2571.119195]  create_object.isra.0+0x3a/0xa30
[ 2571.120077]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2571.121098]  kmem_cache_alloc_trace+0x151/0x320
[ 2571.122036]  io_uring_setup+0x258/0x2980
[ 2571.122849]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2571.123818]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2571.124821]  ? wait_for_completion_io+0x270/0x270
[ 2571.125801]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2571.126860]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2571.127920]  do_syscall_64+0x33/0x40
[ 2571.128804]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2571.129911] RIP: 0033:0x7fbbed29eb19
[ 2571.130706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.134639] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2571.136287] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2571.137810] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2571.139326] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2571.140875] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2571.142398] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:49:46 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c00000000000000)

11:49:46 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0xd4, 0xe3883)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="bb977acc73a1b84c9ac87ae6fb0ae93c38894f1f6e47741e478be84ae6f195b4ad868bd60db2c546bab233dd961a7ed5a97b417ac7a5f82c575abd8f34804ea441050dfa5a5b3134dbe25bb8ed8063c3"], 0x1c}}, 0x0)
mmap$usbmon(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x4008111, r0, 0x7ff)
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)

11:49:46 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:49:46 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

11:49:46 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2400)

11:49:46 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 3)

11:49:46 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000000200), 0x2, 0x165041)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000240)={&(0x7f0000000280), &(0x7f00000001c0)=""/36, 0x24})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000180)={&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000380)=""/4096, 0x1000})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000000)={&(0x7f0000000140), &(0x7f00000002c0)=""/158, 0x9e})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:49:46 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x800)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x35, 0x43, 0x4b, 0x0, 0x0, 0x8, 0xd, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xb2800000, 0x0, @perf_config_ext={0x2, 0x2}, 0x6, 0x5, 0xffbb, 0x7, 0x200, 0x80000001, 0x8, 0x0, 0x8, 0x0, 0x7}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
sendmsg$nl_generic(r3, &(0x7f0000000640)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000100)={0x4f4, 0x21, 0x110, 0x70bd27, 0x25dfdbfb, {0xb}, [@nested={0x13d, 0x3d, 0x0, 0x1, [@typed={0x11, 0x74, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @typed={0x11, 0x70, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @typed={0x8, 0x19, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0xa, 0x74, 0x0, 0x0, @binary="7d7e2c7902c6"}, @generic="eee59500c449c5dda53f40c01179d8ab48527746fcb1bcdcd3d6fdb0bdd86ac579142be62fb023df38b5b1dfda9ef22f09ea3e1485e9397e09d4d0f9f0fa4bf2a296970ea58b7a68a559d113b1c0272403c14dc5552b2801396b2e428171898da447c9c209c131d7bfbe7d610f449db7d652d54f101339c36ad373bedbd484f69a56fda58c717e135a7dc16cd974ce5bd3c837ce70edfcdc7932352e1178c498cd4f182117cf3012f0d98c2dc8", @generic="f1f7bb7deb6f5d75f2f956b7b967d8c8bdfa217db9ee20e84561c886ce0342cff5e3b05667ebfccd68170f2bf7f570f5e54c745ff2e984f5211aaf7d73faa499db73b1fe3f476b4e70ed560bdb3aeb48"]}, @typed={0x8, 0x7f, 0x0, 0x0, @ipv4=@loopback}, @typed={0x4, 0x3b}, @nested={0x392, 0x5e, 0x0, 0x1, [@generic="63005c57f64c251b2c0ae934038756f6a0b047e12a6999beff21da00543aaceabdaf340d47a9b4f8ebf26026d44bc4c2cfb625657c1aacdbaa7a4c000f5cace5911e37887991d2e7baac4ad6bcfc2e14dbd0d4f7be5e152856fbc07c1b1100997bfbc3930b809491ab50769d0bd917db3505c656fc00970478d1fef1b94b2d8834ee4f2a0eeca99dc20c9f3ce73a2a8263fa28760ac6518fab984c300cbda6d99141baa7ff59ec4555f87100c43155b41d7caf78290d24bc3e566d57ae9a9c418e9e146998b13f770d", @generic="4abb7b3fcb0f58c7f5c83a0bb60ec372aaae4007782c7a991bb113eb2f4f751b1988d1f8ae906e9d5058d4540848340ccf5f89d791a85c4fba1bb0b02d8cf04cf8645e10e611d1c10b6ef68d24f69152dd778e", @generic="2949a85ce6873599cec9e6e93b7034838dda4d8769c672c49ea8794b92c0748b93f83c79ca69b4143fc5153a43db95b5fd6f3d2b70ac86addb53c0fa11b3fd144edecb8f570622a1ed6213b320a624f66368eddc934651d3747a5e599e6d065e0600c12b431975015ea339830e374a66c60ee98b4db9e25fc4758fbd8a3a959dbd924a7e842c63308fe6870963324a10541424c1c6c6ba235444c8fb00c6a21a5928aa5f3c353402ee3ba6c7bcb311bfb1054325df08e103ec4f4b063866ae29854ac04c80f3738fd6816dcb2b", @typed={0x8, 0x24, 0x0, 0x0, @uid=0xee00}, @generic="5f83cb4a783e195944be7cc0169e7d69699824abd226cbc0aa629d57525f42ae6179d1c8103f57dd535314ee5adf63a26aa65f8704d596fc569a76c7caf1fd879bd41c11841a6f207a6c63de9605a7b3e5f1f950bebe04306d04a6dbf20cf4bb63469db76fe2dfdb17f0b26445f57947654d5727fca2419dbf9ddd555904aa11a2d47f39b1fa49c5231b6e242cc3821a6d06ed93c1026dffe568a05581ee3f9fbb7208662d368172bdd2650a6a957bf160a6da2723", @typed={0x11, 0x84, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @typed={0x8, 0x78, 0x0, 0x0, @fd=r2}, @typed={0x4, 0x1a}, @typed={0x4, 0x7d}, @typed={0xc1, 0x3e, 0x0, 0x0, @binary="3ab0401419e82a8dda6072e39d557efcb5932388e4da1cc221b7d0edb4f5854d1ad480372fa9e0a6c0092671873be92eadb01a550ae96d30df8c83e9061e5bcb4069f4fb14b656d6aefd20ee1fce4e4907366842555cefdc644591e9cfa952fe0c3be6c0c264951f86410ab6688e7eebb7adb41762b1f06b9348c1c0566aeb657f8e8f9ed52ded83f0f5c6892bd930d261e33352327b684643d75a739557e490fab724fffbe4d7bb02d38717a843c0fe5553f12b6a0f68f8b54181f77b"}]}]}, 0x4f4}, 0x1, 0x0, 0x0, 0x4885}, 0x400c090)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x50, r1, 0x67c6c000)

11:49:46 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:49:46 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r3 = openat2(r2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x200000, 0x1, 0x3}, 0x18)
ioctl$MON_IOCH_MFLUSH(r3, 0x9208, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:49:46 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f0000000140)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000380)={{0x0, 0x5, 0x0, 0x428, 0x1, 0x3, 0x8, 0x7fffffff, 0x0, 0x1, 0x0, 0x7, 0x7fffffff, 0x9, 0x5}, 0x30, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})

11:49:46 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@vsock, 0x80, &(0x7f0000000080), 0x0, &(0x7f00000000c0)=[{0x88, 0x1, 0x0, "c0a2985733fbdba18adde0c0b50df0b5311751645528efdf4c984548cd6820b8fe0732f4660d1da1d9273955a35fea2d8d251215aab950295b8941f1ac0dcb61cb2cd63d17ef6279dc83b87bd3a09f13aa7edac05ef131087c8d7588c68cc2dfc64ff79c53e0bbed06977acb5e477aee01bbc326ff5fd8"}, {0xb0, 0x108, 0x40, "f06247ad8fb1ad1f6897205d0e6c36d51570d390c659a08dc51f572380fbf68320da3b893410a838563fd47043d52a720a5854839f875aef9bb7d2d6139336601c44a70e8ebd470cd2375b698d637abb89cf9a5b4ab47067620ac69ece8e8072fe71ee591e2951c414718fc21cb6d3e7898664e50f4cd51684b9b97b4a04604bf7f78bcbb01fb0c843e981e4e8005c036ff6c30ced7cb669a080984b"}], 0x138}, 0x0, 0x2400c800, 0x1, {0x0, r1}}, 0x5)

11:50:00 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={<r4=>0xffffffffffffffff})
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r7=>r3, @ANYBLOB="0000000000000000054a00d46c653000"])
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
ioctl$FIGETBSZ(r4, 0x2, &(0x7f00000001c0))
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
sendmsg$unix(r7, &(0x7f0000002bc0)={&(0x7f0000000480)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000000500)="f89655849e659522eaa889676273479ee87122e211f84cc38687b6bd02c7d3903ffa0f5f7e0c847cbc69e303f1b74322a292c96e94be3b83cbb46bbf805c7d1465600f9ef620ef0b1ae1249c642e4d8aa7f17f3a82a6828e84bbc0ef741d99bce9eb831b23c1724f08339eb43e78334d121d2d6cbd6612d455d494df22d87b7c8d7ed9029a478a62548a36458bb14ed8245c24b6ee45c5694baafccd09b2c304c2682041ce2575fbcd452c760366a24c9a2674f429cf694dc84991f8c1a3ae60b43dfb497b51ac88b33c01b644ead93529", 0xd1}, {&(0x7f0000000800)="95454350ec8c19987e4ed187b76825556aec0832ffc0b8b69b68e857e34106c73d6f924ef92b3fab0db65ddc58d5bfdbc636fba8fff087281a553ac933eeb07abb704afd2be4c4ce9221ba0740be185abc6ff742c662eefb5e8a18618ea1aa33bdcd997b2e280428bbe9f1c088b674ee185df52efc275873f7b089c45f39a1f357caa813a71e", 0x86}, {&(0x7f00000008c0)="91e3bd7641be9110ce5f870abe8b289b2c44731008d7903c876364f39896f87ac34afbfd1fe84a6ed7fd2daf9ee3ee3a1879244b69af6bb03fb54039f94562437e084c58cf4c874b8a60270e47dfd8cbbfd39a58dc1622ab6efca6e57187df9676851f45291e81c0ad6a2272999239af465f26eb1f50c91fe62c0e24afe901a39c836f72ca5b10", 0x87}, {&(0x7f0000000400)="217d7b17a515d8c7304a96356abb6d3f05a44f56a172ace5ca7efc909b562d9b7327ac2a5f2ba3b4cabc2865b82604f8a28d66aadfd68d9ea83022", 0x3b}, {&(0x7f0000000980)="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", 0x1000}, {&(0x7f0000001980)="1036a50cb19092bcb6a4af4310a2aa70c7d0da951537be89250efddc09a6db52b3ed1a7c4bc43ee896c3d95daff7c985bf16915a082f595bf866b779dde9900630ac6681d889a703ca8da3055b8ac2dfe2b3d403754d615e9f6017711a07d417aa49ecc1d762b35a81f2203ef0592948539c5030b792eec30948f27c95a108248fd263e1768bdec7db2c738b837ecb5d4d8b1dd965964d747bc850d4f56ae04648bb9e8a4e13a10f3aeae1e46244b61a495c338921662014ace2d9c6067eb6d981b6b326a5fe0078e6e8576e", 0xcc}, {&(0x7f0000001a80)="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", 0x1000}, {&(0x7f0000002a80)="27a4d873e61b906b8e1e43ed30132436b65136ea547d6b0d631a8c6aec870f8ec839ac7eeb0a2f8838af51d51b889afce902b6dbb641568019a1e16638347694d0689a0b727d00e3adb01adb87e21a2fc5e9e2a9f29cd034c699491767e554db23c56b504b88e507522be06e8bea3d431fb174a323761b9b6af6944d19fe72ed809989e07ea13caf4f501b2910d772e004975c3b7f90d1d474e451860108a2f3fbfed95881ad6b66df625c42406282fb3b73f18230ebde0440985521b01f55ebb69e1207ba6d2e3aea228adb22470279385ccbb87585601bc656e66ec985bf3d10a321e8c6ae114a8ffae5a1310385537cba12", 0xf3}], 0x8, &(0x7f0000002b80)=[@rights={{0x14, 0x1, 0x1, [r8]}}, @rights={{0x14, 0x1, 0x1, [r9]}}], 0x30, 0xc015}, 0x800)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r10=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:00 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
finit_module(r1, &(0x7f0000000000)='/dev/usbmon#\x00', 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:50:00 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
recvmmsg$unix(r1, &(0x7f0000002e40)=[{{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000000240)=""/43, 0x2b}, {&(0x7f0000001340)=""/248, 0xf8}, {&(0x7f0000001440)=""/56, 0x38}], 0x4, &(0x7f00000014c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x78}}, {{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000001540)=""/141, 0x8d}, {&(0x7f0000001600)=""/53, 0x35}], 0x2, &(0x7f0000001680)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{&(0x7f0000001700), 0x6e, &(0x7f0000002880)=[{&(0x7f0000001780)=""/4096, 0x1000}, {&(0x7f0000002780)=""/252, 0xfc}], 0x2, &(0x7f00000028c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}, {{&(0x7f0000002a00)=@abs, 0x6e, &(0x7f0000002cc0)=[{&(0x7f0000002a80)=""/28, 0x1c}, {&(0x7f0000002ac0)=""/27, 0x1b}, {&(0x7f0000002b00)=""/74, 0x4a}, {&(0x7f0000002b80)}, {&(0x7f0000002bc0)=""/225, 0xe1}], 0x5, &(0x7f0000003040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r3=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="140000000000000001000000010000ea71d3e9b9949732deed2fa4482b83d10c6ba2a64ebbb6f330e2cf8a51d18ee1ec6f6fdaa44507d17e9a206326d6c6818d1c0b9673deca54bbef79c207fb83a1a78321376bb3b888645d6def13e2d19fedb381", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x100}}], 0x4, 0x20010121, &(0x7f0000002f40)={0x77359400})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x800000, 0x20010, r6, 0x8c2f6000)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, 0x0, 0x329, 0x0, 0x0, {{0x11}, {@void, @val={0x8, 0x3, r9}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000003000)={&(0x7f0000002f80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002fc0)={&(0x7f0000003580)={0x1158, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_FUNC={0x24, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_INSTANCE_ID={0x5, 0xf, 0xac}, @NL80211_NAN_FUNC_TERM_REASON={0x5, 0x10, 0x8c}, @NL80211_NAN_FUNC_CLOSE_RANGE={0x4}, @NL80211_NAN_FUNC_PUBLISH_TYPE={0x5, 0x3, 0x8}, @NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE={0x4}]}, @NL80211_ATTR_NAN_FUNC={0x1108, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}, @NL80211_NAN_FUNC_RX_MATCH_FILTER={0x10f0, 0xd, 0x0, 0x1, [{0x1004, 0x0, "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"}, {0xa4, 0x0, "9345cdbf999794a3c0527859f15e01ac62640e3616b07641c27664e9f987a350e008113c46c5dd85191b4ca927e2247fc83130657c30cf83f9c8ac17f75fb5a40e124965a7d4391fa784a7672c58834e08b22b264f34094286798337424c32fedbabc7b9dd806c05452a662c228c1bfee2ab4a79365fcbec5bff872c05eadc54a47a103a5f82a761451d1cfb14de21898306e6e66f106e90029ff73ed9684d26"}, {0x1a, 0x0, "476e96f6e1a8af42c243aeb621781c88d0266ee8691c"}, {0x26, 0x0, "dc8c869fa8a5de98eee020e4faac7901eee7ae0c76b0a23dc5c831999f2bc9765bb7"}]}, @NL80211_NAN_FUNC_INSTANCE_ID={0x5}, @NL80211_NAN_FUNC_TYPE={0x5}]}, @NL80211_ATTR_NAN_FUNC={0x18, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}, @NL80211_NAN_FUNC_FOLLOW_UP_ID={0x5, 0x6, 0x20}, @NL80211_NAN_FUNC_TTL={0x8, 0xa, 0x4}]}]}, 0x1158}, 0x1, 0x0, 0x0, 0x9}, 0x0)
ioctl$MON_IOCX_GETX(r3, 0x4018920a, &(0x7f0000002b80)={0x0, 0x0, 0xb8924378e6be91d3})
r10 = socket$netlink(0x10, 0x3, 0x10)
r11 = fcntl$dupfd(r10, 0x0, r10)
sendmsg$nl_generic(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r11, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/215, 0xd7})

11:50:00 executing program 7:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:50:00 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

11:50:00 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a00)

11:50:00 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x8010, r0, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000000, 0x11, r0, 0x72c22000)

11:50:00 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 4)

[ 2584.993100] FAULT_INJECTION: forcing a failure.
[ 2584.993100] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2584.995662] CPU: 1 PID: 12720 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2584.997143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2584.998889] Call Trace:
[ 2584.999446]  dump_stack+0x107/0x167
[ 2585.000236]  should_fail.cold+0x5/0xa
[ 2585.001056]  __alloc_pages_nodemask+0x182/0x600
[ 2585.002043]  ? lock_release+0x680/0x680
[ 2585.002869]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2585.004150]  ? lock_downgrade+0x6d0/0x6d0
[ 2585.005034]  alloc_pages_current+0x187/0x280
[ 2585.005956]  kmalloc_order+0x35/0x160
[ 2585.006770]  kmalloc_order_trace+0x14/0xa0
[ 2585.007661]  io_uring_setup+0x33c/0x2980
[ 2585.008535]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2585.009551]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2585.010607]  ? wait_for_completion_io+0x270/0x270
[ 2585.011627]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2585.012723]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2585.013813]  do_syscall_64+0x33/0x40
[ 2585.014599]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2585.015683] RIP: 0033:0x7fbbed29eb19
[ 2585.016479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
11:50:00 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

[ 2585.020387] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2585.022152] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2585.023661] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2585.025167] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2585.026680] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2585.028201] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:00 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 5)

11:50:00 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:50:00 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff2000/0x2000)=nil, 0x2000, 0x3000004, 0x1010, r7, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:00 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

[ 2585.153492] FAULT_INJECTION: forcing a failure.
[ 2585.153492] name failslab, interval 1, probability 0, space 0, times 0
[ 2585.154848] CPU: 0 PID: 12746 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2585.155632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2585.156580] Call Trace:
[ 2585.156885]  dump_stack+0x107/0x167
[ 2585.157303]  should_fail.cold+0x5/0xa
[ 2585.157731]  ? create_object.isra.0+0x3a/0xa30
[ 2585.158262]  should_failslab+0x5/0x20
[ 2585.158713]  kmem_cache_alloc+0x5b/0x310
[ 2585.159178]  create_object.isra.0+0x3a/0xa30
[ 2585.159683]  ? kasan_unpoison_shadow+0x33/0x50
[ 2585.160215]  kmalloc_order+0xfe/0x160
[ 2585.160656]  kmalloc_order_trace+0x14/0xa0
[ 2585.161145]  io_uring_setup+0x33c/0x2980
[ 2585.161607]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2585.162163]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2585.162740]  ? wait_for_completion_io+0x270/0x270
[ 2585.163309]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2585.163903]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2585.164524]  do_syscall_64+0x33/0x40
[ 2585.164950]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2585.165537] RIP: 0033:0x7fbbed29eb19
[ 2585.165962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2585.168071] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2585.168961] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2585.169771] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2585.170588] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2585.171406] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2585.172239] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:13 executing program 4:
write$P9_RLINK(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x47, 0x1}, 0x7)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000000c0)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x88, 0x52, 0x200, 0x0, 0x0, {0xa}, [@generic="950f3bd37272d3d81bd1b4dab37f20a946dd69a8bbe95612505e80fba88d5b46c99d3be5952f44e54cc5f2d5f3cb7a43ba900a287a439c8d30f1b00fd2e7504de3702be9896d21d1fe2dd671c1b55db8bce3b01469d576cac9cf0f2d052d9af61c3f8bbef88bcae41ca828ee754a8557de0e8a"]}, 0x88}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r4, 0x40189206, &(0x7f0000000180)={&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000100)=""/104, 0xfffffffffffffdb2})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:50:13 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pread64(r1, &(0x7f00000002c0)=""/141, 0x8d, 0x8)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x52, 0x200, 0x70bd26, 0x0, {0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f00000001c0)={&(0x7f0000000180), &(0x7f0000000380)=""/93, 0x5d})
signalfd(r0, &(0x7f0000000000)={[0xffff]}, 0x8)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff})
ioctl$MON_IOCX_GETX(r4, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

[ 2598.403138] FAULT_INJECTION: forcing a failure.
[ 2598.403138] name failslab, interval 1, probability 0, space 0, times 0
[ 2598.404686] CPU: 0 PID: 12763 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2598.405589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2598.406597] Call Trace:
[ 2598.406927]  dump_stack+0x107/0x167
[ 2598.407366]  should_fail.cold+0x5/0xa
[ 2598.407848]  ? io_uring_setup+0x40b/0x2980
[ 2598.408380]  should_failslab+0x5/0x20
[ 2598.408845]  kmem_cache_alloc_trace+0x55/0x320
[ 2598.409403]  io_uring_setup+0x40b/0x2980
[ 2598.409903]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2598.410502]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2598.411132]  ? wait_for_completion_io+0x270/0x270
[ 2598.411734]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2598.412384]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2598.413010]  do_syscall_64+0x33/0x40
[ 2598.413465]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2598.414085] RIP: 0033:0x7fbbed29eb19
[ 2598.414540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2598.416829] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2598.417763] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2598.418639] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2598.419521] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2598.420397] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2598.421246] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:13 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

11:50:13 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3000)

11:50:13 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r0, 0x0, r0)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r0, 0xf505, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)

11:50:13 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 6)

11:50:13 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x4, 0x0, 0x0, 0xa4}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0x8654}, 0x1}, 0xffffffff)
pipe2(&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:13 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x900, 0x0, 0x0, 0x0)

11:50:13 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 7)

[ 2598.476656] FAULT_INJECTION: forcing a failure.
[ 2598.476656] name failslab, interval 1, probability 0, space 0, times 0
[ 2598.478062] CPU: 0 PID: 12779 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2598.478861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2598.479809] Call Trace:
[ 2598.480133]  dump_stack+0x107/0x167
[ 2598.480570]  should_fail.cold+0x5/0xa
[ 2598.481008]  ? create_object.isra.0+0x3a/0xa30
[ 2598.481553]  should_failslab+0x5/0x20
[ 2598.481986]  kmem_cache_alloc+0x5b/0x310
[ 2598.482447]  create_object.isra.0+0x3a/0xa30
[ 2598.482972]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2598.483551]  kmem_cache_alloc_trace+0x151/0x320
[ 2598.484122]  io_uring_setup+0x40b/0x2980
[ 2598.484616]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2598.485188]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2598.485788]  ? wait_for_completion_io+0x270/0x270
[ 2598.486367]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2598.486956]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2598.487564]  do_syscall_64+0x33/0x40
[ 2598.488007]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2598.488616] RIP: 0033:0x7fbbed29eb19
[ 2598.489060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2598.491250] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2598.492127] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2598.492985] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2598.493836] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2598.494683] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2598.495528] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:13 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r2, 0xf502, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:50:13 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:50:27 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x3, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:50:27 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa00, 0x0, 0x0, 0x0)

11:50:27 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f0000000000)={0x0, 0x0, 0xfffffedc})

11:50:27 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0xb)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:27 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:50:27 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 8)

11:50:27 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3600)

11:50:27 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000001380)={&(0x7f0000000000), 0xc, &(0x7f0000001340)={&(0x7f0000000080)={0x129c, r1, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x10c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7f}, @ETHTOOL_A_BITSET_VALUE={0xf6, 0x4, "183ffdc1aec006d8065e396754b42fc3dd9aa874864c2c022fb72302a3290b0381790bfae97c78a4e9e6e1a86fa6873a137be17ddd54ae048fac084920826c88766df7d1ed255f457dbc1fa29fac779f9dd9c363587b8c27228a2561b249bce2b7a8887c1e866672df500affbaf069643e5df4a4b8024068e491f3e9d6f16840bff666dc23c44717b3d75a84da5ef7d4e7d604085040bc095311edd31a19e0f53e23b7e2432d00c2ae6616dac66d0569c50c08bd22f8b16fe006e693a041944eb47a2c382ce0570448fa1e5ac24a883361d9597896b8ae5f57a6ccb7639f868995ded97540a60a3febd13138b2ff72cd0fec"}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x117c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xc2, 0x4, "c90b1dbc6bd2a1fdbee3789703fe93933aea483bf8f81a6e8422719829ff39cb1385e44853d270d74f85153c90e2bb37162d1ae8160ced332824dc656944983b16c146661bc843de40951cebdf8c25a7932fed4ac80adbd0d7e34680acfa36eb3de419931e67b77fd4c12f96ee970c0e505afefc5bd7b1a9c2970c4804b6071a85f542a740eda5f4174ad7ee4554b09822c47c257c0fe83965c795bc9aab6db3cd7d2cb029b885e5e5527cf9be1ffe99e55237b8be20f28dc912a83d5b92"}, @ETHTOOL_A_BITSET_BITS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '*\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa2b}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/usbmon#\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/usbmon#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '^\\{/!:\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1c4}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x770}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}]}]}, 0x129c}, 0x1, 0x0, 0x0, 0x10}, 0x20000854)
r2 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
sendmsg$TIPC_CMD_GET_NODES(r4, &(0x7f0000001480)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)={0x1c, 0x0, 0x0, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40091}, 0x240000c0)

[ 2611.780745] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12801 comm=syz-executor.0
[ 2611.798090] FAULT_INJECTION: forcing a failure.
[ 2611.798090] name failslab, interval 1, probability 0, space 0, times 0
[ 2611.800467] CPU: 1 PID: 12806 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2611.801932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2611.803684] Call Trace:
[ 2611.804242]  dump_stack+0x107/0x167
[ 2611.805023]  should_fail.cold+0x5/0xa
[ 2611.805825]  ? create_object.isra.0+0x3a/0xa30
[ 2611.806781]  should_failslab+0x5/0x20
[ 2611.807578]  kmem_cache_alloc+0x5b/0x310
[ 2611.808433]  create_object.isra.0+0x3a/0xa30
[ 2611.809384]  kmemleak_alloc_percpu+0xa0/0x100
[ 2611.810328]  pcpu_alloc+0x4e2/0x1240
[ 2611.811123]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2611.811975]  percpu_ref_init+0x31/0x3d0
[ 2611.812826]  io_uring_setup+0x47a/0x2980
[ 2611.813677]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2611.814695]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2611.815752]  ? wait_for_completion_io+0x270/0x270
[ 2611.816807]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2611.817906]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2611.818990]  do_syscall_64+0x33/0x40
[ 2611.819772]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2611.820867] RIP: 0033:0x7fbbed29eb19
[ 2611.821655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2611.825542] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2611.827135] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2611.828657] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2611.830154] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2611.831671] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2611.833179] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:27 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)

11:50:27 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x4, 0x2a00)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
mmap$usbmon(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x2)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:50:27 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x800000)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x20)
dup2(r1, 0xffffffffffffffff)

11:50:27 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:50:27 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xb00, 0x0, 0x0, 0x0)

11:50:27 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000fed000/0x2000)=nil, 0x2000, 0x0, 0x4010, r0, 0x8000000)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:27 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c00)

11:50:27 executing program 0:
shmget$private(0x0, 0x2000, 0x1000, &(0x7f0000ffe000/0x2000)=nil)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x40000)
shmget$private(0x0, 0x1000, 0x80, &(0x7f0000ffe000/0x1000)=nil)
r1 = shmget$private(0x0, 0x2000, 0x20, &(0x7f0000ffb000/0x2000)=nil)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000080)="1dcf9f590af7538ab9b2a9a8340941f9d006c95c3b944c5c70954a1bde9df75b427ee452006b4ae81f2aea4a06b8e83fd081f0c50bc052d28236f2fa421adcf70e84541d85306085e35cd49ff05a553988fe5e4fa8dc16fe9b232579cf81c70df2f02cd22be893b87c8aecf330311468711fbbd9e429c7d3afb49124c51ee9ea108ce8ec4ebfd3f2a39c042b89a97d9ad7bedb02387f4bf23260901b4c0bd6b19bc20a4319cda81900ecb6bbf356adfa958f90f641b8bec964f17efadc4de32fe5b24c674e6ade5523537a0aca22331f30678862efdbaee95d6f3110a5cffc0dcff140da5ab377a9c79249e27ef23e1f27434fffdcc95c430a0199f1771b58f7")
shmctl$SHM_STAT(r1, 0xd, &(0x7f0000000000)=""/95)
shmat(r1, &(0x7f0000ffe000/0x1000)=nil, 0x2000)

11:50:27 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:50:27 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 9)

[ 2612.186303] FAULT_INJECTION: forcing a failure.
[ 2612.186303] name failslab, interval 1, probability 0, space 0, times 0
[ 2612.188759] CPU: 0 PID: 12849 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2612.190206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2612.191965] Call Trace:
[ 2612.192523]  dump_stack+0x107/0x167
[ 2612.193310]  should_fail.cold+0x5/0xa
[ 2612.194117]  ? create_object.isra.0+0x3a/0xa30
[ 2612.195076]  should_failslab+0x5/0x20
[ 2612.195881]  kmem_cache_alloc+0x5b/0x310
[ 2612.196754]  create_object.isra.0+0x3a/0xa30
[ 2612.197691]  kmemleak_alloc_percpu+0xa0/0x100
[ 2612.198637]  pcpu_alloc+0x4e2/0x1240
[ 2612.199441]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2612.200300]  percpu_ref_init+0x31/0x3d0
[ 2612.201146]  io_uring_setup+0x47a/0x2980
[ 2612.202001]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2612.203018]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2612.204084]  ? wait_for_completion_io+0x270/0x270
[ 2612.205146]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2612.206249]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2612.207341]  do_syscall_64+0x33/0x40
[ 2612.208125]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2612.209195] RIP: 0033:0x7fbbed29eb19
[ 2612.209976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2612.213866] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2612.215471] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2612.216980] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2612.218482] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2612.219981] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2612.221496] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:42 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0xfffffffffffffffb, 0x100)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, &(0x7f00000000c0)={&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/194, 0xc2})

11:50:42 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f00000001c0), 0x7, 0x800)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
syz_open_dev$usbmon(&(0x7f0000000180), 0x3f8000000000000, 0x2000)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
dup(r1)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000140)={&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000200)=""/43, 0x2b})

11:50:42 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

11:50:42 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

11:50:42 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000140), 0x1f, 0x344402)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100200098000000", @ANYRES32=r0, @ANYBLOB="00696c61300028d0552b829429cf97afb479e0dd883004b76e2758457fc62bbe396953ddb7"])
ioctl$MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000002, 0x110, r2, 0x28547000)
syz_io_uring_setup(0x83b, &(0x7f0000000040)={0x0, 0xae7, 0x0, 0x3, 0x2bd}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))

11:50:42 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x0)

11:50:42 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/70, 0x46}, {&(0x7f00000003c0)=""/109, 0x6d}, {&(0x7f0000000480)=""/214, 0xd6}, {&(0x7f0000000580)=""/140, 0x8c}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000800)=""/182, 0xb6}], 0x6)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:50:42 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 10)

[ 2626.793063] FAULT_INJECTION: forcing a failure.
[ 2626.793063] name failslab, interval 1, probability 0, space 0, times 0
[ 2626.795380] CPU: 0 PID: 12870 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2626.796732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2626.798353] Call Trace:
[ 2626.798889]  dump_stack+0x107/0x167
[ 2626.799612]  should_fail.cold+0x5/0xa
[ 2626.800348]  ? percpu_ref_init+0xd8/0x3d0
[ 2626.801165]  should_failslab+0x5/0x20
[ 2626.801904]  kmem_cache_alloc_trace+0x55/0x320
[ 2626.802804]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2626.803600]  percpu_ref_init+0xd8/0x3d0
[ 2626.804373]  io_uring_setup+0x47a/0x2980
[ 2626.805169]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2626.806107]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2626.807113]  ? wait_for_completion_io+0x270/0x270
[ 2626.808070]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2626.809126]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2626.810130]  do_syscall_64+0x33/0x40
[ 2626.810849]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2626.811846] RIP: 0033:0x7fbbed29eb19
[ 2626.812564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2626.816135] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2626.817608] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2626.818985] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2626.820358] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2626.821736] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2626.823097] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:42 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x0)

11:50:42 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000)={'syz0', "cc6755f9e622a808fb65917439fcf74b1f473ce73ccad2a394548756ddb2c9b48a5b090b23bacd107662e29e3ffd82cbbc7bc5d53a7ff088e87d2aca9fc1cff2f4759fa47673a4a51f6aa7af8156d831d58099281f5ff7de643304ba8ee1f594ee236f33762c2b4ee8b58d43bd9b1ef427688cb5aa11b3a9eacf79e734a7fa28292bf484c87a7c23399176e4927d65d73285a5f7da9df26871"}, 0x9d)

11:50:42 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xd00, 0x0, 0x0, 0x0)

11:50:42 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x6000000)

11:50:42 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 11)

11:50:42 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 1)

11:50:42 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000001c0)=ANY=[@ANYBLOB="01a8164351e383c35353949d11d6d24c2b0018000000", @ANYRES32=<r7=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, 0x0, 0x329, 0x0, 0x0, {{0x11}, {@void, @val={0x8, 0x3, r8}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x5c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x5a}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x168}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x3c}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x40044)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = io_uring_setup(0x5a0, &(0x7f0000000340)={0x0, 0x7832, 0x0, 0x1, 0x207, 0x0, r6})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000001, 0x80010, r9, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2627.038212] FAULT_INJECTION: forcing a failure.
[ 2627.038212] name failslab, interval 1, probability 0, space 0, times 0
[ 2627.040243] CPU: 0 PID: 12897 Comm: syz-executor.7 Not tainted 5.10.246 #1
[ 2627.041426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2627.042858] Call Trace:
[ 2627.043311]  dump_stack+0x107/0x167
[ 2627.043927]  should_fail.cold+0x5/0xa
[ 2627.044578]  ? vm_area_dup+0x78/0x290
[ 2627.045229]  should_failslab+0x5/0x20
[ 2627.045891]  kmem_cache_alloc+0x5b/0x310
[ 2627.046587]  vm_area_dup+0x78/0x290
[ 2627.047211]  ? kernel_text_address+0xf2/0x120
[ 2627.047247] FAULT_INJECTION: forcing a failure.
[ 2627.047247] name failslab, interval 1, probability 0, space 0, times 0
[ 2627.047970]  ? mark_lock+0xf5/0x2df0
[ 2627.047991]  ? lock_chain_count+0x20/0x20
[ 2627.048009]  ? avc_has_extended_perms+0xf40/0xf40
[ 2627.048034]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2627.053312]  ? lock_downgrade+0x6d0/0x6d0
[ 2627.054002]  ? __lock_acquire+0x1657/0x5b00
[ 2627.054732]  ? vm_area_alloc+0x110/0x110
[ 2627.055403]  ? __lock_acquire+0x1657/0x5b00
[ 2627.056129]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2627.057012]  ? vmacache_find+0x55/0x2a0
[ 2627.057663]  __split_vma+0xa8/0x4e0
[ 2627.058268]  __do_munmap+0x365/0x1260
[ 2627.058903]  ? arch_get_unmapped_area+0x450/0x450
[ 2627.059670]  mmap_region+0x7cc/0x1500
[ 2627.060320]  do_mmap+0x868/0x1370
[ 2627.060907]  vm_mmap_pgoff+0x198/0x1f0
[ 2627.061557]  ? randomize_page+0xb0/0xb0
[ 2627.062229]  ksys_mmap_pgoff+0x41c/0x560
[ 2627.062905]  ? find_mergeable_anon_vma+0x250/0x250
[ 2627.063718]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2627.064585]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2627.065454]  do_syscall_64+0x33/0x40
[ 2627.066077]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2627.066916] RIP: 0033:0x7f136dd44b19
[ 2627.067526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2627.070556] RSP: 002b:00007f136b2ba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2627.071809] RAX: ffffffffffffffda RBX: 00007f136de57f60 RCX: 00007f136dd44b19
[ 2627.072998] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2627.074166] RBP: 00007f136b2ba1d0 R08: 0000000000000003 R09: 0000000000000000
[ 2627.075341] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2627.076510] R13: 00007ffcea6b1a5f R14: 00007f136b2ba300 R15: 0000000000022000
[ 2627.077715] CPU: 1 PID: 12899 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2627.079291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2627.081189] Call Trace:
[ 2627.081803]  dump_stack+0x107/0x167
[ 2627.082631]  should_fail.cold+0x5/0xa
[ 2627.083487]  ? create_object.isra.0+0x3a/0xa30
[ 2627.084506]  should_failslab+0x5/0x20
[ 2627.085378]  kmem_cache_alloc+0x5b/0x310
[ 2627.086293]  create_object.isra.0+0x3a/0xa30
[ 2627.087303]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2627.088467]  kmem_cache_alloc_trace+0x151/0x320
[ 2627.089545]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2627.090473]  percpu_ref_init+0xd8/0x3d0
[ 2627.091389]  io_uring_setup+0x47a/0x2980
[ 2627.092305]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2627.093399]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2627.094537]  ? wait_for_completion_io+0x270/0x270
[ 2627.095639]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2627.096832]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2627.097993]  do_syscall_64+0x33/0x40
[ 2627.098840]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2627.100002] RIP: 0033:0x7fbbed29eb19
[ 2627.100844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2627.105010] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2627.106729] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2627.108327] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2627.109925] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2627.111523] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2627.113147] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2637.297679] Bluetooth: hci4: command 0x0406 tx timeout
11:50:56 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x836, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:50:56 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x10001, 0x10800)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x65d8c000)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000000)={0x0, 0x0, 0x2})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:50:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 12)

11:50:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x103)
r3 = fcntl$dupfd(r1, 0x0, r1)
accept4(r3, &(0x7f00000001c0)=@tipc=@name, &(0x7f0000000100)=0x80, 0x80000)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYRESHEX, @ANYRESDEC, @ANYBLOB="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"], 0x1c}}, 0x0)
linkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00', 0x1400)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000080), 0x4)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x54802, 0x0)

11:50:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc000000)

11:50:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 2)

11:50:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xe00, 0x0, 0x0, 0x0)

11:50:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000a80), 0x80000, 0x0)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000ac0), 0x34001, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000b00)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd_index, 0x101, {0x0, r5}, 0x9, 0xb, 0x0, {0x0, 0x0, r6}}, 0x119d)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
sendmsg$inet6(r4, &(0x7f0000000640)={&(0x7f00000001c0)={0xa, 0x4e21, 0x3, @mcast1, 0x5}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000340)="45aa5c436466d3432405a3ca0550facd448f177d55e812424022c1b72a5c27c7db90059d52be168fd90fdd64b580097302a4d07d68a0fad063495f7e9d735f2c09d0dca747bd1c54191aed645bfa0bca3b61b575c6e9ff79e3862d09e2585aab81170dea11eb71eb205950667d456d6f5af7e8516d23aa065c035b09c47f0fe1e6e642f5be558f0d13641d0633dc68c3f019d402443effcc253a30c0ee533dbcf4e70591b14578164ae9297453c11c8a936eca36c13b8aead18b86be31b2", 0xbe}, {&(0x7f0000000480)="d32b676f696a8567c95029834f2fb3fcb066dbf519c10a9b920f8bba04aeaedf2512e885864bddb935f0152d68124019437e251ae4151425866112b3b96eef23365aeeab853c8ddd90a3847b1f100da9be5d3da2b43f146aa4c7e56bb836b01153c8b56c60ec753853911f554e89ee93cbb3607188eb8cbe4996", 0x7a}, {&(0x7f0000000500)="e9fd411282c442ea33f2bf6f328a1600b82769685a40e50a63b0515661a4294c36e88f3c878c95fb5d48202325b4191e243f7e79b0a8a2d5c2a85d83f5bdf3e035876b72071a09a7c3da842588fcec9d66db99d252bab0f00ef5fcf4559fcb90732b8c4c20ea15bad011843637dcd54010d0f9443dceeb4c362e4bc62b890fab7f4af6aa", 0x84}, {&(0x7f00000005c0)="33b858b3b013f06bff3a8c3ca21c6c87d0e6e83b9bf5c1c7da784b5741b17c4b9171cd6451065bcb311ae3bb3c6de99edf36392470e3f548603eed3cab6b628a587963ae17ce473604ea0c72b8fd2d8805ef19775ee624f8", 0x58}], 0x4, &(0x7f0000000800)=[@tclass={{0x14, 0x29, 0x43, 0x8}}, @dstopts={{0x28, 0x29, 0x37, {0x87, 0x1, '\x00', [@pad1, @pad1, @enc_lim={0x4, 0x1, 0x5}, @enc_lim={0x4, 0x1, 0x6}]}}}, @tclass={{0x14, 0x29, 0x43, 0x400}}, @rthdr={{0x58, 0x29, 0x39, {0x62, 0x8, 0x2, 0x3f, 0x0, [@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @rthdrdstopts={{0xa8, 0x29, 0x37, {0x21, 0x11, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @generic={0x1, 0x6b, "e1db501141e600cf84170267b9649bb83be7ab3dfd54372b3bf070ba03772624e3a4256f4bc96fab757a9a77cd45280fea58b099d75bae8c42c2e7d41533b498b1401a3530eb92e7062f4fba5d3857879b2ca8cf7d1ada42defbe28b023a145c0eb9d8707ae120727f97da"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @pad1, @pad1]}}}], 0x170}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0xbab, &(0x7f0000000980)={0x0, 0xadee, 0x8, 0x3, 0x3ae}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x4000)=nil, &(0x7f0000000a00), &(0x7f0000000a40))
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000090000000018000000", @ANYRES32=<r8=>r3, @ANYBLOB="0200006c653500"])
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2640.989256] FAULT_INJECTION: forcing a failure.
[ 2640.989256] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2640.990789] CPU: 1 PID: 12925 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2640.991616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2640.992619] Call Trace:
[ 2640.992939]  dump_stack+0x107/0x167
[ 2640.993388]  should_fail.cold+0x5/0xa
[ 2640.993849]  __alloc_pages_nodemask+0x182/0x600
[ 2640.994408]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2640.994476] FAULT_INJECTION: forcing a failure.
[ 2640.994476] name failslab, interval 1, probability 0, space 0, times 0
[ 2640.995134]  ? cap_capable+0x1cd/0x230
[ 2640.995152]  alloc_pages_current+0x187/0x280
[ 2640.995172]  __get_free_pages+0xc/0xa0
[ 2640.999044]  io_uring_setup+0xe27/0x2980
[ 2640.999532]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2641.000135]  ? wait_for_completion_io+0x270/0x270
[ 2641.000721]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.001357]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.001975]  do_syscall_64+0x33/0x40
[ 2641.002418]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.003030] RIP: 0033:0x7fbbed29eb19
[ 2641.003469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.005649] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2641.006546] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2641.007389] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2641.008229] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2641.009083] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2641.009921] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2641.010792] CPU: 0 PID: 12919 Comm: syz-executor.7 Not tainted 5.10.246 #1
[ 2641.012362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2641.014235] Call Trace:
[ 2641.014842]  dump_stack+0x107/0x167
[ 2641.015673]  should_fail.cold+0x5/0xa
[ 2641.016533]  ? create_object.isra.0+0x3a/0xa30
[ 2641.017568]  should_failslab+0x5/0x20
[ 2641.018424]  kmem_cache_alloc+0x5b/0x310
[ 2641.019347]  create_object.isra.0+0x3a/0xa30
[ 2641.020329]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2641.021483]  kmem_cache_alloc+0x159/0x310
[ 2641.022423]  vm_area_dup+0x78/0x290
[ 2641.023243]  ? kernel_text_address+0xf2/0x120
[ 2641.024249]  ? mark_lock+0xf5/0x2df0
[ 2641.025104]  ? lock_chain_count+0x20/0x20
[ 2641.026043]  ? avc_has_extended_perms+0xf40/0xf40
[ 2641.027124]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2641.028164]  ? lock_downgrade+0x6d0/0x6d0
[ 2641.029103]  ? __lock_acquire+0x1657/0x5b00
[ 2641.030087]  ? vm_area_alloc+0x110/0x110
[ 2641.031006]  ? __lock_acquire+0x1657/0x5b00
[ 2641.031990]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2641.033179]  ? vmacache_find+0x55/0x2a0
11:50:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf00, 0x0, 0x0, 0x0)

[ 2641.034071]  __split_vma+0xa8/0x4e0
[ 2641.035039]  __do_munmap+0x365/0x1260
[ 2641.035894]  ? arch_get_unmapped_area+0x450/0x450
[ 2641.036979]  mmap_region+0x7cc/0x1500
[ 2641.037866]  do_mmap+0x868/0x1370
[ 2641.038658]  vm_mmap_pgoff+0x198/0x1f0
[ 2641.039536]  ? randomize_page+0xb0/0xb0
[ 2641.040435]  ksys_mmap_pgoff+0x41c/0x560
[ 2641.041358]  ? find_mergeable_anon_vma+0x250/0x250
[ 2641.042468]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.043644]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.044800]  do_syscall_64+0x33/0x40
[ 2641.045648]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.046788] RIP: 0033:0x7f136dd44b19
[ 2641.047625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.051729] RSP: 002b:00007f136b2ba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2641.053444] RAX: ffffffffffffffda RBX: 00007f136de57f60 RCX: 00007f136dd44b19
[ 2641.055036] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2641.056630] RBP: 00007f136b2ba1d0 R08: 0000000000000003 R09: 0000000000000000
[ 2641.058241] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2641.059839] R13: 00007ffcea6b1a5f R14: 00007f136b2ba300 R15: 0000000000022000
11:50:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x80)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
dup2(r0, r1)

11:50:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x200000)
mmap(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x8, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="16789fb7039c68d8e507045475698ae21b0632d60fdfc25cc29563467f3c6ce9607fe17dd2fc9d8651ddc8db0fee3e12565d9d92c9cfc4189e70057b5d0d26877c872ac63d78f27e0111124b5bee62c593bd67724db40ae5634911"], 0x1c}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})

11:50:56 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f0000000140)={0x6, 0x4, 0x1, 'queue0\x00', 0x3f})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1)
ioctl$MON_IOCX_GETX(r3, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:50:56 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
fcntl$addseals(r1, 0x409, 0x4)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
syz_open_dev$usbmon(&(0x7f0000000000), 0xe9ad, 0x0)

11:50:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1100, 0x0, 0x0, 0x0)

11:50:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 13)

11:50:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x5, &(0x7f0000000400)=[0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff], 0x7, 0x0, 0x1}, 0xfffffffd)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000340)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2, 0x2007, @fd_index=0x1, 0x1, 0x0, 0x0, 0x9, 0x0, {0x3}}, 0x7)
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="000000000000b77a9b73acc6389d5b3d7b4e06901812ec0b75db0f2efc10cd74a04acbff76d18dcc93b072282352a99eb7f2298697b6194b7c51a35d00"/70])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r7, 0x0, r7)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r7, 0x8983, &(0x7f00000001c0)={0x3, 'veth1_virt_wifi\x00', {0x9a}, 0xff00})

[ 2641.223926] FAULT_INJECTION: forcing a failure.
[ 2641.223926] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2641.225415] CPU: 1 PID: 12958 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2641.226214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2641.227173] Call Trace:
[ 2641.227484]  dump_stack+0x107/0x167
[ 2641.227903]  should_fail.cold+0x5/0xa
[ 2641.228341]  __alloc_pages_nodemask+0x182/0x600
[ 2641.228874]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2641.229573]  ? cap_capable+0x1cd/0x230
[ 2641.230026]  alloc_pages_current+0x187/0x280
[ 2641.230529]  __get_free_pages+0xc/0xa0
[ 2641.230976]  io_uring_setup+0xf9a/0x2980
[ 2641.231443]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2641.232030]  ? wait_for_completion_io+0x270/0x270
[ 2641.232600]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.233212]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.233804]  do_syscall_64+0x33/0x40
[ 2641.234226]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.234812] RIP: 0033:0x7fbbed29eb19
[ 2641.235238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.237362] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2641.238243] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2641.239069] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2641.239888] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2641.240708] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2641.241534] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

11:50:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x12000000)

11:50:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 3)

11:50:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
syncfs(r1)
r2 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)

[ 2641.353577] FAULT_INJECTION: forcing a failure.
[ 2641.353577] name failslab, interval 1, probability 0, space 0, times 0
11:50:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x18000000)

11:50:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x61}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x532a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2641.355048] CPU: 1 PID: 12971 Comm: syz-executor.7 Not tainted 5.10.246 #1
[ 2641.355979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2641.356937] Call Trace:
[ 2641.357256]  dump_stack+0x107/0x167
[ 2641.357680]  should_fail.cold+0x5/0xa
[ 2641.358134]  ? create_object.isra.0+0x3a/0xa30
[ 2641.358667]  should_failslab+0x5/0x20
[ 2641.359117]  kmem_cache_alloc+0x5b/0x310
[ 2641.359595]  create_object.isra.0+0x3a/0xa30
[ 2641.360118]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2641.360716]  kmem_cache_alloc+0x159/0x310
[ 2641.361214]  vm_area_dup+0x78/0x290
[ 2641.361648]  ? kernel_text_address+0xf2/0x120
[ 2641.362175]  ? mark_lock+0xf5/0x2df0
[ 2641.362618]  ? lock_chain_count+0x20/0x20
[ 2641.363108]  ? avc_has_extended_perms+0xf40/0xf40
[ 2641.363671]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2641.364212]  ? lock_downgrade+0x6d0/0x6d0
[ 2641.364697]  ? __lock_acquire+0x1657/0x5b00
[ 2641.365209]  ? vm_area_alloc+0x110/0x110
[ 2641.365680]  ? __lock_acquire+0x1657/0x5b00
[ 2641.366186]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2641.366795]  ? vmacache_find+0x55/0x2a0
[ 2641.367251]  __split_vma+0xa8/0x4e0
[ 2641.367679]  __do_munmap+0x365/0x1260
[ 2641.368118]  ? arch_get_unmapped_area+0x450/0x450
[ 2641.368672]  mmap_region+0x7cc/0x1500
[ 2641.369127]  do_mmap+0x868/0x1370
[ 2641.369528]  vm_mmap_pgoff+0x198/0x1f0
[ 2641.369982]  ? randomize_page+0xb0/0xb0
[ 2641.370449]  ksys_mmap_pgoff+0x41c/0x560
[ 2641.370920]  ? find_mergeable_anon_vma+0x250/0x250
[ 2641.371488]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.372094]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.372690]  do_syscall_64+0x33/0x40
[ 2641.373129]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.373725] RIP: 0033:0x7f136dd44b19
[ 2641.374154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.376283] RSP: 002b:00007f136b2ba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2641.377173] RAX: ffffffffffffffda RBX: 00007f136de57f60 RCX: 00007f136dd44b19
[ 2641.377997] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2641.378809] RBP: 00007f136b2ba1d0 R08: 0000000000000003 R09: 0000000000000000
[ 2641.379632] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2641.380450] R13: 00007ffcea6b1a5f R14: 00007f136b2ba300 R15: 0000000000022000
11:50:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 14)

[ 2641.445880] FAULT_INJECTION: forcing a failure.
[ 2641.445880] name failslab, interval 1, probability 0, space 0, times 0
[ 2641.447265] CPU: 1 PID: 12984 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2641.448059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2641.449007] Call Trace:
[ 2641.449326]  dump_stack+0x107/0x167
[ 2641.449749]  should_fail.cold+0x5/0xa
[ 2641.450192]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2641.450832]  should_failslab+0x5/0x20
[ 2641.451265]  kmem_cache_alloc_trace+0x55/0x320
[ 2641.451801]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2641.452419]  io_uring_setup+0x14f6/0x2980
[ 2641.452901]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2641.453488]  ? wait_for_completion_io+0x270/0x270
[ 2641.454055]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.454664]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.455258]  do_syscall_64+0x33/0x40
[ 2641.455683]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.456275] RIP: 0033:0x7fbbed29eb19
[ 2641.456706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.458821] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2641.459695] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2641.460513] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2641.461340] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2641.462153] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2641.462978] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:50:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1300, 0x0, 0x0, 0x0)

11:50:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x400280)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:50:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e000000)

11:50:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 15)

[ 2641.541431] FAULT_INJECTION: forcing a failure.
[ 2641.541431] name failslab, interval 1, probability 0, space 0, times 0
[ 2641.544036] CPU: 0 PID: 12991 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2641.545612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2641.547459] Call Trace:
[ 2641.548055]  dump_stack+0x107/0x167
[ 2641.548872]  should_fail.cold+0x5/0xa
[ 2641.549738]  ? create_object.isra.0+0x3a/0xa30
[ 2641.550766]  should_failslab+0x5/0x20
[ 2641.551639]  kmem_cache_alloc+0x5b/0x310
[ 2641.552547]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2641.553917]  create_object.isra.0+0x3a/0xa30
[ 2641.554913]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2641.556061]  kmem_cache_alloc_trace+0x151/0x320
[ 2641.557121]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2641.558344]  io_uring_setup+0x14f6/0x2980
[ 2641.559285]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2641.560423]  ? wait_for_completion_io+0x270/0x270
[ 2641.561545]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2641.562724]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2641.563893]  do_syscall_64+0x33/0x40
[ 2641.564742]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2641.565914] RIP: 0033:0x7fbbed29eb19
[ 2641.566761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2641.570883] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2641.572585] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2641.574190] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2641.575793] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2641.577411] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2641.579019] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2654.732530] FAULT_INJECTION: forcing a failure.
[ 2654.732530] name failslab, interval 1, probability 0, space 0, times 0
11:51:10 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x2)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$inet6(0xa, 0x0, 0x5)
readv(r1, &(0x7f0000000400)=[{&(0x7f0000000140)=""/254, 0xfe}, {&(0x7f0000000000)=""/22, 0x16}, {&(0x7f0000000240)=""/146, 0x92}, {&(0x7f0000000040)=""/47, 0x2f}, {&(0x7f0000000300)=""/65, 0x41}, {&(0x7f0000000380)=""/119, 0x77}], 0x6)

11:51:10 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

11:51:10 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x6d0e, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
dup3(r4, r6, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1000004, 0x4010, r5, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
[ 2654.735433] CPU: 1 PID: 13015 Comm: syz-executor.7 Not tainted 5.10.246 #1
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7fff, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[])
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:51:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 4)

11:51:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1400, 0x0, 0x0, 0x0)

11:51:10 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f0000000000)={'mangle\x00'}, &(0x7f0000000040)=0x24)

11:51:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 16)

11:51:10 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
mmap$usbmon(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x100010, 0xffffffffffffffff, 0xcf9)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f0000000140)=""/4085, 0xff5})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, @out_args}, './file0\x00'})
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000001200)={&(0x7f0000001140), &(0x7f0000001180)=""/109, 0x6d})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

[ 2654.737111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2654.739018] Call Trace:
[ 2654.739630]  dump_stack+0x107/0x167
[ 2654.740485]  should_fail.cold+0x5/0xa
[ 2654.741372]  ? create_object.isra.0+0x3a/0xa30
[ 2654.742411]  should_failslab+0x5/0x20
[ 2654.743284]  kmem_cache_alloc+0x5b/0x310
[ 2654.744245]  create_object.isra.0+0x3a/0xa30
[ 2654.745254]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2654.746423]  kmem_cache_alloc+0x159/0x310
[ 2654.747375]  anon_vma_clone+0xdc/0x590
[ 2654.748270]  __split_vma+0x17c/0x4e0
[ 2654.749117]  __do_munmap+0x365/0x1260
[ 2654.749990]  ? arch_get_unmapped_area+0x450/0x450
[ 2654.751089]  mmap_region+0x7cc/0x1500
[ 2654.751972]  do_mmap+0x868/0x1370
[ 2654.752769]  vm_mmap_pgoff+0x198/0x1f0
[ 2654.753663]  ? randomize_page+0xb0/0xb0
[ 2654.754585]  ksys_mmap_pgoff+0x41c/0x560
[ 2654.755507]  ? find_mergeable_anon_vma+0x250/0x250
[ 2654.756628]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2654.757843]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2654.759019]  do_syscall_64+0x33/0x40
[ 2654.759864]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2654.761024] RIP: 0033:0x7f136dd44b19
[ 2654.761880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
11:51:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1500, 0x0, 0x0, 0x0)

[ 2654.766197] RSP: 002b:00007f136b2ba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
11:51:10 executing program 0:
syz_io_uring_setup(0x2c6f, &(0x7f0000000000)={0x0, 0x3d48, 0x9, 0x3, 0x14b}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080)=<r0=>0x0, &(0x7f00000000c0))
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2, 0x30, 0xffffffffffffffff, 0x10000000)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000200)='./file0\x00', 0x400, 0x0, 0x1, {0x0, r2}}, 0x8)
r3 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0x0)
syz_open_dev$usbmon(&(0x7f0000000280), 0x3, 0x185802)

[ 2654.767923] RAX: ffffffffffffffda RBX: 00007f136de57f60 RCX: 00007f136dd44b19
[ 2654.769651] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2654.771262] RBP: 00007f136b2ba1d0 R08: 0000000000000003 R09: 0000000000000000
[ 2654.772873] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2654.774808] R13: 00007ffcea6b1a5f R14: 00007f136b2ba300 R15: 0000000000022000
[ 2654.783644] FAULT_INJECTION: forcing a failure.
[ 2654.783644] name failslab, interval 1, probability 0, space 0, times 0
[ 2654.786146] CPU: 1 PID: 13014 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2654.787611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2654.789376] Call Trace:
[ 2654.789941]  dump_stack+0x107/0x167
[ 2654.790710]  should_fail.cold+0x5/0xa
[ 2654.791513]  ? create_object.isra.0+0x3a/0xa30
[ 2654.792483]  should_failslab+0x5/0x20
[ 2654.793299]  kmem_cache_alloc+0x5b/0x310
[ 2654.794162]  create_object.isra.0+0x3a/0xa30
[ 2654.795104]  kmemleak_alloc_percpu+0xa0/0x100
[ 2654.796064]  pcpu_alloc+0x4e2/0x1240
[ 2654.796865]  ? io_async_queue_proc+0x80/0x80
[ 2654.797803]  percpu_ref_init+0x31/0x3d0
[ 2654.798410] audit: type=1400 audit(1764762670.209:73): avc:  denied  { execute } for  pid=13009 comm="syz-executor.3" path="pipe:[48022]" dev="pipefs" ino=48022 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[ 2654.798644]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2654.798668]  io_uring_setup+0x14f6/0x2980
[ 2654.803611]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2654.804682]  ? wait_for_completion_io+0x270/0x270
[ 2654.805734]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2654.806842]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2654.807953]  do_syscall_64+0x33/0x40
[ 2654.808742]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2654.809834] RIP: 0033:0x7fbbed29eb19
[ 2654.810626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2654.812054] loop3: detected capacity change from 0 to 32256
[ 2654.814528] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2654.814549] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2654.814561] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2654.814572] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2654.814584] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2654.814595] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 5)

11:51:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 17)

[ 2654.876492] FAULT_INJECTION: forcing a failure.
[ 2654.876492] name failslab, interval 1, probability 0, space 0, times 0
[ 2654.878031] CPU: 0 PID: 13032 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2654.878884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2654.879851] Call Trace:
[ 2654.880185]  dump_stack+0x107/0x167
[ 2654.880632]  should_fail.cold+0x5/0xa
[ 2654.881098]  ? create_object.isra.0+0x3a/0xa30
[ 2654.881677]  should_failslab+0x5/0x20
[ 2654.882144]  kmem_cache_alloc+0x5b/0x310
[ 2654.882667]  create_object.isra.0+0x3a/0xa30
[ 2654.883220]  kmemleak_alloc_percpu+0xa0/0x100
[ 2654.883779]  pcpu_alloc+0x4e2/0x1240
[ 2654.884263]  ? io_async_queue_proc+0x80/0x80
[ 2654.884785]  percpu_ref_init+0x31/0x3d0
[ 2654.885285]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2654.885954]  io_uring_setup+0x14f6/0x2980
[ 2654.886474]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2654.887099]  ? wait_for_completion_io+0x270/0x270
[ 2654.887716]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2654.888382]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2654.889046]  do_syscall_64+0x33/0x40
[ 2654.889525]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2654.890167] RIP: 0033:0x7fbbed29eb19
[ 2654.890601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2654.892902] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2654.893796] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2654.894661] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2654.895538] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2654.896420] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2654.897294] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 18)

[ 2654.923202] FAULT_INJECTION: forcing a failure.
[ 2654.923202] name failslab, interval 1, probability 0, space 0, times 0
[ 2654.924631] CPU: 0 PID: 13038 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2654.925464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2654.926447] Call Trace:
[ 2654.926771]  dump_stack+0x107/0x167
[ 2654.927210]  should_fail.cold+0x5/0xa
[ 2654.927673]  ? percpu_ref_init+0xd8/0x3d0
[ 2654.928174]  should_failslab+0x5/0x20
[ 2654.928636]  kmem_cache_alloc_trace+0x55/0x320
[ 2654.929178]  ? io_async_queue_proc+0x80/0x80
[ 2654.929696]  percpu_ref_init+0xd8/0x3d0
[ 2654.930174]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2654.930819]  io_uring_setup+0x14f6/0x2980
[ 2654.931312]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2654.931911]  ? wait_for_completion_io+0x270/0x270
[ 2654.932472]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2654.933094]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2654.933726]  do_syscall_64+0x33/0x40
[ 2654.934169]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2654.934757] RIP: 0033:0x7fbbed29eb19
[ 2654.935205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2654.937405] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2654.938319] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2654.939141] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2654.939996] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2654.940823] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2654.941684] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 19)

11:51:10 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000002, 0x12, r0, 0xe8b9d000)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x4800c0, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r1, 0x4004f50d, &(0x7f0000000040)=0x1)

11:51:10 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0xb2a5, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ff1000/0x4000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2655.028906] FAULT_INJECTION: forcing a failure.
[ 2655.028906] name failslab, interval 1, probability 0, space 0, times 0
[ 2655.031384] CPU: 1 PID: 13049 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2655.032832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2655.034599] Call Trace:
[ 2655.035160]  dump_stack+0x107/0x167
[ 2655.035927]  should_fail.cold+0x5/0xa
[ 2655.036732]  ? create_object.isra.0+0x3a/0xa30
[ 2655.037715]  should_failslab+0x5/0x20
[ 2655.038525]  kmem_cache_alloc+0x5b/0x310
[ 2655.039409]  create_object.isra.0+0x3a/0xa30
[ 2655.040594]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2655.041977]  kmem_cache_alloc_trace+0x151/0x320
[ 2655.043247]  ? io_async_queue_proc+0x80/0x80
[ 2655.044440]  percpu_ref_init+0xd8/0x3d0
[ 2655.045539]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2655.046996]  io_uring_setup+0x14f6/0x2980
[ 2655.048132]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2655.049503]  ? wait_for_completion_io+0x270/0x270
[ 2655.050841]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2655.052230]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2655.053644]  do_syscall_64+0x33/0x40
[ 2655.054591]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2655.055707] RIP: 0033:0x7fbbed29eb19
[ 2655.056618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2655.060521] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2655.062123] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2655.063617] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2655.065108] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2655.066614] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2655.068113] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:28 executing program 0:
stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = getegid()
setregid(0x0, r1)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x204000, 0x0)
recvmmsg$unix(r2, &(0x7f0000000840)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/210, 0xd2}, {&(0x7f0000000280)=""/116, 0x74}, {&(0x7f0000000300)=""/31, 0x1f}, {&(0x7f0000000340)=""/86, 0x56}], 0x4, &(0x7f0000000400)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)=""/17, 0x11}, {&(0x7f0000000480)=""/58, 0x3a}, {&(0x7f00000004c0)=""/255, 0xff}, {&(0x7f00000005c0)=""/107, 0x6b}, {&(0x7f0000000640)=""/2, 0x2}, {&(0x7f0000000680)=""/121, 0x79}], 0x6, &(0x7f0000000900)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1cd04e26496a0db43d46000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001800000000000000010000000100000042a6ce2852b1ee7bfc0338997c8fca8cd54aae174c6e54f4cfd382dee0f1cb33960d46a6146ca835ef8feca875a720b6ec319c5397e31a28d7d8c6ab5f5ce3c0421608edbb561188953943a330b646f14cfc89dbec88d765a2e8d18d8feb", @ANYRES32, @ANYRES32], 0xa0}}], 0x2, 0x10140, &(0x7f00000008c0)={0x0, 0x3938700})
setresgid(0xffffffffffffffff, r0, r1)
r3 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0x0)

11:51:28 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x204001)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = dup3(r0, r0, 0x0)
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000040)={&(0x7f0000000000)=[0x0], 0x1, 0x3})

11:51:28 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:51:28 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x297}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={<r4=>0xffffffffffffffff})
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev2(r4, &(0x7f00000005c0)=[{&(0x7f00000001c0)="d9735f4e5aa8146cc46327486442f84c17d8", 0x12}, {&(0x7f0000000340)="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", 0xfa}, {&(0x7f0000000480)="3a5df4f7888711e7", 0x8}, {&(0x7f00000004c0)="cf3f8973e9f73e7b7356b8eb92741be151dfe93f7ed56c0799560fd45060b344fd7ebe50f214ee049604363aea920b14bcfc19546aab65e08d8d00de538233d9b306c3864e5b5f6c22cdf371dd38e03cb65aac10fc108bf1972d83b1e38c407bbb829d86361620bc6748374258aeb8425a11fc58bd09d504782f9f92dc89314dbcada483310c3a6a6125ae1b2f", 0x8d}, {&(0x7f0000000580)="57de1b3d9625dd405b53279a5b8f5ac14674e2c625cf9102ec932a7ba76bd70f2c26d98c3f4dfa", 0x27}], 0x5, 0x200, 0xfffffff7, 0xa)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="0100ecff0000000018000000", @ANYRES32=<r7=>r3, @ANYBLOB="42000000000500002a2f26c7f0283000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:51:28 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 20)

11:51:28 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005200210cebff0000000000000a00000008000800", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
dup2(r0, r2)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:51:28 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1600, 0x0, 0x0, 0x0)

11:51:28 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x24000000)

[ 2672.739762] FAULT_INJECTION: forcing a failure.
[ 2672.739762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2672.742309] CPU: 0 PID: 13074 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2672.743792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2672.745570] Call Trace:
[ 2672.746138]  dump_stack+0x107/0x167
[ 2672.746916]  should_fail.cold+0x5/0xa
[ 2672.747739]  _copy_to_user+0x2e/0x180
[ 2672.748557]  io_uring_setup+0x11b5/0x2980
[ 2672.749448]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2672.750538]  ? wait_for_completion_io+0x270/0x270
[ 2672.751589]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2672.752712]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2672.753823]  do_syscall_64+0x33/0x40
[ 2672.754611]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2672.755682] RIP: 0033:0x7fbbed29eb19
[ 2672.756458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2672.760299] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2672.761907] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2672.763406] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2672.764908] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2672.766427] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2672.767940] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:28 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1002, 0x1, 0x28051, r0, 0x0)

11:51:41 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0x50, r1, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000041}, 0x40890)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
sendmsg$nl_generic(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x1a, 0x400, 0x70bd25, 0x25dfdbfb, {0x18}, [@typed={0x8, 0x7e, 0x0, 0x0, @uid=r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44010}, 0x4000004)
r5 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GETX(r5, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:51:41 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80000)
recvmmsg$unix(r1, &(0x7f0000006a40)=[{{&(0x7f00000013c0)=@abs, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001440)=""/115, 0x73}, {&(0x7f00000014c0)=""/158, 0x9e}], 0x2, &(0x7f00000015c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f00000016c0), 0x6e, &(0x7f00000018c0)=[{&(0x7f0000001740)=""/255, 0xff}, {&(0x7f0000001840)=""/75, 0x4b}], 0x2, &(0x7f0000001900)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f00000019c0), 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000001a40)=""/57, 0x39}, {&(0x7f0000001a80)=""/2, 0x2}], 0x2, &(0x7f0000001b00)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001b40), 0x6e, &(0x7f0000001c40)=[{&(0x7f0000001bc0)=""/7, 0x7}, {&(0x7f0000001c00)=""/7, 0x7}], 0x2, &(0x7f0000001c80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000001d00)=@abs, 0x6e, &(0x7f0000002d80)=[{&(0x7f0000001d80)=""/4096, 0x1000}], 0x1, &(0x7f0000002dc0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000002e00)=""/229, 0xe5}], 0x1, &(0x7f0000002f40)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}}, {{&(0x7f0000003040), 0x6e, &(0x7f0000003400)=[{&(0x7f00000030c0)=""/198, 0xc6}, {&(0x7f00000031c0)=""/179, 0xb3}, {&(0x7f0000003580)=""/4096, 0x1000}, {&(0x7f0000003280)=""/21, 0x15}, {&(0x7f00000032c0)=""/14, 0xe}, {&(0x7f0000003300)=""/234, 0xea}, {&(0x7f0000004580)=""/4096, 0x1000}], 0x7, &(0x7f0000005580)=[@rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r2=>0x0}}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}}, {{&(0x7f0000003480), 0x6e, &(0x7f0000006900)=[{&(0x7f0000003500)=""/8, 0x8}, {&(0x7f0000005680)=""/185, 0xb9}, {&(0x7f0000005740)=""/146, 0x92}, {&(0x7f0000005800)=""/24, 0x18}, {&(0x7f0000005840)=""/4096, 0x1000}, {&(0x7f0000006840)=""/119, 0x77}, {&(0x7f00000068c0)=""/12, 0xc}], 0x7, &(0x7f0000006980)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}], 0x8, 0x12020, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x6, 0x4, &(0x7f0000001340)=[{&(0x7f0000000140)="f6d4715864f9d9afcc89772e99e1db0bd239df0e3105555bf123a207bcf86d9ee77bb25387e4a1fd86a23db3b9b3a607538a00e6310890d4d8f6e08d8ea4fb55d462e1e3468df0034979dbde250c4010c75fb68a1fb4dbcfab", 0x59, 0x3}, {&(0x7f00000001c0)="1fe8158f429c4085730618d95f7dd7dd8c67a8f765eac8f2abf866a08fd1a97eac7639cea6f486a4156db1f4183f12c534779f3595ddb5f426cdf363967efadd09cc6c72f42a211c401bb7f7c9208ec56b564d94f96d2707c1124fd09ca6d6518a1ffc3afb6cc1b1491dd26fa148a1ad72109b437983693e8d915eb3fea2dfdd8f5889c0c395be3057fa73946555f3e68b97d61897054340e72dfa83a6774817e15074ae7c72ab525469f27470f5a753767cf7612b5aea40119aaad81fa883b0679d650ca5382592e45290b2ea40f11409b7c24b01deda6992976fc5", 0xdc, 0x1}, {&(0x7f00000002c0)="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", 0x1000, 0x5}, {&(0x7f00000012c0)="ca72e32e724abb5d8953dc8485d0e51f4a2427b099071a721845f49718a654f341bb221f3dc2bd268eb03c69860f53dabdefd9cef23e60114dfd6a435901be0ded73fea9e5191ffb7306321b05d8", 0x4e, 0x5}], 0x102002, &(0x7f0000006c40)={[{@gid={'gid', 0x3d, r2}}, {@hide}, {@block={'block', 0x3d, 0x1e00}}, {}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@session={'session', 0x3d, 0x6}}, {@hide}, {}, {@nojoliet}], [{@fowner_lt={'fowner<', r3}}, {@audit}, {@hash}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@subj_role}, {@dont_hash}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@obj_type={'obj_type', 0x3d, '/dev/usbmon#\x00'}}, {@obj_user={'obj_user', 0x3d, '%[\xbf^'}}]})
getsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000040), &(0x7f0000000080)=0x10)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x3f845000)

11:51:41 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x4e24, @multicast1}, {0x2, 0x4e20, @multicast2}, {0x2, 0x4e23, @broadcast}, 0x5, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000000)='wg1\x00', 0x7, 0x204f, 0x3ff})
r2 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@initdev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@private}, 0x0, @in=@broadcast}}, &(0x7f00000001c0)=0xe8)
sendmsg$nl_generic(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0x158, 0x14, 0x20, 0x70bd2a, 0x25dfdbfd, {0xb}, [@nested={0xc3, 0x6d, 0x0, 0x1, [@generic="b081da98fe3706f21a1e2553ac64aa13947d5ef9d412751b89b2b18df09e88578e9d86e9a970e77bfed6ceea968a432ca15ce1b89676036aa63d16c6903e4296ce881f4390a0d2ca39859f6aaddac116d0ea6663d5", @typed={0x4, 0x8e}, @typed={0x8, 0x88, 0x0, 0x0, @uid=0xee00}, @generic="4d77b18bc9f10c8d4995559913e8c29eb2e4dd682ac56d56843ca054c73d262c9c3a6ea7d4c73896e8383a844186b0f97cef2363a70426a7a676013f89262a72bd971b67b162", @typed={0x8, 0x23, 0x0, 0x0, @str='wg1\x00'}, @typed={0x8, 0x8f, 0x0, 0x0, @uid=r3}, @typed={0x8, 0x1f, 0x0, 0x0, @u32=0x7fff}]}, @typed={0x8, 0x38, 0x0, 0x0, @ipv4=@multicast2}, @generic="9d7c0faa9ba854c1f354dc3165ff92192e6a5a06dfa3595b35ddf4bc0448b594750fca855941341c02a9fec0c7e90479f7743656ceafa22dc1c3b844ba3f43c0cceba22bade4fa74671dcde77aa2b74bbbc2f0312ef63574d1af9505b5df9fd79073f7caad21acc88b0b7e13dd66e9eaebe29c7c10ff0d"]}, 0x158}, 0x1, 0x0, 0x0, 0x1}, 0x4008844)
ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:51:41 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 21)

11:51:41 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1700, 0x0, 0x0, 0x0)

11:51:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1004, 0x1, 0x28051, r0, 0x0)

11:51:41 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a000000)

11:51:41 executing program 3:
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r0=>0x0, &(0x7f0000000080)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f00000001c0), &(0x7f0000000340)='./file0/file0\x00', 0xd2, 0x1, &(0x7f0000000480)=[{&(0x7f0000000380)="62e29e1e928260b4015357f84fe1698c8d2816ec8b256cd4567e20b92abedb01440fe346d690f76ccf9286950e587aecbbe3897caefb3b52bd7dad9a4bafe891151fb9a7d165cd8e13002a48f5c5a58212628276bf247a12c830c1b83ce62687152930117829545f4ab76faa3e16abd851b82d2b227d7468bec97f100061054ddbb5e020b09b8d2026df586422cfcc2962149552f463401061b4d8d1f1eec3e89557480cdfbcaa98c4957a94dde892", 0xaf, 0x3}], 0x1a04000, &(0x7f0000000800)=ANY=[@ANYBLOB='nr_blocks=m,nr_blocks=g75p4\x00,nr_inodes=m6875g%e,huge=within_size,gid=', @ANYRESHEX=0x0, @ANYBLOB=',mpol=bind:4,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c73697a653d342c6d706f6c3d6c6f63616c3a3a56323635322c6f626a5f726f6c653dff015cd17d5b2b5b2c646566636f6e746578743d756e636f6e66696e65645f752c00085eaf4a865509385855c929bcbadc10ece4f6c3920f7c32bc8e1e305266b81a55836ada8ebdad1617af901ecbc4b4f373b63e97f921b795a7a7ebf51b5777972334860010b3ab25f816615dbe797011404a64ade1b529b0d0e464f01a5f033121"])
syz_io_uring_submit(r0, 0x0, &(0x7f00000005c0)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r2, 0x0, &(0x7f0000000580)='./file0\x00', 0x2, 0x107400, 0x12345}, 0x10001)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r6 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r9=>r6, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r8, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, 0xffffffffffffffff, &(0x7f0000000500)={0x80000000})

11:51:42 executing program 0:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
ioctl$CDROMSUBCHNL(0xffffffffffffffff, 0x530b, &(0x7f0000000000)={0x3, 0x1f, 0x9, 0x7, 0x1, 0x9, @lba=0x3be1, @lba=0xbb1})
ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000040)={0x0, 0x6, [0x800, 0xfff, 0x8ec5, 0x1, 0x7fffffff, 0xab7]})
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_io_uring_setup(0x1e8f, &(0x7f00000000c0)={0x0, 0x229f, 0x4, 0x0, 0xe9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

[ 2686.613294] FAULT_INJECTION: forcing a failure.
[ 2686.613294] name failslab, interval 1, probability 0, space 0, times 0
[ 2686.615841] CPU: 0 PID: 13118 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2686.617357] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2686.619173] Call Trace:
[ 2686.619754]  dump_stack+0x107/0x167
[ 2686.620554]  should_fail.cold+0x5/0xa
[ 2686.621387]  ? __d_alloc+0x2a/0x990
[ 2686.622183]  should_failslab+0x5/0x20
[ 2686.623007]  kmem_cache_alloc+0x5b/0x310
[ 2686.623892]  __d_alloc+0x2a/0x990
[ 2686.624643]  ? find_held_lock+0x2c/0x110
[ 2686.625524]  d_alloc_pseudo+0x19/0x70
[ 2686.626355]  alloc_file_pseudo+0xce/0x250
[ 2686.627251]  ? trace_hardirqs_on+0x5b/0x180
[ 2686.628191]  ? alloc_file+0x5a0/0x5a0
[ 2686.629035]  anon_inode_getfile+0xc8/0x1f0
[ 2686.629050] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13120 comm=syz-executor.4
11:51:42 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x100a, 0x1, 0x28051, r0, 0x0)

[ 2686.632514]  io_uring_setup+0x138b/0x2980
[ 2686.633632]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2686.634742]  ? wait_for_completion_io+0x270/0x270
[ 2686.635803]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2686.636939]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2686.638061]  do_syscall_64+0x33/0x40
[ 2686.638867]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2686.639981] RIP: 0033:0x7fbbed29eb19
[ 2686.640794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2686.644963] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2686.646811] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2686.648537] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2686.650270] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2686.651991] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2686.653711] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:42 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

11:51:42 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
signalfd4(r0, &(0x7f0000000000)={[0x1]}, 0x8, 0x0)

11:51:42 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 22)

11:51:42 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x30000000)

[ 2686.773687] FAULT_INJECTION: forcing a failure.
[ 2686.773687] name failslab, interval 1, probability 0, space 0, times 0
[ 2686.775053] CPU: 1 PID: 13136 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2686.775848] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2686.776799] Call Trace:
[ 2686.777106]  dump_stack+0x107/0x167
[ 2686.777529]  should_fail.cold+0x5/0xa
[ 2686.777986]  ? create_object.isra.0+0x3a/0xa30
[ 2686.778514]  should_failslab+0x5/0x20
[ 2686.778957]  kmem_cache_alloc+0x5b/0x310
[ 2686.779432]  create_object.isra.0+0x3a/0xa30
[ 2686.779933]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2686.780516]  kmem_cache_alloc+0x159/0x310
[ 2686.780992]  __d_alloc+0x2a/0x990
[ 2686.781387]  ? find_held_lock+0x2c/0x110
[ 2686.781864]  d_alloc_pseudo+0x19/0x70
[ 2686.782295]  alloc_file_pseudo+0xce/0x250
[ 2686.782773]  ? trace_hardirqs_on+0x5b/0x180
[ 2686.783280]  ? alloc_file+0x5a0/0x5a0
[ 2686.783733]  anon_inode_getfile+0xc8/0x1f0
[ 2686.784231]  io_uring_setup+0x138b/0x2980
[ 2686.784710]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2686.785291]  ? wait_for_completion_io+0x270/0x270
[ 2686.785854]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2686.786447]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2686.787036]  do_syscall_64+0x33/0x40
[ 2686.787461]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2686.788054] RIP: 0033:0x7fbbed29eb19
[ 2686.788473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2686.790587] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2686.791459] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2686.792286] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2686.793113] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2686.793939] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2686.794754] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2687.412521] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13149 comm=syz-executor.4
11:51:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = dup(r0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = accept4$unix(r1, &(0x7f0000000080), &(0x7f0000000100)=0x6e, 0x80000)
getsockopt$IP_SET_OP_GET_BYINDEX(r3, 0x1, 0x53, &(0x7f0000000180)={0x7, 0x7, 0x3}, &(0x7f00000001c0)=0x28)
r4 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4, {0x6c}}, './file0\x00'})

11:51:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe2(&(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x800)
r8 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r12 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000e006462975bb2ab9da119e000100000018000000", @ANYRES32=<r13=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r13, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r14 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r14, 0x0, r14)
r15 = syz_open_procfs(0x0, &(0x7f00000005c0)='setgroups\x00')
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000480)="bb8a80485175ad263f712d1d5b472bfcb51c6e61930452a76fc2aeb470981c74289f89e4939fdf3c3ce15fe980df7d71b67bb0c280cbd0d59b5f33f7a788d8e4483cc32fb7113ae7a1b69ec90971a6c2c2cc520a80a6c3204728a04051845c1038891ed6d05dbf6f59b5af013c9f1c7d6f9676fa867ca5d4e309721104a4a0057cd4cc80975c20cbb222a15a50260f2da3564e647b2c0ebdd3b6", 0x9a}, {&(0x7f00000003c0)="fc2732ee27d49d3ce3b528c38d9ea136dc50cdd1a94dd515420de0b3fc3ad40ab10019a55572ecf0ed43aed74927b05d81b6766299b2f65c3c6790b9f059147e9098c8507a6759b93aab088e4629084f4473488cab4e57ca8ef17256a12055b252b9bb783e76f9114cb8d536dedbc441b98c7010a7314383207e58", 0x7b}], 0x2, &(0x7f0000000600)=[@rights={{0x14, 0x1, 0x1, [r7]}}, @rights={{0x2c, 0x1, 0x1, [r12, r3, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r11, r4, r8, r5, r14, r9, r15]}}], 0x78, 0x4080}, 0x400c8c5)

11:51:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1028, 0x1, 0x28051, r0, 0x0)

11:51:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1900, 0x0, 0x0, 0x0)

11:51:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 23)

11:51:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x36000000)

11:51:56 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f00000000c0))
r2 = syz_io_uring_complete(0x0)
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000180))
r3 = fcntl$dupfd(r1, 0x0, r1)
r4 = socket$netlink(0x10, 0x3, 0x0)
fchmod(0xffffffffffffffff, 0x200)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000005200210c00000000000000000a000000861e5cdba44b58d45929b885d2f722f3af72d86668c7bb27a23477b515e88b43f6d36bd4b3c94230a3fe2f1d9964ba189cc4f4fbc255604e5f82f65b391bbec9ff85df00d9274ec8a7c8ff01"], 0x4c}}, 0x0)
mmap$usbmon(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x100000c, 0x12, r5, 0x9)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005200210c0000000000", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
fstat(r3, &(0x7f0000000000))
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)
r6 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r6, 0x0, r6)
fsconfig$FSCONFIG_SET_FD(r5, 0x5, &(0x7f00000001c0)='/dev/usbmon#\x00', 0x0, r6)

11:51:56 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x8000, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/attr/exec\x00', 0x2, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={'veth1_to_team\x00', {0x2, 0x0, @remote}})
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000340)={&(0x7f00000002c0), &(0x7f0000000300)=""/25, 0x19})
r4 = getpgrp(0x0)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="d00c00000200000000000100000100000000", @ANYRESDEC=r4, @ANYRESDEC, @ANYRES64, @ANYBLOB="08001900", @ANYRES32=r3, @ANYRESDEC, @ANYRES32=r4, @ANYBLOB="0000003400468030001a00e0b1e5f9474fe71e4d795d109822245c9a54c21a7836cb21d625b00b8b7c24a5de428beb6164036a0c8806f804000d0078b21cdfa398750b90f8af01d98daa68ab83312182dd5d0e90"], 0x12d0}}, 0x1)
r5 = openat2(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x100, 0x41, 0xd461ab6d401db3eb}, 0x18)
ioctl$MON_IOCX_GET(r5, 0x40189206, &(0x7f0000000480)={&(0x7f0000000400), &(0x7f0000000440)=""/2, 0x2})
read$usbmon(r2, &(0x7f0000000000)=""/107, 0x6b)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:51:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x20ffe000, 0x1, 0x28051, r0, 0x0)

[ 2701.197990] FAULT_INJECTION: forcing a failure.
[ 2701.197990] name failslab, interval 1, probability 0, space 0, times 0
[ 2701.200508] CPU: 1 PID: 13167 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2701.201997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2701.203761] Call Trace:
[ 2701.204343]  dump_stack+0x107/0x167
[ 2701.205122]  should_fail.cold+0x5/0xa
[ 2701.205937]  ? __alloc_file+0x21/0x320
[ 2701.206783]  should_failslab+0x5/0x20
[ 2701.207596]  kmem_cache_alloc+0x5b/0x310
[ 2701.208478]  __alloc_file+0x21/0x320
[ 2701.209281]  alloc_empty_file+0x6d/0x170
[ 2701.210154]  alloc_file+0x5e/0x5a0
[ 2701.210929]  alloc_file_pseudo+0x16a/0x250
[ 2701.211831]  ? alloc_file+0x5a0/0x5a0
[ 2701.212666]  anon_inode_getfile+0xc8/0x1f0
[ 2701.213583]  io_uring_setup+0x138b/0x2980
[ 2701.214489]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2701.215560]  ? wait_for_completion_io+0x270/0x270
[ 2701.216617]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2701.217737]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2701.218849]  do_syscall_64+0x33/0x40
[ 2701.219650]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2701.220746] RIP: 0033:0x7fbbed29eb19
[ 2701.221536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2701.225460] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2701.227087] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2701.228631] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2701.230159] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2701.231671] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2701.233193] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:51:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1a00, 0x0, 0x0, 0x0)

11:51:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x7fffdf001000, 0x1, 0x28051, r0, 0x0)

11:51:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2701.343063] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.5'.
11:51:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x7ffffffff000, 0x1, 0x28051, r0, 0x0)

11:51:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 24)

11:51:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c000000)

[ 2701.477219] FAULT_INJECTION: forcing a failure.
[ 2701.477219] name failslab, interval 1, probability 0, space 0, times 0
[ 2701.479739] CPU: 1 PID: 13197 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2701.481188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2701.482948] Call Trace:
[ 2701.483509]  dump_stack+0x107/0x167
[ 2701.484269]  should_fail.cold+0x5/0xa
[ 2701.485061]  ? create_object.isra.0+0x3a/0xa30
[ 2701.486025]  should_failslab+0x5/0x20
[ 2701.486829]  kmem_cache_alloc+0x5b/0x310
[ 2701.487678]  create_object.isra.0+0x3a/0xa30
[ 2701.488594]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2701.489654]  kmem_cache_alloc+0x159/0x310
[ 2701.490548]  __alloc_file+0x21/0x320
[ 2701.491326]  alloc_empty_file+0x6d/0x170
[ 2701.492186]  alloc_file+0x5e/0x5a0
[ 2701.492927]  alloc_file_pseudo+0x16a/0x250
[ 2701.493798]  ? alloc_file+0x5a0/0x5a0
[ 2701.494644]  anon_inode_getfile+0xc8/0x1f0
[ 2701.495544]  io_uring_setup+0x138b/0x2980
[ 2701.496409]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2701.497458]  ? wait_for_completion_io+0x270/0x270
[ 2701.498522]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2701.499618]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2701.500683]  do_syscall_64+0x33/0x40
[ 2701.501458]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2701.502554] RIP: 0033:0x7fbbed29eb19
[ 2701.503339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2701.507226] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2701.508809] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2701.510317] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2701.511804] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2701.513292] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2701.514805] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:12 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1b00, 0x0, 0x0, 0x0)

11:52:12 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x28051, r0, 0x0)

11:52:12 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0xfffffffffffffffd, 0x195100)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$inet6(0xa, 0x1, 0x20)
signalfd4(r1, &(0x7f0000000040)={[0x4]}, 0x8, 0x800)

11:52:12 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x7, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x9767, 0x72240)
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000180)={&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/25, 0x19})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:52:12 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x1000}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2716.947213] FAULT_INJECTION: forcing a failure.
[ 2716.947213] name failslab, interval 1, probability 0, space 0, times 0
[ 2716.948751] CPU: 0 PID: 13225 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2716.949636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2716.950738] Call Trace:
[ 2716.951086]  dump_stack+0x107/0x167
[ 2716.951567]  should_fail.cold+0x5/0xa
[ 2716.952058]  ? security_file_alloc+0x34/0x170
[ 2716.952631]  should_failslab+0x5/0x20
[ 2716.953231]  kmem_cache_alloc+0x5b/0x310
[ 2716.953839]  security_file_alloc+0x34/0x170
[ 2716.954405]  __alloc_file+0xb7/0x320
[ 2716.954892]  alloc_empty_file+0x6d/0x170
[ 2716.955427]  alloc_file+0x5e/0x5a0
[ 2716.955904]  alloc_file_pseudo+0x16a/0x250
[ 2716.956455]  ? alloc_file+0x5a0/0x5a0
[ 2716.956960]  anon_inode_getfile+0xc8/0x1f0
[ 2716.957505]  io_uring_setup+0x138b/0x2980
[ 2716.958048]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2716.958713]  ? wait_for_completion_io+0x270/0x270
[ 2716.959342]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2716.960015]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2716.960671]  do_syscall_64+0x33/0x40
[ 2716.961149]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2716.961811] RIP: 0033:0x7fbbed29eb19
[ 2716.962292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2716.964650] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2716.965625] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2716.966549] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2716.967495] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2716.968414] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2716.969328] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:12 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x10000000000)

11:52:12 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 25)

11:52:12 executing program 0:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x400, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x78, 0x0, 0x24, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x0, 0x5a}}}}, [@NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x33, 0xbe, "16e24b61338b3e0e5bd4a164f1499256cdc04aacbcdbe49c1bf40984f8f4c1719c01e6b4f97d20a83f94a57ccd99bd"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x10, 0xbd, [0x21f1, 0xd6f, 0x2, 0x2, 0xfffa, 0x80]}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x10}, 0x40040)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x501142)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ppoll(&(0x7f0000000040)=[{r1, 0x8200}, {r1, 0x12}, {r2, 0x100}, {0xffffffffffffffff, 0x804d}], 0x4, &(0x7f0000000080)={0x0, 0x3938700}, &(0x7f00000000c0)={[0x3]}, 0x8)
r3 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r3, 0x0, r3)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r4=>0x0, ""/256, 0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r6=>0x0, ""/256, 0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r8=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005c180)={0xfffffffffffff22e, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r9=>0x0}], 0x6, "fc20ac5cec7ee6"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005e180)={0x5ed, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {0x0, r9}], 0x0, "46d9cac6119481"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000001480)=ANY=[@ANYRES64=<r11=>0x0, @ANYBLOB="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"])
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r12=>0x0, ""/256, 0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{0x0, r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0xd000943e, &(0x7f0000000280)={r5, 0x0, "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", "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"})
signalfd4(r1, &(0x7f0000000000), 0x8, 0x0)

11:52:12 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r2, 0xc0109207, &(0x7f0000000000)={0x0, 0x0})

11:52:12 executing program 0:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r0 = syz_open_pts(0xffffffffffffffff, 0x20102)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:52:12 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, 0x28051, r0, 0x0)

11:52:12 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
dup2(r2, r0)

11:52:12 executing program 3:
r0 = syz_io_uring_setup(0x2280, &(0x7f00000002c0)={0x0, 0xf6cc, 0x0, 0x0, 0x20000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x800000, 0x0, 0x0, 0x9}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
r3 = openat$incfs(0xffffffffffffffff, &(0x7f00000001c0)='.pending_reads\x00', 0x1, 0x30)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x1010, r3, 0x10000000)
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="0100009ffff81a32d386f386000000000000000000132d1c", @ANYRES32=<r6=>r5, @ANYBLOB="02000000000000002e2f66696c653000"])
r7 = socket$netlink(0x10, 0x3, 0x9)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005200210c00000000000100000000000008000100", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r8, @ANYBLOB='\x00\x00\x00'])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2717.164003] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=82 sclass=netlink_audit_socket pid=13252 comm=syz-executor.3
11:52:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x28051, r0, 0x0)

11:52:25 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c6530002e030998ae5795c7b20784d241069199aff5be88639f8bf4d2ddd636b6bed6ed8ede69c1840a9136a69e328eaed78387e38d75d4a782005af9592142e7bc68c20f69a52ba4b8e225a2e328241dbc6852a2262b066eac57be5178b983ad80ff2f70f0544a025424ebb8f30af01ff3077b7777ca54ac88e364ca7e699494ac80d48c0441698ed8bea3539d714d8be1ed051f893eccfb6c5748141dd78ed5f67248"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:52:25 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

11:52:25 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 26)

11:52:25 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='personality\x00')
sendmsg$nl_netfilter(r0, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xb8, 0xc, 0x2, 0x101, 0x70bd25, 0x25dfdbfd, {0xa, 0x0, 0x1}, [@nested={0xa3, 0x53, 0x0, 0x1, [@generic="c7963e1a5536c179e273992b3ee471005018b6eae5f97a0a63bd2a3a5ea9", @typed={0x8, 0x3, 0x0, 0x0, @u32=0x1}, @generic="93a23e7c10de06cf5eec255928ef77cac44cec54198b677c1d588fdd1884311101289478af31e20d18e7b1c1e51f4d25ce82ed0c7dbd447351a68d3929c83561e2dbaa117e41823e5c1d282f5900bdc282d3e5132e3b7f8bda7caceb918b44830a1dc266157deff83d199c72eb153173424dbd59e60d6170b3"]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20008001}, 0x14)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r1, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x7, 0x6123c0)
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)

11:52:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1c00, 0x0, 0x0, 0x0)

11:52:25 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:52:25 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
flock(0xffffffffffffffff, 0x5)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

[ 2730.187716] FAULT_INJECTION: forcing a failure.
[ 2730.187716] name failslab, interval 1, probability 0, space 0, times 0
[ 2730.190211] CPU: 1 PID: 13275 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2730.191698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2730.193465] Call Trace:
[ 2730.194034]  dump_stack+0x107/0x167
[ 2730.194842]  should_fail.cold+0x5/0xa
[ 2730.195662]  ? create_object.isra.0+0x3a/0xa30
[ 2730.196645]  should_failslab+0x5/0x20
[ 2730.197460]  kmem_cache_alloc+0x5b/0x310
[ 2730.198329]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 2730.199513]  create_object.isra.0+0x3a/0xa30
[ 2730.200456]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2730.201544]  kmem_cache_alloc+0x159/0x310
[ 2730.202444]  security_file_alloc+0x34/0x170
[ 2730.203365]  __alloc_file+0xb7/0x320
[ 2730.204160]  alloc_empty_file+0x6d/0x170
[ 2730.205028]  alloc_file+0x5e/0x5a0
[ 2730.205790]  alloc_file_pseudo+0x16a/0x250
[ 2730.206700]  ? alloc_file+0x5a0/0x5a0
[ 2730.207527]  anon_inode_getfile+0xc8/0x1f0
[ 2730.208426]  io_uring_setup+0x138b/0x2980
[ 2730.209311]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2730.210384]  ? wait_for_completion_io+0x270/0x270
[ 2730.211435]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2730.212545]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2730.213640]  do_syscall_64+0x33/0x40
[ 2730.214438]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2730.215522] RIP: 0033:0x7fbbed29eb19
[ 2730.216316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2730.220229] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2730.221843] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2730.223411] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2730.224933] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2730.226453] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2730.227951] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300, 0x28051, r0, 0x0)

11:52:25 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0x3, 0x141100)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

11:52:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1d00, 0x0, 0x0, 0x0)

11:52:25 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 27)

[ 2730.304921] FAULT_INJECTION: forcing a failure.
[ 2730.304921] name failslab, interval 1, probability 0, space 0, times 0
[ 2730.306286] CPU: 0 PID: 13294 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2730.307088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2730.308032] Call Trace:
[ 2730.308338]  dump_stack+0x107/0x167
[ 2730.308754]  should_fail.cold+0x5/0xa
[ 2730.309192]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 2730.309778]  should_failslab+0x5/0x20
[ 2730.310213]  kmem_cache_alloc_trace+0x55/0x320
[ 2730.310745]  io_uring_alloc_task_context+0x99/0x6a0
[ 2730.311314]  ? io_import_iovec+0x1120/0x1120
[ 2730.311816]  ? lock_downgrade+0x6d0/0x6d0
[ 2730.312288]  ? do_raw_spin_lock+0x121/0x260
[ 2730.312780]  ? rwlock_bug.part.0+0x90/0x90
[ 2730.313266]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2730.313817]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2730.314420]  ? alloc_fd+0x2e7/0x670
[ 2730.314843]  io_uring_setup+0x1fbb/0x2980
[ 2730.315319]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2730.315897]  ? wait_for_completion_io+0x270/0x270
[ 2730.316457]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2730.317055]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2730.317643]  do_syscall_64+0x33/0x40
[ 2730.318068]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2730.318659] RIP: 0033:0x7fbbed29eb19
[ 2730.319084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2730.321179] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2730.322047] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2730.322860] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2730.323666] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2730.324473] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2730.325282] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

11:52:25 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_setup(0x4ee3, &(0x7f00000003c0)={0x0, 0x4a2f, 0x4, 0x0, 0x3b8, 0x0, r5}, &(0x7f0000ff3000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000500)=<r6=>0x0)
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000540), 0x14000, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f00000005c0)=@IORING_OP_WRITE={0x17, 0x0, 0x4000, @fd=r7, 0x0, &(0x7f0000000580)="53f18b2b6e1596e0862f2f002b", 0xd, 0x0, 0x1}, 0x6)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x2, 0xa000, @fd_index=0xa, 0x2, &(0x7f0000000340)=""/115, 0x73, 0x4, 0x1, {0x0, r9}}, 0x3)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r10=>r3, @ANYBLOB="02000000000000002e2f66696c65300096a86323d1ad7eb982d8418c0e04f7c02f001a8da0b6d0765425f237dd543adaadd93362a69604bec6a95dc9e32d8b39d07685919b7fad0dfd8256db38"])
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:52:25 executing program 0:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000080)=0xffff, 0x4)
fcntl$dupfd(r2, 0x0, r2)
r3 = memfd_create(&(0x7f0000000000)='$^:\x00', 0x4)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000006, 0x810, r3, 0xbb8b5000)

11:52:25 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 28)

11:52:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2)

[ 2730.396954] FAULT_INJECTION: forcing a failure.
[ 2730.396954] name failslab, interval 1, probability 0, space 0, times 0
[ 2730.398338] CPU: 0 PID: 13299 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2730.399140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2730.400081] Call Trace:
[ 2730.400388]  dump_stack+0x107/0x167
[ 2730.400806]  should_fail.cold+0x5/0xa
[ 2730.401241]  ? create_object.isra.0+0x3a/0xa30
[ 2730.401763]  should_failslab+0x5/0x20
[ 2730.402200]  kmem_cache_alloc+0x5b/0x310
[ 2730.402673]  create_object.isra.0+0x3a/0xa30
[ 2730.403173]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2730.403754]  kmem_cache_alloc_trace+0x151/0x320
[ 2730.404288]  io_uring_alloc_task_context+0x99/0x6a0
[ 2730.404853]  ? io_import_iovec+0x1120/0x1120
[ 2730.405353]  ? lock_downgrade+0x6d0/0x6d0
[ 2730.405823]  ? do_raw_spin_lock+0x121/0x260
[ 2730.406311]  ? rwlock_bug.part.0+0x90/0x90
[ 2730.406812]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2730.407360]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2730.407966]  ? alloc_fd+0x2e7/0x670
[ 2730.408388]  io_uring_setup+0x1fbb/0x2980
[ 2730.408863]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2730.409438]  ? wait_for_completion_io+0x270/0x270
[ 2730.410000]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2730.410605]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2730.411197]  do_syscall_64+0x33/0x40
[ 2730.411623]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2730.412211] RIP: 0033:0x7fbbed29eb19
[ 2730.412635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2730.414733] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2730.415603] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2730.416419] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2730.417231] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2730.418043] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2730.418862] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:41 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x600000000000000)

11:52:41 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0xfffffffa)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000182000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000003, 0x10010, r6, 0x10000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r7, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x3, 0x4000, @fd_index=0x5, 0x100000000, &(0x7f00000001c0)="c7c35da15197590fe203fd63d9d934b98657486424fc5d72cb045278cba8505c618114f54dd46a4d5d0563965137695eb0", 0x31, 0x2, 0x0, {0x0, r8}}, 0x3)

11:52:41 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f0000000140)=""/165, 0xa5})

11:52:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x20, 0x10000)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
syz_open_dev$usbmon(&(0x7f0000000040), 0x4, 0x4000)
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)

11:52:41 executing program 0:
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000680))
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x230400, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000080)={0x518, 0x37, 0x8, 0x70bd2c, 0x25dfdbfd, {0x1}, [@nested={0x207, 0x2e, 0x0, 0x1, [@generic="147dcbb45f0e72a95893134a264709cfd7acb92b8dae37a991e4adf17071b2477e3d59b580bcf8e97960e9fe47aed57e48e59e340636099665a1d84372f13cad2f4df911c99916c18a95", @generic="c9c9515b0f97a637205f867a596cdab0403cd87dbe5b2208d5e2f3bf4c28390fef5ed826e98c1f07573c968900c4f9a9db8eb71aeb", @generic="d40c94bf2b8758dcbdb07c17bda7bffce0850281d1f0035944e4a3d0c664391fcf56b2a677b3341d63df0ba7767e3ef3d96b234e07409d2394e22781862a0c57c0b11df89ff6dc33bf515388f1631f027dd1ec84a1ac9558c9c7645decc07e6b7d01c7bc3636856c69a816d143d0d2ebb65237f5fdb8fcb641178080880dc1d972df8f79832b68cd6daf6f3f", @generic="1e507305c56f8666f1ceab9bb53280f41886d34730c1338847a14879749d28", @generic="2cb9930bbf78134c361831290a19c4bc8f6f06aae543921b845d11bee7d72936a22c1af01c8de4de52e1d57f229c7863ddd34e525fc71914f3c9b05d5e186ec68cd60231316da176ab96ca07cc4a744dfb4f37641eb4cab7a7a8529a10d06db40c6d1be92e014c2b22c91e1019f6e952c2e4b5129359bc5878205c08c7b9f210f7c472df2001dd4dd6c5a722e407b5e6ec7b0a3e7079ed4ba3233f1868f597c288f9fee3a8cb9eedf3d4b44327f08f6f36860a22c2a3797f7a3df5616e670456ef7b3f494fbbd136084058fa2e2a5c15e254d3e7bb6d788c17"]}, @generic="77294bd2764ed580a4210d6ebb8054f516ad00228085b19dc0fd4dc0299ff666130f516a07be992616b71b9b8dea009ec41753140e67b93e680e41dc059c86fde1c0f91df5468b1b4f6598dadc7247e69be0fac02e3b43d5edae2a8e8fabb04ab00c6fb7fc43d039cb5c72060912ded567af0636eb2f791b76f4f37c693bd2807ee460f00fa791a60665d6f64bacda6a837597023a8264ca157c7ed9b6b7511649d83c3e22ec4399f830f5dfb72bcf8fd404b6109a182ff13c25fcae3441ec5ef27c757bce3819557b03be0ff283f4c9a4574825853c85894e6a0b925b0323d11471", @generic="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", @nested={0xf6, 0xb, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0x8}, @typed={0x14, 0x5a, 0x0, 0x0, @ipv6=@empty}, @generic="9bdeee09f043426fcc8d712aa57ef3b1bb9ec6698e8d93059295f16f89a6aced25c16af2094c0d546572905df5a219bca7e8ac6163e31b15d75c5f610c0f85848d95bcea9845cff40d3a82aa122268b11830a8ed232843b0cb1fdeb919d92d60956cf0a7455ac326eff832ec0fcd498dfc04ead747706244ef84aaa1299cdf5efa2f1786d055365079aea3abd4926b2bba0e81e24f090be051616e8912c33e5308250971f10671bec3639d54f14784e1a9ac9de0c162d424d36e23d0b4ffc8ea661ca4014521e1f317bb23309a8f4f5a3f4d"]}, @nested={0x24, 0x7, 0x0, 0x1, [@typed={0x4, 0x68, 0x0, 0x0, @binary}, @typed={0x8, 0x10, 0x0, 0x0, @fd=r1}, @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@remote}]}]}, 0x518}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
r2 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000640), 0x40, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)

11:52:41 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1f00, 0x0, 0x0, 0x0)

11:52:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4)

11:52:41 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 29)

[ 2745.915339] FAULT_INJECTION: forcing a failure.
[ 2745.915339] name failslab, interval 1, probability 0, space 0, times 0
[ 2745.917757] CPU: 1 PID: 13331 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2745.919225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2745.920993] Call Trace:
[ 2745.921547]  dump_stack+0x107/0x167
[ 2745.922304]  should_fail.cold+0x5/0xa
[ 2745.923144]  ? create_object.isra.0+0x3a/0xa30
[ 2745.924155]  should_failslab+0x5/0x20
[ 2745.924973]  kmem_cache_alloc+0x5b/0x310
[ 2745.925866]  create_object.isra.0+0x3a/0xa30
[ 2745.926849]  kmemleak_alloc_percpu+0xa0/0x100
[ 2745.927811]  pcpu_alloc+0x4e2/0x1240
[ 2745.928599]  __percpu_counter_init+0x10d/0x2d0
[ 2745.929579]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2745.930663]  ? io_import_iovec+0x1120/0x1120
[ 2745.931589]  ? lock_downgrade+0x6d0/0x6d0
[ 2745.932462]  ? do_raw_spin_lock+0x121/0x260
[ 2745.933382]  ? rwlock_bug.part.0+0x90/0x90
[ 2745.934264]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2745.935273]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2745.936358]  ? alloc_fd+0x2e7/0x670
[ 2745.937119]  io_uring_setup+0x1fbb/0x2980
[ 2745.937987]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2745.939052]  ? wait_for_completion_io+0x270/0x270
[ 2745.940087]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2745.941184]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2745.942276]  do_syscall_64+0x33/0x40
[ 2745.943045]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2745.944111] RIP: 0033:0x7fbbed29eb19
[ 2745.944880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2745.948668] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2745.950233] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2745.951722] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2745.953177] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2745.954634] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2745.956144] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xfff, 0x292242)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:52:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa)

11:52:41 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f00000000c0))
r2 = syz_io_uring_complete(0x0)
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000180))
r3 = fcntl$dupfd(r1, 0x0, r1)
r4 = socket$netlink(0x10, 0x3, 0x0)
fchmod(0xffffffffffffffff, 0x200)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000005200210c00000000000000000a000000861e5cdba44b58d45929b885d2f722f3af72d86668c7bb27a23477b515e88b43f6d36bd4b3c94230a3fe2f1d9964ba189cc4f4fbc255604e5f82f65b391bbec9ff85df00d9274ec8a7c8ff01"], 0x4c}}, 0x0)
mmap$usbmon(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x100000c, 0x12, r5, 0x9)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005200210c0000000000", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
fstat(r3, &(0x7f0000000000))
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)
r6 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r6, 0x0, r6)
fsconfig$FSCONFIG_SET_FD(r5, 0x5, &(0x7f00000001c0)='/dev/usbmon#\x00', 0x0, r6)

11:52:41 executing program 5:
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x7, 0x4002)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, 0x0, 0x300, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x14, 0x19, {0x8, 0x9, 0x81, 0x3}}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:52:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x10)

11:52:41 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00000000000000)

11:52:41 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

11:52:41 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018010000f2e0e2b6e6e9b3096ea4f478947c5972671e4f7688fbf04c6b3bcd35eccf56114bcc20580c50e8286d68f2123ad0ff154b4902b547b7685a93157289fba7e6012b2a2efcea51a64461192a15764bc81aa5a0d15861676cb1c0a02a160177f5a8579be375438a966a58bae7399b8da5cab2b07bb2d25bc02dc06c4f9e2a5d9e147e810e594426a329eaf9c5d618cb0441e7f925dc9cd8f33764e9909bc9cc8905c8", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:52:41 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 30)

[ 2746.204095] FAULT_INJECTION: forcing a failure.
[ 2746.204095] name failslab, interval 1, probability 0, space 0, times 0
[ 2746.206557] CPU: 1 PID: 13366 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2746.208014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2746.209752] Call Trace:
[ 2746.210301]  dump_stack+0x107/0x167
[ 2746.211083]  should_fail.cold+0x5/0xa
[ 2746.211893]  ? create_object.isra.0+0x3a/0xa30
[ 2746.212834]  should_failslab+0x5/0x20
[ 2746.213648]  kmem_cache_alloc+0x5b/0x310
[ 2746.214501]  create_object.isra.0+0x3a/0xa30
[ 2746.215413]  kmemleak_alloc_percpu+0xa0/0x100
[ 2746.216337]  pcpu_alloc+0x4e2/0x1240
[ 2746.217133]  __percpu_counter_init+0x10d/0x2d0
[ 2746.218086]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2746.219166]  ? io_import_iovec+0x1120/0x1120
[ 2746.220085]  ? lock_downgrade+0x6d0/0x6d0
[ 2746.220939]  ? do_raw_spin_lock+0x121/0x260
[ 2746.221829]  ? rwlock_bug.part.0+0x90/0x90
[ 2746.222737]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2746.223732]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2746.224824]  ? alloc_fd+0x2e7/0x670
[ 2746.225573]  io_uring_setup+0x1fbb/0x2980
[ 2746.226428]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2746.227461]  ? wait_for_completion_io+0x270/0x270
[ 2746.228467]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2746.229529]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2746.230608]  do_syscall_64+0x33/0x40
[ 2746.231387]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2746.232434] RIP: 0033:0x7fbbed29eb19
[ 2746.233208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2746.236977] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2746.238533] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2746.240005] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2746.241487] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2746.242950] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2746.244424] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2746.291901] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.0'.
11:52:55 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 31)

11:52:55 executing program 0:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x5, &(0x7f0000000400)=[0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff], 0x7, 0x0, 0x1}, 0xfffffffd)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000340)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2, 0x2007, @fd_index=0x1, 0x1, 0x0, 0x0, 0x9, 0x0, {0x3}}, 0x7)
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="000000000000b77a9b73acc6389d5b3d7b4e06901812ec0b75db0f2efc10cd74a04acbff76d18dcc93b072282352a99eb7f2298697b6194b7c51a35d00"/70])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r7, 0x0, r7)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r7, 0x8983, &(0x7f00000001c0)={0x3, 'veth1_virt_wifi\x00', {0x9a}, 0xff00})

11:52:55 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r5=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:52:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x28)

11:52:55 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r1, 0x8008f512, &(0x7f00000000c0))
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
syz_open_dev$usbmon(&(0x7f0000000000), 0x80, 0x200)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:52:55 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1200000000000000)

11:52:55 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/4096, 0x1000})

11:52:55 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2100, 0x0, 0x0, 0x0)

[ 2760.153932] FAULT_INJECTION: forcing a failure.
[ 2760.153932] name failslab, interval 1, probability 0, space 0, times 0
[ 2760.155446] CPU: 0 PID: 13395 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2760.156297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2760.157314] Call Trace:
[ 2760.157649]  dump_stack+0x107/0x167
[ 2760.158099]  should_fail.cold+0x5/0xa
[ 2760.158571]  ? io_uring_alloc_task_context+0x4a3/0x6a0
[ 2760.159226]  should_failslab+0x5/0x20
[ 2760.159697]  kmem_cache_alloc_trace+0x55/0x320
[ 2760.160257]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2760.160896]  ? io_import_iovec+0x1120/0x1120
[ 2760.161451]  ? lock_downgrade+0x6d0/0x6d0
[ 2760.161970]  ? do_raw_spin_lock+0x121/0x260
[ 2760.162518]  ? rwlock_bug.part.0+0x90/0x90
[ 2760.163064]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2760.163659]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2760.164305]  ? alloc_fd+0x2e7/0x670
[ 2760.164762]  io_uring_setup+0x1fbb/0x2980
[ 2760.165274]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2760.165905]  ? wait_for_completion_io+0x270/0x270
[ 2760.166502]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2760.167160]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2760.167796]  do_syscall_64+0x33/0x40
[ 2760.168251]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2760.168889] RIP: 0033:0x7fbbed29eb19
[ 2760.169343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2760.171577] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2760.172498] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2760.173360] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2760.174224] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2760.175098] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2760.175973] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa00)

11:52:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2800)

11:52:55 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1800000000000000)

11:52:55 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2200, 0x0, 0x0, 0x0)

11:52:55 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 32)

11:52:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x40004)

11:52:55 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000)={'syz0', "cc6755f9e622a808fb65917439fcf74b1f473ce73ccad2a394548756ddb2c9b48a5b090b23bacd107662e29e3ffd82cbbc7bc5d53a7ff088e87d2aca9fc1cff2f4759fa47673a4a51f6aa7af8156d831d58099281f5ff7de643304ba8ee1f594ee236f33762c2b4ee8b58d43bd9b1ef427688cb5aa11b3a9eacf79e734a7fa28292bf484c87a7c23399176e4927d65d73285a5f7da9df26871"}, 0x9d)

[ 2760.324950] FAULT_INJECTION: forcing a failure.
[ 2760.324950] name failslab, interval 1, probability 0, space 0, times 0
[ 2760.327663] CPU: 1 PID: 13416 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2760.329259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2760.331195] Call Trace:
[ 2760.331809]  dump_stack+0x107/0x167
[ 2760.332658]  should_fail.cold+0x5/0xa
[ 2760.333540]  ? create_object.isra.0+0x3a/0xa30
[ 2760.334596]  should_failslab+0x5/0x20
[ 2760.335494]  kmem_cache_alloc+0x5b/0x310
[ 2760.336441]  create_object.isra.0+0x3a/0xa30
[ 2760.337455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2760.338635]  kmem_cache_alloc_trace+0x151/0x320
[ 2760.339748]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2760.340926]  ? io_import_iovec+0x1120/0x1120
[ 2760.341945]  ? lock_downgrade+0x6d0/0x6d0
[ 2760.342909]  ? do_raw_spin_lock+0x121/0x260
[ 2760.343905]  ? rwlock_bug.part.0+0x90/0x90
[ 2760.344885]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2760.346014]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2760.347230]  ? alloc_fd+0x2e7/0x670
[ 2760.348078]  io_uring_setup+0x1fbb/0x2980
[ 2760.349046]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2760.350213]  ? wait_for_completion_io+0x270/0x270
[ 2760.351358]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2760.352560]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2760.353751]  do_syscall_64+0x33/0x40
[ 2760.354609]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2760.355807] RIP: 0033:0x7fbbed29eb19
11:52:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

[ 2760.356689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2760.361235] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2760.363013] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2760.364671] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2760.366338] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2760.368007] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2760.369658] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:52:55 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
io_uring_enter(r7, 0x8d800000, 0x520f, 0x2, &(0x7f0000000340)={[0x3]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
r9 = pidfd_getfd(r5, 0xffffffffffffffff, 0x0)
openat(r9, &(0x7f00000001c0)='./file0\x00', 0x400, 0x22)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:52:55 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 1)

[ 2760.430429] FAULT_INJECTION: forcing a failure.
[ 2760.430429] name failslab, interval 1, probability 0, space 0, times 0
[ 2760.432148] CPU: 0 PID: 13427 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2760.433130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2760.434297] Call Trace:
[ 2760.434669]  dump_stack+0x107/0x167
[ 2760.435190]  should_fail.cold+0x5/0xa
[ 2760.435732]  ? vm_area_dup+0x78/0x290
[ 2760.436268]  should_failslab+0x5/0x20
[ 2760.436812]  kmem_cache_alloc+0x5b/0x310
[ 2760.437397]  vm_area_dup+0x78/0x290
[ 2760.437915]  ? kernel_text_address+0xf2/0x120
[ 2760.438550]  ? mark_lock+0xf5/0x2df0
[ 2760.439094]  ? lock_chain_count+0x20/0x20
[ 2760.439689]  ? avc_has_extended_perms+0xf40/0xf40
[ 2760.440370]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2760.441026]  ? lock_downgrade+0x6d0/0x6d0
[ 2760.441615]  ? __lock_acquire+0x1657/0x5b00
[ 2760.442221]  ? vm_area_alloc+0x110/0x110
[ 2760.442808]  ? __lock_acquire+0x1657/0x5b00
[ 2760.443436]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2760.444169]  ? vmacache_find+0x55/0x2a0
[ 2760.444733]  __split_vma+0xa8/0x4e0
[ 2760.445244]  __do_munmap+0x365/0x1260
[ 2760.445783]  ? arch_get_unmapped_area+0x450/0x450
[ 2760.446458]  mmap_region+0x7cc/0x1500
[ 2760.447001]  do_mmap+0x868/0x1370
[ 2760.447493]  vm_mmap_pgoff+0x198/0x1f0
[ 2760.448044]  ? randomize_page+0xb0/0xb0
[ 2760.448615]  ksys_mmap_pgoff+0x41c/0x560
[ 2760.449188]  ? find_mergeable_anon_vma+0x250/0x250
[ 2760.449881]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2760.450612]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2760.451342]  do_syscall_64+0x33/0x40
[ 2760.451863]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2760.452577] RIP: 0033:0x7ffb461ecb19
[ 2760.453101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2760.455698] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2760.456769] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2760.457764] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2760.458772] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2760.459777] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2760.460773] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:53:10 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x400}}, './file0\x00'})
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0], 0x3, 0x7f})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:53:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2300, 0x0, 0x0, 0x0)

11:53:10 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1e00000000000000)

11:53:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 33)

11:53:10 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2, 0x0, 0x1}, 0x0)
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000480)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd=r3, 0xc0000000000, &(0x7f0000000400)=[{&(0x7f00000003c0)="9fb543b768b652fee335db455478f3c60e33209e385f182c26a7ff2e3edf82b64f860c40c71208fe", 0x28}], 0x1, 0x0, 0x0, {0x1}}, 0x83)
r6 = syz_io_uring_setup(0x54e5, &(0x7f0000000340)={0x0, 0x0, 0x1, 0x4, 0x0, 0x0, r3}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r9=>r6, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:53:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x100000)

11:53:10 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 2)

11:53:10 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x5)

11:53:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

[ 2775.005193] FAULT_INJECTION: forcing a failure.
[ 2775.005193] name failslab, interval 1, probability 0, space 0, times 0
[ 2775.008037] CPU: 0 PID: 13446 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2775.009465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2775.011165] Call Trace:
[ 2775.011703]  dump_stack+0x107/0x167
[ 2775.012450]  should_fail.cold+0x5/0xa
[ 2775.013223]  ? io_wq_create+0xeb/0xc00
[ 2775.014020]  should_failslab+0x5/0x20
[ 2775.014791]  __kmalloc+0x72/0x390
[ 2775.015513]  io_wq_create+0xeb/0xc00
[ 2775.016279]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2775.017355]  ? io_import_iovec+0x1120/0x1120
[ 2775.018279]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2775.019246]  ? __io_req_find_next+0x300/0x300
[ 2775.020215]  ? do_raw_spin_lock+0x121/0x260
[ 2775.021148]  ? rwlock_bug.part.0+0x90/0x90
[ 2775.022062]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2775.023126]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2775.024250]  ? alloc_fd+0x2e7/0x670
[ 2775.025037]  io_uring_setup+0x1fbb/0x2980
[ 2775.025936]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2775.027025]  ? wait_for_completion_io+0x270/0x270
[ 2775.028094]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2775.029228]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2775.030333]  do_syscall_64+0x33/0x40
[ 2775.031147]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2775.032257] RIP: 0033:0x7fbbed29eb19
[ 2775.033058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2775.036955] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2775.038595] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2775.040161] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2775.041711] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2775.043272] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2775.044839] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2775.065251] FAULT_INJECTION: forcing a failure.
[ 2775.065251] name failslab, interval 1, probability 0, space 0, times 0
[ 2775.067869] CPU: 0 PID: 13462 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2775.069371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2775.071201] Call Trace:
[ 2775.071780]  dump_stack+0x107/0x167
[ 2775.072579]  should_fail.cold+0x5/0xa
[ 2775.073419]  ? create_object.isra.0+0x3a/0xa30
[ 2775.074416]  should_failslab+0x5/0x20
[ 2775.075262]  kmem_cache_alloc+0x5b/0x310
[ 2775.076148]  create_object.isra.0+0x3a/0xa30
[ 2775.077113]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2775.078214]  kmem_cache_alloc+0x159/0x310
[ 2775.079131]  vm_area_dup+0x78/0x290
[ 2775.079941]  ? kernel_text_address+0xf2/0x120
[ 2775.080914]  ? mark_lock+0xf5/0x2df0
[ 2775.081727]  ? lock_chain_count+0x20/0x20
[ 2775.082628]  ? avc_has_extended_perms+0xf40/0xf40
[ 2775.083700]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2775.084711]  ? lock_downgrade+0x6d0/0x6d0
[ 2775.085611]  ? __lock_acquire+0x1657/0x5b00
[ 2775.086555]  ? vm_area_alloc+0x110/0x110
[ 2775.087460]  ? __lock_acquire+0x1657/0x5b00
[ 2775.088392]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2775.089528]  ? vmacache_find+0x55/0x2a0
[ 2775.090406]  __split_vma+0xa8/0x4e0
[ 2775.091214]  __do_munmap+0x365/0x1260
[ 2775.092047]  ? arch_get_unmapped_area+0x450/0x450
[ 2775.093097]  mmap_region+0x7cc/0x1500
[ 2775.093941]  do_mmap+0x868/0x1370
[ 2775.094707]  vm_mmap_pgoff+0x198/0x1f0
11:53:10 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

[ 2775.095557]  ? randomize_page+0xb0/0xb0
[ 2775.096623]  ksys_mmap_pgoff+0x41c/0x560
[ 2775.097529]  ? find_mergeable_anon_vma+0x250/0x250
[ 2775.098593]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2775.099759]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2775.100875]  do_syscall_64+0x33/0x40
[ 2775.101681]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2775.102804] RIP: 0033:0x7ffb461ecb19
[ 2775.103622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2775.107622] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2775.109277] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2775.110830] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2775.112389] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2775.113941] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2775.115506] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:53:10 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 34)

11:53:10 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xb00400)

[ 2775.235314] FAULT_INJECTION: forcing a failure.
[ 2775.235314] name failslab, interval 1, probability 0, space 0, times 0
[ 2775.236690] CPU: 1 PID: 13474 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2775.237480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2775.238434] Call Trace:
[ 2775.238746]  dump_stack+0x107/0x167
[ 2775.239174]  should_fail.cold+0x5/0xa
[ 2775.239611]  ? create_object.isra.0+0x3a/0xa30
[ 2775.240132]  should_failslab+0x5/0x20
[ 2775.240574]  kmem_cache_alloc+0x5b/0x310
[ 2775.241039]  create_object.isra.0+0x3a/0xa30
[ 2775.241544]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2775.242128]  __kmalloc+0x16e/0x390
[ 2775.242539]  io_wq_create+0xeb/0xc00
[ 2775.242974]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2775.243569]  ? io_import_iovec+0x1120/0x1120
[ 2775.244092]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2775.244614]  ? __io_req_find_next+0x300/0x300
[ 2775.245134]  ? do_raw_spin_lock+0x121/0x260
[ 2775.245635]  ? rwlock_bug.part.0+0x90/0x90
[ 2775.246132]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2775.246696]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2775.247310]  ? alloc_fd+0x2e7/0x670
[ 2775.247732]  io_uring_setup+0x1fbb/0x2980
[ 2775.248225]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2775.248816]  ? wait_for_completion_io+0x270/0x270
[ 2775.249388]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2775.250002]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2775.250591]  do_syscall_64+0x33/0x40
[ 2775.251022]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2775.251623] RIP: 0033:0x7fbbed29eb19
[ 2775.252051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2775.254191] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2775.255069] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2775.255898] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2775.256725] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2775.257546] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2775.258372] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:53:25 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

11:53:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

11:53:25 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="782354db22b94c6fdeb4d97037949405e25bb7083a2924dcf29ca60200ab85d553b917602378d8b34532f6818fb3fcd598a3b6a3dfbde7cc1fff5561676fa1b937809a26974b10d7a68de0f38b10ca9edb2b46099ce239d0c6fb324b1d08cb391685759951265187370b2847acd8ecf392"], 0x1c}}, 0x0)
ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f0000001340)={&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000340)=""/4096, 0x1000})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000520021cd4179ecf50c00000000000000000a0000000800080100", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="d92779a8692a1a2cffc7fd741436d9ee7e86c286c24116f09f47979a7a6f5e6180277a2bbe30c894f131c194f213d30fe70553a01653b7e6042e96c5f67a58be51dd4171f61a66c61bdb801285dfccfc9d9c5efc2545d1fdfd89108b7fb62c60ec0e17ce2fa11e3ff63ded83904d008f7f24a21335231506c27cba3cc3fa94590ec565280b47d872454dc366c1d624282642996255b7de9d24e8b6a405b4ef712e7c8c5a3e231a4aded3fdaa687caa1b605040a509ad413ff5888c26489f81f106c6345e100f3f12e585801f3a"], 0x1c}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0040005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
r9 = io_uring_setup(0x4932, &(0x7f0000001380)={0x0, 0x9473, 0x2, 0x0, 0x317, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000001400)=[r9], 0x1)
ioctl$MON_IOCX_GET(r6, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000), &(0x7f0000000180)=""/193, 0xc1})
ioctl$MON_IOCQ_RING_SIZE(r4, 0x9205)

11:53:25 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x40, 0x1, 0x8d, 0x80, 0x0, 0x6fb, 0x80008, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0x7, 0x8}, 0x4144a, 0x5, 0x4, 0x1, 0x0, 0x1, 0xfe01, 0x0, 0x8, 0x0, 0x81}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x11)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000001c0)={&(0x7f00000000c0), &(0x7f0000000140)=""/111, 0x6f})

11:53:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x1000000)

11:53:25 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 35)

11:53:25 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
r6 = perf_event_open$cgroup(&(0x7f0000000340)={0x0, 0x80, 0x5, 0x1, 0x8, 0xfd, 0x0, 0x5, 0xa00, 0x6, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80000000, 0x2, @perf_bp={&(0x7f00000001c0), 0x5}, 0x8124, 0x6, 0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x9}, r5, 0x5, 0xffffffffffffffff, 0x2)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x9, &(0x7f00000003c0)=[r6, r8, r4, r0, r5], 0x5}, 0x6)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r10=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:53:25 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 3)

[ 2790.154474] FAULT_INJECTION: forcing a failure.
[ 2790.154474] name failslab, interval 1, probability 0, space 0, times 0
[ 2790.156892] CPU: 0 PID: 13501 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2790.158321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.160070] Call Trace:
[ 2790.160622]  dump_stack+0x107/0x167
[ 2790.161377]  should_fail.cold+0x5/0xa
[ 2790.162209]  ? io_wq_create+0x6ef/0xc00
[ 2790.163032]  should_failslab+0x5/0x20
[ 2790.163836]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2790.164867]  io_wq_create+0x6ef/0xc00
[ 2790.165662]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2790.166727]  ? io_import_iovec+0x1120/0x1120
[ 2790.167642]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2790.168593]  ? __io_req_find_next+0x300/0x300
[ 2790.169524]  ? do_raw_spin_lock+0x121/0x260
[ 2790.170418]  ? rwlock_bug.part.0+0x90/0x90
[ 2790.171353]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2790.172346]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2790.173410]  ? alloc_fd+0x2e7/0x670
[ 2790.174167]  io_uring_setup+0x1fbb/0x2980
[ 2790.175033]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2790.176093]  ? wait_for_completion_io+0x270/0x270
[ 2790.177097]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.178395]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2790.179778]  do_syscall_64+0x33/0x40
[ 2790.180749]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.182091] RIP: 0033:0x7fbbed29eb19
[ 2790.183058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.187527] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2790.189260] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2790.190783] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2790.192260] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2790.193789] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2790.195280] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2790.199681] FAULT_INJECTION: forcing a failure.
[ 2790.199681] name failslab, interval 1, probability 0, space 0, times 0
[ 2790.202354] CPU: 0 PID: 13503 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2790.203802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.205731] Call Trace:
[ 2790.206286]  dump_stack+0x107/0x167
[ 2790.207044]  should_fail.cold+0x5/0xa
[ 2790.207869]  ? anon_vma_clone+0xdc/0x590
[ 2790.208705]  should_failslab+0x5/0x20
[ 2790.209513]  kmem_cache_alloc+0x5b/0x310
[ 2790.210353]  anon_vma_clone+0xdc/0x590
[ 2790.211182]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2790.212344]  __split_vma+0x17c/0x4e0
[ 2790.213187]  __do_munmap+0x365/0x1260
[ 2790.214168]  ? arch_get_unmapped_area+0x450/0x450
[ 2790.215254]  mmap_region+0x7cc/0x1500
[ 2790.216081]  do_mmap+0x868/0x1370
[ 2790.216808]  vm_mmap_pgoff+0x198/0x1f0
[ 2790.217615]  ? randomize_page+0xb0/0xb0
[ 2790.218451]  ksys_mmap_pgoff+0x41c/0x560
[ 2790.219296]  ? find_mergeable_anon_vma+0x250/0x250
[ 2790.220336]  ? align_vdso_addr+0x60/0x60
[ 2790.221181]  do_syscall_64+0x33/0x40
[ 2790.222140]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.223292] RIP: 0033:0x7ffb461ecb19
[ 2790.224256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.228089] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2790.229663] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2790.231155] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2790.232624] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2790.234085] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2790.235568] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:53:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

11:53:25 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r3=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:53:25 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 4)

11:53:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2000000)

11:53:25 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 36)

11:53:25 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2400000000000000)

[ 2790.378270] FAULT_INJECTION: forcing a failure.
[ 2790.378270] name failslab, interval 1, probability 0, space 0, times 0
[ 2790.380742] CPU: 0 PID: 13520 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2790.382164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.384297] Call Trace:
[ 2790.384982]  dump_stack+0x107/0x167
[ 2790.385950]  should_fail.cold+0x5/0xa
[ 2790.386940]  ? create_object.isra.0+0x3a/0xa30
[ 2790.388061]  should_failslab+0x5/0x20
[ 2790.388994]  kmem_cache_alloc+0x5b/0x310
[ 2790.390035]  create_object.isra.0+0x3a/0xa30
[ 2790.391119]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2790.392418]  kmem_cache_alloc+0x159/0x310
[ 2790.393465]  anon_vma_clone+0xdc/0x590
[ 2790.394443]  __split_vma+0x17c/0x4e0
[ 2790.395397]  __do_munmap+0x365/0x1260
[ 2790.396357]  ? arch_get_unmapped_area+0x450/0x450
[ 2790.397570]  mmap_region+0x7cc/0x1500
[ 2790.398538]  do_mmap+0x868/0x1370
[ 2790.399424]  vm_mmap_pgoff+0x198/0x1f0
[ 2790.400403]  ? randomize_page+0xb0/0xb0
[ 2790.401428]  ksys_mmap_pgoff+0x41c/0x560
[ 2790.402454]  ? find_mergeable_anon_vma+0x250/0x250
[ 2790.403646]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.404804]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2790.405941]  do_syscall_64+0x33/0x40
[ 2790.406767]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.407849] RIP: 0033:0x7ffb461ecb19
[ 2790.408622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.412434] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2790.414000] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2790.415475] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2790.416931] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2790.418387] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2790.419858] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
[ 2790.429413] FAULT_INJECTION: forcing a failure.
[ 2790.429413] name failslab, interval 1, probability 0, space 0, times 0
[ 2790.431967] CPU: 1 PID: 13524 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2790.433408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.435135] Call Trace:
[ 2790.435708]  dump_stack+0x107/0x167
[ 2790.436485]  should_fail.cold+0x5/0xa
[ 2790.437283]  ? create_object.isra.0+0x3a/0xa30
[ 2790.438242]  should_failslab+0x5/0x20
[ 2790.439044]  kmem_cache_alloc+0x5b/0x310
[ 2790.439905]  ? io_wq_create+0x114/0xc00
[ 2790.440743]  create_object.isra.0+0x3a/0xa30
[ 2790.441661]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2790.442735]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2790.443807]  io_wq_create+0x6ef/0xc00
[ 2790.444620]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2790.445689]  ? io_import_iovec+0x1120/0x1120
[ 2790.446621]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2790.447572]  ? __io_req_find_next+0x300/0x300
[ 2790.448514]  ? do_raw_spin_lock+0x121/0x260
[ 2790.449413]  ? rwlock_bug.part.0+0x90/0x90
[ 2790.450316]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2790.451327]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2790.452420]  ? alloc_fd+0x2e7/0x670
[ 2790.453188]  io_uring_setup+0x1fbb/0x2980
[ 2790.454056]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2790.455132]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.456276]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2790.457375]  do_syscall_64+0x33/0x40
[ 2790.458157]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.459237] RIP: 0033:0x7fbbed29eb19
[ 2790.460031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.463861] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2790.465465] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2790.466952] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2790.468446] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2790.469934] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2790.471437] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:53:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4000000)

11:53:25 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 5)

11:53:25 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

[ 2790.540599] FAULT_INJECTION: forcing a failure.
[ 2790.540599] name failslab, interval 1, probability 0, space 0, times 0
[ 2790.542962] CPU: 0 PID: 13531 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2790.544296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.545878] Call Trace:
[ 2790.546389]  dump_stack+0x107/0x167
[ 2790.547081]  should_fail.cold+0x5/0xa
[ 2790.547832]  ? vm_area_dup+0x78/0x290
[ 2790.548560]  should_failslab+0x5/0x20
[ 2790.549290]  kmem_cache_alloc+0x5b/0x310
[ 2790.550071]  vm_area_dup+0x78/0x290
[ 2790.550784]  ? find_held_lock+0x2c/0x110
[ 2790.551564]  ? __vma_adjust+0x66e/0x2510
[ 2790.552338]  ? lock_downgrade+0x6d0/0x6d0
[ 2790.553152]  ? up_write+0x191/0x550
[ 2790.553848]  ? downgrade_write+0x3a0/0x3a0
[ 2790.554651]  ? anon_vma_interval_tree_remove+0xb34/0xf30
[ 2790.555708]  ? vm_area_alloc+0x110/0x110
[ 2790.556500]  ? __vma_adjust+0xbb8/0x2510
[ 2790.557288]  ? vmacache_find+0x55/0x2a0
[ 2790.558047]  __split_vma+0xa8/0x4e0
[ 2790.558743]  __do_munmap+0xf40/0x1260
[ 2790.559464]  ? arch_get_unmapped_area+0x450/0x450
[ 2790.560404]  mmap_region+0x7cc/0x1500
[ 2790.561154]  do_mmap+0x868/0x1370
[ 2790.561813]  vm_mmap_pgoff+0x198/0x1f0
[ 2790.562548]  ? randomize_page+0xb0/0xb0
[ 2790.563340]  ksys_mmap_pgoff+0x41c/0x560
[ 2790.564126]  ? find_mergeable_anon_vma+0x250/0x250
[ 2790.565053]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.566043]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2790.567023]  do_syscall_64+0x33/0x40
[ 2790.567746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.568724] RIP: 0033:0x7ffb461ecb19
[ 2790.569430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.572974] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2790.574440] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2790.575790] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2790.577123] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2790.578438] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2790.579785] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:53:25 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4000400)

11:53:39 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x2, 0x48000)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x5)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/113, 0x71})
r3 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r3, 0x0, r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, r5, 0x329, 0x0, 0x0, {{0x11}, {@void, @val={0x8, 0x3, r6}, @void}}}, 0x1c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_VENDOR(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="290300000000000000000000080003000000", @ANYRES32=r9, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r5, 0x300, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x2, 0x1a}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x68}]}, 0x34}, 0x1, 0x0, 0x0, 0x20048004}, 0x48040)

11:53:39 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2a00000000000000)

[ 2804.080092] FAULT_INJECTION: forcing a failure.
[ 2804.080092] name failslab, interval 1, probability 0, space 0, times 0
[ 2804.082556] CPU: 0 PID: 13559 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2804.084028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2804.085784] Call Trace:
[ 2804.086346]  dump_stack+0x107/0x167
[ 2804.087116]  should_fail.cold+0x5/0xa
[ 2804.087936]  ? create_object.isra.0+0x3a/0xa30
[ 2804.088906]  should_failslab+0x5/0x20
[ 2804.089705]  kmem_cache_alloc+0x5b/0x310
[ 2804.090563]  create_object.isra.0+0x3a/0xa30
[ 2804.091492]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2804.092629]  kmem_cache_alloc+0x159/0x310
[ 2804.093505]  vm_area_dup+0x78/0x290
[ 2804.094269]  ? find_held_lock+0x2c/0x110
[ 2804.095130]  ? __vma_adjust+0x66e/0x2510
[ 2804.095998]  ? lock_downgrade+0x6d0/0x6d0
[ 2804.096893]  ? up_write+0x191/0x550
[ 2804.097655]  ? downgrade_write+0x3a0/0x3a0
[ 2804.098550]  ? anon_vma_interval_tree_remove+0xb34/0xf30
[ 2804.099700]  ? vm_area_alloc+0x110/0x110
[ 2804.100560]  ? __vma_adjust+0xbb8/0x2510
[ 2804.101444]  ? vmacache_find+0x55/0x2a0
[ 2804.102284]  __split_vma+0xa8/0x4e0
[ 2804.103055]  __do_munmap+0xf40/0x1260
[ 2804.103880]  ? arch_get_unmapped_area+0x450/0x450
[ 2804.104901]  mmap_region+0x7cc/0x1500
[ 2804.105723]  do_mmap+0x868/0x1370
[ 2804.106458]  vm_mmap_pgoff+0x198/0x1f0
[ 2804.107286]  ? randomize_page+0xb0/0xb0
[ 2804.108154]  ksys_mmap_pgoff+0x41c/0x560
[ 2804.109013]  ? find_mergeable_anon_vma+0x250/0x250
[ 2804.110054]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2804.111155]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2804.112244]  do_syscall_64+0x33/0x40
[ 2804.113020]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2804.114096] RIP: 0033:0x7ffb461ecb19
[ 2804.114870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2804.118738] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2804.120340] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2804.121845] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2804.123336] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2804.124844] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2804.126345] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
[ 2804.146500] FAULT_INJECTION: forcing a failure.
[ 2804.146500] name failslab, interval 1, probability 0, space 0, times 0
[ 2804.148988] CPU: 0 PID: 13567 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2804.150462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2804.152228] Call Trace:
[ 2804.152788]  dump_stack+0x107/0x167
[ 2804.153557]  should_fail.cold+0x5/0xa
[ 2804.154360]  ? __io_uring_add_tctx_node+0x15c/0x520
[ 2804.155421]  should_failslab+0x5/0x20
[ 2804.156234]  kmem_cache_alloc_trace+0x55/0x320
[ 2804.157201]  __io_uring_add_tctx_node+0x15c/0x520
[ 2804.158214]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2804.159317]  ? alloc_fd+0x2e7/0x670
[ 2804.160101]  io_uring_setup+0x1fbb/0x2980
[ 2804.160987]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2804.162049]  ? wait_for_completion_io+0x270/0x270
[ 2804.163080]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2804.164193]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2804.165283]  do_syscall_64+0x33/0x40
[ 2804.166069]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2804.167152] RIP: 0033:0x7fbbed29eb19
[ 2804.167943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2804.172107] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2804.173712] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2804.175206] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2804.176719] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2804.178213] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2804.179733] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:53:39 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0xad586)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:53:39 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

11:53:39 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 6)

11:53:39 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 37)

11:53:39 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xfff)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x80010, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000340)={{0x1, 0x1, 0x18, r9}, './file0\x00'})
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r10=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:53:39 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa000000)

11:53:39 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xfffffffffffffffa, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000080)={0x0, 0x0})

11:53:39 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x28000000)

11:53:39 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

11:53:39 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 7)

11:53:39 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xffffffffffffe)

11:53:39 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r3=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r5=>r3}, './file0\x00'})
perf_event_open(&(0x7f0000000340)={0x4, 0xffffffffffffffe3, 0x7f, 0xf4, 0x5d, 0xf6, 0x0, 0x7ff, 0x40, 0x9, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f00000001c0)}, 0x1b0a3, 0x218, 0x0, 0x1, 0x6, 0x7, 0x8, 0x0, 0x2, 0x0, 0x4048e48b}, 0x0, 0x1, 0xffffffffffffffff, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:53:39 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3000000000000000)

11:53:39 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x40, 0x1, 0x8d, 0x80, 0x0, 0x6fb, 0x80008, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0x7, 0x8}, 0x4144a, 0x5, 0x4, 0x1, 0x0, 0x1, 0xfe01, 0x0, 0x8, 0x0, 0x81}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x11)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000001c0)={&(0x7f00000000c0), &(0x7f0000000140)=""/111, 0x6f})

[ 2804.375090] FAULT_INJECTION: forcing a failure.
[ 2804.375090] name failslab, interval 1, probability 0, space 0, times 0
[ 2804.378078] CPU: 0 PID: 13585 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2804.379569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2804.381316] Call Trace:
[ 2804.381880]  dump_stack+0x107/0x167
[ 2804.382654]  should_fail.cold+0x5/0xa
[ 2804.383455]  ? anon_vma_clone+0xdc/0x590
[ 2804.384328]  should_failslab+0x5/0x20
[ 2804.385143]  kmem_cache_alloc+0x5b/0x310
[ 2804.386008]  anon_vma_clone+0xdc/0x590
[ 2804.386846]  __split_vma+0x17c/0x4e0
[ 2804.387654]  __do_munmap+0xf40/0x1260
[ 2804.388457]  ? arch_get_unmapped_area+0x450/0x450
[ 2804.389486]  mmap_region+0x7cc/0x1500
[ 2804.390302]  do_mmap+0x868/0x1370
[ 2804.391043]  vm_mmap_pgoff+0x198/0x1f0
[ 2804.391879]  ? randomize_page+0xb0/0xb0
[ 2804.392732]  ksys_mmap_pgoff+0x41c/0x560
[ 2804.393595]  ? find_mergeable_anon_vma+0x250/0x250
[ 2804.394636]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2804.395745]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2804.396846]  do_syscall_64+0x33/0x40
[ 2804.397629]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2804.398707] RIP: 0033:0x7ffb461ecb19
[ 2804.399490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2804.403355] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2804.404977] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2804.406483] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2804.407997] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2804.409491] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2804.411013] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:53:39 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 38)

11:53:39 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x10000000000000)

[ 2804.452882] FAULT_INJECTION: forcing a failure.
[ 2804.452882] name failslab, interval 1, probability 0, space 0, times 0
[ 2804.455337] CPU: 0 PID: 13596 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2804.456823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2804.458588] Call Trace:
[ 2804.459160]  dump_stack+0x107/0x167
[ 2804.459944]  should_fail.cold+0x5/0xa
[ 2804.460750]  ? create_object.isra.0+0x3a/0xa30
[ 2804.461719]  should_failslab+0x5/0x20
[ 2804.462528]  kmem_cache_alloc+0x5b/0x310
[ 2804.463391]  create_object.isra.0+0x3a/0xa30
[ 2804.464321]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2804.465402]  kmem_cache_alloc_trace+0x151/0x320
[ 2804.466405]  __io_uring_add_tctx_node+0x15c/0x520
[ 2804.467429]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2804.468548]  ? alloc_fd+0x2e7/0x670
[ 2804.469323]  io_uring_setup+0x1fbb/0x2980
[ 2804.470204]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2804.471268]  ? wait_for_completion_io+0x270/0x270
[ 2804.472312]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2804.473421]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2804.474512]  do_syscall_64+0x33/0x40
[ 2804.475303]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2804.476400] RIP: 0033:0x7fbbed29eb19
[ 2804.477191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2804.481101] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2804.482721] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2804.484228] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2804.485745] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2804.487247] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2804.488765] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:53:55 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:53:55 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x3ffffffc, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x224100, 0x0)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000140)={&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000000c0)=""/21, 0x15})
r2 = pidfd_open(0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f0000000180)=0x4)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="c8f2b413f5453e515aef051cb9529e9d730b5fcb806b2501a9aa2442549e8d34dba8c99a7d3c78977601bc511b3f526a3f745933232d3f37671fe7f03ea980bcc018e088b984d0c7d94bd9311b363c4d8daaca1267ad2fb3d17a6a588e1203b952d3167fbadc824d6912e4838c92f133e9a428d5c4b9b010f9ed52324b2a717a0a3ec22068e61d10783f7da92d021cac102191f5f3255fa7df3feb025805667ed84d318a73a7cdaf0f3de092043d09caabe4c79fd236576f17124d73ec1d43b1ff0c3cf2306b0e4bfb51cdbb805b8e1a04c8a2"], 0x1c}}, 0x0)
dup(r4)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r6, 0x40189206, &(0x7f0000000400)={&(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000003c0)})
r7 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r7, 0x0, r7)
recvmmsg$unix(r1, &(0x7f0000002f40)=[{{&(0x7f00000001c0)=@abs, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1, &(0x7f0000004580)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000000c678000000000000000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="010000ffffffffffffff5c0000003af0f8b3659a393a688b32be261cd6a6af9ce8c7411044062565401ee6d88140b0114d22d7fabae55fffb46a58cc4cdecdfb08f52a9224ed9550a187ab21a27e2185deabeb9edebb4c2ad1e023453ce960f01c02620adf92d5072759925de0ae2af890595bfbb56ea31be59f5483f8780931268d0c9b5c4c0ad583163b1dc7929a42b0a01f0bbc387c2db93455db90d88b0e50a8a1e7aee4430f77145b4b91cb23195a8be22957cf415d224e5ad71709044830150f18496e4806a7cc4ee662", @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=<r8=>0xffffffffffffffff, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT=r7], 0x88}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000033c0)=""/136, 0x88}], 0x1}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f0000003480)=[{&(0x7f00000005c0)=""/65, 0x41}, {&(0x7f0000004700)=""/217, 0xd9}, {&(0x7f0000000740)=""/16, 0x10}, {&(0x7f0000000780)=""/64, 0x40}, {&(0x7f00000007c0)=""/170, 0xaa}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f00000008c0)}, {&(0x7f0000000900)=""/22, 0x16}, {&(0x7f0000000440)=""/89, 0x59}, {&(0x7f0000003240)=""/235, 0xeb}, {&(0x7f00000004c0)}], 0xb, &(0x7f00000009c0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000a00), 0x6e, &(0x7f0000001d40)=[{&(0x7f0000000a80)=""/76, 0x4c}, {&(0x7f0000000b00)=""/9, 0x9}, {&(0x7f0000000b40)=""/13, 0xd}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/91, 0x5b}, {&(0x7f0000001c00)=""/234, 0xea}, {&(0x7f0000001d00)=""/8, 0x8}], 0x7}}, {{0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000001dc0)=""/214, 0xd6}, {&(0x7f0000001ec0)=""/205, 0xcd}], 0x2}}, {{&(0x7f0000002000)=@abs, 0x6e, &(0x7f0000002200)=[{&(0x7f0000002080)=""/128, 0x80}, {&(0x7f0000002100)=""/129, 0x81}, {&(0x7f00000021c0)=""/5, 0x5}], 0x3, &(0x7f0000002240)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000002300)=@abs, 0x6e, &(0x7f00000025c0)=[{&(0x7f0000002380)=""/247, 0xf7}, {&(0x7f0000002480)=""/230, 0xe6}, {&(0x7f0000002580)=""/28, 0x1c}], 0x3}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f00000004c0)=""/57, 0x39}, {&(0x7f0000002640)=""/224, 0xe0}], 0x2}}, {{&(0x7f0000002780)=@abs, 0x6e, &(0x7f0000002a40)=[{&(0x7f0000002800)=""/89, 0x59}, {&(0x7f0000002880)=""/132, 0x84}, {&(0x7f0000002940)=""/232, 0xe8}], 0x3, &(0x7f0000002a80)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [<r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f0000002b80), 0x6e, &(0x7f0000002e80)=[{&(0x7f0000003580)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/15, 0xf}, {&(0x7f0000002c40)=""/220, 0xdc}, {&(0x7f0000002d40)=""/7, 0x7}, {&(0x7f0000002d80)=""/189, 0xbd}, {&(0x7f0000002e40)=""/12, 0xc}], 0x6, &(0x7f0000002f00)}}], 0xa, 0x40002002, &(0x7f00000031c0)={0x0, 0x989680})
fcntl$F_SET_RW_HINT(r8, 0x40c, &(0x7f0000003200)=0x3)
readahead(r9, 0x200, 0x5)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:53:55 executing program 3:
r0 = syz_io_uring_setup(0x4d4c, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x400}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xffffffc7}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x52, 0xc21, 0x70bd2b, 0x0, {0x1a}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x1000000, 0x13, r4, 0x8000000)
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, <r7=>0x0})
syz_open_procfs(r7, &(0x7f0000000200)='net/igmp\x00')
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x39, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r7, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2819.998460] FAULT_INJECTION: forcing a failure.
[ 2819.998460] name failslab, interval 1, probability 0, space 0, times 0
[ 2819.999949] CPU: 0 PID: 13618 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2820.000802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2820.001829] Call Trace:
[ 2820.002171]  dump_stack+0x107/0x167
[ 2820.002624]  should_fail.cold+0x5/0xa
[ 2820.003097]  ? xas_alloc+0x336/0x440
[ 2820.003558]  should_failslab+0x5/0x20
[ 2820.004041]  kmem_cache_alloc+0x5b/0x310
[ 2820.004546]  ? stack_trace_consume_entry+0x160/0x160
[ 2820.005175]  xas_alloc+0x336/0x440
[ 2820.005620]  xas_create+0x34a/0x10d0
[ 2820.006093]  ? kernel_text_address+0xf2/0x120
[ 2820.006652]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2820.007301]  xas_store+0x8c/0x1c40
[ 2820.007761]  __xa_store+0x164/0x2d0
[ 2820.008210]  ? xa_delete_node+0x280/0x280
[ 2820.008728]  ? trace_hardirqs_on+0x5b/0x180
[ 2820.009266]  xa_store+0x31/0x50
[ 2820.009673]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2820.010262]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2820.010909]  ? alloc_fd+0x2e7/0x670
[ 2820.011362]  io_uring_setup+0x1fbb/0x2980
11:53:55 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

11:53:55 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3600000000000000)

11:53:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xb0040000000000)

11:53:55 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 8)

11:53:55 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 39)

[ 2820.011884]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2820.012681]  ? wait_for_completion_io+0x270/0x270
[ 2820.013287]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2820.013925]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2820.014561]  do_syscall_64+0x33/0x40
[ 2820.015020]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2820.015644] RIP: 0033:0x7fbbed29eb19
[ 2820.016118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2820.018376] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2820.019317] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2820.020204] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2820.021081] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2820.021961] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2820.022832] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2820.030353] FAULT_INJECTION: forcing a failure.
[ 2820.030353] name failslab, interval 1, probability 0, space 0, times 0
[ 2820.032789] CPU: 1 PID: 13616 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2820.034254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2820.036020] Call Trace:
[ 2820.036583]  dump_stack+0x107/0x167
[ 2820.037360]  should_fail.cold+0x5/0xa
[ 2820.038172]  ? create_object.isra.0+0x3a/0xa30
[ 2820.039134]  should_failslab+0x5/0x20
[ 2820.039952]  kmem_cache_alloc+0x5b/0x310
[ 2820.040831]  create_object.isra.0+0x3a/0xa30
[ 2820.041771]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2820.042863]  kmem_cache_alloc+0x159/0x310
[ 2820.043770]  anon_vma_clone+0xdc/0x590
[ 2820.044613]  __split_vma+0x17c/0x4e0
[ 2820.045407]  __do_munmap+0xf40/0x1260
[ 2820.046233]  ? arch_get_unmapped_area+0x450/0x450
[ 2820.047277]  mmap_region+0x7cc/0x1500
[ 2820.048120]  do_mmap+0x868/0x1370
[ 2820.048870]  vm_mmap_pgoff+0x198/0x1f0
[ 2820.049712]  ? randomize_page+0xb0/0xb0
[ 2820.050573]  ksys_mmap_pgoff+0x41c/0x560
[ 2820.051438]  ? find_mergeable_anon_vma+0x250/0x250
[ 2820.052504]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2820.053620]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2820.054716]  do_syscall_64+0x33/0x40
[ 2820.055502]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2820.056595] RIP: 0033:0x7ffb461ecb19
[ 2820.057389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2820.061327] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2820.062952] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2820.064465] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2820.065977] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2820.067481] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2820.069009] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
[ 2820.072508] FAULT_INJECTION: forcing a failure.
[ 2820.072508] name failslab, interval 1, probability 0, space 0, times 0
[ 2820.073910] CPU: 0 PID: 13626 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2820.074740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2820.075727] Call Trace:
11:53:55 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 40)

[ 2820.076059]  dump_stack+0x107/0x167
[ 2820.076634]  should_fail.cold+0x5/0xa
[ 2820.077093]  ? create_object.isra.0+0x3a/0xa30
[ 2820.077640]  should_failslab+0x5/0x20
[ 2820.078096]  kmem_cache_alloc+0x5b/0x310
[ 2820.078585]  create_object.isra.0+0x3a/0xa30
[ 2820.079110]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2820.079719]  kmem_cache_alloc+0x159/0x310
[ 2820.080235]  xas_alloc+0x336/0x440
[ 2820.080664]  xas_create+0x34a/0x10d0
[ 2820.081118]  ? kernel_text_address+0xf2/0x120
[ 2820.081657]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2820.082285]  xas_store+0x8c/0x1c40
[ 2820.082719]  __xa_store+0x164/0x2d0
[ 2820.083157]  ? xa_delete_node+0x280/0x280
[ 2820.083658]  ? trace_hardirqs_on+0x5b/0x180
[ 2820.084184]  xa_store+0x31/0x50
[ 2820.084581]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2820.085157]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2820.085796]  ? alloc_fd+0x2e7/0x670
[ 2820.086237]  io_uring_setup+0x1fbb/0x2980
[ 2820.086740]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2820.087348]  ? wait_for_completion_io+0x270/0x270
[ 2820.087944]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2820.088576]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2820.089194]  do_syscall_64+0x33/0x40
[ 2820.089641]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2820.090256] RIP: 0033:0x7fbbed29eb19
[ 2820.090699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2820.092905] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2820.093808] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2820.094655] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2820.095502] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2820.096356] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2820.097211] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:53:55 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:53:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x100000000000000)

11:54:11 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:54:11 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)

11:54:11 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:54:11 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 9)

11:54:11 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 41)

11:54:11 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3c00000000000000)

11:54:11 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffd}, 0x0, 0x8000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:11 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x200000000000000)

[ 2836.170349] FAULT_INJECTION: forcing a failure.
[ 2836.170349] name failslab, interval 1, probability 0, space 0, times 0
[ 2836.171794] CPU: 1 PID: 13656 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2836.172647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2836.173654] Call Trace:
[ 2836.173980]  dump_stack+0x107/0x167
[ 2836.174426]  should_fail.cold+0x5/0xa
[ 2836.174892]  ? vm_area_alloc+0x1c/0x110
[ 2836.175379]  should_failslab+0x5/0x20
[ 2836.175838]  kmem_cache_alloc+0x5b/0x310
[ 2836.176340]  vm_area_alloc+0x1c/0x110
[ 2836.176803]  mmap_region+0x982/0x1500
[ 2836.177270]  do_mmap+0x868/0x1370
[ 2836.177694]  vm_mmap_pgoff+0x198/0x1f0
[ 2836.178170]  ? randomize_page+0xb0/0xb0
[ 2836.178658]  ksys_mmap_pgoff+0x41c/0x560
[ 2836.179149]  ? find_mergeable_anon_vma+0x250/0x250
[ 2836.179746]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2836.180387]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2836.181015]  do_syscall_64+0x33/0x40
[ 2836.181465]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2836.182088] RIP: 0033:0x7ffb461ecb19
[ 2836.182537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2836.184768] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2836.185688] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2836.186558] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2836.187425] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2836.188296] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000001
[ 2836.189162] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:54:11 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x400000000000000)

[ 2836.197380] FAULT_INJECTION: forcing a failure.
[ 2836.197380] name failslab, interval 1, probability 0, space 0, times 0
[ 2836.199861] CPU: 0 PID: 13660 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2836.201337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2836.203071] Call Trace:
[ 2836.203630]  dump_stack+0x107/0x167
[ 2836.204406]  should_fail.cold+0x5/0xa
[ 2836.205217]  ? xas_alloc+0x336/0x440
[ 2836.205992]  should_failslab+0x5/0x20
[ 2836.206782]  kmem_cache_alloc+0x5b/0x310
[ 2836.207626]  xas_alloc+0x336/0x440
[ 2836.208383]  xas_create+0x34a/0x10d0
[ 2836.209175]  ? kernel_text_address+0xf2/0x120
[ 2836.210110]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2836.211173]  xas_store+0x8c/0x1c40
[ 2836.211916]  __xa_store+0x164/0x2d0
[ 2836.212770]  ? xa_delete_node+0x280/0x280
[ 2836.213779]  ? trace_hardirqs_on+0x5b/0x180
[ 2836.214804]  xa_store+0x31/0x50
[ 2836.215601]  __io_uring_add_tctx_node+0x1cf/0x520
11:54:11 executing program 5:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:11 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)

[ 2836.216768]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2836.218205]  ? alloc_fd+0x2e7/0x670
[ 2836.219092]  io_uring_setup+0x1fbb/0x2980
[ 2836.220106]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2836.221314]  ? wait_for_completion_io+0x270/0x270
[ 2836.222485]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2836.223735]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2836.224982]  do_syscall_64+0x33/0x40
[ 2836.225873]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2836.227102] RIP: 0033:0x7fbbed29eb19
[ 2836.228002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2836.232388] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2836.234200] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2836.235903] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2836.237575] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2836.239246] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2836.240931] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:54:11 executing program 5:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:11 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

11:54:11 executing program 5:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:11 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 10)

[ 2836.340643] FAULT_INJECTION: forcing a failure.
[ 2836.340643] name failslab, interval 1, probability 0, space 0, times 0
[ 2836.342003] CPU: 1 PID: 13680 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2836.342794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2836.343737] Call Trace:
[ 2836.344062]  dump_stack+0x107/0x167
[ 2836.344480]  should_fail.cold+0x5/0xa
[ 2836.344923]  ? create_object.isra.0+0x3a/0xa30
[ 2836.345448]  should_failslab+0x5/0x20
[ 2836.345891]  kmem_cache_alloc+0x5b/0x310
[ 2836.346366]  create_object.isra.0+0x3a/0xa30
[ 2836.346868]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2836.347454]  kmem_cache_alloc+0x159/0x310
[ 2836.347935]  vm_area_alloc+0x1c/0x110
[ 2836.348387]  mmap_region+0x982/0x1500
[ 2836.348835]  do_mmap+0x868/0x1370
[ 2836.349238]  vm_mmap_pgoff+0x198/0x1f0
[ 2836.349701]  ? randomize_page+0xb0/0xb0
[ 2836.350162]  ksys_mmap_pgoff+0x41c/0x560
[ 2836.350627]  ? find_mergeable_anon_vma+0x250/0x250
[ 2836.351189]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2836.351789]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2836.352386]  do_syscall_64+0x33/0x40
[ 2836.352814]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2836.353401] RIP: 0033:0x7ffb461ecb19
[ 2836.353833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2836.355930] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2836.356802] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2836.357616] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2836.358430] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2836.359241] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000002
[ 2836.360063] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:54:11 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

11:54:11 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x400040000000000)

11:54:11 executing program 5:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:54:26 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 11)

11:54:26 executing program 5:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:54:26 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 42)

11:54:26 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0182101, &(0x7f0000000040))
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:26 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa00000000000000)

11:54:26 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)

11:54:26 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = dup2(r4, r4)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r7=>0x0, &(0x7f0000000080)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_setup(0x790c, &(0x7f0000000340)={0x0, 0x344b, 0x20, 0x2, 0x3b8, 0x0, r6}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000280), &(0x7f0000000480)=<r9=>0x0)
r10 = syz_open_dev$vcsu(&(0x7f00000004c0), 0x8001, 0x90000)
syz_io_uring_submit(r7, r9, &(0x7f00000005c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r10, 0x0, &(0x7f0000000500)="2f721da2311ece744fb344c9c08a14f4c6ae74e7bf112dea84aad4690974c8c3af7445b34866a9da71722c83796b474d7b335be421a4944bfaf6da2cc11f815fe6f7b4235e65127bfe0a69c4930b6f6592216ec458a7c1f9043468d4c10d669f8b7e150631ff9b13b969cb8253438e15ed00acddba105a1de5484eae4cf989e5b297f3c5eea0a4607c9cf3ae5440", 0x8e, 0x10020, 0x1}, 0x9)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="02000000000000006ed5d3342f66696c653000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x5dae, 0x0, 0x0, 0x0, 0x0)

[ 2851.525022] FAULT_INJECTION: forcing a failure.
[ 2851.525022] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2851.527858] CPU: 0 PID: 13708 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2851.529333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.531083] Call Trace:
[ 2851.531643]  dump_stack+0x107/0x167
[ 2851.532427]  should_fail.cold+0x5/0xa
11:54:26 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001dc0)=[{{&(0x7f0000000140), 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)}], 0x1}}, {{&(0x7f0000000280), 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/152, 0x98}], 0x1}}, {{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/26, 0x1a}, {&(0x7f0000001440)=""/179, 0xb3}], 0x3, &(0x7f0000001540)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000001580)=@abs, 0x6e, &(0x7f0000001940)=[{&(0x7f0000001600)=""/9, 0x9}, {&(0x7f0000001640)=""/136, 0x88}, {&(0x7f0000001700)=""/178, 0xb2}, {&(0x7f00000017c0)=""/124, 0x7c}, {&(0x7f0000001840)=""/193, 0xc1}], 0x5}}, {{&(0x7f00000019c0), 0x6e, &(0x7f0000001d00)=[{&(0x7f0000001a40)=""/197, 0xc5}, {&(0x7f0000001b40)=""/186, 0xba}, {&(0x7f0000001c00)=""/231, 0xe7}], 0x3, &(0x7f0000001d40)=[@rights={{0x1c, 0x1, 0x1, [<r1=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}], 0x5, 0x2, &(0x7f0000001f00)={0x77359400})
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000001f80)={&(0x7f0000001f40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x3d})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f00000001c0)=""/105, 0x69})
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000002000)={&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000001fc0)=""/42, 0x2a})

[ 2851.533240]  __alloc_pages_nodemask+0x182/0x600
[ 2851.534361]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2851.535626]  ? find_held_lock+0x2c/0x110
[ 2851.536499]  alloc_pages_current+0x187/0x280
[ 2851.537438]  pte_alloc_one+0x16/0x1a0
[ 2851.538247]  __do_fault+0x246/0x410
[ 2851.539021]  handle_mm_fault+0x1e53/0x3500
[ 2851.539920]  ? pud_huge+0x83/0xd0
[ 2851.540668]  ? __pmd_alloc+0x630/0x630
[ 2851.541508]  __get_user_pages+0x6ec/0x1620
[ 2851.542406]  ? follow_page_mask+0x1900/0x1900
[ 2851.543360]  ? memset+0x20/0x50
[ 2851.544062]  populate_vma_page_range+0x24d/0x330
[ 2851.545085]  __mm_populate+0x1ea/0x360
[ 2851.545914]  ? populate_vma_page_range+0x330/0x330
[ 2851.546972]  vm_mmap_pgoff+0x1d7/0x1f0
[ 2851.547799]  ? randomize_page+0xb0/0xb0
[ 2851.548666]  ksys_mmap_pgoff+0x41c/0x560
[ 2851.549518]  ? find_mergeable_anon_vma+0x250/0x250
[ 2851.550568]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2851.551683]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2851.552775]  do_syscall_64+0x33/0x40
[ 2851.553553]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.554629] RIP: 0033:0x7ffb461ecb19
[ 2851.555405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.559278] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2851.560886] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2851.562383] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2851.563884] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2851.565386] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000002
[ 2851.566885] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
[ 2851.576922] FAULT_INJECTION: forcing a failure.
[ 2851.576922] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.579355] CPU: 0 PID: 13700 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2851.580843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.582600] Call Trace:
[ 2851.583162]  dump_stack+0x107/0x167
[ 2851.583936]  should_fail.cold+0x5/0xa
[ 2851.584753]  ? create_object.isra.0+0x3a/0xa30
[ 2851.585731]  should_failslab+0x5/0x20
[ 2851.586533]  kmem_cache_alloc+0x5b/0x310
[ 2851.587391]  ? mark_held_locks+0x9e/0xe0
[ 2851.588259]  create_object.isra.0+0x3a/0xa30
[ 2851.589189]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2851.590264]  kmem_cache_alloc+0x159/0x310
[ 2851.591143]  xas_alloc+0x336/0x440
[ 2851.591898]  xas_create+0x34a/0x10d0
[ 2851.592701]  ? kernel_text_address+0xf2/0x120
[ 2851.593660]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2851.594771]  xas_store+0x8c/0x1c40
[ 2851.595540]  __xa_store+0x164/0x2d0
[ 2851.596324]  ? xa_delete_node+0x280/0x280
[ 2851.597209]  ? trace_hardirqs_on+0x5b/0x180
[ 2851.598126]  xa_store+0x31/0x50
[ 2851.598829]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2851.599856]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2851.600973]  ? alloc_fd+0x2e7/0x670
[ 2851.601757]  io_uring_setup+0x1fbb/0x2980
[ 2851.602641]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2851.603705]  ? wait_for_completion_io+0x270/0x270
11:54:27 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2800000000000000)

[ 2851.604754]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2851.606033]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2851.607119]  do_syscall_64+0x33/0x40
[ 2851.607912]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.609017] RIP: 0033:0x7fbbed29eb19
[ 2851.609805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.613709] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2851.615331] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2851.616855] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2851.618363] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2851.619870] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2851.621410] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:54:27 executing program 5:
r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:54:27 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)

11:54:27 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="02000000000000002e2f26696c653000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:27 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xfeffffffffff0f00)

11:54:27 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x4b000)

11:54:27 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 43)

[ 2851.798221] audit: type=1326 audit(1764762867.209:74): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.802976] audit: type=1326 audit(1764762867.209:75): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.824327] audit: type=1326 audit(1764762867.219:76): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
11:54:27 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 12)

[ 2851.849384] audit: type=1326 audit(1764762867.229:77): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd1f439db62 code=0x7ffc0000
[ 2851.868874] audit: type=1326 audit(1764762867.230:78): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd1f439db62 code=0x7ffc0000
[ 2851.891659] FAULT_INJECTION: forcing a failure.
[ 2851.891659] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.894113] CPU: 0 PID: 13739 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2851.895566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.897329] Call Trace:
[ 2851.897896]  dump_stack+0x107/0x167
[ 2851.898680]  should_fail.cold+0x5/0xa
[ 2851.899496]  ? xas_alloc+0x336/0x440
[ 2851.900294]  should_failslab+0x5/0x20
[ 2851.901099]  kmem_cache_alloc+0x5b/0x310
[ 2851.901980]  xas_alloc+0x336/0x440
[ 2851.902747]  xas_create+0x34a/0x10d0
[ 2851.903553]  ? kernel_text_address+0xf2/0x120
[ 2851.904513]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2851.905634]  xas_store+0x8c/0x1c40
[ 2851.906400]  __xa_store+0x164/0x2d0
[ 2851.907174]  ? xa_delete_node+0x280/0x280
[ 2851.908063]  ? trace_hardirqs_on+0x5b/0x180
[ 2851.909016]  xa_store+0x31/0x50
[ 2851.909723]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2851.910743]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2851.911846]  ? alloc_fd+0x2e7/0x670
[ 2851.912636]  io_uring_setup+0x1fbb/0x2980
[ 2851.913523]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2851.914595]  ? wait_for_completion_io+0x270/0x270
[ 2851.915646]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2851.916766]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2851.917858]  do_syscall_64+0x33/0x40
[ 2851.918643]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.919723] RIP: 0033:0x7fbbed29eb19
[ 2851.920522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.924414] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2851.926022] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2851.927536] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2851.929053] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2851.930559] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2851.932077] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2851.934969] audit: type=1326 audit(1764762867.241:79): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.947485] audit: type=1326 audit(1764762867.250:80): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.950202] FAULT_INJECTION: forcing a failure.
[ 2851.950202] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.954456] CPU: 1 PID: 13741 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2851.955911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.957669] Call Trace:
[ 2851.958230]  dump_stack+0x107/0x167
[ 2851.958709] audit: type=1326 audit(1764762867.250:81): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.959005]  should_fail.cold+0x5/0xa
[ 2851.964253]  ? ptlock_alloc+0x1d/0x70
[ 2851.965055]  should_failslab+0x5/0x20
[ 2851.965853]  kmem_cache_alloc+0x5b/0x310
[ 2851.966715]  ptlock_alloc+0x1d/0x70
[ 2851.967482]  pte_alloc_one+0x68/0x1a0
[ 2851.968288]  __do_fault+0x246/0x410
[ 2851.969054]  handle_mm_fault+0x1e53/0x3500
[ 2851.969947]  ? pud_huge+0x83/0xd0
[ 2851.970689]  ? __pmd_alloc+0x630/0x630
[ 2851.971529]  __get_user_pages+0x6ec/0x1620
[ 2851.972283] audit: type=1326 audit(1764762867.265:82): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.972433]  ? follow_page_mask+0x1900/0x1900
[ 2851.977795]  ? memset+0x20/0x50
[ 2851.978499]  populate_vma_page_range+0x24d/0x330
[ 2851.979501]  __mm_populate+0x1ea/0x360
[ 2851.980338]  ? populate_vma_page_range+0x330/0x330
[ 2851.981371]  vm_mmap_pgoff+0x1d7/0x1f0
[ 2851.982190]  ? randomize_page+0xb0/0xb0
[ 2851.983042]  ksys_mmap_pgoff+0x41c/0x560
[ 2851.983660] audit: type=1326 audit(1764762867.265:83): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13703 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd1f439db19 code=0x7ffc0000
[ 2851.983900]  ? find_mergeable_anon_vma+0x250/0x250
[ 2851.989399]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2851.990507]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2851.991595]  do_syscall_64+0x33/0x40
[ 2851.992387]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.993458] RIP: 0033:0x7ffb461ecb19
[ 2851.994241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.998107] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2851.999707] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2852.001206] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2852.002692] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2852.004178] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000002
[ 2852.005685] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:54:27 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x4b000)

11:54:27 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="02000000000100000001000000653000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2865.978036] FAULT_INJECTION: forcing a failure.
[ 2865.978036] name failslab, interval 1, probability 0, space 0, times 0
[ 2865.979536] CPU: 1 PID: 13767 Comm: syz-executor.0 Not tainted 5.10.246 #1
11:54:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xffffffff00000000)

11:54:41 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x80100)
syz_open_dev$usbmon(&(0x7f0000000000), 0x80000000, 0x80640)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:54:41 executing program 6:
r0 = syz_io_uring_setup(0x4d51, &(0x7f00000002c0)={0x0, 0x0, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff6000/0x1000)=nil, 0x1000, 0x1000003, 0x110, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x524f, &(0x7f0000000340)={0x0, 0x2daa, 0x0, 0x1, 0x3c9}, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000480)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000900)=@IORING_OP_WRITEV={0x2, 0x1, 0x2000, @fd_index=0x7, 0xfaaf, &(0x7f00000008c0)=[{&(0x7f00000004c0)="f551f2a8c04c7cf4bf6602ea99abff510a0634e97c6633864a8a3f34b00d4f29a2a0a65f23f904528f539b1bd8318195ce0a2922187be735ab1cf34e414ca759c090ed3a96c689ea21c7ea23875e8d5abb290be77054e59de323fd74ae14b017fcf94e215a72c84c2d960ea2a24a41dee21696fdc1e607d2b8f13a0bdfbd55804053d7fdbc4b639df6c893e64708c7c351b9d8196947ad47a832e2e989fd11b614124eaaadfee706824baeebe661902d221bbe67b4038d1ee548bd96ba7d253962e5729792f1f24976e7709638cdc39011420fc41da66b0e486209db79bcfacdfb6a19c1dd582a", 0xe7}, {&(0x7f00000005c0)="74b0e64bf9480163411685b074aa4ceff41b0b3635bbb7e0a1d69159d0feca2c2d5dd93863f16b6ebd3af63b7fd7d8e00b973694a1d97ecc25b648635ee8a9a8f051b0ae18b9ee36ab16c4b61b7316e7fb5d15dc66e96a8f188fc2a4f9fd3bdd1b8f62fbb672db14d37c4f83c735c8dbd745416da7dc09072395cd23ebd863d2c4a2d42bb1a3c6503a618003347b093e3244016de403e0766627d1", 0x9b}, {&(0x7f0000000800)="6cdcd60af28c754c9daac74435e47074f68eb8ae95e54eb99e965fd16bc1355b3ce15fcb3e99118043bac7ba2791b63944b22da24a39dad559650003febdcc977d7eaf508d520508ea7cd4c3c867b555", 0x50}, {&(0x7f0000000880)="0738ce6c9be08f41b68c95936cda3a0d7efa2324a4bb63703a764c9be148298b21bed3d1", 0x24}], 0x4, 0xefb7d4b221bc9c06, 0x1, {0x1, r8}}, 0x2)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x28051, r0, 0x4b000)

11:54:41 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x8000000, 0x0, 0x0, 0x0)

11:54:41 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:41 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 44)

11:54:41 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 13)

[ 2865.980406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2865.982029] Call Trace:
[ 2865.982472]  dump_stack+0x107/0x167
[ 2865.983025]  should_fail.cold+0x5/0xa
[ 2865.983507]  ? create_object.isra.0+0x3a/0xa30
[ 2865.984083]  should_failslab+0x5/0x20
[ 2865.984585]  kmem_cache_alloc+0x5b/0x310
[ 2865.985093]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2865.985848]  create_object.isra.0+0x3a/0xa30
[ 2865.986390]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2865.987021]  kmem_cache_alloc+0x159/0x310
[ 2865.987542]  ptlock_alloc+0x1d/0x70
[ 2865.988026]  pte_alloc_one+0x68/0x1a0
[ 2865.988517]  __do_fault+0x246/0x410
[ 2865.988974]  handle_mm_fault+0x1e53/0x3500
[ 2865.989501]  ? pud_huge+0x83/0xd0
[ 2865.989935]  ? __pmd_alloc+0x630/0x630
[ 2865.990439]  __get_user_pages+0x6ec/0x1620
[ 2865.990989]  ? follow_page_mask+0x1900/0x1900
[ 2865.991594]  ? memset+0x20/0x50
[ 2865.992038]  populate_vma_page_range+0x24d/0x330
[ 2865.992647]  __mm_populate+0x1ea/0x360
[ 2865.993157]  ? populate_vma_page_range+0x330/0x330
[ 2865.993776]  vm_mmap_pgoff+0x1d7/0x1f0
[ 2865.994262]  ? randomize_page+0xb0/0xb0
[ 2865.994776]  ksys_mmap_pgoff+0x41c/0x560
[ 2865.995279]  ? find_mergeable_anon_vma+0x250/0x250
[ 2865.995887]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2865.996547]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2865.997185]  do_syscall_64+0x33/0x40
[ 2865.997664]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2865.998298] RIP: 0033:0x7ffb461ecb19
[ 2865.998760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2866.001068] RSP: 002b:00007ffb43762188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2866.002030] RAX: ffffffffffffffda RBX: 00007ffb462fff60 RCX: 00007ffb461ecb19
[ 2866.002981] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 0000000020ffe000
[ 2866.003919] RBP: 00007ffb437621d0 R08: 0000000000000003 R09: 0000000000000000
[ 2866.004862] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000002
[ 2866.005791] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
[ 2866.009347] FAULT_INJECTION: forcing a failure.
[ 2866.009347] name failslab, interval 1, probability 0, space 0, times 0
[ 2866.010800] CPU: 1 PID: 13764 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2866.011663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2866.012686] Call Trace:
[ 2866.013016]  dump_stack+0x107/0x167
[ 2866.013491]  should_fail.cold+0x5/0xa
[ 2866.013985]  ? create_object.isra.0+0x3a/0xa30
[ 2866.014556]  should_failslab+0x5/0x20
[ 2866.015025]  kmem_cache_alloc+0x5b/0x310
[ 2866.015523]  ? mark_held_locks+0x9e/0xe0
[ 2866.016026]  create_object.isra.0+0x3a/0xa30
[ 2866.016578]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2866.017256]  kmem_cache_alloc+0x159/0x310
[ 2866.017789]  xas_alloc+0x336/0x440
[ 2866.018248]  xas_create+0x34a/0x10d0
[ 2866.018717]  ? kernel_text_address+0xf2/0x120
[ 2866.019273]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2866.019934]  xas_store+0x8c/0x1c40
[ 2866.020379]  __xa_store+0x164/0x2d0
[ 2866.020876]  ? xa_delete_node+0x280/0x280
[ 2866.021399]  ? trace_hardirqs_on+0x5b/0x180
[ 2866.021950]  xa_store+0x31/0x50
[ 2866.022359]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2866.022965]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2866.023619]  ? alloc_fd+0x2e7/0x670
[ 2866.024094]  io_uring_setup+0x1fbb/0x2980
[ 2866.024643]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2866.025285]  ? wait_for_completion_io+0x270/0x270
[ 2866.025896]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2866.026535]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2866.027211]  do_syscall_64+0x33/0x40
[ 2866.027675]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2866.028332] RIP: 0033:0x7fbbed29eb19
[ 2866.028798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2866.031024] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2866.031991] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2866.032910] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2866.033814] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2866.034738] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2866.035642] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:54:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x4b000)

11:54:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x4b000)

11:54:41 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 45)

11:54:41 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x4b000)

11:54:41 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000000)=@nl=@unspec, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000080)=""/98, 0x62}, {&(0x7f0000000100)=""/243, 0xf3}, {&(0x7f0000000200)=""/239, 0xef}, {&(0x7f0000000300)=""/144, 0x90}, {&(0x7f00000003c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001440)=""/154, 0x9a}, 0x4e30a69767c9ff38)

11:54:41 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0) (fail_nth: 14)

[ 2866.153407] FAULT_INJECTION: forcing a failure.
[ 2866.153407] name failslab, interval 1, probability 0, space 0, times 0
[ 2866.154869] CPU: 1 PID: 13784 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2866.155742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2866.156802] Call Trace:
[ 2866.157139]  dump_stack+0x107/0x167
[ 2866.157595]  should_fail.cold+0x5/0xa
[ 2866.158075]  ? xas_alloc+0x336/0x440
[ 2866.158542]  should_failslab+0x5/0x20
[ 2866.159026]  kmem_cache_alloc+0x5b/0x310
[ 2866.159534]  xas_alloc+0x336/0x440
[ 2866.159980]  xas_create+0x34a/0x10d0
[ 2866.160461]  ? kernel_text_address+0xf2/0x120
[ 2866.161026]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2866.161677]  xas_store+0x8c/0x1c40
[ 2866.162129]  __xa_store+0x164/0x2d0
[ 2866.162579]  ? xa_delete_node+0x280/0x280
[ 2866.163106]  ? trace_hardirqs_on+0x5b/0x180
[ 2866.163645]  xa_store+0x31/0x50
[ 2866.164050]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2866.164663]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2866.165317]  ? alloc_fd+0x2e7/0x670
[ 2866.165780]  io_uring_setup+0x1fbb/0x2980
[ 2866.166301]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2866.166939]  ? wait_for_completion_io+0x270/0x270
[ 2866.167544]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2866.168196]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2866.168852]  do_syscall_64+0x33/0x40
[ 2866.169313]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2866.169956] RIP: 0033:0x7fbbed29eb19
[ 2866.170417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2866.172723] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2866.173662] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2866.174542] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2866.175422] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2866.176298] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2866.177187] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:54:41 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x632c, &(0x7f0000000340)={0x0, 0xb424, 0x0, 0x3, 0x120, 0x0, r3}, &(0x7f0000fee000/0x4000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000480))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000001100001aec96b3e5", @ANYRES32=r3, @ANYBLOB="02000000000000002e2f66696c653000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f00000004c0))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:41 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x9000000, 0x0, 0x0, 0x0)

[ 2866.201096] FAULT_INJECTION: forcing a failure.
[ 2866.201096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2866.202554] CPU: 1 PID: 13787 Comm: syz-executor.0 Not tainted 5.10.246 #1
[ 2866.203390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2866.204356] Call Trace:
[ 2866.204698]  dump_stack+0x107/0x167
[ 2866.205148]  should_fail.cold+0x5/0xa
[ 2866.205620]  _copy_to_user+0x2e/0x180
[ 2866.206094]  simple_read_from_buffer+0xcc/0x160
[ 2866.206669]  proc_fail_nth_read+0x198/0x230
[ 2866.207198]  ? proc_sessionid_read+0x230/0x230
[ 2866.207764]  ? security_file_permission+0xb1/0xe0
[ 2866.208357]  ? proc_sessionid_read+0x230/0x230
[ 2866.208924]  vfs_read+0x228/0x620
[ 2866.209352]  ksys_read+0x12d/0x260
[ 2866.209792]  ? vfs_write+0xb10/0xb10
[ 2866.210250]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2866.210892]  ? syscall_enter_from_user_mode+0x1d/0x50
11:54:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000340)={{r1}, 0x80000001, 0x10000, 0x2})
r2 = syz_io_uring_setup(0x7c13, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x40000003, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r5 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x1}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r8=>r5, @ANYBLOB="02ebffffffffffff2d1666699ccf47cf49cac67ab9a21b59d63a1263dc5a43d21ee1ae21fac2c25250ca4b055ca683362c490224bbd094529894ed27f41d8cb4da1fec4ce5b9487ddb891355aec67f9be4566d9a30054eda5411aa8593f91caf74cac5c4d1b931349831400d5c638f1d30f012c5b14da30d1c1a01ce4b0ef471353bc7a96061503d12b73ad60d4942a8a29a9ad36fa138e7e66f0fd0f6c093b29d42abb5c80f7c6c0d4b940d916de0467bc0c6648c93023c103eed023fc50f303d7688f96a6914659ed757059d0b1e97206cf4000000000000000000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x2078, 0xc60c, 0x2, &(0x7f00000001c0)={[0x4]}, 0x8)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2866.211517]  do_syscall_64+0x33/0x40
[ 2866.212159]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2866.212773] RIP: 0033:0x7ffb4619f69c
[ 2866.213206] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2866.215359] RSP: 002b:00007ffb43762170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2866.216246] RAX: ffffffffffffffda RBX: 0000000020ffe000 RCX: 00007ffb4619f69c
[ 2866.217089] RDX: 000000000000000f RSI: 00007ffb437621e0 RDI: 0000000000000004
[ 2866.217919] RBP: 00007ffb437621d0 R08: 0000000000000000 R09: 0000000000000000
[ 2866.218755] R10: 0000000000028051 R11: 0000000000000246 R12: 0000000000000002
[ 2866.219609] R13: 00007ffdc62532bf R14: 00007ffb43762300 R15: 0000000000022000
11:54:56 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 46)

11:54:56 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x2, 0x109000)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})

11:54:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa000000, 0x0, 0x0, 0x0)

11:54:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:54:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:56 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r7, 0x0, r7)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r7, 0xc038943b, &(0x7f0000000480)={0x6, 0x8, '\x00', 0x0, &(0x7f0000000280)=[0x0]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000180000018000000", @ANYRES32=r3, @ANYBLOB="02000000000000002e2f66696c0bbecf913b653000234009e3a97ecf26515f18dee3cf5355cfed8b0bd938b70a0d1d3817bcebef63c2ea058f8489b7898f0ee3d3465cc279910e2b04ac9f00"/105])
io_uring_enter(r5, 0x4264, 0x7dba, 0x0, &(0x7f00000001c0)={[0x3]}, 0x8)
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:56 executing program 5:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x11, r0, 0x85bc2000)

[ 2880.696421] FAULT_INJECTION: forcing a failure.
[ 2880.696421] name failslab, interval 1, probability 0, space 0, times 0
[ 2880.698920] CPU: 1 PID: 13811 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2880.700388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2880.702149] Call Trace:
[ 2880.702709]  dump_stack+0x107/0x167
[ 2880.703479]  should_fail.cold+0x5/0xa
[ 2880.704284]  ? create_object.isra.0+0x3a/0xa30
[ 2880.705256]  should_failslab+0x5/0x20
[ 2880.706060]  kmem_cache_alloc+0x5b/0x310
[ 2880.706922]  ? mark_held_locks+0x9e/0xe0
[ 2880.707779]  create_object.isra.0+0x3a/0xa30
[ 2880.708712]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2880.709789]  kmem_cache_alloc+0x159/0x310
[ 2880.710671]  xas_alloc+0x336/0x440
[ 2880.711443]  xas_create+0x34a/0x10d0
[ 2880.712236]  ? kernel_text_address+0xf2/0x120
[ 2880.713201]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2880.714305]  xas_store+0x8c/0x1c40
[ 2880.715075]  __xa_store+0x164/0x2d0
[ 2880.715849]  ? xa_delete_node+0x280/0x280
[ 2880.716739]  ? trace_hardirqs_on+0x5b/0x180
[ 2880.717658]  xa_store+0x31/0x50
[ 2880.718360]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2880.719386]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2880.720503]  ? alloc_fd+0x2e7/0x670
[ 2880.721294]  io_uring_setup+0x1fbb/0x2980
[ 2880.722173]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2880.723235]  ? wait_for_completion_io+0x270/0x270
[ 2880.724272]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2880.725394]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2880.726481]  do_syscall_64+0x33/0x40
[ 2880.727267]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2880.728345] RIP: 0033:0x7fbbed29eb19
[ 2880.729185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2880.733108] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2880.734703] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2880.736202] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2880.737698] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2880.739185] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2880.740685] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:54:56 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x80, 0x88)
sendmsg$nl_generic(r3, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x284, 0x1e, 0x800, 0x70bd28, 0x25dfdbfc, {0x19}, [@typed={0x8, 0x42b, 0x0, 0x0, @fd}, @typed={0x14, 0x3, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @nested={0x10, 0x6d, 0x0, 0x1, [@typed={0xc, 0x1f, 0x0, 0x0, @u64=0xf63}]}, @nested={0x242, 0x4, 0x0, 0x1, [@generic="b7360df606f3697a8772d2bed09874a0835d2656f78a674969db16e6ded8b2c607cb24aeb8be9d33363708310b0f37fd7a427c15ef0b4e974067ac1f9da2fcb29bb5e6c9717c621f37a3143719f6e6e344bc14c1a9cf4c003e4156ee4ee05e68f8094acfa8e7f1b9ed04d6598191bb6927827c68ba8f058b726ef8b65e10789369725541ecf6436cca3b80e94de500b569dbcd768427009689dd7523a246195d7b9029f646fcf0e299cc1e1b4b0a7c2894574d0cad7cd0730ce661e2d6e4a2c6396cdaaee2f4600224512455341ee122ed2c2c18fa853fb2ce9ca706c7f1c1d5576446dc81cb767a3a1198105d9be1", @generic="5ef1c2ea25662bf8dfecbf5ea9420db77d8709610c91abe1285f2854c6875d1bec84dabbb07647999821a78ff4756796efc67ceabc2e4e51c8762176", @typed={0xb2, 0x86, 0x0, 0x0, @binary="56bbff0a6c8819e73672aed5d040437e9ae8c09e5c00f5e4ed9cd715321cdde19e05d8b44bf7923603e5f3419b3920af8f1dc0ed87dd91c7d6cbc45e076db1ec5d80febd7ca465d10de39753a162fb37319949df74c2e216d0ebc4640fb113990c7806d747bbfb282c769e6be6c4b403de25c26fb5c73c2bfc32c93308b15b97396d3bb7196b2492ebd2d463e0b849f7f0a13d34bf74fec7aa4947c7e23167049ed3d3dcdb51756e5bacfe8f863a"}, @generic="70d0fc24d6ec8a9a2875567049569beaa2fd819e68fb9cb396cd2bae3e0e3b0eb1c1b38a3b30735023cbc1e8527788d790e97607ed955fe067b1006e99a106", @typed={0x4, 0x37, 0x0, 0x0, @binary}, @typed={0x14, 0x53, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0x33, 0x0, 0x0, @u32=0x5}]}]}, 0x284}, 0x1, 0x0, 0x0, 0x20008010}, 0x80)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
recvmsg$unix(r5, &(0x7f0000000ac0)={&(0x7f0000000580)=@abs, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000600)=""/228, 0xe4}, {&(0x7f0000000700)=""/91, 0x5b}, {&(0x7f0000000780)=""/121, 0x79}, {&(0x7f0000000240)}, {&(0x7f0000000800)=""/153, 0x99}, {&(0x7f00000008c0)=""/253, 0xfd}, {&(0x7f00000009c0)=""/61, 0x3d}], 0x7, &(0x7f0000000a80)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}, 0x2000)
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x8})

11:54:56 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1002, 0x1, 0x28051, r0, 0x0)

11:54:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8000, &(0x7f0000000000)=0x1, 0xfffffffffffffffd, 0x4)

11:54:56 executing program 5:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:56 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xb000000, 0x0, 0x0, 0x0)

11:54:56 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:54:56 executing program 5:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, 0xffffffffffffffff, 0x4b000)

11:54:56 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x10200, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r5 = fcntl$dupfd(r4, 0x406, r2)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x3fff, 0x0, 0x0, @fd=r0}]}, 0x1c}}, 0x4000084)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000005, 0x4000010, r5, 0x0)
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f00000000c0)={'vlan0\x00'})

11:55:11 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 47)

11:55:11 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index, 0x337, 0x0, 0x0, 0x10}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x0, 0x4, 0x0, 0x0, 0x0, r4}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r8, 0x82307201, &(0x7f0000000800)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYBLOB="02000000000000002e2f66696c652600"])
lseek(r5, 0xe05, 0x0)
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r6, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:11 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)

11:55:11 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1004, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c65300022db53e5e1aabd42a6009b2b2f7fe6a2ad0e22f7e918898943b3a7487e38b50d969c17ca45cf4baed7988d99f175"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:11 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
signalfd4(r1, &(0x7f0000000000)={[0xea7]}, 0x8, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
fcntl$dupfd(r4, 0x406, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x406040, 0x0)
ioctl$MON_IOCX_GETX(r7, 0xc0109207, &(0x7f0000000000)={0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)

[ 2896.091321] FAULT_INJECTION: forcing a failure.
[ 2896.091321] name failslab, interval 1, probability 0, space 0, times 0
[ 2896.093912] CPU: 0 PID: 13860 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2896.095295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2896.096968] Call Trace:
[ 2896.097506]  dump_stack+0x107/0x167
[ 2896.098238]  should_fail.cold+0x5/0xa
[ 2896.099013]  ? xas_alloc+0x336/0x440
[ 2896.099755]  should_failslab+0x5/0x20
[ 2896.100524]  kmem_cache_alloc+0x5b/0x310
[ 2896.101365]  xas_alloc+0x336/0x440
[ 2896.102082]  xas_create+0x34a/0x10d0
[ 2896.102841]  ? kernel_text_address+0xf2/0x120
[ 2896.103746]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2896.104800]  xas_store+0x8c/0x1c40
[ 2896.105546]  __xa_store+0x164/0x2d0
[ 2896.106278]  ? xa_delete_node+0x280/0x280
[ 2896.107117]  ? trace_hardirqs_on+0x5b/0x180
[ 2896.107991]  xa_store+0x31/0x50
[ 2896.108651]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2896.109629]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2896.110670]  ? alloc_fd+0x2e7/0x670
[ 2896.111421]  io_uring_setup+0x1fbb/0x2980
[ 2896.112255]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2896.113266]  ? wait_for_completion_io+0x270/0x270
[ 2896.114255]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2896.115301]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2896.116329]  do_syscall_64+0x33/0x40
[ 2896.117072]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2896.118082] RIP: 0033:0x7fbbed29eb19
[ 2896.118819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2896.122460] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2896.123962] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2896.125379] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2896.126776] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2896.128187] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2896.129614] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:55:11 executing program 7:
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x1d, @empty, 0x4e20, 0x1, 'sh\x00', 0x21, 0x9, 0x2}, {@loopback, 0x4e21, 0x0, 0x3, 0x4979, 0x5}}, 0x44)
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x100a, 0x1, 0x28051, r0, 0x0)

11:55:11 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xd000000, 0x0, 0x0, 0x0)

11:55:11 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1028, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 5:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000840)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f0000000880)={0x80, 0x40, 0x0, 'queue1\x00', 0x5})
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB='\r\x00'/12, @ANYRES32=<r7=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x11, r4, 0x8000000)
syz_io_uring_submit(r8, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3}}, 0x9)
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000400)={<r9=>0x0}, &(0x7f0000000500)=0xc)
perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x40, 0x7b, 0x4, 0x2d, 0x0, 0x10000, 0x40448, 0x8, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x81, 0x2, @perf_config_ext={0x400, 0xdb}, 0x904, 0x10001, 0x8, 0x0, 0x80000000, 0xc00, 0x8, 0x0, 0xfff, 0x0, 0x7fff}, r9, 0x10, 0xffffffffffffffff, 0xa)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f00000003c0)={'ip6_vti0\x00', &(0x7f0000000340)={'ip6gre0\x00', 0x0, 0x29, 0x9, 0x4, 0x9, 0x1, @private0, @empty, 0x8, 0x40, 0x10001, 0xdb}})

11:55:24 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x20ffe000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 48)

11:55:24 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xe000000, 0x0, 0x0, 0x0)

11:55:24 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="0100"/12, @ANYRES32=r3, @ANYBLOB="02000000000000002e2f66696c653000"])
syz_io_uring_setup(0xa46, &(0x7f0000000340)={0x0, 0x84f0, 0x1, 0x3, 0x3c3, 0x0, r5}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000fef000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000480))
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:24 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
[ 2909.225216] FAULT_INJECTION: forcing a failure.
[ 2909.225216] name failslab, interval 1, probability 0, space 0, times 0
[ 2909.227178] CPU: 0 PID: 13910 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2909.228351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.229756] Call Trace:
[ 2909.230210]  dump_stack+0x107/0x167
[ 2909.230813]  should_fail.cold+0x5/0xa
[ 2909.231447]  ? create_object.isra.0+0x3a/0xa30
[ 2909.232219]  should_failslab+0x5/0x20
[ 2909.232858]  kmem_cache_alloc+0x5b/0x310
[ 2909.233557]  ? mark_held_locks+0x9e/0xe0
[ 2909.234253]  create_object.isra.0+0x3a/0xa30
[ 2909.234978]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2909.235824]  kmem_cache_alloc+0x159/0x310
[ 2909.236511]  xas_alloc+0x336/0x440
[ 2909.237111]  xas_create+0x34a/0x10d0
[ 2909.237750]  ? kernel_text_address+0xf2/0x120
[ 2909.238499]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2909.239386]  xas_store+0x8c/0x1c40
[ 2909.239990]  __xa_store+0x164/0x2d0
[ 2909.240586]  ? xa_delete_node+0x280/0x280
[ 2909.241293]  ? trace_hardirqs_on+0x5b/0x180
[ 2909.242007]  xa_store+0x31/0x50
[ 2909.242557]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2909.243358]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2909.244219]  ? alloc_fd+0x2e7/0x670
[ 2909.244825]  io_uring_setup+0x1fbb/0x2980
[ 2909.245536]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2909.246363]  ? wait_for_completion_io+0x270/0x270
[ 2909.247173]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2909.248029]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2909.248861]  do_syscall_64+0x33/0x40
[ 2909.249478]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.250287] RIP: 0033:0x7fbbed29eb19
[ 2909.250883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.253791] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2909.254995] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2909.256137] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
sendmsg$nl_generic(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000580)={0x20a8, 0x1e, 0x404, 0x70bd2b, 0x25dfdbfb, {}, [@typed={0x5, 0x1d, 0x0, 0x0, @str='\x00'}, @typed={0x72, 0x1c, 0x0, 0x0, @binary="0f791be866421196010575ebcabffad9735e39932dc1a6595ffcdf094d82736d336b7a4324ddffd1ccdb5f888a4d5fbf159aa88c51cb7cf5bbbb0335da5b3484f947247727d41e8c40c8629ec8c03a0d1959be8157debe1bb0478fc40e4ebb452dad811c0933842fefe8a8f58769"}, @generic="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", @nested={0x1018, 0x2e, 0x0, 0x1, [@typed={0x4, 0x3e}, @typed={0x8, 0x8, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="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", @typed={0x8, 0x3b, 0x0, 0x0, @uid=r3}]}]}, 0x20a8}, 0x1, 0x0, 0x0, 0x24040004}, 0x50)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, r4, 0x329, 0x0, 0x0, {{0x11}, {@void, @val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {0x1}}, './file0\x00'})
sendmsg$TIPC_NL_NAME_TABLE_GET(r6, &(0x7f0000002740)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002700)={&(0x7f0000002640)={0x9c, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x5c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc, 0x3, "2ac91d0ae94d3438"}, @TIPC_NLA_NODE_KEY={0x48, 0x4, {'gcm(aes)\x00', 0x20, "a38513d041ded08fc1fd90688473a947fbe652746b0ed63aaaf0212d8aee60c0"}}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7c4}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000040)={&(0x7f00000003c0)={0x1ac, r4, 0x4, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7, 0x64}}}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_FRAME={0x188, 0x33, @assoc_resp={@with_ht={{{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1}, {0x7}, @broadcast, @broadcast, @from_mac=@device_b, {0x6, 0x80}}, @ver_80211n={0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0xa000, 0x4b, @default, @val={0x1, 0x6, [{0x4d}, {0x30, 0x1}, {0x6, 0x1}, {0x4, 0x1}, {0x9, 0x1}, {0x3, 0x1}]}, @val={0x2d, 0x1a, {0x800, 0x1, 0x3, 0x0, {0x4, 0x4, 0x0, 0x37f, 0x0, 0x0, 0x1, 0x1}, 0x8, 0x2, 0x40}}, [{0xdd, 0x74, "62d06727969addaa58b3625e97bd0f385420351854b87daa15a43acb5c2e2f6b1a6d6caa6898e9523e4a0730559eaf1259bec267db354ab236ba043a6920d82987da043c131b9a63442c8b04803ac3989c9503afd7396001cb6f4b42d543cdb02548a86df5e6809568630e547e9aebea7179a7ef"}, {0xdd, 0x38, "6b043789e794b99f37f1304568ccface9ba51b0606ddaf21e1603c429efbe1a83fc4d7a4e3b8ed4d7f1fbaa0178cf8b884399b07216d74fc"}, {0xdd, 0x7d, "30d52def00c3caba5e0b80cd04006b141fad5b72cde346a2e51050e9c487d3c9261037422caef30bce476f496e241574750f82e7b7f16b4d0de5e7a6f6bc2e6e726668d26de8c1bab54c704d9f21f78dc788f82891da5093a81f20f0f0e22ee41a169e220735e2069d21b57863287c44230229347c08953f468aa07d38"}, {0xdd, 0xd, "e0ab1032f81d67a757f9c1cc4a"}]}}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x80}, 0x4)
r7 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r7, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r7, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

[ 2909.257300] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2909.258695] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2909.259935] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:55:24 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:24 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x7fffdf001000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000001, 0x8010, r0, 0x0)

11:55:24 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x7ffffffff000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf000000, 0x0, 0x0, 0x0)

11:55:24 executing program 7:
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x400401)
r0 = socket$netlink(0x10, 0x3, 0xc)
fcntl$dupfd(r0, 0x0, r0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:24 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_submit(r5, r7, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd_index=0x7, 0x3, 0xffffffffffffffff, 0x3, 0x17, 0x1, {0x2}}, 0x7fffffff)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:24 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c6530005f84bc5e730e0eee12d18380e5691dac346d3072454faf6169d762cb7daae29671f3096543e6fd065d7229f38889aec832634a9ff5cb2894efd207f2dc09602a86978d4fd7c09e28a5bc1dda839b8b3a65727898c088e6da277f35548745766592dc14393d07a08d98cea9894d9d2d49428545ba9d0feff80864cd5582e042a211b3c90f0e2df6bdea590fe30a5335c3cd87"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:24 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 49)

11:55:24 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x100, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x8010, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x56de, &(0x7f0000000980), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r3}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd=r0, 0x9, 0x0, 0x7fffffff, 0x0, 0x1, {0x0, r3}}, 0x0)

11:55:24 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x28051, r0, 0x0)

[ 2909.486983] FAULT_INJECTION: forcing a failure.
[ 2909.486983] name failslab, interval 1, probability 0, space 0, times 0
[ 2909.488613] CPU: 0 PID: 13937 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2909.489560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.490856] Call Trace:
[ 2909.491226]  dump_stack+0x107/0x167
[ 2909.491726]  should_fail.cold+0x5/0xa
[ 2909.492246]  ? xas_alloc+0x336/0x440
[ 2909.492749]  should_failslab+0x5/0x20
[ 2909.493293]  kmem_cache_alloc+0x5b/0x310
[ 2909.493856]  xas_alloc+0x336/0x440
[ 2909.494344]  xas_create+0x34a/0x10d0
[ 2909.494861]  ? kernel_text_address+0xf2/0x120
[ 2909.495487]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2909.496196]  xas_store+0x8c/0x1c40
[ 2909.496687]  __xa_store+0x164/0x2d0
[ 2909.497196]  ? xa_delete_node+0x280/0x280
[ 2909.497769]  ? trace_hardirqs_on+0x5b/0x180
[ 2909.498351]  xa_store+0x31/0x50
[ 2909.498806]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2909.499471]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2909.500181]  ? alloc_fd+0x2e7/0x670
[ 2909.500678]  io_uring_setup+0x1fbb/0x2980
[ 2909.501266]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2909.501948]  ? wait_for_completion_io+0x270/0x270
[ 2909.502611]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2909.503313]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2909.504024]  do_syscall_64+0x33/0x40
[ 2909.504531]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.505236] RIP: 0033:0x7fbbed29eb19
[ 2909.505737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.508247] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2909.509287] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2909.510263] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2909.511220] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2909.512201] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2909.513181] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:55:24 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:24 executing program 7:
unshare(0x46000a80)
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0xfffffffffefffffd, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:55:37 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002cc0)=[{{&(0x7f0000000000), 0x6e, &(0x7f0000001240)=[{&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/204, 0xcc}, {&(0x7f00000000c0)=""/48, 0x30}], 0x3, &(0x7f0000001280)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000012c0)=@abs, 0x6e, &(0x7f00000024c0)=[{&(0x7f0000001340)=""/44, 0x2c}, {&(0x7f0000001380)=""/72, 0x48}, {&(0x7f0000001400)=""/120, 0x78}, {&(0x7f0000001480)=""/7, 0x7}, {&(0x7f00000014c0)=""/4096, 0x1000}], 0x5, &(0x7f0000002540)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f00000025c0)=@abs, 0x6e, &(0x7f0000002740)=[{&(0x7f0000002640)=""/195, 0xc3}], 0x1, &(0x7f0000002780)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [<r1=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf0}}, {{&(0x7f0000002880), 0x6e, &(0x7f0000002b00)=[{&(0x7f0000002900)=""/6, 0x6}, {&(0x7f0000002940)=""/58, 0x3a}, {&(0x7f0000002980)=""/189, 0xbd}, {&(0x7f0000002a40)=""/164, 0xa4}, {&(0x7f0000003580)=""/4096, 0x1000}], 0x5, &(0x7f0000002b80)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x108}}], 0x4, 0x10020, &(0x7f0000002dc0)={0x77359400})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000002e00)={{0x1, 0x1, 0x18, <r3=>r2, {0x1}}, './file0\x00'})
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f0000002e40))
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:55:37 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x10000000, 0x0, 0x0, 0x0)

11:55:37 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
r5 = openat(r4, &(0x7f00000001c0)='./file0\x00', 0x109100, 0x0)
r6 = syz_io_uring_setup(0x1b59, &(0x7f0000000340)={0x0, 0x9d3, 0x1, 0x3, 0x36a, 0x0, r5}, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000fee000/0x2000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_QGROUP_CREATE(r6, 0x4010942a, &(0x7f0000000280)={0x1, 0x5b2})
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="097588d2cc1bcee618000000", @ANYRES32=<r8=>r3, @ANYBLOB="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"])
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:37 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:37 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r3, 0x8000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="02000000000000002e448b9117653000"])
open$dir(&(0x7f00000001c0)='./file0\x00', 0x121100, 0xb4)
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:37 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, 0x28051, r0, 0x0)

11:55:37 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 50)

11:55:37 executing program 7:
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r0=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005c180)={0xfffffffffffff22e, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r1=>0x0}], 0x6, "fc20ac5cec7ee6"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005e180)={0x5ed, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}], 0x0, "46d9cac6119481"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000004a900)={0x0, <r2=>0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004b900)={0x0, ""/256, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004bb00)={<r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r5=>0x0, ""/256, 0x0, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000004bd00)={<r7=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r8=>0x0, ""/256, 0x0, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r10=>0x0, ""/256, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000300)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}], 0x40, "c3cfc3c32a52a2"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r12=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005c180)={0xfffffffffffff22e, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r13=>0x0}], 0x6, "fc20ac5cec7ee6"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005e180)={0x5ed, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r14=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {0x0, r13}], 0x0, "46d9cac6119481"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004cd00)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r14}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2, r3}, {r4}, {}, {0x0, r6}, {0x0, r7}, {0x0, r9}, {}, {r10}], 0x3, "b3730775bc9663"})
r15 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r15, 0x0)

11:55:37 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x28051, r0, 0x0)

[ 2921.814476] FAULT_INJECTION: forcing a failure.
[ 2921.814476] name failslab, interval 1, probability 0, space 0, times 0
[ 2921.816007] CPU: 1 PID: 13972 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2921.816878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2921.817861] Call Trace:
[ 2921.818186]  dump_stack+0x107/0x167
[ 2921.818628]  should_fail.cold+0x5/0xa
[ 2921.819105]  ? create_object.isra.0+0x3a/0xa30
[ 2921.819664]  should_failslab+0x5/0x20
[ 2921.820133]  kmem_cache_alloc+0x5b/0x310
[ 2921.820632]  ? mark_held_locks+0x9e/0xe0
[ 2921.821138]  create_object.isra.0+0x3a/0xa30
[ 2921.821680]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2921.822292]  kmem_cache_alloc+0x159/0x310
[ 2921.822796]  xas_alloc+0x336/0x440
[ 2921.823234]  xas_create+0x34a/0x10d0
[ 2921.823688]  ? kernel_text_address+0xf2/0x120
[ 2921.824208]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2921.824841]  xas_store+0x8c/0x1c40
[ 2921.825283]  __xa_store+0x164/0x2d0
[ 2921.825720]  ? xa_delete_node+0x280/0x280
[ 2921.826223]  ? trace_hardirqs_on+0x5b/0x180
[ 2921.826753]  xa_store+0x31/0x50
[ 2921.827154]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2921.827734]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2921.828336]  ? alloc_fd+0x2e7/0x670
[ 2921.828776]  io_uring_setup+0x1fbb/0x2980
[ 2921.829295]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2921.829925]  ? wait_for_completion_io+0x270/0x270
[ 2921.830497]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2921.831124]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2921.831751]  do_syscall_64+0x33/0x40
[ 2921.832215]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2921.832833] RIP: 0033:0x7fbbed29eb19
[ 2921.833302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2921.835544] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2921.836470] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2921.837349] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2921.838189] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2921.839060] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2921.839929] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:55:37 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300, 0x28051, r0, 0x0)

11:55:37 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 51)

11:55:37 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2)

11:55:37 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2921.984229] FAULT_INJECTION: forcing a failure.
[ 2921.984229] name failslab, interval 1, probability 0, space 0, times 0
[ 2921.985682] CPU: 1 PID: 13991 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2921.986514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2921.987459] Call Trace:
[ 2921.987782]  dump_stack+0x107/0x167
[ 2921.988216]  should_fail.cold+0x5/0xa
[ 2921.988654]  ? xas_alloc+0x336/0x440
[ 2921.989098]  should_failslab+0x5/0x20
[ 2921.989566]  kmem_cache_alloc+0x5b/0x310
[ 2921.990037]  xas_alloc+0x336/0x440
[ 2921.990465]  xas_create+0x34a/0x10d0
[ 2921.990892]  ? queued_spin_lock_slowpath+0xcc/0x8c0
[ 2921.991485]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2921.992136]  xas_store+0x8c/0x1c40
[ 2921.992570]  __xa_store+0x164/0x2d0
[ 2921.993003]  ? xa_delete_node+0x280/0x280
[ 2921.993510]  ? trace_hardirqs_on+0x5b/0x180
[ 2921.994027]  xa_store+0x31/0x50
[ 2921.994403]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2921.994974]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2921.995596]  ? alloc_fd+0x2e7/0x670
[ 2921.996042]  io_uring_setup+0x1fbb/0x2980
[ 2921.996535]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2921.997138]  ? wait_for_completion_io+0x270/0x270
[ 2921.997741]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2921.998363]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2921.998969]  do_syscall_64+0x33/0x40
[ 2921.999410]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2922.000000] RIP: 0033:0x7fbbed29eb19
[ 2922.000442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2922.002629] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2922.003490] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2922.004336] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2922.005193] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2922.006053] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2922.006858] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:55:51 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4)

11:55:51 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002040), 0x40104, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xa, 0xc010, r1, 0x2d86c000)
recvmmsg$unix(r1, &(0x7f0000002500)=[{{&(0x7f0000002140), 0x6e, &(0x7f0000002280)=[{&(0x7f00000021c0)=""/66, 0x42}, {&(0x7f0000002000)=""/64, 0x40}, {&(0x7f0000002240)=""/35, 0x23}], 0x3, &(0x7f00000022c0)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000002380)=@abs, 0x6e, &(0x7f0000002440)=[{&(0x7f0000002400)=""/27, 0x1b}], 0x1, &(0x7f0000002480)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}], 0x2, 0x2, &(0x7f0000002580)={0x77359400})
perf_event_open(&(0x7f00000020c0)={0x0, 0x80, 0x6, 0x4b, 0xfc, 0x1, 0x0, 0x3ff, 0x8, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x6102, 0x40, 0x8, 0x5, 0x1e0, 0xffff, 0x7ff, 0x0, 0x401, 0x0, 0x4}, r2, 0xb, r1, 0x1)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002080)=ANY=[@ANYBLOB="1c0000005200210c25601d00000000000200000a0200000000000000e72d1c3e000100", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r4, 0x50009418, &(0x7f0000001000)={{r0}, 0x0, 0xa, @unused=[0x40b, 0x401, 0x6, 0x22], @name="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"})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000000)={0x0, "7455371a335109967515535a447a570d"})

11:55:51 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r1, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r1, @ANYBLOB="02000000f97f26fa36fde6086c653000c1b490ddbb226f2d94069337f3ad6dfb306ff0ba781362955a7dff873a478328ca55afcc3a4ba3479a54469e6a148766e07e995bd87c956c6cf5319e5ba773ab631e16fe8a145050d216cbc3cf6717c2684ba6a40f2a9df153f402e1c9f7616d74035e2e6d7603d2828e916e815bd57befcc1d"])
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x7)

[ 2935.993928] FAULT_INJECTION: forcing a failure.
[ 2935.993928] name failslab, interval 1, probability 0, space 0, times 0
[ 2935.995320] CPU: 0 PID: 14005 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2935.996154] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2935.997145] Call Trace:
[ 2935.997479]  dump_stack+0x107/0x167
[ 2935.997915]  should_fail.cold+0x5/0xa
[ 2935.998372]  ? ___slab_alloc+0x155/0x700
[ 2935.998857]  ? create_object.isra.0+0x3a/0xa30
[ 2935.999401]  should_failslab+0x5/0x20
[ 2935.999856]  kmem_cache_alloc+0x5b/0x310
[ 2936.000343]  create_object.isra.0+0x3a/0xa30
[ 2936.000865]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2936.001477]  kmem_cache_alloc+0x159/0x310
[ 2936.001973]  xas_alloc+0x336/0x440
[ 2936.002393]  xas_create+0x34a/0x10d0
[ 2936.002841]  ? kernel_text_address+0xf2/0x120
[ 2936.003372]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2936.003993]  xas_store+0x8c/0x1c40
[ 2936.004421]  __xa_store+0x164/0x2d0
[ 2936.004855]  ? xa_delete_node+0x280/0x280
[ 2936.005349]  ? trace_hardirqs_on+0x5b/0x180
[ 2936.005878]  xa_store+0x31/0x50
[ 2936.006270]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2936.006844]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2936.007462]  ? alloc_fd+0x2e7/0x670
[ 2936.007901]  io_uring_setup+0x1fbb/0x2980
[ 2936.008437]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2936.008447]  ? wait_for_completion_io+0x270/0x270
[ 2936.008470]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
11:55:51 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 52)

11:55:51 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000100000031000000065bf69026cce8e18aefc4212b37a209f6ab4104cf220913dc48a8e951fea12346fb9bf5c2928845a787d052c626138dc67ed49b43daf7271de9fc11423ef6902e22d2ed", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r7, 0x0, r7)
getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000340)={{{@in=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@remote}, 0x0, @in6=@remote}}, &(0x7f00000001c0)=0xe8)
ioctl$sock_SIOCADDRT(r7, 0x890b, &(0x7f00000004c0)={0x0, @generic={0xf, "d582d8d05d8e278b8bd687932f1a"}, @can={0x1d, r8}, @hci={0x1f, 0x3, 0x4}, 0x5a, 0x0, 0x0, 0x0, 0x3f, &(0x7f0000000480)='bond_slave_1\x00', 0x7, 0x200, 0x9})
ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000540)={0x0, 0x6f, [0x1, 0x71, 0xe65, 0x9, 0x7, 0xb718]})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:51 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r4, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:51 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0), 0x80002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, r8, {0x9, 0x25}}, './file0\x00'})
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:55:51 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x11000000, 0x0, 0x0, 0x0)

[ 2936.008482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2936.008495]  do_syscall_64+0x33/0x40
[ 2936.008506]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
11:55:51 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 53)

11:55:51 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa)

[ 2936.008513] RIP: 0033:0x7fbbed29eb19
[ 2936.008523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2936.008529] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2936.008540] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2936.008547] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
11:55:51 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x10)

[ 2936.008553] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2936.008559] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
11:55:51 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 54)

[ 2936.008565] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2936.073113] FAULT_INJECTION: forcing a failure.
[ 2936.073113] name failslab, interval 1, probability 0, space 0, times 0
[ 2936.073128] CPU: 0 PID: 14020 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2936.073133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
11:55:51 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2936.073137] Call Trace:
[ 2936.073154]  dump_stack+0x107/0x167
[ 2936.073167]  should_fail.cold+0x5/0xa
[ 2936.073180]  ? create_object.isra.0+0x3a/0xa30
[ 2936.073190]  should_failslab+0x5/0x20
[ 2936.073201]  kmem_cache_alloc+0x5b/0x310
[ 2936.073213]  ? mark_held_locks+0x9e/0xe0
[ 2936.073225]  create_object.isra.0+0x3a/0xa30
[ 2936.073234]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2936.073247]  kmem_cache_alloc+0x159/0x310
[ 2936.073261]  xas_alloc+0x336/0x440
[ 2936.073273]  xas_create+0x34a/0x10d0
[ 2936.073288]  ? kernel_text_address+0xf2/0x120
[ 2936.073300]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2936.073311]  xas_store+0x8c/0x1c40
[ 2936.073329]  __xa_store+0x164/0x2d0
[ 2936.073341]  ? xa_delete_node+0x280/0x280
[ 2936.073356]  ? trace_hardirqs_on+0x5b/0x180
[ 2936.073370]  xa_store+0x31/0x50
[ 2936.073382]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2936.073394]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2936.073414]  ? alloc_fd+0x2e7/0x670
[ 2936.073431]  io_uring_setup+0x1fbb/0x2980
[ 2936.073446]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2936.073455]  ? wait_for_completion_io+0x270/0x270
[ 2936.073477]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2936.073488]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2936.073501]  do_syscall_64+0x33/0x40
[ 2936.073511]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2936.073519] RIP: 0033:0x7fbbed29eb19
[ 2936.073529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2936.073534] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2936.073546] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2936.073552] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2936.073558] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2936.073564] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2936.073570] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2936.127334] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2936.161532] FAULT_INJECTION: forcing a failure.
[ 2936.161532] name failslab, interval 1, probability 0, space 0, times 0
[ 2936.161545] CPU: 0 PID: 14029 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2936.161551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2936.161555] Call Trace:
[ 2936.161571]  dump_stack+0x107/0x167
[ 2936.161587]  should_fail.cold+0x5/0xa
[ 2936.161601]  ? create_object.isra.0+0x3a/0xa30
[ 2936.161613]  should_failslab+0x5/0x20
[ 2936.161625]  kmem_cache_alloc+0x5b/0x310
[ 2936.161638]  ? mark_held_locks+0x9e/0xe0
[ 2936.161650]  create_object.isra.0+0x3a/0xa30
[ 2936.161659]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2936.161672]  kmem_cache_alloc+0x159/0x310
[ 2936.161686]  xas_alloc+0x336/0x440
[ 2936.161698]  xas_create+0x34a/0x10d0
[ 2936.161712]  ? kernel_text_address+0xf2/0x120
[ 2936.161724]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2936.161735]  xas_store+0x8c/0x1c40
[ 2936.161753]  __xa_store+0x164/0x2d0
[ 2936.161764]  ? xa_delete_node+0x280/0x280
[ 2936.161778]  ? trace_hardirqs_on+0x5b/0x180
[ 2936.161792]  xa_store+0x31/0x50
[ 2936.161804]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2936.161814]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2936.161823]  ? alloc_fd+0x2e7/0x670
[ 2936.161840]  io_uring_setup+0x1fbb/0x2980
[ 2936.161854]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2936.161864]  ? wait_for_completion_io+0x270/0x270
[ 2936.161885]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2936.161896]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2936.161908]  do_syscall_64+0x33/0x40
[ 2936.161919]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2936.161926] RIP: 0033:0x7fbbed29eb19
[ 2936.161936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2936.161941] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2936.161953] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2936.161959] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2936.161965] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2936.161971] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2936.161977] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:05 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x28)

11:56:05 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x12, r0, 0x5cad6000)
r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x16080)
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x1)

11:56:05 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 55)

11:56:05 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
read$usbmon(r2, &(0x7f0000000000)=""/16, 0x10)

11:56:05 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)

11:56:05 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4b2f, &(0x7f0000000340)={0x0, 0x96ad, 0x1, 0x0, 0x25f, 0x0, r0}, &(0x7f0000ff6000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000003c0))
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c653000cfd5487aa84ae803812ba026d4e8fed82980bab15a6ad3a024a525b10cef6c639723bb1a811a3bf7cefc07e8c29db48a0cf40157353787e523afc1a258cbd964dbcbefb1c4be91629542b686cede69783e0ee50da45e92349402982f213af29cda8affd47e9fd293465b0329c970204d3d9f1a5205bff2326f8bd313a5cef4d849040f50a0e72f1644d6ae7bcc63309afb5ce6402542e2f2f73872d3473e4a58181c32774be0d819acebff2540ee26cdfc44076ad364d4381648958a649175"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:05 executing program 6:
r0 = syz_io_uring_setup(0x305a, &(0x7f00000002c0)={0x0, 0x0, 0x16, 0xfffffffd, 0xfffffffc}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
r5 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r7 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
r8 = gettid()
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000400), 0x4}, 0x440, 0x0, 0x0, 0x2, 0x7f}, r8, 0xffffffffffffffff, r4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000500)=ANY=[@ANYBLOB="010000000100000218000000", @ANYRES32=r3, @ANYBLOB="30000000080000000000000000000048d2540ca59625b88b3e785578d2fd6c589f399fd771bcea6302aaade7424744ad58e486feef5630956a4e1ace27acde1390016cad8563f9fb7f08c1bc9c38f7b75d34bffbaf2a402081180a9acf80d7dab81b50f2df772b39913d4d73b3a0699ef782fbfd"])
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000080)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r11 = syz_io_uring_setup(0x56de, &(0x7f0000000980), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r12}}, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000380)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x101, &(0x7f0000000200)=[r7, 0xffffffffffffffff, r5], 0x3, 0x0, 0x1, {0x0, r12}}, 0x80000001)
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:05 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2950.263860] FAULT_INJECTION: forcing a failure.
[ 2950.263860] name failslab, interval 1, probability 0, space 0, times 0
[ 2950.266649] CPU: 1 PID: 14052 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2950.268439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2950.270244] Call Trace:
[ 2950.270828]  dump_stack+0x107/0x167
[ 2950.271620]  should_fail.cold+0x5/0xa
[ 2950.272447]  ? xas_alloc+0x336/0x440
[ 2950.273274]  should_failslab+0x5/0x20
[ 2950.274110]  kmem_cache_alloc+0x5b/0x310
[ 2950.275018]  xas_alloc+0x336/0x440
[ 2950.275813]  xas_create+0x34a/0x10d0
[ 2950.276650]  ? kernel_text_address+0xf2/0x120
[ 2950.277667]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2950.278830]  xas_store+0x8c/0x1c40
[ 2950.279637]  __xa_store+0x164/0x2d0
[ 2950.280443]  ? xa_delete_node+0x280/0x280
[ 2950.281380]  xa_store+0x31/0x50
[ 2950.282131]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2950.283191]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2950.284342]  ? alloc_fd+0x2e7/0x670
[ 2950.285157]  io_uring_setup+0x1fbb/0x2980
[ 2950.286091]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2950.287209]  ? wait_for_completion_io+0x270/0x270
[ 2950.288294]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2950.289449]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2950.290616]  do_syscall_64+0x33/0x40
[ 2950.291440]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2950.292567] RIP: 0033:0x7fbbed29eb19
[ 2950.293394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2950.297451] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2950.299086] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2950.300617] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2950.302143] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2950.303665] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2950.305184] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:05 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa00)

11:56:05 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:05 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="d06100a22f4220c93a355a9e4c0fb6e6030656f149dbabf7b5f62bf87cab3c5791813926842dc1f82e8477db2652a1a17ee11427971578f6fc10fd8f38000000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r6, 0x4018f50b, &(0x7f00000001c0)={0x0, 0xce7})

11:56:05 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x13000000, 0x0, 0x0, 0x0)

11:56:05 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x4080)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:56:05 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 56)

11:56:05 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2800)

[ 2950.492562] kauditd_printk_skb: 25 callbacks suppressed
[ 2950.492587] audit: type=1400 audit(1764762965.903:109): avc:  denied  { write } for  pid=14066 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 2950.500352] FAULT_INJECTION: forcing a failure.
[ 2950.500352] name failslab, interval 1, probability 0, space 0, times 0
[ 2950.504891] CPU: 1 PID: 14075 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2950.506383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2950.508145] Call Trace:
[ 2950.508734]  dump_stack+0x107/0x167
[ 2950.509518]  should_fail.cold+0x5/0xa
[ 2950.510341]  ? create_object.isra.0+0x3a/0xa30
[ 2950.511312]  should_failslab+0x5/0x20
[ 2950.512127]  kmem_cache_alloc+0x5b/0x310
[ 2950.512992]  ? mark_held_locks+0x9e/0xe0
[ 2950.513881]  create_object.isra.0+0x3a/0xa30
[ 2950.514815]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2950.515915]  kmem_cache_alloc+0x159/0x310
[ 2950.516805]  xas_alloc+0x336/0x440
[ 2950.517565]  xas_create+0x34a/0x10d0
[ 2950.518385]  ? kernel_text_address+0xf2/0x120
[ 2950.519340]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2950.520452]  xas_store+0x8c/0x1c40
[ 2950.521227]  __xa_store+0x164/0x2d0
[ 2950.522026]  ? xa_delete_node+0x280/0x280
[ 2950.522916]  ? trace_hardirqs_on+0x5b/0x180
[ 2950.523852]  xa_store+0x31/0x50
[ 2950.524562]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2950.525591]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2950.526725]  ? alloc_fd+0x2e7/0x670
[ 2950.527516]  io_uring_setup+0x1fbb/0x2980
[ 2950.528406]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2950.529478]  ? wait_for_completion_io+0x270/0x270
[ 2950.530536]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2950.531657]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2950.532765]  do_syscall_64+0x33/0x40
[ 2950.533554]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2950.534654] RIP: 0033:0x7fbbed29eb19
[ 2950.535449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2950.539325] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2950.540939] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2950.542456] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2950.543975] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2950.545482] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2950.547004] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:05 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 57)

11:56:18 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x40004)

11:56:18 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x14000000, 0x0, 0x0, 0x0)

11:56:18 executing program 7:
syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_io_uring_setup(0x2444, &(0x7f0000000000)={0x0, 0x8725, 0x10, 0x0, 0x1a}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r1 = syz_open_dev$mouse(&(0x7f0000000100), 0x0, 0x8000)
sendmsg$SOCK_DESTROY(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x84, 0x15, 0x400, 0x70bd27, 0x25dfdbfe, {0x1e, 0x3f}, [@INET_DIAG_REQ_BYTECODE={0x48, 0x1, "6cd22fbb06734e457fd36b521484708012e7df8b0a5fc30e7e67f1c9dc52b86fab82b5ffbea275ebde8a38b00faf3e42dc6d3d9f81d5c61012f26902b08f3f326e04c5ed"}, @INET_DIAG_REQ_BYTECODE={0x26, 0x1, "c9a99208701abfe0ce3ac31786545a8d3458b2ee606a8e5132b8a935971610041af5"}]}, 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000006, 0x13, r0, 0xffffe000)

11:56:18 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0xfffffffffffffffd, 0x8af81)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:56:18 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000080)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r11=>r7, {0x1}}, './file0\x00'})
syz_io_uring_submit(r9, r2, &(0x7f0000000340)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x4000, @fd=r11, 0xfffffffffffffde9, 0x4, 0x10000, 0x8, 0x1, {0x2}}, 0x3)
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000800)={{}, 0x0, 0x1e, @unused=[0x5, 0x22, 0x4, 0x6], @subvolid=0x7})

11:56:18 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff0000/0x3000)=nil, 0x3000, 0xc, 0x13, r0, 0x8000000)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2963.234997] FAULT_INJECTION: forcing a failure.
[ 2963.234997] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.236444] CPU: 0 PID: 14102 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2963.237284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.238297] Call Trace:
[ 2963.238620]  dump_stack+0x107/0x167
[ 2963.239059]  should_fail.cold+0x5/0xa
[ 2963.239522]  ? xas_alloc+0x336/0x440
[ 2963.239969]  should_failslab+0x5/0x20
[ 2963.240424]  kmem_cache_alloc+0x5b/0x310
[ 2963.240911]  xas_alloc+0x336/0x440
[ 2963.241336]  xas_create+0x34a/0x10d0
[ 2963.241800]  ? kernel_text_address+0xf2/0x120
[ 2963.242346]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2963.242972]  xas_store+0x8c/0x1c40
[ 2963.243406]  __xa_store+0x164/0x2d0
[ 2963.243844]  ? xa_delete_node+0x280/0x280
[ 2963.244344]  ? trace_hardirqs_on+0x5b/0x180
[ 2963.244864]  xa_store+0x31/0x50
[ 2963.245261]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2963.245847]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2963.246476]  ? alloc_fd+0x2e7/0x670
[ 2963.246919]  io_uring_setup+0x1fbb/0x2980
[ 2963.247423]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2963.248028]  ? wait_for_completion_io+0x270/0x270
[ 2963.248617]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2963.249242]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2963.249871]  do_syscall_64+0x33/0x40
[ 2963.250316]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2963.250930] RIP: 0033:0x7fbbed29eb19
[ 2963.251377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.253581] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2963.254500] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2963.255357] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2963.256215] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2963.257069] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2963.257959] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:18 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x2640)
pipe2(&(0x7f0000000040), 0x84800)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:56:18 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4b000)

11:56:18 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 58)

11:56:18 executing program 7:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/efivars', 0x80001, 0x10a)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000040))
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r1, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f0000000080), 0x2, 0x2400)
r3 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r3, 0x0, r3)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

11:56:18 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x1b0a, &(0x7f0000000340)={0x0, 0x3aa4, 0x1, 0x0, 0x386, 0x0, r0}, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000004c0))
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, r3}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000500)=r5, 0x1)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r9 = openat$random(0xffffffffffffff9c, &(0x7f00000001c0), 0x240b03, 0x0)
dup3(r8, r9, 0x80000)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r5, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2963.387962] FAULT_INJECTION: forcing a failure.
[ 2963.387962] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.389304] CPU: 0 PID: 14120 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2963.390102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.391051] Call Trace:
[ 2963.391357]  dump_stack+0x107/0x167
[ 2963.391777]  should_fail.cold+0x5/0xa
[ 2963.392215]  ? create_object.isra.0+0x3a/0xa30
[ 2963.392738]  should_failslab+0x5/0x20
[ 2963.393177]  kmem_cache_alloc+0x5b/0x310
[ 2963.393646]  ? mark_held_locks+0x9e/0xe0
[ 2963.394120]  create_object.isra.0+0x3a/0xa30
[ 2963.394626]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2963.395222]  kmem_cache_alloc+0x159/0x310
[ 2963.395238]  xas_alloc+0x336/0x440
[ 2963.395250]  xas_create+0x34a/0x10d0
[ 2963.395265]  ? kernel_text_address+0xf2/0x120
[ 2963.395277]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2963.395288]  xas_store+0x8c/0x1c40
[ 2963.395306]  __xa_store+0x164/0x2d0
11:56:18 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r9, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index, 0x0, 0x0, 0x5, 0xa, 0x0, {0x0, r10, r6}}, 0x3dbb)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x100000)

11:56:18 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x15000000, 0x0, 0x0, 0x0)

[ 2963.395317]  ? xa_delete_node+0x280/0x280
[ 2963.395332]  ? trace_hardirqs_on+0x5b/0x180
[ 2963.395346]  xa_store+0x31/0x50
[ 2963.395358]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2963.395369]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2963.395379]  ? alloc_fd+0x2e7/0x670
[ 2963.395395]  io_uring_setup+0x1fbb/0x2980
[ 2963.395410]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2963.395420]  ? wait_for_completion_io+0x270/0x270
[ 2963.395442]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2963.395454]  ? syscall_enter_from_user_mode+0x1d/0x50
11:56:18 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 59)

[ 2963.395466]  do_syscall_64+0x33/0x40
[ 2963.395477]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
11:56:18 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xb00400)

[ 2963.395484] RIP: 0033:0x7fbbed29eb19
11:56:18 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff0000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r5, r2, &(0x7f0000000340)=@IORING_OP_STATX={0x15, 0x0, 0x0, r4, &(0x7f0000000480), &(0x7f00000001c0)='./file0\x00', 0x20, 0x400}, 0x1)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="000000000000002e2f66696cff300053c3b6509d6fc4ccd8a969f3b8e91d9a65ebf2099ae9a245fda605a2d5df0100c18a23bccff76561ce6059f50e4664be00"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2963.395494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.395500] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2963.395511] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2963.395517] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2963.395523] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2963.395530] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2963.395535] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 2963.546851] FAULT_INJECTION: forcing a failure.
[ 2963.546851] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.546875] CPU: 1 PID: 14143 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2963.546885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.546891] Call Trace:
[ 2963.546917]  dump_stack+0x107/0x167
[ 2963.546939]  should_fail.cold+0x5/0xa
[ 2963.546960]  ? xas_alloc+0x336/0x440
[ 2963.546979]  should_failslab+0x5/0x20
[ 2963.546997]  kmem_cache_alloc+0x5b/0x310
[ 2963.547021]  xas_alloc+0x336/0x440
[ 2963.547043]  xas_create+0x34a/0x10d0
[ 2963.547069]  ? kernel_text_address+0xf2/0x120
[ 2963.547091]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2963.547113]  xas_store+0x8c/0x1c40
[ 2963.547145]  __xa_store+0x164/0x2d0
[ 2963.547174]  ? xa_delete_node+0x280/0x280
[ 2963.547200]  ? trace_hardirqs_on+0x5b/0x180
[ 2963.547226]  xa_store+0x31/0x50
[ 2963.547247]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2963.547267]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2963.547283]  ? alloc_fd+0x2e7/0x670
[ 2963.547313]  io_uring_setup+0x1fbb/0x2980
[ 2963.547340]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2963.547356]  ? wait_for_completion_io+0x270/0x270
[ 2963.547397]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2963.547417]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2963.547439]  do_syscall_64+0x33/0x40
[ 2963.547458]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2963.547471] RIP: 0033:0x7fbbed29eb19
[ 2963.547489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.547500] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2963.547520] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2963.547531] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2963.547542] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2963.547553] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2963.547565] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:32 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000040)={&(0x7f0000000000), &(0x7f0000000140)=""/111, 0x6f})

11:56:32 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:32 executing program 7:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x84002, 0x0)
io_uring_enter(r0, 0x458f, 0x8444, 0x3, &(0x7f0000000040)={[0x1]}, 0x8)
r1 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r1, 0x0)

11:56:32 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 60)

[ 2977.073745] FAULT_INJECTION: forcing a failure.
[ 2977.073745] name failslab, interval 1, probability 0, space 0, times 0
[ 2977.076178] CPU: 1 PID: 14161 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2977.077621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2977.079356] Call Trace:
[ 2977.079910]  dump_stack+0x107/0x167
[ 2977.080672]  should_fail.cold+0x5/0xa
[ 2977.081461]  ? create_object.isra.0+0x3a/0xa30
[ 2977.082427]  should_failslab+0x5/0x20
[ 2977.083218]  kmem_cache_alloc+0x5b/0x310
[ 2977.084072]  ? mark_held_locks+0x9e/0xe0
11:56:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x1000000)

11:56:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x16000000, 0x0, 0x0, 0x0)

11:56:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, <r4=>0x0})
syz_open_procfs(r4, &(0x7f0000000200)='net/igmp\x00')
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000480)={0x10001, 0xb9, 0xced, 0x80000000, 0x400}, 0x14)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
[ 2977.085197]  create_object.isra.0+0x3a/0xa30
[ 2977.086272]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2977.087335]  kmem_cache_alloc+0x159/0x310
[ 2977.088215]  xas_alloc+0x336/0x440
[ 2977.088961]  xas_create+0x34a/0x10d0
[ 2977.089752]  ? kernel_text_address+0xf2/0x120
[ 2977.090709]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2977.091818]  xas_store+0x8c/0x1c40
[ 2977.092585]  __xa_store+0x164/0x2d0
[ 2977.093359]  ? xa_delete_node+0x280/0x280
[ 2977.094261]  ? trace_hardirqs_on+0x5b/0x180
[ 2977.095178]  xa_store+0x31/0x50
[ 2977.095874]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2977.096889]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2977.097997]  ? alloc_fd+0x2e7/0x670
[ 2977.098778]  io_uring_setup+0x1fbb/0x2980
[ 2977.099668]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2977.100749]  ? wait_for_completion_io+0x270/0x270
[ 2977.101788]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2977.102902]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2977.103995]  do_syscall_64+0x33/0x40
[ 2977.104788]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2977.105875] RIP: 0033:0x7fbbed29eb19
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000800)={0x21b4, 0x31, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@nested={0x202b, 0xb, 0x0, 0x1, [@typed={0x8, 0x1d, 0x0, 0x0, @u32=0x6}, @generic="580db2802ca3de255633c9c48a69663c238ea85ef8d6e083c1e4ddb909a30f", @generic="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", @generic="70157bc89c765395b3ce0c50fb55bf2f06892bce9ef8ef9cdb5aa7bd7e0e683bc60be8bd87400177fe5dff4cc31fa7af2713ef62d5b9f7f12e37df722aab04c5fc110ec82b9f05fb26f381889d0fcfa1008eeb4cfe845739f726bab91d3f9c3c391c1c13de5a37d102c9cb01c9ff1aa7f6348801396940d4713624a05e40518460037bff0fa8e851e34e99b8ef609b345e8ce1b884be76d50cdb5a4c77ad5eca9c040df859ad4f85b9219b841639b8122857af44367fd6b540c94a089e9e86b900d9b54d0af439d124ea27928944b08b9cfe445978e6b31e87a9b0d2b425ab00e5cbb61ab8d7a80a3730beb63f541f8264a67b143e308da9ccecefa5f91875a4376a5f2fab4adbaf8706acb9a95295e9daa40520da80650a7a97ceb8b56c1d0ea38d30bfe29bba494adc8794d2084939c3fc32380789b8b660d3b91e85a301775ffade043e41250442b53def3ebbd8d71b8289bb4dd25aa13ca94295011602e87d4d619a2bdd05b64db673d52e5807b5c34cb6ce1779488457c7abc641486bdb5139878fddc6473d2405785df79343d0f0c3d05133fb9582be608febb139908c3cbb505b430477af5ebed33f4845b63b9391328b15ba8a91a30a9a6ce7f71257a47cc3061cd499e5213e836499b40b21f4c3c82340aabaf2efcf38e287ce11a613f1e6c9ddc50267af6a8ce8dddf4efc90f88fa0c6d4f24a532279f79ce32d80039ea7cd063652ec59a5b833b7099d36ce6ad8be6c38d67fe3bc1d5466be16820fc560199b24338dd2e65c20d8fb99b35043c172b6c1e63119b0a5b07717a6104c41e8810113049061c9249183be5d73611f132adcf23266642835e9ea593949ed974b2631a0670e6f49fa3debc0450871a81b00931a79e010f474f2e49793cdc1ac093e0f19f046e157136fe6e9f892ef409c5d48d5b775740477a208fb593fe2fe8cfcf039f6bc7640e82cfb80db911a28074ee09b3e6fd51978f07ee481ef57afa511e64c8b8c5b6f0b646c019f088b2d7efd705da90b1b45dfe2a4eb386b2570c3d8cc29fb9d408988284322026f33f4aa6b88549b0e430ab703953caaeb009ef1e84e1559ac6cefa78f3154f655d7b2e2dd4ddcec93b5a3ad57d13dc39e0f84b8e3b2a50afb6a0b4fa799174ab280531ed8ff4e42bb3683b8104583fc7e7f075d7a4a5ecc1e61d767e40496990bb6c85627b18ebcd07c516f1ea9f86394dec14fbe75b7a1ba6c10e1df3c804213edf2b826a696abe1a53e01afaa09cfe895a268fe9b4d63c4bd988846fb2dd056c9f4e410c7c7d0511a9a759912e760588dcd44db9e6edaf92bb2f4b65de0d275c26cb9d9cf4bda3365b8d6ea43fd6858df7cc3322ce5518b2649eea748869a453b0d7ebc8a2ed1e35407364dadd7dcf04213bc5cc3b89bce1094a2d675e7bb292ff5c1f7d461acbafdcf753961d4af3f2a8350ee6f0003f9cd164aff494c773d7c332a06a2d8a7fdb7075c8e8743ab9ad29ab9ffb2e7c20dd13908470cdd5fb862d8a7f98d6c97facba2edd775aabe5da4671dfc9e02b6f225c26b96f094808d770ea7244f3da91f41dacf03c831169da95e955c5e047a167635842628472f32ffb67fbbf74c3785768a65489d520252d84d0c534ad9237ec8025fd9ab43bd1f2c57141ec0827e7c756248005ea13d1d98b275e524cb57311b3f2bf958705ac277a1f821cdd1d53e22619cde0f972ac00d0e92eb7a36594a7c60f6c1ab8806da01fb7c564da5c662809a3cd23edc545bf1454c8dd57b75b23b68761c37a56acb31de7005327b2e10d28837aad2cf279e27bbf2b231ca1d22fae6fc70ba3d65c96832d23089ae6fd9124607c9e4cb3cceed214410532e65036dc36bc88f274c37c75098295d5bf2de53b11bac324448842826b17422890ad88353ca31f97719f2514ed2a5503910f9fcddc500d29a80812c68f7f539a8e9150ee96a0158be86ed4f8c3be3394a9730b9248c5664ebe63fb6b79a31610147a190c631fe60e80583a6f7260ca28c955a018112a45da8c23c278ad25f7d8ca1e054dc474c97f8adf4e5eed92774e19cd3838a5dd5f2bb053884c6606dd96f8b414f0440d85f52ab17b2c53438812618ff897e0fa0cb7a719b7c69f917a4b06a83fa09e137ff0f321d50d6551355a5cc8f4db001890398fdf89975ba0f740c755ac2c63e958ba544ea0ae195c1fd0cfe83dbd0d03f6d239544452c65fe16db39962301ee504f7f1078dc6bdecf3f2512b90aa31019a06c178e4a84ad5be1f9290373f6889194ee6d787aea1e85d6ce4408a7f88d2c05a9b74475a13c42a55432de1047dd0f4d49d8fcb4566f9acee1a6a11d6b78f24403595988098cedcafb586969c26b9933c3a448185eb0279ef8fb12447e9da7a81e46aaeac3f3c40e587ebb1c6d180339de36394bceae219c27abe3ba23e00f7dad9556527b4b382beff7130908b1861d21ee04ef038257b910f402ccb44dde2b62a48465be197e12a5a4e101e858bbe4889a9df39188ba9a232ddfe643093fd93d2ccbd0c5bc7adfadd7e7ce79aa59f95e5b7599919687e0494a98bb5fa54d2db56551f89dcc10f857567be3d1927cc873fd973fc283b3a3dc3dba305fd32c2ca3da02bd28f9b44ab4d84d2181bf48bf0b37496dbb89dfd71009fc8baaa05a60bc8c95346c9d4f50f3f03eeea468476a6a72207747d2c6f0152e45251710c1da8918c51ef967c3c833e4136488330819913b20a92033e949bddaab1a856f9edd7c47cc6ecad2d3b1a9d07f660faf961fc21097f8bc6844fe1f527b98e26eeb9eb95f62a242c4e8ca863cbacc252438ce049be5e38d5f8482c31fb137955f15720361a4bc8935e35901b185c8feb2adc731e54a7b8bcabb0aa700a662148db563a7c4c127c6f005463b0381bc2d8fa037863112b9aaec315b7c815b722c4f9c15fe96df3cf9fe6ff66c8b999cfc3705a0d8cd17172dd54e361056e0f9f3725df63a0f7a0039da27630e6038c31196d33b5ec12bd8133c4e5a174325fe230ac3e0bc03d1be27cafdeb4d6accc3c93f2cffa4a69777c92e9a5b4f77cb0fbfe4d66bffafb84cdd46e9a12aab514713675f40ea01f430fcc8a6e8dbedeeb675a2d474311f85a4567c15e273c04da1a316038c4bf5c1b78c4fa8a1f5b17878f33bb540d606863935ff0d9830fd62c275f1bb3476b614b812dc92c9712759254517693c275d24ee6f7b297fdb2c8973a32f92d8164c79036db1d3dc5513f60465a55bcc0ddbcf0d6f50d91489621c137b17c69399e10f90d6e88d2cf21ebea59c3d0d4eccdd848d05e21820528f8a6423b26dbe030386e3be50b780eb6e574ee9db6367445d32d630abe8f4dbf157c851ae57e691d7030b88f3744a91ee467bcc516f11682992f0958d1bfc31ff119fa87c04213c329c6255aeaa4735e5252b68176de264f69f3444da26f2b2ca5a9da13bad4a6996ef7acf90eac6dee4dbb01b4093031becbf1c29b1135ac0280f6f76bd61dfac7a8d402e355425ec6f4cf742fd76c019e1292e54dca09c9234a01de13ba61fb2f77ece0cfbef22c676237ad337cb444d3cd40d1fd5a4c6ad858ce2594d31fa774807452159c4e75986470ee2410c0f20e3bb43d540627dacd47a05b4fcc41ddda5d38c76b34ef86705fbfe8166b680f3fb835254beb21369adebe3cad40c12eab1c012ec8965db4003c720c33924701fa7bf0f18a1a9b9327136560097a2944c8fd8bea0ecb68ff482546b550711feab53ffc9fc8e3ab04d12aa740b6d88f5427ae33cdcc6e8987d8d713eef459103b81b6e9560c5a517d2cf8122636eb745af7c0dcc0a9310374892c44d0fff32e75ae3972954f7f4f82616a7ed47ee7bf2c446c5d258780b2a9de626327a399e1ee27d38b40b2c21a18fb83216376ffd1b67b059f35cef37f0135e446002b7a7a5cf6b435b14f59c19cd17bd36e23278b546416dd1d6c5bd80b49b3c01852dc2621afded5ec1373b37a8a728ea24e6ce5804e19a48937ee2582e254d6e41693c9b2363de098b834b7ff6cac771ef3d9a2d3607b4962ee787243bc3d330fb331034700ea02f8d16094008c9776b4f56123abc99aa2cc0ec7dffcc28759cfc5b63af701c9d480f7a013ff21195cf831c9babdfbae3d5b189bb2cce0cb847b218bc55d2c707e81ff5e73b2808f195f05c0394063eff2de6184591852a1d6bfec6d5fca3e2523e78f288eb299f5a15fc67e6c3bf5def201dc94185e66d92743eb6ffe41c56375b5f74753d29af86cfaf7e5ada507fe08e63b6735786b5e39b2ea452621107e59ecd83e1eaba6efce69baf02103cbfe613ecfebb7afea9c8d976763694a2055e9782e9207da8c30bb2bee60c6edca73d1b94155c27a6f49e6be89ba6e73a2d10ef24341b748ccf422eaae789ef92a232eb047ba612f619449aa8bb81e8690b15d36bd3ad34a9c7a62c7e2c2e887c7853c28951fd63c750d859ad5c65321d77dd806d23692ad3472d2a98c079405444a913fb5d726844ed0f17353a9c8ea7630c3894649d24dabaef821bbf2ba60693d9f47284d0273eef28b5cf15cd233cc64d17cf90d17702bc801e02a05a228b7ba1f32b2e817d6e7d0bb01d0e659117be27ebaf57798f9890e29de2c6ac425eff931422480df2ca9bed7514408212f6bf15405309cd452607d84609e6ea01de1ed3ef31ddba297d7ebc0ce5ce965cf4d4e83b0ae0f7e291a5960fc7f268fadb68d8b70f8e13be64cff686eb5c05efec155c4847b5b7ebe0d90ad6dbe5b60e9893216dde5c242fd3d02f44e6518d585ad6fd46e1a094742ab44f26cd2171c82ad6dceb99295361d0e5c82b5a408e48856ad615f9c489a50af03bfd407bb56a13b8bf71ff4f7b985020b56e93d55c9da4334d359747dd68330c5eff54d067d2965bf93b1f1b89d8e8adebebb52cf39bb5a7c3660a7bc5d8f1b65b780be14f8abce7f30e044c8f9e9f78597c7a6650cb3f29c4b06d2c6e748e034d8fccb8b9444cfa94d9756a84489b50d895b69e1c7f0966e8b209098335fbbc30ded118d58850f5ecfb59989a536f4473d60ddfe28de4305d4be1bac9e4c9d894b873cb9255bae4f405044c66dd4f241ad5c6c7d6855112c4382b84cb3d6dea9fa5054637556ecca3bfffba0c3da0c475397a2d47c7157d31eef0c046df9ecfb6cbf4e862ca1841eae9459d1b931df38dc69d03b613cd886d5fd5baa7fb25dc98871267af6bf0c3856a2b56ec309aa95b2398e763ef9824a7e4a51bc40867924f5f551cc4ee3fd61f51b03d5ad38277a707bad6b9d1ddac2f640ecd5033a08eda6918e4b57013096a4cb808df8c29c91008d471136d029a6860316e7763e6cda2f13df3a7a50fe83cbf0de095b3619e1b83c9684761a85932283e128f5e028bd2f354e2452312e25b5a37d931c2252371fff39f3b124f9e0dbb8c2b109d0ff063767768016e098524887a63373761d588b2c7d85ca914e1cfa35d7edbfe6e32c2fc9c720a3585e527e680387796d85b5fb3e687592d14840df7c8cc003345780b7e1f652f25e6e96d63ccabeac45e5adb9c998a45569e007cf4ca3c80ac39b40255b806fe927ca63f7dede8780bcb1b6283e317579b804c0ccd1fe241cd09a57f37094ff5fb83b9918640ca4a98d996d735b0e3751fc53d1d00f145b18487d29e74292b9ee3a7ba98c98d612e201868ba35a9a72d3adaea1f631141aee97d64c7508489dc2726c10b68b0ad06c7849b3b35c699904cd95c1dd307eb48c8bfc09e6f54303addbda1945243c7ea770bed778820477dfacad549"]}, @typed={0xfc, 0x24, 0x0, 0x0, @binary="fa42ac12081cc9af15696ddddcc7334097cd3592b5e8d7c63baf64546a811da8a4a8bb440ee1c6774f46c7799bb8f1149b6d9830ef046e7252093a31ccbc10a9220080668f621f6f77b84f185d01f2135643354e1d958fb49cf3134e682be0ff3a93068041311acfd15389c81d8f8b50a540de6b02b825e6f56ac167ca1a6dc668240c0b882c20e2917fdefa6450170a79b4a7814787a9e8679061cb1d13ad8d60af27629e0cd8cf7715983b78df3f6c6b15196d83355d54fcb1efcd9c58121dfd5f544ab9fd714893d8875f37e779744bcda6b08374b56e5ad3fb91528b88cf22f8adcd1161becb4067c759460d01188aec06a21f93fa8b"}, @nested={0xc, 0x12, 0x0, 0x1, [@typed={0x8, 0x7a, 0x0, 0x0, @pid=r4}, @generic]}, @generic="b8839a83052ff6a7e0562ef2bd146f06d95e17381c8c75d170d82dc58d5c12cf94117b7bf10d225ef1eb472bbc62720706cc4edf14e25320d418d87c7c818c254897a2469fd3ad15aca665da1ce05791d519d2f2b97d2fb559b36c0f39113b3938ff", @typed={0x8, 0x6f, 0x0, 0x0, @uid=r5}]}, 0x21b4}, 0x1, 0x0, 0x0, 0x20044090}, 0x80)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:32 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fec000/0x3000)=nil, 0x3000, 0x0, 0x10, r3, 0x8000000)
syz_io_uring_setup(0xb7a, &(0x7f0000000340)={0x0, 0x7420, 0x4, 0x2, 0x1e7}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000480)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r5, 0x0, &(0x7f0000000400)='./file0\x00', 0x13, 0x0, 0x23456, {0x0, r8}}, 0x10001)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r10=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2977.106921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2977.110896] RSP: 002b:00007fbbea814108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2977.112519] RAX: ffffffffffffffda RBX: 00007fbbed3b1f60 RCX: 00007fbbed29eb19
[ 2977.114034] RDX: 0000000020ffd000 RSI: 0000000020000480 RDI: 0000000000005e4e
[ 2977.115527] RBP: 0000000020000480 R08: 0000000020000080 R09: 0000000020000080
[ 2977.117048] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000080
[ 2977.118565] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:32 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x2000000)

11:56:32 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005200210c000000000000003f0b00000008000100", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendfile(r2, r1, &(0x7f0000000080)=0x6, 0x1)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r1, 0x8983, &(0x7f0000000000)={0x1, 'ip6gre0\x00', {}, 0x6})
r3 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r3, 0x0)

11:56:32 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:32 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x17000000, 0x0, 0x0, 0x0)

11:56:32 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000340)={0x0, 0x0, 0x20, 0x0, 0x109}, &(0x7f0000fef000/0x3000)=nil, &(0x7f0000fed000/0x2000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0204000000000000002f66696c653029"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:32 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:32 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x50440)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x2]}, 0x8, 0x80800)
syz_open_dev$usbmon(&(0x7f0000000040), 0x1, 0x440040)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:56:48 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4000000)

[ 2992.730504] FAULT_INJECTION: forcing a failure.
[ 2992.730504] name failslab, interval 1, probability 0, space 0, times 0
[ 2992.732005] CPU: 0 PID: 14212 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2992.732860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2992.733875] Call Trace:
[ 2992.734216]  dump_stack+0x107/0x167
[ 2992.734668]  should_fail.cold+0x5/0xa
[ 2992.735140]  ? vm_area_dup+0x78/0x290
[ 2992.735619]  should_failslab+0x5/0x20
[ 2992.736085]  kmem_cache_alloc+0x5b/0x310
[ 2992.736584]  vm_area_dup+0x78/0x290
[ 2992.737037]  ? lock_release+0x680/0x680
[ 2992.737524]  ? mark_lock+0xf5/0x2df0
[ 2992.737985]  ? lock_chain_count+0x20/0x20
[ 2992.738500]  ? mark_lock+0xf5/0x2df0
[ 2992.738957]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2992.739596]  ? lock_chain_count+0x20/0x20
[ 2992.740105]  ? mark_lock+0xf5/0x2df0
[ 2992.740565]  ? vm_area_alloc+0x110/0x110
[ 2992.741063]  ? __lock_acquire+0x1657/0x5b00
[ 2992.741598]  ? memset+0x20/0x50
[ 2992.742002]  ? vmacache_find+0x55/0x2a0
[ 2992.742501]  __split_vma+0xa8/0x4e0
[ 2992.742949]  __do_munmap+0x365/0x1260
[ 2992.743417]  ? arch_get_unmapped_area+0x450/0x450
[ 2992.744005]  ? lock_release+0x680/0x680
[ 2992.744489]  mmap_region+0x7cc/0x1500
[ 2992.744957]  do_mmap+0x868/0x1370
[ 2992.745382]  vm_mmap_pgoff+0x198/0x1f0
[ 2992.745859]  ? randomize_page+0xb0/0xb0
[ 2992.746360]  ksys_mmap_pgoff+0x41c/0x560
[ 2992.746855]  ? find_mergeable_anon_vma+0x250/0x250
[ 2992.747453]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2992.748089]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2992.748714]  do_syscall_64+0x33/0x40
[ 2992.749162]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2992.749782] RIP: 0033:0x7fbbed29eb62
[ 2992.750244] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 2992.752478] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 2992.753407] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 2992.754512] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 2992.755378] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 2992.756242] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 2992.757113] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:48 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x6, 0xa0040)
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000000)=0x9)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
read$usbmon(0xffffffffffffffff, &(0x7f0000000140)=""/251, 0xfb)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:56:48 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)

11:56:48 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 61)

11:56:48 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x3dd9, &(0x7f0000000340)={0x0, 0x273b, 0x1, 0x1, 0x285, 0x0, r4}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0)=<r6=>0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r2, &(0x7f0000000400)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x12345}, 0x6)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_config_ext={0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="ba209491a2af7a51afaf40c5c271648bbd08f8587f689da2aef39d8a58cb87a079357d3b4d00df1d1933008103e51b8d5e7cc5d4917bbcaa99fd0c78aceb632475430caa9b0ef91d6805e459b1a1000348546272ad1d60e10b28fc2089c7c71641b736eb5cb132049bc9cd843a4b5c9b9bfec862832888a86e5bf298622fadc793bd03b071fde133fa50606a5a0b0c64cea2346721ea943afe7649be5c178b2ff788665b051038e870ef4393a5d6fa4830c8dfc1123fafa290c71f40a02daa4856e050a41659a5c9e2bb4c03d6fca727a7cea071d8187fc61c60cdd3497cd0b9c3"], 0x1c}}, 0x0)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0x6, 0x15}}, './file0\x00'})
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:56:48 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x0, 0x4}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
r6 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r6, 0x0, r6)
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 62)

[ 2992.859443] FAULT_INJECTION: forcing a failure.
[ 2992.859443] name failslab, interval 1, probability 0, space 0, times 0
[ 2992.860819] CPU: 0 PID: 14233 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 2992.861631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2992.862606] Call Trace:
[ 2992.862917]  dump_stack+0x107/0x167
[ 2992.863341]  should_fail.cold+0x5/0xa
[ 2992.863784]  ? create_object.isra.0+0x3a/0xa30
[ 2992.864314]  should_failslab+0x5/0x20
11:56:48 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
fstat(r0, &(0x7f0000000000))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

[ 2992.864756]  kmem_cache_alloc+0x5b/0x310
[ 2992.865407]  create_object.isra.0+0x3a/0xa30
[ 2992.865923]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2992.866527]  kmem_cache_alloc+0x159/0x310
[ 2992.867016]  vm_area_dup+0x78/0x290
[ 2992.867445]  ? lock_release+0x680/0x680
[ 2992.867911]  ? mark_lock+0xf5/0x2df0
[ 2992.868347]  ? lock_chain_count+0x20/0x20
[ 2992.868829]  ? mark_lock+0xf5/0x2df0
[ 2992.869265]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2992.869876]  ? lock_chain_count+0x20/0x20
[ 2992.870369]  ? mark_lock+0xf5/0x2df0
[ 2992.870809]  ? vm_area_alloc+0x110/0x110
[ 2992.871281]  ? __lock_acquire+0x1657/0x5b00
[ 2992.871791]  ? memset+0x20/0x50
[ 2992.872178]  ? vmacache_find+0x55/0x2a0
[ 2992.872644]  __split_vma+0xa8/0x4e0
[ 2992.873069]  __do_munmap+0x365/0x1260
[ 2992.873516]  ? arch_get_unmapped_area+0x450/0x450
[ 2992.874080]  ? lock_release+0x680/0x680
[ 2992.874553]  mmap_region+0x7cc/0x1500
[ 2992.874997]  do_mmap+0x868/0x1370
[ 2992.875402]  vm_mmap_pgoff+0x198/0x1f0
[ 2992.875851]  ? randomize_page+0xb0/0xb0
[ 2992.876316]  ksys_mmap_pgoff+0x41c/0x560
[ 2992.876786]  ? find_mergeable_anon_vma+0x250/0x250
[ 2992.877351]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2992.877962]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2992.878567]  do_syscall_64+0x33/0x40
[ 2992.878997]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2992.879585] RIP: 0033:0x7fbbed29eb62
[ 2992.880016] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 2992.882127] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 2992.883033] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 2992.883864] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 2992.884687] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 2992.885511] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 2992.886344] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:56:48 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x4000400)

11:56:48 executing program 4:
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0xc0109207, &(0x7f0000000000)={0x0, 0x0})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='sched\x00')
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="2100abecf4ea30c4234d259baf1a6a1fd191ad57914a5c5d8dfd15e2dba8895e5154441407c3c4ca96a71e136f8574b62d2f1d46c235e2e26611f30f988d02ffe2d870ae565ab5b7332dde3fa77084cc3d"], 0x1c}}, 0x0)
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c0000001911d285b05e5d5328624064a72f5efe88ef8e3e3c9be4a932dff932504ec9119ee6e6e97038780196312463a3", @ANYRES16=0x0, @ANYBLOB="200029bd7000fddbdf25180000000500050000000000080007000400000028000180140002006e657464657673696d3000000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800030001000000"], 0x4c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4040)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000002c0)={<r4=>0x0, @multicast1, @local}, &(0x7f0000000300)=0xc)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r7, 0x2, 0x6}, 0x10)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000080)={r7, 0x1, 0x6}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r2, 0x89f7, &(0x7f00000017c0)={'ip6tnl0\x00', &(0x7f0000001740)={'syztnl1\x00', <r8=>0x0, 0x29, 0xd4, 0xd5, 0x0, 0x21, @dev={0xfe, 0x80, '\x00', 0x1b}, @remote, 0x7800, 0x8000, 0x2}})
getpeername$packet(r3, &(0x7f0000001800)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001840)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000001900)={'ip6tnl0\x00', &(0x7f0000001880)={'sit0\x00', <r10=>r8, 0x2f, 0x66, 0x6, 0x4, 0xd, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, 0x7, 0x1, 0x4, 0x66b}})
sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f0000001b00)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001ac0)={&(0x7f0000001940)={0x180, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x180}, 0x1, 0x0, 0x0, 0x4040}, 0x4c092)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r11=>r3, {0x1}}, './file0\x00'})
ioctl$MON_IOCX_GETX(r11, 0x4018920a, &(0x7f0000000240)={&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000380)=""/192, 0xc0})

11:56:48 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000001c0)={<r3=>r0, 0x7f, 0x2, 0x7})
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018110000", @ANYRES32=<r7=>r4, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x800)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="35c1a568abf7e01e398bbe8ff603608a85b77f536dedb3505477209f1da4125c98178e4861a129b9e1e57d8eb10233ffcb92cb0fdbfd4d4bc8909d548217c477f828a8efd868b0e8cdce62105b9dbdd5b1b888bc84a5d967dc74698d320e8dcb09000000a3cda3a69d08bc519692e2588a61d9be29696e95f66b88772a13fb4dbad1918495f10b51c0b67cdd92a70701f851e96211e2f43e6aa37f2ab8cfbc9ff52ff1cd0e42a52c3a9a1573595d47639ed2b432b6cb24a8d19206b41a593a847f7f56f59ce778320ed2d335880a5e485aac73994526c5f2d32c094c621172c2447d070085b25d50d0faed3c69f63cdb76b78967"], 0x1c}}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = fcntl$dupfd(r9, 0x0, r9)
sendmsg$nl_generic(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="1ca22a1caae9cd8ca0cd8308459bf58c12b7ce8f393afaf4ce9233b5196d8348e0facd6a2e58043a8091c907d2e44beae57956974b17d5c58a7023af4e4ff91c612ae209914ba6483cb73f7cb849a96f2d966a8e3755e63be384fcc3c2bbf5c028511c2637ccf5f3f235204603d1fe4a633a83fc65dee4c8702d710661dab39c6bc42f6baf85b84636770057c29196f485f969a49f83fa94e110f666681bd9a90008242c708a124cd6970740104c22455560ba445fa09fd706f504a4f0af809e1e6b712c3e450b2f0a7edf86ba3f65074d2fe83b16454c71c53795d5238265ddf15cdb5bc2cb0aaab0eb8e7d3ae7"], 0x1c}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x3, &(0x7f00000004c0)=[r4, r8, r4, r4, r10, r6], 0x6, 0x0, 0x1}, 0xb460)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0200002000e1bdbb37e734f5303400002e2f"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r5, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:56:48 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x19000000, 0x0, 0x0, 0x0)

11:56:48 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2992.983592] device syz_tun entered promiscuous mode
[ 2993.092348] device syz_tun left promiscuous mode
[ 2993.099339] device syz_tun entered promiscuous mode
[ 2993.144568] device syz_tun left promiscuous mode
11:57:02 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 63)

11:57:02 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000005200210c00000000000000000a00000008000100", @ANYRES32, @ANYBLOB="0439fad76e5d705ba0c210c1e1eba77a09b5fbf00bf0e317cc4c2c5edfc77ca313b95354360dc6359f58757b075343cf167094b9"], 0x1c}}, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f00000002c0)='tasks\x00', 0x2, 0x0)
signalfd4(r3, &(0x7f0000000300), 0x8, 0x80800)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f00000001c0)={&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000180)=""/9, 0x9})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000040)=""/25, 0x19})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:57:02 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffb, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r6, 0x0, r6)
ioctl$FIBMAP(r6, 0x1, &(0x7f0000000480))
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x80010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r7=>r3, @ANYBLOB="02000000000000002e27e850dc38f0101a2bb20d6f"])
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x640000, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
sendmsg$nl_generic(r4, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x64, 0x1d, 0x400, 0x70bd2c, 0x25dfdbfe, {0x15}, [@generic="0600edce3c1c96890973385083be567fc34f349d6273cf62608302f3a920103113dd6cad465dcfc499bef46c5191d75f4e9b4f0da1a5efa7f0a07d8ff8", @typed={0x8, 0x78, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0x35, 0x0, 0x0, @u32=0x7fff}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
io_uring_enter(r7, 0x4a84, 0x0, 0x0, 0x0, 0x0)

11:57:02 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
lsetxattr$security_evm(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)=@v1={0x2, "dd9b6195c6750b411e92b25626b2fedda15c06"}, 0x14, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000580)={0xc, 0x0, &(0x7f0000000480)=[@dead_binder_done], 0x8c, 0x0, &(0x7f00000004c0)="bbc8bab414dd3323c8f4e35da53122cc0adcf12778bf79751b4d837838d353d0581d1e89b65804d42a5fb1a664280232f622f195d0b1d7b3d498e920ceba8fd5bbc9a053f6ac46f4c5bbaa339328711ccb1a7304505f4187fc2ca2b3e42cef72792203ace4be729650052002a053a222bee489d368bac911fdf0a80138e6b8deffd4163fc7724022a107ef2d"})
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:02 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa000000)

11:57:02 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x4000010, r0, 0x100000)

11:57:02 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:02 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1a000000, 0x0, 0x0, 0x0)

[ 3006.671705] FAULT_INJECTION: forcing a failure.
[ 3006.671705] name failslab, interval 1, probability 0, space 0, times 0
[ 3006.673466] CPU: 0 PID: 14269 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3006.674533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3006.675807] Call Trace:
[ 3006.676211]  dump_stack+0x107/0x167
[ 3006.676774]  should_fail.cold+0x5/0xa
[ 3006.677354]  ? anon_vma_clone+0xdc/0x590
[ 3006.677977]  should_failslab+0x5/0x20
[ 3006.678569]  kmem_cache_alloc+0x5b/0x310
[ 3006.679188]  anon_vma_clone+0xdc/0x590
[ 3006.679794]  __split_vma+0x17c/0x4e0
[ 3006.680363]  __do_munmap+0x365/0x1260
[ 3006.680934]  ? arch_get_unmapped_area+0x450/0x450
[ 3006.681677]  ? lock_release+0x680/0x680
[ 3006.682286]  mmap_region+0x7cc/0x1500
[ 3006.682893]  do_mmap+0x868/0x1370
[ 3006.683439]  vm_mmap_pgoff+0x198/0x1f0
[ 3006.684046]  ? randomize_page+0xb0/0xb0
[ 3006.684675]  ksys_mmap_pgoff+0x41c/0x560
[ 3006.685301]  ? find_mergeable_anon_vma+0x250/0x250
[ 3006.686064]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3006.686879]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3006.687675]  do_syscall_64+0x33/0x40
[ 3006.688251]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3006.689038] RIP: 0033:0x7fbbed29eb62
[ 3006.689610] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3006.692443] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3006.693609] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3006.694719] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3006.695801] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3006.696890] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3006.697961] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:57:02 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x28000000)

11:57:02 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
fcntl$dupfd(r4, 0x0, r4)
tee(r1, r2, 0x7, 0x1)

11:57:15 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x244480)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
ioctl$MON_IOCT_RING_SIZE(r2, 0x9204, 0x11f12)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:57:15 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1b000000, 0x0, 0x0, 0x0)

11:57:15 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xffffffffffffe)

11:57:15 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, 0x0}, 0x0)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80802, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000280)=@IORING_OP_FADVISE={0x18, 0x7, 0x0, @fd=r5, 0x4, 0x0, 0xf790, 0x5, 0x1}, 0x800)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r6 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r9=>r6, @ANYBLOB="020000000000b20ba66b6c65300000000000000000000058ae19023aee198aff4b0cd9da4c14f21f1c90ffdc4f42d5089e5c0a5d1fbda7508f87940e6bab03b2501e220e03c5a9483c255d772dcece63822b7caf04e6c4f1577ea0995372313df500"/111])
io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 64)

11:57:15 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f00000000c0)={&(0x7f0000000000), &(0x7f0000000040)=""/111, 0x6f})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r1=>r0, @out_args}, './file0\x00'})
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r1, 0x8008f512, &(0x7f0000000140))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

[ 3019.864095] FAULT_INJECTION: forcing a failure.
[ 3019.864095] name failslab, interval 1, probability 0, space 0, times 0
[ 3019.866586] CPU: 1 PID: 14313 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3019.868046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3019.869816] Call Trace:
[ 3019.870378]  dump_stack+0x107/0x167
[ 3019.871163]  should_fail.cold+0x5/0xa
[ 3019.871973]  ? create_object.isra.0+0x3a/0xa30
[ 3019.872935]  should_failslab+0x5/0x20
[ 3019.873732]  kmem_cache_alloc+0x5b/0x310
[ 3019.874600]  create_object.isra.0+0x3a/0xa30
[ 3019.875514]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3019.876579]  kmem_cache_alloc+0x159/0x310
[ 3019.877460]  anon_vma_clone+0xdc/0x590
[ 3019.878297]  __split_vma+0x17c/0x4e0
[ 3019.879090]  __do_munmap+0x365/0x1260
[ 3019.879905]  ? arch_get_unmapped_area+0x450/0x450
[ 3019.880926]  ? lock_release+0x680/0x680
[ 3019.881776]  mmap_region+0x7cc/0x1500
[ 3019.882603]  do_mmap+0x868/0x1370
[ 3019.883355]  vm_mmap_pgoff+0x198/0x1f0
[ 3019.884178]  ? randomize_page+0xb0/0xb0
[ 3019.885035]  ksys_mmap_pgoff+0x41c/0x560
[ 3019.885905]  ? find_mergeable_anon_vma+0x250/0x250
[ 3019.886944]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3019.888075]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3019.889168]  do_syscall_64+0x33/0x40
[ 3019.889966]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3019.891071] RIP: 0033:0x7fbbed29eb62
[ 3019.891862] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3019.895768] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3019.897372] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3019.898886] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3019.900400] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3019.901902] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3019.903429] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:57:15 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r1, 0x0, r1)
signalfd4(r1, &(0x7f0000000000)={[0x98ae]}, 0x8, 0x80000)
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})

11:57:15 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x10000000000000)

11:57:15 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1c000000, 0x0, 0x0, 0x0)

11:57:15 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002d00)=ANY=[@ANYBLOB="2e04a56b5200210c00000001000000000a00000008000102274f1f009eb8fab2", @ANYRES32, @ANYBLOB="c5cbc2ba42a68207db489e3d7de473e0abf89bf6204943f346a253a72d3cff64446a9ecc4e6b0bcd6990b2a88f92cf3a21268c2e92fc40a4c13491b01adf9489e015bc4b17d65be71ec732730d84ed00873c15811a41813a1a091168105318d16505080a8856e7c85439a83a8839f7d1d7553845b44dabbd3861fcb0810ee909971156a349"], 0x1c}}, 0x0)
r2 = syz_io_uring_setup(0x24d4f, &(0x7f0000000480)={0x0, 0x611c, 0x2, 0x2, 0x0, 0x0, r1}, &(0x7f0000fef000/0x1000)=nil, &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000380)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r5 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x5da0, &(0x7f00000002c0)={0x0, 0xaec0, 0x0, 0x1, 0x79}, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff})
openat$cgroup_int(r8, &(0x7f0000000340)='cpuset.sched_load_balance\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYBLOB="0200000000000000c50100696c653000"])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r3, 0x0, &(0x7f0000002c00)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd, 0x3f, &(0x7f0000002b40)=[{&(0x7f0000000580)=""/191, 0xbf}, {&(0x7f0000000800)=""/119, 0x77}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000640)=""/7, 0x7}, {&(0x7f0000001940)=""/18, 0x12}, {&(0x7f0000001980)=""/4096, 0x1000}, {&(0x7f0000002980)=""/16, 0x10}, {&(0x7f00000029c0)=""/135, 0x87}, {&(0x7f0000002a80)=""/142, 0x8e}], 0xa, 0x4}, 0x8)
syz_io_uring_submit(r7, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r6, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 65)

11:57:15 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xb0040000000000)

11:57:15 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x80800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f6c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'veth1_to_hsr\x00', <r7=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000040)={r7, 0x2, 0x6}, 0x10)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={r7, 0x1, 0x6}, 0x10)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000003400)={0x0, 0x1, 0x6, @dev}, 0x10)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f0000007f00)=ANY=[@ANYBLOB='\\J\x00\x00', @ANYRES16=0x0, @ANYBLOB="000429bd7000ffdbdf250e0000004800018008000300010000000800030002000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="0800bb080c3e6e3385cbcb0f6abed90100ff1a6695542fdaa5b2e9d25c9e4e1850629ac51012164c4c2d22d8de522c00cecd6c6d26e8403fe9dc4303d1dc8e4595cbf7994b290df81a04073537ab2cd89d84", @ANYRES32=0x0, @ANYBLOB="140002006d61637674617030000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="5400018014000200766c616e310000000000000000000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000300020000001400020069705f7674693000000000000000000088030280ff000500ae9def5418498753d1b65bb556f128a9b1f354713bd99221f4f697fbcf21c8b84c5202d8d77e84873c03d37063dd419edd3c54410041f1f8c601b6fb6a56821e87c394435584df5dcb8241b3aab2a38c0bbbfbf343c3f36aa239926fe400239078e44535186e68cc218158e7a5ce3536134d30f904673c5d4771e5ad83ffdee11bf7acec5c8671cc96698b3af61e6f1d7ce8cffffd9e9c28fc103c0891c43349b63144eb735f2f414b9968d0e143b4aa23b3c27ac5d46ad1208899db8a033eebfad45e0eeff361cf22b226e27d910cb0934f85dc4c2f8d278dc93439d204c074c37698b7f147ae6499f758177c3fb66bc0ea2d03b7d3878763c9910049000400b91c28fc5e9f6bc98cab7d163ee20d9e4181135fb9f22ac1207b77768d03c306f483c2423d5c1dcc8029f5f53984aa7c3031c8b61e6bb3ab7babbb999101411579ec314a66000000080002000000000004000100440103800c000180080001001f000000200001800600020018000000080001003f0000000400030005000200000000001c0001800400030004000300080001000500000008000100fbffffff380001800800010000020000050002000000000004000300080001000500000008000100000000100400030004000300070002002e5e0000180001800400030008000100020000000400030004000300500001800e0002005e272d252d2d5c2efb000000080001000100000004000300110002002f6465762f7572616e646f6d0000000008000100cd0f000004000300040003000400030004000300040003000c00018004000300040003004c000180080001000100000004000300110002002f6465762f7572616e646f6d0000000004000300080001000100010004000300050002000000000008000100ffffffff0800010007000000e6000500c33397af97620538d19b7445d12c03b7c9918f0f6e712f94737f265cea7d96f90966bf750cc44e99a1d5701c49658254f8169f3c9fa0acf09ec881ba0b028785dc2e0364ac95b1fa52b0f47f74aa2121205db7d0b7415d3c6742d3f5696a86f954ba1d0913d05dd57315a62504d3d31da014991c811d237bdf39d8ec526edbfc665b0933375c5774c68a18b32f1bc20e44cd70136345b04b98b155f878f57e7d2acae339c95ed2b53f4db863606ecc52654c12c141161513e126a57014a6d0a0ea278ab814481d5fe03f56cbafa494ec23e8c64c61456ed529fcebfd742afa03ace80000b840028004100400eab7c989b4acc0f760be7bce44494621bc224e9eecb520f8196ae11252da4ee4777064e08d175a239d71a37502584d17716ef53b97466dbd590cf2f4fd08ac5ef8b31516738066d45d436828335ba6a464eecd402bb892b6bcc89bc0edf199b67cf924b2008b6f4b7549d086c88322e58f4bb6a1f3c3963b186b26317f40dd2d3331a11f61f50014f8c70f91cde546d3edfac93443d8afc533d0f1283b36ea81767ae74da425215426ff741ac02376a5c41492fce04bdf6cdf372ea8f663ce37c2e59ea3dac63657e7652770364ed463f6877c21f0b71dba99f40932b15017ed71a1621d72e1d1d1a6010936125c12d4ccbda03cbbd3946fa91b19369eb19e3d9637f866bbbc69219f85ab721e57d2c81e9c58609e3929440900cfa75327a5b0c2eb0174e7aad54d2f657dd0ec2eec2952b9c8126199afc748450d4d6e2f086aac041b89f9f76b2f6c67382e39ccc64ccd6fb5b5b53682b200e3f99606f6dbe194bbd35f9e44070830b7d2a788e9060e385ebc5849b022d150ad1b6bfa0e554ee9471547310231086aaddea657dc2a5bc32c3a07dfd702c5629168e401ea2fab5642f3dfd37f775071246ebaa9f541ec09fb56155109d1b7052151250f409721c6e534efb3b10321c91c9f707cebcc38bebb3958c1e4da07b5bdd93d165b53a736142890ba0c383add14d3420a9da385c86e07be26a6192d281bc7944fc68b2e97db026eaccf36da1ff4b4cb8c962994bc1461c349f485c7f455c4f82a81b840957001a472607b405a1ce1f64dc43c4c8063d529fe9fbf1d6b8f45bd27b8de90be3edcb0d8adfaf4361e6f09396ca33364afb0048a81665c0a5654f8495404b10397f86962762de2717bb23edf4c179803e259c015bf3d207311c92481d6ce7e7e9d3f4a70a4d3c042f3231dc34725c6bdde83ac8d9ec08a145ca2dbae043b230ed943ae8846ab5f09cbba9c40a88e949a23821e98653633180de55bac43acbee62dae57a1c0544601d5a71aa93225276c7d8628b34aec1b8df04d1fb15a18ff6a5fdb9a4ec2f8d2cec54ea7235c2f40a2ff486b686ad16c0bcf3d0e78f51f1900afbcabe348fb402c9d3588b7c56b4f4229d7e2ba8c3c16114e9caa2e5aceeb795ab73c8a804c6d2d1cc5fa47ffe5aec81191f15b901a1434644e924664b1aeede380480acf70651f75c558193a8caa4e5e7a98846d1ca4104f540dbad7aa3a6a5d166cc0f4a206e1b5c972501b1d224d5cf797a38cba37e24123066685fdda830556406bea0d6c86f0e2b6536e00203747afa0e31f6b1c064f41924dccb1d2cbd9687da4f8ce2cf14c8bdba874500993c38ff9e40af9ab430362c0921c89224f6d8221629f6e66eaeab46d45b352e41da386f807c391a4f41d41a229fe810e6f82c4b82ae45257c96b96a5fcdcb5dc2ca467bb7150875b6337aa50915308868395df1cebe0ba43917989e704bae2281557c50db4b4ff00617ec245c84fe6323577198b93bdae0532b1bf1895fa938ca7b3b379206487022a0759db569aa71bc2f1a24cfe94cbf72907a75930eaea7a1cf5a1a7ef24fd9980e70a141ea568238650cc2768ba473c98c41ae0a4e36c664ecb205f6046bc965ba5aef3f4085cb2924e006af71ecc1554c33770caa2d17d3d592e55e02a0878fccbae096e31ffbe5f14f8874ede14a13a75587afef0ff16827bdef3ff0a54d8834645d430ac2654a08b2df26f12ed6b27f641420daab48d05a82e98e09fc0e177b40e36431431d1815cedf69cdb84d398183a05e94ec53eedf22f5156eb6f66b36c4644a937ffc4b67053ef011cb091261dd3eaf820e7a2a906b477822213d25176d5352bb178c855c4ae66cd09fb01d609996c77ee7653afbc9fccd580d93bf680d07072aefafdeb824d023b183656c778ae7d3886db491b0b5c0ab6d001d6c66616204e4f04ea2ad8a085f0ea642a36b66fc2da8af5ab4d5d3387b4a4d0598b356e483a72cfe6c10507abdfadb3eab221a0f6f3dab625c424405cfb1233007aa3567ed57c51bf61bea13925518f28eec124c744fbdc4d1ddaad7cf46b8224f18e831352a92a697398e89fe8a211358e4cb895ef4ece73b09823d07e2a4acfac4afca7c70a8438925ce99982ed0c46d25a6b62a44435691831fdd01607f78a23d9aa87d19b2190185670d34a251761b33f48efb9f9409287456a38fafbc8f49489dd6607824336102c271617f188febd05e31be87d96966cdcbcb62a5eadf01e17abc26af9fce5d67474cab127d7a3a68c25cc4d288a27a2523dbf53c374998e71c940d0400c5edffb2848ea70139250504d1bdb30771a41efe6553aefebc6a9f9fc3711c1bd2a2267e8c74462aa030a4a4e0343ceff7699747f270f66afddf20cfcf6909af6791666703ef1c60a5c0821fc8668bff66eb40266905e22ea100ff8d6426dad1f629ee90116363ca71be80b6f28f6bf0f783494f748e5a4396dda3d40ad9d4c0161c2b1021bef4a409e93e3bbc64a9988c292c1b1c9c38b6608128164d993a302947d11b84baf2ba932007c54a978d0b1a30cf6496fde9efd9aa7f813789bdf4de01eb537d94be766efebd5cbea10bc0f48df3ec408b6d7d300b3cc3c272f1a4f18f259d25891ae324508591c94112f38ead805c6cbb5218d8b0fedd1ce034cec4197f5423fdc03549bb7615cc160b8e3b6649372ab6afe436408258579cc54f9cddef056b35f35f1c1cf4365732588156de7c133bd481e9ea083dabbc1b23ecbebf8e776bb4046bd7656a08a357d6ce411857371270ef29dd0c31e424bd56daa20475588567bc24d20c77ebab1cd62586cc0d271b5ba069532505754aa9bc6a5d17e3b3fd7f6988feb8e7a3333875471c685020dfe2d224aba41e96290439b58e98033fad61a53b354ca3648a8d470f11f6f2b8dadb631509ac1838fa752a339253cf4953111efd48ce7608e03c76a53fe784285b50495b71339e77d93f595f4a2a5c8d747f6c21ea55a1e2ee06b65836749ef2ae8608939551fb3e1ed3033c0504048d810f0cc8341ca57dd8bc844df7486012d3c3aa4f8e82495c76344a3eff3e38ca9899cf2fd016aec406ef662ea65a99aa681110c260fd87a05d06d226eebe15c8be5e51fc1452da8a708e93d656d3e36a6c97eb4e04be81fe15b758acac30daebb5c982184ed2011391d7b4d87ec102dabc2466689f719c3b5cc728a8d7bd4a999b51864099f7d9e5a98789a3c3f45fe624f3ea57581f88a71c3ce7ece882cf640fec5377f53dc3d70cb5039090cece7c459f90463c24da179b555f3d28f097041c3e95e4d39a530ac8666621c6eb9343d7ad64a5cafc9270e2b50c8cc15af7b5d740044334bf7f4aec72c7d57866456919bd35ccb3026bef7c2846efa0178013bd91309bb39d2745d59bee2d7cc478ab8b6afee672b3aded0796a1625fd29bedb7923a193e3beef7fd81f54ecce32a8945f616ff3b0cda6137088457bdcbf7bf3372f44522f69f50f17ffa50d46f0a727410773abd033ff77ab55d67efd63807582cdd34f97ac44e1411359402f567f59265adc868d13a68a0671751a65dc66e00af73727583a7f37db5587f8743c0867e1d4b6058d7a38600dd643853526bcb9a395fb1bcb2283c0ef30b28f54fb9e1d4ff0620842711f884638fb595162743d401b47242b4008524618ae6093627a26fbca7e909d90fada474c0c339ba9f90b33136636eb2afc5b9680c18e5117bc7a8b974bff75345985f1628467d8ba5e2dabee86b195666f66cc32758d692d06aff10b63a37cbc611baffdf80713c0dcbccaa6837a4f8cc8e297e4be149e3faf74e00edbb4cdcb3b82746d14f692970af08b227f154dcefc877fd60cadc4cce96453c0689a72e24ae3404abff54d8fc9b8180d8ab47527108a40ef344a05ff91bcb026c6bc742c74a825e5034c24bc0009f51957ddf07a531580695bdac4ff82e7f2171e4700d3404fa4fdc373d9d1c8ed4c0195fc32362241494a3cb1c36bcc863857764604eb03de3579fb759d02b7fab571754f2953ab3c0493bfe7697e0d3683a6a53e3eeff6d4c5d1a529343dfb303e60d41e0d3ceb9352e2884b79990c4849d888e82f759cc029144e49bb4858bb3fc3169edcb2a524d62a6c9153bf7fb827b05249ff36e025bcc0050597da6ec9984f589c49ac69e782121966c148fe579214033344769bf33260b0d3c3199d2374244226acc27903aff2c49b5ae829a5c3e8edb03c0bc6be0bedd00e26c607c3775d7ca26ce63fa4a222228c3cd8487f670675b6ee54f789f556143274c3db0ae052baa97a64ac4dc879d2d17ecc51606b640c08ab978dc49ec6e4389a40f2ba17366a4db0f6e3584f4a0b0a6381f809f4bfac652f32aecd9620c8391444e14f540ba70ef348cc45f28fba2acc1d5bdd5491f70362d0ddb2ad7aae24c3d05e182ebbcefd78be26d1294cc91a663da4dd04f5666199469cf86a9667bd723653b0de45f4540ab2368bf0dba4a3455965a7aca1cb580ffb3beb5cd284bdf3c7fdbfd36ed57e8a0789263d6b21986712006a9417e0f62d4487b0338e46b510ba54316af94bee5d41d13174f4ef02eb809428bbc024b75b05486b6634599d56b916d594499a8316ab7292f0807b393b2c75f9cfdb00f85ecd02efa19a29354d19941226eb81c442b7368f6db36bb2722338bb18bc078775b6e721badd70646989bcdc82eb7959d6a71f0d9aaa74a90583a4467b80d0dc30fbd923a30f40589a2c3910177f74228d3fbceebdcb6bcd39a50192751ac71b3a68f1f22af5dbdee6cc2751f7ac6fe87db6e55e1b0955722446b7502f4c03ced1b90ecbcfedbfa3eb2e2af0df9af19997bb87e642a6472b293ebc8b07548bf9400e916c04eb5042a5fc531b1822f1f5acbb37407e1cb9ee3c01fe806578ad146d80dc4ef7e39455d563423fcb6835ee3318d7da92bcdac04f1d039d0af3e17a64fa02fb46c23daa4a433cd3ecd15e006a002a1f95d2c5ac5cd5713d85e79399b9f6d12f53f6861214a9f60e4827784aa5c8b58402bb01eb7e4b7127272a1ec53bddab68ef1e862fcc1047addf5ae2b34aeeb996147f78cb4d922e80c4709bb5659d662afa6bb89a6f0d471ca3f7223cc3709f7b46c59b7c30e2aca0178d35637685c9b145d1fedf9114afe1e430c4427fe7b5ba6cfdc75aaa372c92b503b41a800b7b84250041efb21600ce87999ab3c5b5115d16daf72324e4381fb08bff20cb45881e070ae05c700a8e1196af627e420d5383fbbe161d5f01daa8ad102554c58a6de5bb2c407dbe9b192c3c347626d29452069bc1fdfa937a41473431cace34d0104170fa794cf6a2cde2e2ff48ec2d9a85f2d6eb668304b0eae874b82a6efca5eb87f11a90b974599445ac5a651da1421d0e9a748fed2514148a25291ea58f2d78e813497112a5d27ddb2072187c060d0f1f5dde2071af6039026d04123db992591fca6d1ccf856367c3c95ef3b261d82f57ab76a5f4c7e50616f8a4f08109c65f411670fae896c4f5d38c9852781aad143664b0847103c9cfc89eecb739f867097097dc6131e36714af7d2f5d8bc29f18162e99a94773565d7b4e5776caaf9ed9b46c563391505ef5509f24ad8d60873445ea72d81901719d032b5ecb9de733ff7e79d69dfde98652d1551cf8a20babe988ee109e64c375eb49793f0248dfe06022f35b64e929bd6b20e125ca628abcb753e8b826a38bb32dd5366ef888fabf068ade272d0b8058cb030a66add72933e669a3aa08cdbb73dafabe596ed39d7d9115f12fca65500410040051bd66070ba4ee09c030a86f88cf01ed7d76080856e29a896bb4ec3325d4cb057c3de4b1eff28f1a79a4f7a1ecaa5cf8ada93208834d3189b99ebdf34f3e70ef9649bf4b62fc185b793307eb1cfdaa5e8e55c5160355ebdf51814a76af23809f0128b2fd1def10a8aec312e7d82019e5c32828c91381e7341854bb73007271933a3a4e1a1f7907d36474fcff0cddd487241229397917e952692db1528234efa04b859ced6c7b41314835161808d50a3778ae862f0e883000517bc44472e314f3c7fdf13e76fdeb7e89cd62dd1babe14696a812dbbe5dc81496ad19c4c48599ed3a964e430149f5448c0c5b00791330ba73619719a196e428c668d4a0172e35804167f0842cd7ef295ddf92af8711be2a4c21cea878061e3a0062fe8a528718ee1b18fcfbdf42481e8d1b9fd4a8ddfe3a0122296ba20a83498fd3383d4e47107a99efc641a2f7dc1faecdb24818795c167ec3c2a75fab6e2a004bb0e30c8f1627649b65e473e2755c8fb1bb4de3b335be599482d1c78a0cdf2e122bd6b13713cb469c5880748926dbfbfd5bd16ba563f29d009a8f308f74f0692969cf8ba4304ca1d127609d2a9c5a5632fd79f06eec2999b28e0c8448dd7215b049c696373395fa17c79c5ea8327773a8d83f93ca59dea266d6a5aacc317dcee8c2b27c40596fa61ddc58c63136e215074b1df0235037d46e95cdbcd8e6f22e135f2d56960cd2c61f4a2008b23549eb3c541e1956317e5f22c71277873cd8531b4ab291addc20b408d82191302dc1c5b490d3c1c180a0e9da1e87da066f539ee5e7a3df0e8bd5633509920f4d12500402ae33fca8b6e3171680dc33d2c141701620923b7490add4e5cace4c4db52e5ba9bb38b30e7c939e6da4bbc60e6be1117be5e021afb8b2fc3d4571c457a5868325b317810e30c07479a4dbcda613df79b9f0ab10db94f93b5c4cfc8c49eaed23711586cd3602bea267e82bb58809eddca1a9ac9d710eed514cafabfc95f18b35289722e6af1df6be23e1da1d46dc4acc2e1bd9b2045d9419f081f61fb29f95f1cbe7ce9051c87e81cf565670af839f10c75acd51e0c49bbd715b0149fd0a2f28452b670260ce85814c4f59a938b286c4af81c6012e49f97b50603e106306c6a5b5f8665e73f472c9c7e4967f5a44c46fdf7955585baebb36371d20d1d04bfc60f9e660b60fc9fe37fb4eab28f375d9b8d9a3c5613128f74a089badb323fb1e2102c6a8a4f99edccfa28e42d56b87b59159340dc0cbfc98ab9b6983fd0e2cf9fcb14f8ebd20e9b9d425a9e87c47a1345abc62025f9188c9b03bbb47d2a9c5c1ac2c0109246cf112bcfd04aba8fa74eb38d4542115e35d675a074b5b0d2be5989f97ee8c60d22f6882d31e773608741f9d60fe495afa7a639216a356644422d8482800867e15f6fb95b380b28593a209bf5b9b7273c09e6a50a830f4800c0adad20d414b3c3d095d4d4b7de04a266f1fdf710bc29f35f6c89d48e9ad01dbb0262e9cef15915b0cec5f52f60b0a41e0d5ae676875a7b7e29a90a620aac7b53c59ccbafc6978a8938229cc05daf9b7c27910bf263cf6c3e28f1e821b565d5e3d61160cf7bd1c93af871a121b1234effb4f396bb45856801a53e5a7c31f72022c4d6a222cf6cf416ce572ca22448a6d62cbdfe4542f9d48f64deeddb8b8368e97a53708f05faa1575a0e03117ee1994eb35d7cdbf3d7eb41ac6f787cb51f85d29cf95f40d082f9276fcd5fec31169790cf6148578103c18852ca5c745e2cedc8ff84551787f588abaefdd37f270fc77239c9138d31062120f3258e1b00dfb7081c67ad4e168a8767f40d138d3e57c8afae77b7bb9debd4b2b5baafdf779753cb1a5487793f271bc2cb4eb7e2307f4de257c544a76a21aefef26dde04815bdaad6d1a09536f8c67035646ae7fc905a4b554c2127884e493c4450f385ce4ed704e7ebbe3c27299dc44863dc6ddbc48e0fe4011198d3f8eb658c2bd87a502b763bb5a10432d212cb4af3e31ac93e4379b7c79c2ce37785527dfca31d90eaf314d56ac3c5c5440b3e67472d483d88e1acab68507edbcd5190d20dbfa87bdeca1115b30c379e7663361c91e96886caa0bc7f13bb28c902cdd32c2a22983f82c120967309a76413363125d259514fb0c1296f11e9b4a853d811e1536b2a987ec41ac239d0c89342f77d5425cb305c8c58086f5cba9bcff6f64c06ded9481d93e11062239a7f6a0719b1ecb3ae2ec8742d82ea5b4f0646c0eeecec20bfcb8ed5884b16b76da555d0f4b711ea85da5d93cda960b3952d3c08a9b964da860d9adb7d9d6426275a6272c58c539a929c716619744723c65ccafec65f938de5abc61bdd9f3f35139e00ae6454f852ec7dcf855b6c561063096ca779caade483893b7406f8b6109357294def2ee5002670226ae4abd74f7a83ec023bce20f665b06393e63fe90d7f5c7698e9e4405a27d2c38e13ba0d64ec78ecf6cce4517076912ca53da3e9cd7ddd55c0d10f3f119decba830c2f836252edfc93b17f2873c1370a07e650c11548f1a407fdee8682339c4186985906f7119e88d0c0ac971a1d53fbad85b6313ef1aea8d72688c203b3d70b2ffd5b1d58371ff77b44323618587674aa430911e2a1a17fc61978a7dbfdf6bdffd1ff6fb349a678653206c74342668a6a8e3e2a272d6a0ea5b12038a5acbee07f5807984ba1a213402f10b8ae448f93ebdc5526ed6c3df0bd70838b487864cfcd0fbcc4bc8a5d14a2c853431e2fcdc5e443054228b1f93f656eea00124f6b85ccce524d0231bae078962c7236f4ac3e7142e892c20db6aa16a0001684d3d38b2722f524eb1f182f6f834f716b32a223ef044e6fae681f4afec117d7348a40cf6f1ef46b85fa6054da124e0be32f2dd7ae98e1994627183107d118c656bbfebfebb492b9119423bff698d0fc462aaf7b0c98ad0c122faf14eb07dd3e8183a31d9c6a05c9ec67bbb076aa52b3e49bf35acd4f94ce26009b332dac6a058f6aa82635d4b31afa9649f557d7facb12069575821994393f7cdce970e3872b92739ff3e373fd9ae4c2fc6005f1b8fe11eec952c290ba2a32ca0baa2df11cc366dd0c04c16ec6b175f3b3fedeaa5da34b130739571926733261df2e085ada3ec8f88c60938da4b8d855ed01e91ed3c4861fe946036a3278755c942da504eac704d2651357e58a0c591fd8b57175348dfc3099ee68c6612b37891fc694c37ba25de901287e5b5a5fd3b7d5c7c4c96ffc5bbdc6b5d668d505fedc23ad4408f84e32535298bb5a6f3014c9141b6dd6f20f2c061f92a52a9e9f386e0abca9dbd82a2419ee3d8ec6a511f98a1ba5e1cf584db413af485b4053d246cabc7c8185ea6450d1567766fcd3f62013fc2ee4acd4ddc6c674af0c8696c963ec3b50f2455e7cffaf471c0ddb208c4ade04acaa1c7aa149e66f4d7899a43c8c936ad3868db4bbb2e9faf8501dae126151c286ee5f27351cdc51b747ca7fa85217727917575138a141d1060b5788d9bcd8d945610f211e802f83f7eed2b8cce6426393b3095778714400699e0a027e1a1770d45db5bc980b946651efad0c7778960f9525f5017c0660ff66fe248b1eb6949ec28ee80699d12aafe66c849e8210cdf73a35aec9814bc643928328b6d737b9bd9c44717b2f42df92c3daa4ed323ecb742abb6ded76e2009147b49b4e89be509e793ff94c445cc63cde42dd36537a18d51a67f9a78cd8f5e31f674fabd8cca71e968ed091ce937ea8050f4896191d39450300fc732a99c58660649f3fa85d87ab32e8c241a4a7af2a54b5bae832bbf9f3efb4875afc24ec030cb77d6391a34843e17ed9419957a543c748e4ebd413fc85ef335864b7a0c402878cfbe57a3f9b0cca511222643e37b754209f90c85599c24928e83bb4921f23676aec6d9d8ee2a368846b0868673a97c2fa5935344925c29dc679782376189827bfb55e816b2b95ee4082984c900d9956802498be7f96c3a71d6926cf925e8b4374113d77d8fecee05909734fa0350d47fcb6a12b34cbe662a12e388001a8f2e9a965b046511781e69ff0fbe9a67ceefa0d16c78613de16323dbb9baa2e5eefbb399c3d0a0b4fdf9ae3d6f5034a9faab9883c54aab5f054639f871fc321e616645f7e79abe33254b3d9f20ca031b8572c8b023e77166843540dc1ec65bd96ecb91b5acce1bdd79fd5bf0cd50f0fd4345e4d0a50a95b5fc4c566693d916aad1da9c41bda0ce80f2b699c08362b7e14740f0d22c449667aecff10af8e22148654c42f412bdaa659466c66a38a849a016c9c010f28f930f9b62af63927ba526133e7dfa86b97860bacb0fdedaf95ffc8d0e0f23e5db199dda5ac4592bb3a8e6214a4ad08fd549659dc24b63f87a6ff155679162cdd23ba3c9282eab082e594a19eac52fe35bb43a59f44175dc7441467f9e197b5dc29dd61ada6dba16d0149a5e3ec1f99347e1bb1a1a51a43546cd5dd455b3fd71f4ed7028a1549ac5840ca8e312ee23f148b64728c99d51ab662a3b3a9f1084db1b877575c1020c669eea0c2ff0cc8d98bfdc8b4e2834e5a06492cfa742f9752ae46f993f106ce6799ae05f3f39caef9e31c517af65395f737d11012b22cf25a35f8452e122b661033cff00574d8ae4cca22d112add4c1515436d13fdb097f1773e7d49949faf4c1a0ae719e0e241964a1cc4174da350337d27e6095287ccbcb7d7e940cfbdf0962a54f59014f5cdbd8b99d4da5a8f7bf68f6fa7145b635443dd053ee59a3040cf2f419c6227dc16683c96b055da517edf319e9202c63990587337ee0054365bd90813e5cac8fb897f6374755734fed2973edfe0fe3fc6311b757b415de58bf0e4013e7cb6021b96c7c4ef84da6e3e41ebdfcf975d7d52de4836a49574bd52dc80d9ab80a959d5256b89302cff83efc001bb0106a8fbd0d2290609edcdfe71f3ee90534a81bb5adcbd55cb996d92ed5ddc36ae44dafac7cd903a4990ca5de95dab4bb59b7277612ab6b06182a9ae1ec1e72b164874831ffdbedc4e18a1567ba96aeb712ccbef8f6634bf931be736e0806c9d0b083a5fd5c2f6a0efc2b0639409f41c93d2c7d3fec98a6d8658ebf7598e83f8d2464cd115c7e9f211f1739a4b8a64d8b0b81c50ae6766f1877ad34c50aa896778f1b33be7ed08f7cfa65bc879b5014ae6b4a53134341711fba8a8db640536d2580062c8d81f7f5a7d025fa20957fe5ae7b602488a96b0e0cee0df1020fff96e712fd21da37e64aa00834df28ce95a1a2919a1483272c1a3eaeeef68fec8b9051af200477340733e271637d9e199d6d1dfab64e7cdca6570e7b507e8502639356da12ee77f585eb2333bc21ef7782350434727fdd8ebbed8e080c983fb3b091175e0c61187f5f5c247d7087aa02b3876152268754fad966ea8d956d98b5159cf8e40c41ed90491292f2c5b0793c70a078d6a37642ab5612865f772259cf38d713d950dfaa3147cd9e1d93a1ebdca81b0e7e29d9a6bfa948c1f232c40e660afb845c4a5dce89feea57ec11f62eb9cb4845e82e2957d8e2725bbe6e3ff28bd323930f0072d0df0fbff0b3c6856dbfa3f9bd7f8255886859b092f475cef1dffe76df1fc1165acce73c62fa47b1f50f01f3afad357ae241bab0b5a666d9f615c1ae8ac2bdfeae89af5f981fb3315c4d7d0cceae5bafbc0f2b3e7b37e4b36ac88d8b6b2cddb2b18d93fe0c235aa83d9443767a213b33a8e472d4e370da9f050e347f2e790c47acc2112636e653e1c607c14b4921f4aab36f37f35ef475ae83aa1d6398cce1e4041005006c7d8cd79f1ad0a100c2efb965a5cb29ccf3865600da84c6854ff31baefaac930555b73384f330cb00c7f1559d4de6c9b8758d094f597f96c75ad981ac6e2a4c08997fa415c10d511b435332d5f71c16607fff35839cf8c88e2b868642f16e87c4a78091cc9d60c08d405f6885e7247e733c1d55ff311d214c93b207087bd0aa2e1a86982d898161e5cbfcd13c00b30f2e0dbb9ea67982cae1f3f9b3d037aa1b62ee75462a7019d415d041efface1a22ac6972b0baa28cd4dae830b404d20ea1310448eaad3b06cc51655c1d9ca0ed19145db73c2a2a897842166b8e2e12dd1850026e9aafd610c98e906fd9dc4fd425dde2ce519712fa6a256cdfbba31965c27114c820183b5d4e1a5ec03bcf98b65545f180f06af5f5e38f77b774a589d9874abb6a088c040ff64563deae093d02b92c440868c59b523d2c194651b2c2ca575162774191b0aba61d1b55b3e897fbc0b9a04f95410ea51a9209d39d4468e9e1c6dabc6fd5fc729b3fd0d7dc99c950e5a91d77b969e076b09f3772a6352405b81f5e18c6700db046fbf3525c50ca6d026f3c809094b1e6cbbeb355fbbb93edc5055dc686e6ec61b1f439ccdc252bf6195b5479486abe7f1a47e5af50aeea81e1a81a2915a977210e2a63518a6596c7846f23e447608d5ac8e2ab314459fe9a34cb0a6db930d9d8bef22557263fe4b843f146182f483998cec73c1a1e39756e8757392f4b5d66c15619e27b0afa1e514975dbdc55ac84683b01cceb543adbbc10fe8285c367e5163116385c294989f9b3274fc99f87bb7e1c3ef226efd44024569af24ccab30fbd46e8e0897e4411b63f06d40d95a4297d8d8ab293dfedee5e683d4678eeaf11afa6dc81c239421091b6d44c30bc4a5ac2f8eb32eb86d6465c553b6151fbad99ab7777918d10f31ceebd2dad68671ff0a477a1d575ffca7a17769ceee19652a102010e12e62af2d8a94d4405924923dfb5efdc7ac00ecd94b2bbc0dbe646e5ca7e0c5ba64e3538d369f41dc66f2847c6996ea2dc6a59053540f59ef5bb11d0e2ee4093df7c6d440d0ec94186a81332b3a3b9b2ebd8275ee9ff1b31678d43a0620eae9e092c14ec53981bf1c9e9eaeeea3b9c3f4a977fdd09bf824ebec68a90b250b9a05de988f427f5d16db6bfb0edf05d594782c68a3c26a149b695ea797597840cadaecb033fa86501396943e4ddad79e2b3c79c2d98a9d32753cef525d0027897eb4aee6278a344a45abd36e3e3a5f43f1d93f668c21c98db723e55bdc15951085cc9e1f4c4d9ff889a44c91696ffd7d891bde23fd2be733f1fa4eefa18cb96c193f6885e97c53ad117eb8322a4f8bc940ae2af2a92dcb9702701746846957bf4bfb4575ad71d795bd938954f265c7a1e44cd4d83593d8c8953368ce036f70c9462f438bb247338af321f854fc2b6adadf3e8da380131d21426080d8f00946497f37ec7fe5254035a70abb0f7011f7d55944e59dbff6d3441351adf93610ff965ff90d4fc16a48d2ea633052718eb7b3264d2a143878e5cc0dcda70ef89c6af507e9fa8056ef56a9390cec533b20e654c49c7cc0479ae30bc3a68b4a14a9e0393c52ed2964ce9f349033023a1a9383d7964d79f283d35b44227e0819dc8f9d60b7779bd3ff1bcd0c02b3cdddc783f7690fa82b9b534e82f9a7ae60e7c255346c0b91a3c275188fe7a132c3993249659207426d5764cf62e78178fda3334549e9816cd1cf23b24928dbc58bebfc3088e6627ab3a2ea03473b5bc2a3342e9d1d3f2b0d1dd409f47fab936bb9eacd0da6eae69d7f403353be9d59e13b5d8f1c5b8bcbfd913cc10aa7f1719b852316eb5834012b38d94920510c33656f196c1802bd9fbe28492af69625207a5422759fb7e9b426aead931579a2c246144d609072b0e12e140e65195579e4785eea2a32c80613b56c607ef6e109cfa1d116596c0bd045575dbb85811ca21862453a38c853a42dd5caeaf9f0b6c4208c9bbb454f9f2ded74d609350320621f9e6906f8e26521e8e3e04fa669306865516b55374fd4c233ec686f95e9ae96803becaeb2a9f36f9875548d4d125b0524809520a969c2e456b62894e1a909a88354e72bdd82993bb2c0c35de0fd40004cc11167f181411ea3008a0ff07a0bc0ef98641ca41c1aa65b09211b0ff13861a5e25b6b778679c02a4f2358bc96f0c00c1223659d0ae5ac39f6f04a6a8c91aa7198e2198c7e9aa43f5690d64b20c60e9fccba617f23c9f6fa64866ddcf3bf2b5889486791e6690e0907b260e4d6a07cc4caab1078cb7b41ff7ed19411823aa7ea65514ee3607c473e00354195bf3c88047ab15138414165153af51db268d53003c66b7b4b286eb3ad3b258c4542d3a12750ef0d39fcf2c57b07890e722acf3e2fc69d619353e76d1bd364472efd02696551b496862da4995ea0acbffa88e5724d1b86015892d32fc2859ec94bdc46eb3826cabfc43d316921c0a8bc683ced3c168b7ec3bb7af340b35ea4c279bdf942c41aaee8ebe8fa40c6ceabed4e7373a37f40702671e8881637fecba6238fd8d9a4798b8da4dd18710297a698281f7e824909b556aad6e467090bb6140ca3b57d700d74de4a15550d1ee3097ad9926c11d132f0e8fe9c62e4f4184890625caf42871274157538d15fab8857e5b4a363fa5e00182a3cc447374f90aba2aeb973bc337f98683a4ba48d7266d97e61e6cb7fed73941d793b0ed1134d741004488df5ba57f8e11b031212da5bd8c8a1cee5a5f74bae4fadacbde3f38f05fe17d794a3a68ea0c7946b59fb127843e34e0006d21b46680df281fde9f0bc6c3231172b0de48245bed9ac4701059d6098c9f2907777d3e20fff535b1eddf7d9ddbf989f0cca8f8267b610acec34a39e4b2baa166e942f6fd628b0ab2e2d2f2e31c6fd1a03ef6bff32d06548109b8c7c08b87e850d6a49aa24e777b16f373b2c883121c7f1e7202582e93412a737cc69a7114ca4023e9165666f9b23f81da8e2f9f4e5534baa355f94f51932bdfe252348919ace5534d27debabeef8fb9ecee1047cb563700c8165b5251260712e3feb063f3063f545258924d6d4efd3d4033d24af37f55b3ca7d5034133220935a9ab5113b363e68ef2cf8ac784012b2a8cbccd9f423bba60925c171b18eead62c5231770528f8f18f7dd943810a2980b47c9e9927a980b5ccc97a05f33f70324e5ca2e9b06472ec4400d90e7385fe44c2b29b5dbada3b7d866e11c0cf228c62667065c087ec6cec357f115bb9d7db8bf98facd383e138bc048b5e603cd5a09ded9df28cabc6f572f757d47c5b3851a963a55b7d50f69cd3424f96e6228d0d33fdfe794b52e6dee8d55f3d10dec84d5f5dc8ee3551a8f781ced7a415f59dbeac6b996317d6888d29c2a6bc18d7d2f6abcb9cb56c87a7462ceb06022b8b4500b9345570923eb37ac79b1d8009c0989698cd453e7b9e4add3f2ca03d33a2be20eb6dd8e16b71b49c69e2d80d39fa42826217e4a1dadb305fb08f31834b3a8d3aca372626171034c99ca88bc98db62402e4e1e67c1d0f41ec2feb15007efdc9e14fed4c63bc05dea858ee0da00db6e150a50a8f5de6728fbf176bd3128a4094b3a3024f3cb74c1439af376b68eb8cae61c552c551e33ad226d4d741f958115989031037c38dd3f002ed23856b877f1b74ab63b0c003fe5ba43d9653446f40cb49aa806c31fba7586d1a11634e8c1bd47aecb19bd972d542b287e0fbda9f1aac8b9899417ba8d7b7923978cc3a3020a880909f4fb5d2e877c784e8b5d3c36c59dcaf738c283c55d77debc68e557aa6a239736bfdd983afbed1edc9f44c144beb0b135f67b65346df6ec655830636e5e13ffb7a9d772fc1a56e40bedc285fcd262164b44c6ebb86c083acd86eeb413bca4727b8486ef26d473591b303dd1bb3be37e6e292496f234e953e877d636ecdfa072283c097563b5b9173d63e41b440d674ab40bfa0991db0f8af44647f8aca52475b6ece2831db08bb42d5f8dc197976848e17843c570b32c4b652b1847b623ad93e80aed1eb3754a5cfb79d8a5fc6f04ec308059970687047e93e7062b7f53f100b5c1bc9ebd6e2d5f48822231eaea836e05c165b615f422fe807f2579377f63885274615fe8a107397c5d72c7606c0456e2e91db6099dde9bfdbbc322efcbe033f54cf0a7833f2aac03a5d747807b3d63772e4492b698da6a64d07042adc994b68dc4d9d07fb3d613c9efa98fcd4a48eab94ddb44eb84ece31e67bf40032c3d2ed006ab8f562cded6fb3da9977873c837c7d28daaca6e80ed0af330d9eb34a57052b210de8ba018dc2dec5b0052ceee675fa652b080bd8c4744be3783cf7c2388c90e19a7cc97c6087e1c7afba18051c7e8295e53966a4a463ce9e86933e7c5b657493a14b98f761afcb522f8244448ac78be36ad7c9dfad94dc58ab40401795585265ec0b002788b3bc50faa24ca8e2125a99d2160010920d5ff00dafcc106d89a6aef995338617072a014b68ec00f948bdead3e9ef8cfd961c305fab927a6ba91eef94dabc3e1b80121f2c73fa456883ab85cbb1d0a10cbb2388e98f4c82a087d24c571e6e1c1587a228a71fd76731e4a957f674bf8e76d908d82ab9a555352dfa4ab09cc580d2b7e7ba3f615a0e73467928a60ecce0b8b4fd08544019c0b0ef7957ac896b77d6d7c5fb485989be5eb66de27454c829c8e245e5fb96e76be960127295ecae7a188350744345631927edd8fe9c213d4d2938f5cc08eb84602dd5c6f08853809b355767abba395175623df7be03c5992e35e92c2fc1fc7c4c670e87233aa6325b5283d31e0cec17b5c3d518f3fe0abcf8d7cc173cdbc5f4930351e183caad1ebb5368053b0a8726509e840de20504c7f73c69b8af7cada3c63f7af68fd50b3e955cb434a790269be03d73afb85ffd4a042859f074d721b20b51c49e7571a294a69594dd46a797388263fd9d2eadb7619e041c7af9bb1e150fed582bbf56808433253cb1344f3079eac363bed6ab4a79af3fae7419e93b1f5d4dc71583a1da0176a0f31171815cf3eff722d4c2821517121e23dfc92624f2d4273a040aea7091296566dcdde2d03a75167e3ec7c14d3b7dabfffe457475093506285891f3feef2bbddc138f438f2808dcabfea19d2e3c8e6be48b754a6d84a87b8e5e05a7bdc627f014aedc34edea63c16174b22c457ff7cf9e674b5b03ae504154b6b270c8861d80b893c7f6f4cb101286e7c7bc3052c31e21078bce480381b61318af2e9dfb29a708bce831c1f22e8dca5e61679feaeb29380cdfe7d03e313990d99cc46025d3b7e5aaeb1624c9951dac5d718b71b227b3f485eaf673a7a50b09ab97c4e13d78a52e1dc561a81e0f57aa43ffa8450d82ca416c10e0e1abe593e15253b06788952f52cda08de48188e0f94de135727b0d31c37cfa01cddf9477ca6e2ce1f1312c99c04b86e9fd8c23b9d192fb7fa9fe08026e3f079687256fa211c8ef6387ce0e3492b93ea7cf837c7b8050fea0bfdfa8dfbae568cf5d4fd8f75502aa2b09a6126630e0d3ced42ce25fe871d2596fe78e0935faa9731c59d4c3d4d4099fdabf987a2012aa91be1cd63e1a5352d4ad15b05675859cb37b54f8e6d9776f1a3dcb871b86cdc1c520be66bfaed21b74c8cc3112d3377de4ae0d593d14ed980799fb3d6ffc5719cbff8601065184d7a68059fc9fcf2185b00bb8cde7fe2f281faa2c058fb93090721dc4462a19ecb09b8cd97ae15edd9973056f5d8a4d39190ae7da6937fee9fd367cc2e959439ab250fb6bb0ee20041005004d7f6fbe83c91810a20e0a2392394f429114f81ce3428f364814b907a4ff0d7a7ce490e97c04dd2344b4a38e381072e8d261e87439dd360ebca9aca379c62cd1449104f2d9a1367f9bf12c66c5c24d47facb1785bf421bc43646fa06f8c0a8531d63f35b43eb994cf5e613dd79ad917052029b9557da586b987966871f9bf423fe96ac4651c3d9d28c6905c92bdb8331a3e47a149d56cb376ca7fb172e4ac93af51db379d93befbc46c0b06c6acf11cfbbb1c719de8791cbdbd648b21d7a4fc756bd04f49f2c9ed9b53396187a7b1bca53cec5ec59716e4b279645ffd8769e7b5943c81a4e97b580839e460f5a6534fc28e8aea0b9f4d204a243ddd0cd74adfb7932df5e1275ce2396980cdec98ad50c7eabf0fb2f36f0cb0528f901973adf5b4c3cacbdfd21ba346566d91bb0c30f6424c0e4392e8986a765b1c48470e3f506ca25b499dcc17266608a493987fb4e0ccb9172396454af674317ec2e34a457c41169f7f976f16fb58582cce40485e46224b05f720541f39bbb34edaa659f1d34821bf1ff1c25e88dfd52b70d56a3176fa34f954c06306cb88d72d2d4267bb37a86a58ea51d436931684c7bc9eb5b2d282267f00ce9c0c9f8f2406a2388c4a3d5a390ba66f49e1f0bebee81da7139508de2a910d9a2b5dcf44f3acf4994cf7402a3ca3ee02925f98ad1f4570b1f97dc5e292b5e3ce21ac9c754bb1b2abd68bf71111680b63ab4324100fa5da8d05376b44cfe0a85df6c726ef2b81ebde98157bd0aaed30fa55c3c808535b86b1e5b800a7439ed4749d69c9c9243ff4c201f2199b25ed9ee2009f3bea54eaefb0032cc4e4964d7049448726187282f0a7976ce9b8b3a50f6037d6552764e3b7f6884e7e8d90985da3b0527b8c93e8a71e312ff6147b599db77e26538505fc325bad787f0956a902add5333a436aaf531d383745c01a8416eee3db007aabad9979774c2ae469e2a4ee83908a0776353748a94af4a8c16c233f8820dbfdf051ee4d11a34f6d83e2511404c09b7845276a175655d4e248ef0619c7b88695e5403fb25180018e61edfdb36f55d6531cd0c8655e8d2d27bdca43877d2d70f88052786facf377b22d82f5f3ecc7f0e1849ac7a231f1bcd7151f2aab27e4527a289d09939054cab8cd09b2d8114a86316ca3491e1bdd6da4d3c543bdfff571f3ad9525ab2551c4a8161ff92e3f20e9502821f7c70ad2d468128c3ea7a636b08fa9306f9954f824c467c35802cf4486a7a7050d2b947df342485c782fcf63a8c1ea25a3a35f27724212beec864fe89cbea14e33309b0dd511549036cec4fb9942e7fe47c2c228f40ed74e1a6c39da4f41f96e80d3cee38d3173d98a14057ee8d22444758f96ff7d3faeb89c875ec1ec9f4ccaf8383ee4fb612c93e423729d907093c5fcd448dd5019eb9daf692093416dc30282a76d89387be75c3fd1fa026c6b2ad97f8e28211f4396ce98ef841cac950f229b04a9ea4da0bdd3f24fd5dd76bfc99231db473adfe76822a95608f72946272d36568ad07f076cab0c4527a9e79586ed55429be1bff05ac793756a8c7abda560310c272c62e6002183a4715340f8f5f2bf0d0e7627a448baea356ecd15ec01951ef7bec0d8dfb1a8cdbdc6874cea032db6e2d3a52546d12cd11599892cdcf1eef7b5a578c2983fa190fd158bc2e199810e465d6fe27b6ed4e98b55fb140bc5e8a5ef3fabe1b7a3d6be52328ef1b435a15509123d612dd9c18d3a66710b7ccacb62b6af9d03e8994c600aada246e28b7f2695b0adee421a3f41b956ace0fb1ff6d3350b9e9d6a9df27c8334211ded0b6c8c09e3986d926e9c3ac3628409e290521228d91cd9e0bfca0e1100501a9ce6ed7facb7f957c1930ee807106155cbd723a998311c2d18c66e3c711e8f9d1e9666df87d69c6ed0e55a6e7b9b0e0d04765f52b3dfb9197dcaae4f1092db84fb102dcfedffaede90790615606c6234d583cd94e0fecb4d4cb373560219c1473e791b28af4c898995e96470def84cc8b98d5c4bd2c0415a091c14ead10b0b8cda62279a2d077a10e8b828dfc02e0edbeb139158091921c805079d8c8fb2068acd4c2581fad76470598afbd97d96c936a8b932ccf987157fb98a41f14c9e1f42e5a26e7eb1ee11df169775c2bfe34a50f830ceafb19385cf42e240fe06b4ffefd8f957b9a55dff9d74b8a85ea66d8373075b8c404aed70c9d16be8a030324b562e3715e1b918465c88994c416cd2fcef5767df25ae91a35a846587325a94a0d1f991c3f7f275812608a675d76d045ffd5011290e4d010f08463d152c587e076927ddf5dd7ae4ff0cb04c538dd33d4f60842dab3279c84d5f8c646b45fb4de3220e67c5a8ec2bdea2a56f6cd96ef933176e6bbf71b38fcb80e630e5b9a888dfe24fa6e2aed7c48041a4d0bf9a456d75c9323aa323c1496a60110a3bdd41236ef7d1ddd29e568f40c610cfe1c2eb5cd7f29c525b2d30cbb03431f248a9a004e3a349d67025a0aeac5c50d66b579ac5caec44d4aa14242aa0ba0ec83872e83bb63bfa893f050d2186012e17dbdc4401c90bb5b19f36e9514fb7315b670a81356f37a8b8a08552885eaea3a2e92316b13dc820f999cc81461c2ee5c50946ff0f29df7ac69e74d65c7ff564b3a730890775abf1e064f8f38112ebb40b23091b8e124cf8bcad22e1d57ea176d267e89edc77f9f989f01ea687bedfbc7a5a749e3347ec4771ad47ea63201ef29b5c62566c93bef922116dd9f848e779139bdde7ee8641adc53b37584feeac66309f5154a685e4689ef9967e80edfe0c532fc02d10e270d9600a81136027fad9172f9c39b358347baf72b39d11cc8d899425e3ecbc94167bb78b0a79ba45462d96732791fccdad20961242e5f1f8b57875b13c62a652a55e6c6ec72bae3b896237980890e717915f9bd1482e2ee99b08cb946b8e5a8c8657db338a1e4dd199423d24e4914a6c07e0db85aa0c78080828f5a425b12604237a8f785baaa32522c66b87c93a49601210397650186c2bc2e7b5b1bde588f74ea559aa1a56f32e87a46c59d976af012998850cf80062af500d5f72a81aea32a6210f6bb926ecd43768f8cbb7578b22af4426a74be99dcda47479cdb707073e9d40cd2a03d35b2e419deeeb08d247ebe662d6c37848575824d98b6cf7df5c0fbdc25e7c747b6d8d9e4a6fe0f30d6c8176ae7492745950bfa46f345d1ada2ce566ac41485edf6bc471ece66d84dd2fc3f2722b293e9a353b2b7703502bb071df1d440334fa1776339d8628000699e86f84dff1802010860e5c939e04e93bffdef97f223a37c76ef50a5aea9e8fb8565d18e8b3087445ce82039b8ad6d4e984fda5de51013648b8d458ee844d3efb8c1248f814a3ac765b5d33fb0ede6004e0856a9b4f3e7371ae6d59dac39205bfbe84ad003480936b96ba6fd30b66eb0ed5d6a9d2491a6f705f0142f2f672896958a253afcadbfd0f431bc9fc724fcac6716a9d75d2ab7da8599332582baa56be7cb3308db5c62d94f646e24cc0f80686f484e4a31ff9b55db708cf0741640bc447560937b26d230c2a3d4a1894e47f265548d8f84bcc8cd7796fa24fbba6b3777debde98bdaf225728533d8588b45563637171c7ad62717e78d1a16c1664a4c2465647bc4da9b37b05744ff0a5f82d278c5948e4ea82a3903880d763c33a4eac84345a98f1d5d74993ec8e9e70ce7b3c5c7cc8c063bd722e9b14af9a1eb278c1a7221e4bf0a3e728316e4cceafc0bfd54e2160a566ebdf4ab1e4cf7b83176f471c71d5067c976ca26b3976256f2f10504c44dc8833ceaee13d300c9d07e008357addc78557e326d778672a38972c33bf6d8c1ce3281686902475e225843b7a1436937ad6fc22c3e9d42c8af809d99fefb5cb588a37d01d20b38deb4ea69a6ea5981e2d69a0080a27fd07061e79e98ee606fd8718a36b941fe061a632e44c3c0a48f49d0f9f97a62aa51de41c0d72adbab61b2cabb2c1828d7569f12c7081969d5f49d4489b25aad8c6adbb2cd90e3400d1f4189628b215210893bebfd198f589a8f307cd876edc045fecf01bc0de147b81fad09be140b5331e05d9750bf5abab004eeef3f99247b769c69bb2ea3a62faa0c4662180eacb6d5bdee464ceb66a9844d301623596fc65590e786d707c436f2615f0f730a45ecba7659450b3fee776bd552d8f80b8147d6330db9773ecd99d2320bc28868e2bdfabd155be85d617bfc1a6843196c49ce1fd6860e0f3e4305a99912eca157fa472472df74e8a0f994e6452cb8d1acb4bb3eb2360f6b59199347c31e066840f8869294009fc910352e7986aad51e4906ad72baa5e2872bf12bd74e66a7fab0d400fbdd7760fc664311a6df6a8e261e05678c457b6b21477188b2233ecf442407361d195a4fc90d4d28b56db3bdb034bbe4f6e52ac539440cf4ad281eb439a04465574022cabb27455925750839e4b13a7dd964b9b622951690f1c82168c566b10c0890b32a2279f0ca950e870a3db3465c0d1abcf9a5cebdde6f18db7ebe4d92734e630723ba7cf18d79370bee2dd07fde2b83604052f3f2b33e37625814cf2e6af8212daea49fcae80bf416cacdc7db66d4df890058f45ab65e1325bfb1d661f5ec6ccd3f3f8633b5cdc6e979b6172120fabbd43667daa6fd58340db0f4bb9ac78f3e7b068e6cdd7041243b74849aad700d05388a118c4b2b073b54dc5787b209f4d1dcfd253fcc34940ffbd66a27ee7142c48cf7fe95643e6e5c670d0c27f111a06bfa66d4c831ca0a95fad8d0c4c787078e7a42ee61fcae988ede3df46a75b9eb10485909fd05b084f7f817aeb302eeb73582e3a2e503f1bad840c366fdd911d4787780be3cffeb848f0daa1b1f143e77e44381bb05b9feead798e9965f0656e64805b9123527586d9f95b3f4ac0ed8711d64c3319bc3a9ac2741c9033924b0bf891ab0ffadada3b82c27a2f2394aa40662dc5c524bcf75f452572ed97a7db124c326d5ebbe9dde038e2a4918209cb686d4f2a54604bc26162dd65d83fc03dc975401e075555111d3aa0d05bb750370fb9cf7f3455b05afa24de7c4dd6758a82d226121e7730848466f7e6e48a055d2e07be0ec3c694575cda7fc9c2d646e13e422387498f8294b849b1539b9c0e330c4d67b66c0ed5c798e299b6218c84a591c072d4452239076344263fd86fb17e87391f2d084fb28ddfeeb9ef3c882b4fecb2e967e49e5f7aad0246766e26c65655750e499c730c5b20fc25e51cf23553157d2330c8e082e6f6b9d95491e5143fc3b110d3ffe1f2ad5808c54ce543812651893e81feb77f4e91fb461267a3db6fd15783f3d46163d9e6bd995ec09a4465335ba8dffd6431564847b5d94e21fd68acbe1bccca4a99c0cf6df0de897ab94eb198df8ac223791355d211b042d02db2f60f79454d367099049360321d5e9e0fc92294b9c93104311a4b918b48bb9ce2d88b723b915422a665c6c2e3045aa96413eaeba2072701f123cb721b2b34f8469cfb8589f4e3ef68280914b09f55388726e40dd09d29d5e9e9ec99e20fdc539575f55923fd19e4f97b1891eba8439050cba508f1810502fbdecfac1081ab7f4f7c257259513ae2365063831738ed47e05d152b7b861f9facf47099b2e1596ab5dc0d214226e8bb6c6fd4ada89b3940b2f0c846a173c04cfaecc78a302815727c99a9a778a05ee69afc15f78c723544f8b768cf8fd794601c22d7884b10c1de3bd37793b48048f41003c1c65f3f3e876bdd3d09bcf01cc010aab8c930295a58305097e5029a3000400eb1e3d52b39ab87aa89401800bc2bd70d8f65b1f8ee75e6f869de762853764fce8f12e086af2f1ae8c0f78b3202ef586b64751e2601c15315400242e9636401314a4aeb72b1cbdd198cdf5a04fc92d8d97077ff8c4830f66332265d84c01eb858d7c87566e667ac0777ab3d9e7960630f7665bd90be5879a3ccb8255c6fd64e996ee6d89cad819fbcbbd8d3dfaa7001b72eb33710442db4cb877a6bd7388f800a40302806b00040045fe01eb0861486184cb7d7fc0ff55ee1265e1ce996a6c6c853656f2f73118c070fc993ad428c55a3388b9a7dc5a26c02d3ff910858cc953d4624f3b8f6b86ca5132ffad9dd165844537e4b2cee1109aee2ba18196005ae73ba70b9b99f29d3ba13ccf00f1bec50016000400f7b7efab3e1f769c535de29ba172c4a1eb6e0000b7000400c190cb10059335d4ad7b31b914c0170d026f4ef3e5cd7aa90edd7638b564f4585b1742a789e78b1352256c35fe30990031af6cf160f457ad5a02c632a8e9f1bb043a19355583f61d9e7a8cbcdd40430335603c10f11b4a9442bbae3ba16803b4859b4a3df2f29a91719a1afc83c07a394c25673fbbe47282b8568a14055c11529703697930b74f1df72de8059595b374261bcc9a89d737cf4f18653f4222cec85b738623792d19491dc62c6f9362a073069b530064020380200001800800020024262300080001003f000000040003000500020000000000200001800a000200272a7d5e25000000080001000400000005000200000000004000018008000200b45b5b00110002002f6465762f7572616e646f6d00000000050002000000000004000300080001000000008008000100ff07000004000300e400018008000100ff7f0000040003000f0002002e5a5e060000000000000000940002003a03000000472a35f6b68a61425f0401138d85ad8716dd9c7fcdba76d3b3844a8ce966ef7e15fc4afdc0e641f86a7f6e509afe7bb3fcfbc04295e4e0ac844334ce67a288c33b6042586703589f92d571802f0aa9b556e796fe80ec30a2a4985389ba2ba5bb5c523981a9149e26581a1183cb03889346e1ef93c79bcf0f2fc00cf2b707ec871c1234330c013e34c3cfb4110002002f6465762f7572616e646f6d00000000040003000800010000000000050002000000000004000300040003002400018008000100030000000800010004000000080001007dc8000005000200000000002800018008000100090000000800010001010000040003000800010008000000060002002d00000048000180080001000900000008000100e90c0000080001000600000008000100050000000800010000800000110002002f6465762f7572616e646f6d00000000080001000400000038000180080001001f00000008000100080000000500020000000000080001000800000004000300040003000400030008000100070000000c000180080001006f05000024000180050002000000000004000300040003000500020000000000040003000400030068010280520004001ebe641c2b0d37b6da4a70857caed684f10be95a1168880a67297a0d7469bbcd9f760af2664ed54e55ce4cedca013fae9ee2a64ce44f7b77b87d934ecf3c0279493504f351b2263c430bace53e6e0000f80003805000018008000100ff0f00000400030005000200000000000800010003000000050002000000000007000200297b00000400030008000100008000000b0002007d5c217d2929000008000100b0ffffff10000180040003000500020000000000180001800800010001000000080001000500000004000300140001800400030004000300050002000000000038000180110002002f6465762f7572616e646f6d0000000008000100ff010000080001000000000008000100ffffffff0800010002000000140001800800010007000000080001007f0000001c00018005000200000000000e0002002c262d5d7b28232d450000000c000400ed0e894b1a4a7cfd04000100080002008c070000280002800800020014ce00001c00038018000180040003000800010004000000080001000700000038000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="080003000300000008000300000000001400020069703667726574617030000000000000"], 0x4a5c}, 0x1, 0x0, 0x0, 0x4080}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 3020.153816] FAULT_INJECTION: forcing a failure.
[ 3020.153816] name failslab, interval 1, probability 0, space 0, times 0
[ 3020.156421] CPU: 0 PID: 14338 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3020.157889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3020.159668] Call Trace:
[ 3020.160235]  dump_stack+0x107/0x167
[ 3020.161010]  should_fail.cold+0x5/0xa
[ 3020.161819]  ? vm_area_alloc+0x1c/0x110
[ 3020.162683]  should_failslab+0x5/0x20
[ 3020.163491]  kmem_cache_alloc+0x5b/0x310
[ 3020.164367]  vm_area_alloc+0x1c/0x110
[ 3020.165176]  mmap_region+0x982/0x1500
[ 3020.165999]  do_mmap+0x868/0x1370
[ 3020.166762]  vm_mmap_pgoff+0x198/0x1f0
[ 3020.167593]  ? randomize_page+0xb0/0xb0
[ 3020.168446]  ksys_mmap_pgoff+0x41c/0x560
[ 3020.169308]  ? find_mergeable_anon_vma+0x250/0x250
[ 3020.170347]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3020.171473]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3020.172575]  do_syscall_64+0x33/0x40
[ 3020.173364]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3020.174453] RIP: 0033:0x7fbbed29eb62
[ 3020.175255] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3020.179185] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3020.180803] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3020.182325] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3020.183858] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3020.185367] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3020.186897] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:57:15 executing program 6:
r0 = syz_io_uring_setup(0x50a9, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000fec000/0x14000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r4, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x100000000000000)

11:57:15 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1d000000, 0x0, 0x0, 0x0)

11:57:15 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x7, 0x80, 0x9, 0x7, 0x0, 0x9, 0x0, 0x100, 0x10000, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x0, 0x8000}, 0x0, 0x7, 0x7f, 0x8, 0x6, 0x800, 0xfffb, 0x0, 0x1, 0x0, 0x7fff}, 0x0, 0x1, r6, 0x1)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x2}, 0x2094}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x5)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
accept4$unix(0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000001c0)=0x6e, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:15 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
r2 = syz_io_uring_setup(0x5d4f, &(0x7f00000002c0)={0x0, 0x3d41, 0x20, 0x2, 0x0, 0x0, r1}, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r5=>r2}, './file0\x00'})
r6 = syz_io_uring_setup(0x54e7, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="0100000001000000180000004757d35a21117865aed4ae2e855dbadf75415f07e7b39a320896ab12371fb132130747c7fe216c1c0943af521d769168a0fb4354a55ef3bfb29d66907b93572b08764e36f3a06baf8430c6f90c3d74de1466bea5ddc1e1b9c390", @ANYRES32=r6, @ANYBLOB="02000000000000002e2f66696c653000"])
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x78, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x4e}, @NL80211_ATTR_REG_RULES={0x44, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8001}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x80000000}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xd415}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4c000000}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x1a}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7f}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x4005}, 0x4000040)
clock_gettime(0x0, &(0x7f00000003c0))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r8}}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000340)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r8}}, 0x800000)
mknodat$loop(r7, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 66)

11:57:29 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x200000000000000)

11:57:29 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)

11:57:29 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x1803, &(0x7f0000000340)={0x0, 0x195a, 0x2, 0x0, 0x36b, 0x0, r3}, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f00000001c0), &(0x7f00000003c0))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x7cf63a32}}, './file0\x00'})
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x1)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
flistxattr(r3, &(0x7f0000000140)=""/171, 0xab)

11:57:29 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = openat2(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000340)={0x301816960e66f5d1, 0x4}, 0x18)
r4 = syz_io_uring_setup(0x54e5, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x800)
sendmsg$nl_generic(r6, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1270}, 0x1, 0x0, 0x0, 0x4004821}, 0x20800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r5, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000a000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@FOU_ATTR_AF={0x5, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4040)

[ 3033.900988] FAULT_INJECTION: forcing a failure.
[ 3033.900988] name failslab, interval 1, probability 0, space 0, times 0
[ 3033.903512] CPU: 0 PID: 14386 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3033.905060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3033.906827] Call Trace:
[ 3033.907386]  dump_stack+0x107/0x167
[ 3033.908148]  should_fail.cold+0x5/0xa
[ 3033.908949]  ? create_object.isra.0+0x3a/0xa30
[ 3033.909910]  should_failslab+0x5/0x20
[ 3033.910706]  kmem_cache_alloc+0x5b/0x310
[ 3033.911578]  create_object.isra.0+0x3a/0xa30
[ 3033.912509]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3033.913549]  kmem_cache_alloc+0x159/0x310
[ 3033.914414]  vm_area_alloc+0x1c/0x110
[ 3033.915224]  mmap_region+0x982/0x1500
[ 3033.916048]  do_mmap+0x868/0x1370
[ 3033.916787]  vm_mmap_pgoff+0x198/0x1f0
[ 3033.917610]  ? randomize_page+0xb0/0xb0
[ 3033.918461]  ksys_mmap_pgoff+0x41c/0x560
[ 3033.919324]  ? find_mergeable_anon_vma+0x250/0x250
[ 3033.920593]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3033.921953]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3033.923304]  do_syscall_64+0x33/0x40
[ 3033.924280]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3033.925598] RIP: 0033:0x7fbbed29eb62
[ 3033.926563] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3033.931330] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3033.933259] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3033.934777] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3033.936527] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3033.938083] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3033.939610] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:57:29 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000040), 0x100, 0x8000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:57:29 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x400000000000000)

11:57:29 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1f000000, 0x0, 0x0, 0x0)

11:57:29 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFBR(r4, 0x8940, &(0x7f00000001c0)=@get={0x1, &(0x7f0000000340)=""/173, 0xfff})
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018000000d445778fa0bbae4c9077be4114d7627779edf2e5d559b598babc4f3b9f5f00b4e8658dd6f2ea6e0984d03a269e8b9c1b23c11ad16c744e6c84fa005d4f15c1cd80c344f3616c1e2b362626daa07ddd0fec", @ANYRES32=<r6=>r3, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x402300)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x52, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)
mmap$usbmon(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000001, 0x2010, r2, 0xee3)

11:57:29 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x2, 0x2}}, './file1\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x400040000000000)

11:57:29 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 67)

11:57:29 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x4004, @fd_index=0x5, 0x9, &(0x7f0000000240)=[{&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000000480)=""/233, 0xe9}], 0x2, 0x10}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r2=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r4, 0x0, r4)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000280)=ANY=[])
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r5, 0x0, r5)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
fsetxattr$security_capability(r5, &(0x7f00000001c0), &(0x7f0000000340)=@v3={0x3000000, [{0x1, 0x1}, {0x28a}], r6}, 0x18, 0x1)
mknodat$loop(r2, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:29 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 3034.228418] FAULT_INJECTION: forcing a failure.
[ 3034.228418] name failslab, interval 1, probability 0, space 0, times 0
[ 3034.230673] CPU: 1 PID: 14417 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3034.231910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3034.233367] Call Trace:
[ 3034.233840]  dump_stack+0x107/0x167
[ 3034.234481]  should_fail.cold+0x5/0xa
[ 3034.235169]  ? create_object.isra.0+0x3a/0xa30
[ 3034.235980]  should_failslab+0x5/0x20
[ 3034.236650]  kmem_cache_alloc+0x5b/0x310
[ 3034.237371]  create_object.isra.0+0x3a/0xa30
[ 3034.238147]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3034.239050]  kmem_cache_alloc+0x159/0x310
[ 3034.239786]  vm_area_alloc+0x1c/0x110
[ 3034.240456]  mmap_region+0x982/0x1500
[ 3034.241135]  do_mmap+0x868/0x1370
[ 3034.241731]  vm_mmap_pgoff+0x198/0x1f0
[ 3034.242395]  ? randomize_page+0xb0/0xb0
[ 3034.243089]  ksys_mmap_pgoff+0x41c/0x560
[ 3034.243799]  ? find_mergeable_anon_vma+0x250/0x250
[ 3034.244655]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3034.245570]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3034.246473]  do_syscall_64+0x33/0x40
[ 3034.247130]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3034.248023] RIP: 0033:0x7fbbed29eb62
[ 3034.248671] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3034.251895] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3034.253225] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3034.254470] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3034.255724] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3034.256968] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3034.258198] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
11:57:29 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

11:57:29 executing program 7:
pause()
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)

11:57:29 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:44 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x8000000, 0x80)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x1, 0x80)
signalfd4(r1, &(0x7f0000000040)={[0x6]}, 0x8, 0x1000)

11:57:44 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000100)={0x0, 0x0})
ioctl$MON_IOCX_GETX(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x0})
r1 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612)

11:57:44 executing program 6:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x300000d, 0x30, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000640)=@IORING_OP_WRITEV={0x2, 0x1, 0x2004, @fd=r0, 0x3, &(0x7f0000002cc0)=[{&(0x7f0000000480)="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", 0xff}, {&(0x7f0000000580)="e4a7a0ee7ba4c814811abcf41ac7ffad437368496f6db98bea83451bfb19c73ebed56405cef516cb083da506acda97b8a64d8d61f1f480f782e1798b31a13a4e3958b8b157249516ef0f472de387424ee92784ff0d7884c4ee56e2d3fe0af8380d52a497b1191d3bc10053a60d75ca695ec5e58af65018260f9b6073833469d1432b8ecc52240e42298a74bebd47f36d97a2c720fc3c4444ad1855368f3161fe10c79d0d3cf550bab119f6404e4c4e8de0994594b205", 0xb6}, {&(0x7f0000000800)="bb49870641577e99062c2902a47ca85096a3f239a38b615c9b98b4b17c9cf87f89d5d7a24d1e771fe06dbb0e8806fbd183a756913ff800224c957c7e1c42473d2b3207b8e6632d7ab4041dfb1bdac7bdb5119f053240a725a3980346780343fd0abf1274a70b5ae949a6aaeb05c05d99d3958f0178fc94d5f6c7", 0x7a}, {&(0x7f0000000a00)="43f596ddb49ea5cf74187434f56196a6f160225541d4ae95eb0acb9185e3d73aaffb099c17c72d2f8aa2440fa946f49794c5921600a5dd4058fa3e9f5d350660aba18c03b5a7552dd7a612f130547ede434241989d412c76ff06cbef248acd2ac5d810bfb4f16f02bec39c0cb7bc62b64994922bd53da445fae4edb16fda49c9f91d5e416aafff75aadb69eaea950562fa4e6e489b6d6b6044f3e0503b463b6702ddb0b5e95620ec709b701818b65bd30727d6d04fcdf9ab6f027dcffbab4087284644781f76c853db6cdd1ecae0f564f70d0befefa2120226bd5afd9dd7e3f133f19097d751594552d77c01349ed51c02067786a3efae26b9993e53da6af8f0d516f07c768d871859634bca1ba904f101496747371c68185f14e7dfad2593a8c8d7cd33146bb7ff4bd0b26b8000879f4e3116c591328f2cddcd15ad5918b4ad237e48d731fbbea47f17d0a3a42c2b1c2cb4df31096281ece57ef39f532148ffd6c524ba24cee367c4385e84a17bae6240b5e857ed9879b251a7ea200bc535e77b38ea75ffd3479c7e0837914920f46705bb1eb1e87824cade08a04f74e0e61e8809eacebb1ea2d532881e6e1d8d6b49a92c682474a79e135a083e373815f39f17b4402b07deff5aaa7fc91bdd38a19041d9603ab96dc217e1bc0522b27ce66c2471c95577f5e46a80bfc48727a07b5f998388338a11f5e4a6ae7314b6e61a7214828f4d5d453dcc9dd879ab0fe9f2ffeca69998d307cd7f197cb0e1479ac646383f759a4ff003cb45d9c8ebfda9416e6f868cded21a9ef8a771734a6fc6788be24c3cd6d705d99a87c716bb57441d750bbc52de673374bb39540d984cb7056f12c29193d0af31f60559b2e900e9c83a5ff91b658fd364ce7190cae46778b65e5e4a51001f1ac7035495b79467005dc9ac0d4eea1adc14a097bca895c74f81a00992bed4583da6fc70f1fad0a4f3bf2960caa28710e894a1dcfe7743f9eab73122b9ec1c15e3aa5cd6f715f6f49bcb3d33aae01669ab23fa3f973039f527029aae9f1bcbeab9e26df34aa6f0b8b8dee0ba92b964c3e356285d6010ffce62077e3d4938728aaafe668016c78bcb11b9229aea53df1b56f1accf1aa875574f701a46301fb80e9b5ba8ecf69a7ac23dfebd54432f643c61f22989a0d766c2e19b7460001e64302c5ff0d02373a8e845e27b915ad2dfc6852b9334c61bf0255035f28bfb39c86bef4bce1e841f284250a806b97a0ac8b038c7910aec39600f949191122d2c30d147d2b09e23fc4ae4ee170590750fe232ae47a5d06a4310ac1bad8048f5e580e6d98194b768604cc1f26cae54e8c4c836da2a8b7a64904df2edf295ef8585c756f34f59d93b8219bfa84df8e60a11d9b48f96fc04c11821bc298246751e1fe0eab048a1037629795ae98e0755cc5104440e83c175939a1ad09fd767eaa561758265b888b07bcf2d8c39abb1aba66ead1929be586ebf4d00a0beb0d1d7da165abd1bb19c2c993685adf8e0b2f4a66bd825d1b33c64f2194df6a8a9232e1d99a65921cb73e94d27fe063e4135f8e833a8762610059f4337298e03b7f6fd21a830250352c86bad722bda1850229924940cd0386e654acf6666c20896e0452e1459b9b3040d6bd3d73709500300179f0cfe4a6f3f7921126e6c105c7afa52cd4be7e70c49cf6de6269a55ca90b83d9ad34db35b94bae8c501ac04c6627e71e67c947768d02fe52c4d9136bb27528e0aea149abbc1c1e9a41fe9917507ac42370a30f37c93ea91bc567f2119f22e54c4093abdfe50e05eab0bf0c9db89989a13a1aa41ea0bf3b26f643e0e8fc938318d2c715e1606958628bfc918446ace6a97c38491c485955084b5419b6cfbe47bb7f07f06e115f1345cd22bacb0938e5210725691083ea6860ae2d206d58964b5e8815c8aaf4a29d3fa4cf5600ebd7e7f315abe53748c911b67ce023a472551e15000c48717af21e31323c97a4a339653b8dca3a82be05b5ce54928a4c1c6ea24749351baabdd8dae423a9a18a5c5630036033c2ba9600f9c94ba56b1f2d80b5525ac116d139f7d9588d74ceb8abd1bb476623e3cff29b33f08ed43fcaccd1bf97baf2ccd3ff9db1c1f8c5c26c74c3980ba3abc5c6d6b60e5e6ee04d8a97b9821521a3dde3b226355d4cc029bcf9a3a233a44f0133e930849bef8cde3358ade805edcd7856c75855743bc572c0124b8bdb6558365ae70e0d009417e71663c50d87b70781327c08a5768a5726a1eb371039b98da304f8319675dd62c153bb7e85ba314b66414c9b43a2125b271dd3c7409175d04c14238faa4a327d92f0cbf6825edde74e711cdfa5069676fc1eb19fc2cf8abbddf38b3dbba1a98d1c15afd283cbe9001745b67454d763340d14de4f408bd1bec72861ec6dad64140d959dabd4b34de7a623baeff52d4bd485a68e9d52cfd55d215c0dc0b2b07b3b1643bad563f49833277ab657482a56fb04c938d134a0dd468e0d14c64aef35696ac29c864d98cb9842b9ce68d725352fe6152a3cd656c390249270b8f4a7b6f22cc2b87d7d4f687f84ba8f97bcd4a6bfc9445b4fbc4fcf35340569c5bb1a5d4f3125353b3c3a8cbef3f276f5a84f0f2d3f479127f88e3ab64f4a6125246ade8c68c5d4c07350cd555d9812fe2c4734da0089fd351fcfc4e56a170087b249f6034423a156e023689bc1bc8d8bf23636c401d99da2a00e8716f386da71d7f06ab03dcbdcf94b41c78b19ff529e7388d45458154e94f39af15220ab302ee502f4839165ab19add891aa59cbdaff2c027cca24f96d859efa6f232eeeecdca6721d6f7907fbacb262cc1dceac4e1c01e4ed02efc98d1000f1cec2b5d5807c159cbcd1372127eb187dd5f8f13be5ffba7e88e6f3b728cc99adcc8e42e8bab83222ca904f1395ef8f3117ea715e9a5a01722c75bad89473c4e3735c4f8745b3884bb8e67a86161ad767329c0933931b87a3e01fbbb5f8dd36dfe64275dab87544073f4cb7c6f1134d1a2208aa0160a672712af8396269770427afde9946c8979a0bd4030d5927d53b0d8d4d3c317f560bee1f68c3567f3d22457b9ee6a8ba8a8c864e2dea75aeab3a571608597f9f7fe85247815218f2ed3304cf7a800220e91450fba5b80393d44f34e657a36d3683c0f76e2b91652cfbab13b8edbe8d5b75496e800fbaf0efffd47cd1ada44bce91d34ce9198e3a97ce6c4d1eaa1159da09cdab7209289fac10ebfa01e6087c59d54378d0c9e615607866fa3cad21632853ad1e82967c91630d8fe79572b20dd8bfe58e075046cdb0e8af648e49367f2f4d0a8cbd42c975ae08785d26aad705de8ddddf36cdafb3574abbb4bdb0a92e09de0acd1d4ae2583c3665f27838fc34338faa89371551d203d76a10ba46ab2aba655e297347cae1efe6c67ca7348918de857c30cbad4758a8d4150a32c14295f72a70593d408e0891ab67af046f916d9e52d99bb38d657bad9739651d6552ca94b3dab6eeb04736e9764e005a2d0293004d30592afc3fa538b394041a407ea3f4f8cdb6faa24f42bc1d1f03af7a9a4c094dbb802291e958a3800e6b93d5347ebd96823dfd26d55b23e30033c8389963f85d92a20fca1e77249fabed4c2281489b3ee8480c622f912f0e4108948668fc62445619d8b79fda1701f7ef1ab4519eda7f2202fd8058327a735b7b825ce5849b2131f79f9d1c5685aefa371fec805771f42a9ab07deed79e7fc891bdbefc8f1db45c93a401020b24d5e43280cb11b6fc75b275197638f7b1931881fb2ba54574cbd77aaf2e206f65a4da39d8e6bbcecc56c1352736236d73704b47a64bf4e5b18ede5078f8f676d5d87b5df18a3a49e2e26a08d86b44668eeab15b7dc766c371173505bf1812a0adfd9deddef363db3a9a59145c2855577a73b121414681edf9f0d6dd1fcdf8be8fee628aa2961344d695c3f9ae1d179803dde71463fd44d3ee95f8d9cf4f3fd83866e7dfae584aca5d0cae8e47c7dda24b63c49244ef9fb7cc6c2646639dc75c8cda2209e65313b471bbb2e62993a87fd9fb7ec99cbef02030bdbc1b1c7bbafff0d6b07a2593b6cf9e68dcb3f0c82cb8677198fc1d2858da3cc57cfb5496835f4ff579f53edf2214d2bad2df2a20926508a4bd89a532c8ea66e203b9d56043f9d060f7a6cb319ac4927f4884bd6893ce67de01f0d4affc9a5c9a3607f2c6f98aa82f3508f84f69feb3bc5bebab5b4132bd4bdaf386edce7dc98d6b912e3a4d584df8fb6ba218e21128cf40a85d8a09f297747a4512580c3250b6db14b1a380fe3b8f7df3e293ec89087a4a142dadc69a59f79d66fa3403b1a7a02187871398b53f3d430479b6c7e987c95cd78a0686295e866741fcb0fb5b178d55d98a776d0655ef77eed2b38384a09a2320e8b2e083699bedd174709f1d022d3bd58812ec4c0fd85712aec12dadb6c2fbb931f1c6eed3010a88a2cef7af2d210adc8e1f3f5158135ed52e9e70f409150d796d8427a26d910e0e8ba7db946938d4ab96ba0ab9670093c83e06d1a36998e4f14a3d92be6d3bec79f3b0c635e5c466d821c9bf296d620521dd55077e8e8734e675e19e880a60c0e2c7e4de87b3004fffecad666608a18e5bbe9894baf38c02851767220eeb567af697476e56dcf049efc67de96fa761ae432bde26c89921ebf25ae500f46e86d7143fe7799e07d6cab31d1424ac62d5458ee1348de69401b909e2db7a17afe088b0cbe07a38f0bcdf0bffacb72416fc643635509c25e570a1b201dfdee77a1700c93564917d85876732eee1616071cc26807797c575b2c626e9f29fbae029f6eccb0fe3951c43bf9cbaf871da0f45cad0b8d0fd8954bbdbbf52945bc18ab51ca5a3b4ce463d603f5b711724d0b47c8f9ae4619f5c4d401c2f0e3f4f39d4b4e5da20773e27125125a3f16cf52d93852da6020dba70549ec28867904e8226ab066e125a363f34440b72897cf930ee8d7465ffc1ea09a14285ef7a208f127f0ac62b339e87830bacf735d7e55b51027fd2fd3638320bf0c62584f7586a3c413db95282f328687362cf29eeb9447fb923a39fcf53a9d63d4a53c2761e5e56e1e83dd8cc7cbfb247740fa2d7443023b800ab5c2ad9ae01930831652c85f99f4ea88131869e3192fcecb085536592ce1a66e80af35d11ed99e7cfab84e0b57bcb580f2310c47b496d15d45dadfd8b44ea1d6cfb6681d7cd2ce5909716c17eab2885ad0ccd79cc48a0e201a549da0152276a3d0b88574842f6c783604423f7b83a506a610f6500ac6e7a8bf1a7212b9b49ad1c0878f1a4ebedd55cdee5f323d400949fb648d105599d85a9af0676df9fda4a09db8ca0cb3a38595174e00da4ab9e7f8b82e197ad7e62ea172186242b38797fae8e594a602afc9481e870058819ce3e5c5cf0f6fe67f1c53d0da6c11793a9b342db2fe7faa6f6fa97b5afc057dc7a29f49657b43221994d8a53af1374b45f8376998765017aa5d37694ba4e663f0f0e7b91e3723804ee9342113baa6f5946a056d46d54b50a3c1ec8b2e03876973c914e0c4adac6aff570b282b8a91551ee909d8e14454251ed7edeee307977a2e4daa62dc746fc00bde9b49c86b378a2b224e9e3322e15f22e1183c3a719b8e8dc3e7af630ece8c5c87e3ec65f3595682a0676ead8972a765f249165e436dc1bb53099d7085c96c13fad6217d767cd3319cb655887466a5a056944fc4362485a54f6efad904af7089a77b4c28c14ee69282e0a7ff470f3fabe8f092560c56dfffd6f49cf059761728c1238835575231baefbe46", 0x1000}, {&(0x7f0000000880)="742f6b44da49df5433e3ea011552566273eeaf27d213299013659fe8fe46831cdd3641f3d04843e25f3cf15aeaa280ef80d17ad094e7a159f78aee1fbb1ca158e28db0428497995d6b096fff2d9c785bd387cfb48a77c34a82fbae0311d6fe4b103fa5933289106fff73a1c7969fad3f799d5fd11b62270ad2fa39026d0f775489f08ff4ee1227052c74b4356707173b102deeea6d72949e7c35fc4497e5342da82bd9829c3b704a150b0393987bf43e0979c33824f6", 0xb6}, {&(0x7f0000001a00)="639223c0058d029b3b6c03488d95602f5b8c6c832d2538f0b3c171e8ed644c46fc491f277f4d89dfdd02dd7f8e673cd28b9828f19d4f51d52654a70b0469c50a7ad0967b2b0ba835f57e8f12e76894923a04ea23d3f5ff504c8a063542b7d951d78388b9e05f0905f883c675d3ed7449fb5e581618c05b030cd8b40b328af76af736da407e49839e49199958953f22f6db70b3efca8c87d7fee0801df0a81297063d9cb22c1b22cb42314b0e877c4012259bf7688d192064a4184b", 0xbb}, {&(0x7f0000001ac0)="5cb5f8ab0a5f0cf0c4ead6d4c81dbf498afbc3e2f220a432f7a27225b007a8b91d999679227b3c5368ded11a791971f9fd124649dc0844929f2c003602ad26ccc569ff15db75ddd01a5de166b11c2c8eb127080df40034754e0d7ad6b6cbb4c5208c51aa2ba0a50e845bd2cbfdac5a88f2d909e4f882364edae667c1ee4273e7bdbf72f207d57b10f7b7c86f6a064e712a805e846e0701f578bb2fcb9f0d88643bc62ff1597397399ba0a7e1d9ca6b663c7fa0467e61be90d093ad73cfef3621d4", 0xc1}, {&(0x7f0000001bc0)="05575d27ff07ebfc6a0a17896af640ebd3ca99f561ab606da1ceafe871dce599b799998100b74343bbcafc45dbf5820853ef098e8f117a6a045e381790a5b20d993eeca9f756a597e89312072199a65296ace0fc719564a769afbe194115eae39e0fc2fc158453b5a947a10624270996a7bef49826f0ae86a5f0dcbc7cf9c0495ab3068fa2ded194698bbe96cc390ac6ac7b221d4ab8bcb38113433660ab600b7b047789fe3f9c6fc5c8f3baf19540871132b8e01fb249bd397040f90428d64d7bddb763f605bfe95d29b3befdc9c2058b83cab91a707a0094613d", 0xdb}, {&(0x7f0000001cc0)="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", 0x1000}], 0x9, 0x10, 0x1}, 0xfff)
r4 = syz_io_uring_setup(0x56de, &(0x7f0000000980)={0x0, 0x0, 0x10, 0x0, 0x7d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r5}}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000340)=@nfc={0x27, 0x1, 0x0, 0x7}, 0x0, 0x0, 0x0, {0x0, r5}}, 0x6c8d2be)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r6 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x2}}, './file0\x00'})
clock_gettime(0x0, &(0x7f00000003c0))
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mknodat$loop(r7, &(0x7f0000000400)='./file0\x00', 0x8000, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

11:57:44 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x28051, r0, 0xa00000000000000)

11:57:44 executing program 1:
r0 = syz_open_dev$usbmon(&(0x7f0000003540), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
syz_io_uring_setup(0x5e4e, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) (fail_nth: 68)

11:57:44 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x4000, @fd, 0x0, 0x100000000, 0x40, 0x15, 0x0, {0x1}}, 0x2ce)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x21000000, 0x0, 0x0, 0x0)

11:57:44 executing program 5:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180), 0x800)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 3049.258001] FAULT_INJECTION: forcing a failure.
[ 3049.258001] name failslab, interval 1, probability 0, space 0, times 0
[ 3049.260566] CPU: 0 PID: 14454 Comm: syz-executor.1 Not tainted 5.10.246 #1
11:57:44 executing program 3:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0)
r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r6, 0x0, r5)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r5, {0x1}}, './file0\x00'})
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r3, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 3049.262039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3049.264014] Call Trace:
[ 3049.264585]  dump_stack+0x107/0x167
[ 3049.265365]  should_fail.cold+0x5/0xa
[ 3049.266185]  ? ptlock_alloc+0x1d/0x70
[ 3049.267007]  should_failslab+0x5/0x20
[ 3049.267821]  kmem_cache_alloc+0x5b/0x310
[ 3049.268691]  ptlock_alloc+0x1d/0x70
[ 3049.269472]  pte_alloc_one+0x68/0x1a0
[ 3049.270288]  __pte_alloc+0x1d/0x330
[ 3049.271078]  remap_pfn_range_internal+0x9a3/0xf60
[ 3049.272100]  ? lookup_memtype+0x5b/0x200
[ 3049.272966]  ? apply_to_existing_page_range+0x40/0x40
[ 3049.274069]  remap_pfn_range+0xcd/0x160
[ 3049.274912]  ? remap_pfn_range_notrack+0x70/0x70
[ 3049.275922]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 3049.277033]  io_uring_mmap+0x398/0x530
[ 3049.277870]  mmap_file+0x5e/0xe0
[ 3049.278599]  mmap_region+0xc4d/0x1500
[ 3049.279442]  do_mmap+0x868/0x1370
[ 3049.280200]  vm_mmap_pgoff+0x198/0x1f0
[ 3049.281035]  ? randomize_page+0xb0/0xb0
[ 3049.281895]  ksys_mmap_pgoff+0x41c/0x560
[ 3049.282753]  ? find_mergeable_anon_vma+0x250/0x250
[ 3049.283807]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3049.284924]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3049.286018]  do_syscall_64+0x33/0x40
[ 3049.286806]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3049.287899] RIP: 0033:0x7fbbed29eb62
[ 3049.288688] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3049.292613] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3049.294238] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3049.295760] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3049.297282] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3049.298794] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3049.300308] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 3049.394177] ------------[ cut here ]------------
[ 3049.396382] WARNING: CPU: 1 PID: 14454 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270
[ 3049.398323] Modules linked in:
[ 3049.399069] CPU: 1 PID: 14454 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 3049.400531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3049.402326] RIP: 0010:get_pat_info+0x216/0x270
[ 3049.403306] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 a5 a2 5a 00 e9
[ 3049.407124] RSP: 0018:ffff888040237890 EFLAGS: 00010216
[ 3049.408245] RAX: 000000000001306a RBX: ffff88800d771e00 RCX: ffffc900007fd000
[ 3049.409729] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007
[ 3049.411240] RBP: ffff888040237948 R08: 0000000000000000 R09: ffff888040237818
[ 3049.412772] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028
[ 3049.414303] R13: 1ffff11008046f12 R14: 0000000000000000 R15: ffff88800d771e50
[ 3049.415887] FS:  00007fbbea814700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 3049.419209] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3049.422137] CR2: 00007fd1f18d0d80 CR3: 00000000419d6000 CR4: 0000000000350ee0
[ 3049.425188] Call Trace:
[ 3049.425775]  ? pgprot_writethrough+0xc0/0xc0
[ 3049.426729]  ? finish_task_switch+0x126/0x5d0
[ 3049.427709]  ? finish_task_switch+0xef/0x5d0
[ 3049.428665]  untrack_pfn+0xdc/0x240
[ 3049.429415]  ? track_pfn_insert+0x150/0x150
[ 3049.430355]  ? lock_downgrade+0x6d0/0x6d0
[ 3049.431266]  ? uprobe_munmap+0x1c/0x560
[ 3049.432120]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3049.433236]  unmap_single_vma+0x1bc/0x300
[ 3049.434159]  zap_page_range_single+0x2ce/0x450
[ 3049.435152]  ? unmap_single_vma+0x300/0x300
[ 3049.436087]  ? remap_pfn_range_internal+0xc56/0xf60
[ 3049.437167]  ? lookup_memtype+0x5b/0x200
[ 3049.438067]  ? apply_to_existing_page_range+0x40/0x40
[ 3049.439222]  remap_pfn_range+0x139/0x160
[ 3049.440115]  ? remap_pfn_range_notrack+0x70/0x70
[ 3049.441132]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 3049.442250]  io_uring_mmap+0x398/0x530
[ 3049.443103]  mmap_file+0x5e/0xe0
[ 3049.443861]  mmap_region+0xc4d/0x1500
[ 3049.444707]  do_mmap+0x868/0x1370
[ 3049.445443]  vm_mmap_pgoff+0x198/0x1f0
[ 3049.446293]  ? randomize_page+0xb0/0xb0
[ 3049.447186]  ksys_mmap_pgoff+0x41c/0x560
[ 3049.448078]  ? find_mergeable_anon_vma+0x250/0x250
[ 3049.449141]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3049.450256]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3049.451368]  do_syscall_64+0x33/0x40
[ 3049.452188]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3049.453290] RIP: 0033:0x7fbbed29eb62
[ 3049.454098] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3049.457928] RSP: 002b:00007fbbea8140f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3049.459558] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fbbed29eb62
[ 3049.461093] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffa000
[ 3049.462631] RBP: 0000000020ffa000 R08: 0000000000000005 R09: 0000000000000000
[ 3049.464147] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000080
[ 3049.465676] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020ffa000
[ 3049.467216] irq event stamp: 1977
[ 3049.467975] hardirqs last  enabled at (1987): [<ffffffff8129b04d>] console_unlock+0x92d/0xb40
[ 3049.469766] hardirqs last disabled at (1996): [<ffffffff8129af59>] console_unlock+0x839/0xb40
[ 3049.471569] softirqs last  enabled at (1426): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3049.473451] softirqs last disabled at (815): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3049.475302] ---[ end trace 3c7d8ad2f64b6e64 ]---

VM DIAGNOSIS:
11:57:44  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=ffff888041bbcdc0 RCX=ffffffff83c1aafa RDX=1ffff11001ea4470
RSI=0000000000000001 RDI=0000000000000000 RBP=ffff888020208d00 RSP=ffff88806ce09e50
R8 =0000000000000000 R9 =ffffffff868716a7 R10=0000000000000246 R11=0000000000000001
R12=0000000000000000 R13=ffff88806ce09e88 R14=0000000000000000 R15=1ffff1100d9c13cd
RIP=ffffffff8140c6d4 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbafc3564b0 CR3=000000000ee88000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffff00ffffffffffffffff
XMM02=7269762f736563697665642f7379732f XMM03=2f6b636f6c622f6c6175747269762f73
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055fb309f1ec0000055fb309bba90
XMM06=0000000000000000ffffffff00000003 XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000020202000000000002020200000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822e5bcc RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff888040237250
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0f3f095 R14=fffffbfff0f3f04a R15=dffffc0000000000
RIP=ffffffff822e5c20 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fbbea814700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd1f18d0d80 CR3=00000000419d6000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fafbfb827c800007fafbfb827c0
XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000