0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[  793.364112] perf: interrupt took too long (12223 > 12217), lowering kernel.perf_event_max_sample_rate to 16000
01:21:10 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:10 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:10 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:10 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 3:
syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:24 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:24 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:21:24 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:24 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:24 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:21:37 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 3:
syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 3:
syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:21:37 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:37 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:37 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[  821.058744] perf: interrupt took too long (15317 > 15278), lowering kernel.perf_event_max_sample_rate to 13000
01:21:52 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:52 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:21:52 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:52 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:21:52 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:21:52 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:05 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:05 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:05 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:05 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:05 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

01:22:05 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:05 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40))
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:05 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:20 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

01:22:20 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40))
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:20 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40))
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:20 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:20 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

01:22:20 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:20 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:34 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 0:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:34 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:22:34 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:22:34 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 0:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:34 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:34 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:34 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:48 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 0:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:48 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:22:48 executing program 2:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 2:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:48 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:22:48 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:22:48 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:22:48 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:22:48 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:23:00 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:00 executing program 2:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:00 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:23:01 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:01 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:01 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:01 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:01 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:13 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:13 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 7:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:13 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 5:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:13 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 5:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:13 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 5:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:27 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x2}, 0x0)

01:23:27 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:27 executing program 7:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:27 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:27 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x2}, 0x0)

01:23:27 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x2}, 0x0)

01:23:40 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x2}, 0x0)

01:23:40 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:40 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 4:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:40 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:23:40 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f}, 0x0)

01:23:40 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 4:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:40 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:55 executing program 4:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:55 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f}, 0x0)

01:23:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:23:55 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f}, 0x0)

01:23:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:23:55 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:23:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:23:55 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:24:09 executing program 7:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:09 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:24:09 executing program 5:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000002a40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:09 executing program 2:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000002a40))
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:09 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 2:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:09 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 5:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 7:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 0:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 4:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:24:25 executing program 5:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 4:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')

01:24:25 executing program 0:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
r6 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 7:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
r6 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')

01:24:40 executing program 7:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:40 executing program 5:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 2:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')

01:24:40 executing program 4:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
syz_io_uring_setup(0x43f6, &(0x7f0000000180)={0x0, 0x2750, 0x8, 0x3, 0x33, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="e5ffffff00000000058795b6", @ANYRES32=r5, @ANYBLOB="f7ffffff000000002e2f66696c653000"])
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x20076d2, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:40 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:40 executing program 4:
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x2000)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000040))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
r3 = openat$cgroup_pressure(r0, &(0x7f0000000100)='io.pressure\x00', 0x2, 0x0)
r4 = timerfd_create(0x0, 0x800)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000180)={0x80000001, 0x0, &(0x7f0000000140)=[r3, r4, r0, r1, r0, r0, r5, r2, r2, r6]}, 0xa)
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x541c, &(0x7f00000001c0))
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000200)={0x400, 0x401, 0x3, 0x6, 0x80, 0x6e5})
ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000240)=0x3)
setsockopt$inet_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f0000000280), 0x4)

01:24:40 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:56 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:56 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:56 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 1)

01:24:56 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

01:24:56 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

01:24:56 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:24:56 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

01:24:56 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

[ 1019.409878] FAULT_INJECTION: forcing a failure.
[ 1019.409878] name failslab, interval 1, probability 0, space 0, times 1
[ 1019.410873] FAULT_INJECTION: forcing a failure.
[ 1019.410873] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1019.412628] CPU: 0 PID: 6796 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1019.416669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.418429] Call Trace:
[ 1019.418997]  dump_stack+0x107/0x167
[ 1019.419782]  should_fail.cold+0x5/0xa
[ 1019.420594]  should_failslab+0x5/0x20
[ 1019.421401]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1019.422365]  io_submit_sqes+0x6fe4/0x8610
[ 1019.423253]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.424305]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.425371]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.426393]  ? find_held_lock+0x2c/0x110
[ 1019.427258]  ? io_submit_sqes+0x8610/0x8610
[ 1019.428178]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.429213]  ? wait_for_completion_io+0x270/0x270
[ 1019.430240]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.431228]  ? vfs_write+0x354/0xb10
[ 1019.432015]  ? fput_many+0x2f/0x1a0
[ 1019.432785]  ? ksys_write+0x1a9/0x260
[ 1019.433601]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.434459]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.435567]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.436663]  do_syscall_64+0x33/0x40
[ 1019.437454]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.438537] RIP: 0033:0x7f2d08327b19
[ 1019.439325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.443255] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.444882] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1019.446402] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.447928] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.449440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.450964] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1019.452524] CPU: 1 PID: 6803 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1019.454099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.455926] Call Trace:
[ 1019.456526]  dump_stack+0x107/0x167
[ 1019.457338]  should_fail.cold+0x5/0xa
[ 1019.458187]  _copy_from_user+0x2e/0x1b0
[ 1019.459066]  io_uring_setup+0x9b/0x2980
[ 1019.459943]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1019.460891]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1019.462012]  ? tick_program_event+0xa8/0x140
[ 1019.462982]  ? hrtimer_interrupt+0x771/0x9b0
[ 1019.463961]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.465113]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.466254]  do_syscall_64+0x33/0x40
[ 1019.467073]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.468195] RIP: 0033:0x7f488da58b19
[ 1019.469013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.473014] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1019.474688] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1019.476233] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1019.477798] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1019.479342] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1019.480896] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1019.487269] FAULT_INJECTION: forcing a failure.
[ 1019.487269] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.488693] FAULT_INJECTION: forcing a failure.
[ 1019.488693] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.490045] CPU: 0 PID: 6806 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1019.493583] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.495316] Call Trace:
[ 1019.495876]  dump_stack+0x107/0x167
[ 1019.496652]  should_fail.cold+0x5/0xa
[ 1019.497467]  should_failslab+0x5/0x20
[ 1019.498270]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1019.499237]  io_submit_sqes+0x6fe4/0x8610
[ 1019.500126]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.501193]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.502244]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.503272]  ? find_held_lock+0x2c/0x110
[ 1019.504145]  ? io_submit_sqes+0x8610/0x8610
[ 1019.505072]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.506110]  ? wait_for_completion_io+0x270/0x270
[ 1019.507138]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.508126]  ? vfs_write+0x354/0xb10
[ 1019.508916]  ? fput_many+0x2f/0x1a0
[ 1019.509697]  ? ksys_write+0x1a9/0x260
[ 1019.510508]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.511372]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.512485]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.513596]  do_syscall_64+0x33/0x40
[ 1019.514381]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.515470] RIP: 0033:0x7f5b150fcb19
[ 1019.516258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.520176] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.521806] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1019.523313] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.524826] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.526347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.527867] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1019.529425] CPU: 1 PID: 6800 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1019.531110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.533129] Call Trace:
[ 1019.533789]  dump_stack+0x107/0x167
[ 1019.533887] FAULT_INJECTION: forcing a failure.
[ 1019.533887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1019.534665]  should_fail.cold+0x5/0xa
[ 1019.534691]  should_failslab+0x5/0x20
[ 1019.534713]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1019.534742]  io_submit_sqes+0x6fe4/0x8610
[ 1019.534782]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.542317]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.543521]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.544684]  ? find_held_lock+0x2c/0x110
[ 1019.545679]  ? io_submit_sqes+0x8610/0x8610
[ 1019.546715]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.547876]  ? wait_for_completion_io+0x270/0x270
[ 1019.549023]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.550147]  ? vfs_write+0x354/0xb10
[ 1019.551034]  ? fput_many+0x2f/0x1a0
[ 1019.551896]  ? ksys_write+0x1a9/0x260
[ 1019.552803]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.553787]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.555034]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.556260]  do_syscall_64+0x33/0x40
[ 1019.557149]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.558349] RIP: 0033:0x7fb6c80a6b19
[ 1019.559225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.563520] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.565320] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1019.567001] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.568666] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.570337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.572010] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1019.573729] CPU: 0 PID: 6805 Comm: syz-executor.7 Not tainted 5.10.247 #1
[ 1019.575195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.576973] Call Trace:
[ 1019.577548]  dump_stack+0x107/0x167
[ 1019.578317]  should_fail.cold+0x5/0xa
[ 1019.579140]  _copy_to_user+0x2e/0x180
[ 1019.579965]  simple_read_from_buffer+0xcc/0x160
[ 1019.581010]  proc_fail_nth_read+0x198/0x230
[ 1019.581935]  ? proc_sessionid_read+0x230/0x230
[ 1019.582900]  ? security_file_permission+0xb1/0xe0
[ 1019.583921]  ? proc_sessionid_read+0x230/0x230
[ 1019.584876]  vfs_read+0x228/0x620
[ 1019.585621]  ksys_read+0x12d/0x260
[ 1019.586373]  ? vfs_write+0xb10/0xb10
[ 1019.587169]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.588274]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.589373]  do_syscall_64+0x33/0x40
[ 1019.590160]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.591270] RIP: 0033:0x7fdd8b08f69c
[ 1019.592083] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1019.596025] RSP: 002b:00007fdd88631170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1019.597635] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fdd8b08f69c
[ 1019.599136] RDX: 000000000000000f RSI: 00007fdd886311e0 RDI: 000000000000000a
[ 1019.600643] RBP: 00007fdd886311d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.602158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.603639] R13: 00007fff915bad1f R14: 00007fdd88631300 R15: 0000000000022000
01:24:56 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:24:56 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 2)

01:24:56 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:24:56 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:56 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1019.716251] FAULT_INJECTION: forcing a failure.
[ 1019.716251] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.718975] CPU: 0 PID: 6815 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1019.720422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.722190] Call Trace:
[ 1019.722755]  dump_stack+0x107/0x167
[ 1019.723531]  should_fail.cold+0x5/0xa
[ 1019.724334]  ? io_uring_setup+0x258/0x2980
[ 1019.725246]  should_failslab+0x5/0x20
[ 1019.726052]  kmem_cache_alloc_trace+0x55/0x320
[ 1019.727018]  io_uring_setup+0x258/0x2980
[ 1019.727882]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.728898]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1019.729978]  ? wait_for_completion_io+0x270/0x270
[ 1019.731020]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.732122]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.733221]  do_syscall_64+0x33/0x40
01:24:56 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:24:56 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

01:24:56 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

[ 1019.734008]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.735287] RIP: 0033:0x7f488da58b19
[ 1019.736071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.739980] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1019.741617] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1019.743128] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1019.744641] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1019.746169] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1019.747676] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1019.757867] FAULT_INJECTION: forcing a failure.
[ 1019.757867] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.760670] CPU: 0 PID: 6812 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1019.762122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.763871] Call Trace:
[ 1019.764428]  dump_stack+0x107/0x167
[ 1019.765213]  should_fail.cold+0x5/0xa
[ 1019.766018]  ? create_object.isra.0+0x3a/0xa30
[ 1019.766978]  should_failslab+0x5/0x20
[ 1019.767779]  kmem_cache_alloc+0x5b/0x310
[ 1019.768660]  create_object.isra.0+0x3a/0xa30
[ 1019.769599]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1019.770668]  kmem_cache_alloc_bulk+0x168/0x320
[ 1019.771669]  io_submit_sqes+0x6fe4/0x8610
[ 1019.772548]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.773612]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.774663]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.775686]  ? find_held_lock+0x2c/0x110
[ 1019.776544]  ? io_submit_sqes+0x8610/0x8610
[ 1019.777460]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.778452]  ? wait_for_completion_io+0x270/0x270
[ 1019.779465]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.780453]  ? vfs_write+0x354/0xb10
[ 1019.781251]  ? fput_many+0x2f/0x1a0
[ 1019.782019]  ? ksys_write+0x1a9/0x260
[ 1019.782825]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.783688]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.784802]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.785913]  do_syscall_64+0x33/0x40
[ 1019.786706]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.787790] RIP: 0033:0x7fb6c80a6b19
[ 1019.788569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.792454] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.794075] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1019.795569] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.797071] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.798602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.800127] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1019.803022] FAULT_INJECTION: forcing a failure.
[ 1019.803022] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.805617] CPU: 1 PID: 6822 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1019.807023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.808670] Call Trace:
[ 1019.809207]  dump_stack+0x107/0x167
[ 1019.809942]  should_fail.cold+0x5/0xa
[ 1019.810694]  ? create_object.isra.0+0x3a/0xa30
[ 1019.811612]  should_failslab+0x5/0x20
[ 1019.812363]  kmem_cache_alloc+0x5b/0x310
[ 1019.813188]  create_object.isra.0+0x3a/0xa30
[ 1019.814056]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1019.815058]  kmem_cache_alloc_bulk+0x168/0x320
[ 1019.815967]  io_submit_sqes+0x6fe4/0x8610
[ 1019.816802]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.817793]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.818780]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.819737]  ? find_held_lock+0x2c/0x110
[ 1019.820539]  ? io_submit_sqes+0x8610/0x8610
[ 1019.821404]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.822352]  ? wait_for_completion_io+0x270/0x270
[ 1019.823307]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.824231]  ? vfs_write+0x354/0xb10
[ 1019.824973]  ? fput_many+0x2f/0x1a0
[ 1019.825721]  ? ksys_write+0x1a9/0x260
[ 1019.826482]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.827297]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.828333]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.829365]  do_syscall_64+0x33/0x40
[ 1019.830104]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.831114] RIP: 0033:0x7f2d08327b19
[ 1019.831849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.835504] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.837007] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1019.838431] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.839828] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.841238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.842647] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1019.859064] FAULT_INJECTION: forcing a failure.
[ 1019.859064] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.861581] CPU: 1 PID: 6823 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1019.862937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1019.864587] Call Trace:
[ 1019.865113]  dump_stack+0x107/0x167
[ 1019.865854]  should_fail.cold+0x5/0xa
[ 1019.866604]  ? create_object.isra.0+0x3a/0xa30
[ 1019.867511]  should_failslab+0x5/0x20
[ 1019.868269]  kmem_cache_alloc+0x5b/0x310
[ 1019.869083]  create_object.isra.0+0x3a/0xa30
[ 1019.869955]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1019.870964]  kmem_cache_alloc_bulk+0x168/0x320
[ 1019.871869]  io_submit_sqes+0x6fe4/0x8610
[ 1019.872693]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1019.873682]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.874659]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1019.875606]  ? find_held_lock+0x2c/0x110
[ 1019.876405]  ? io_submit_sqes+0x8610/0x8610
[ 1019.877272]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1019.878228]  ? wait_for_completion_io+0x270/0x270
[ 1019.879210]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1019.880132]  ? vfs_write+0x354/0xb10
[ 1019.880869]  ? fput_many+0x2f/0x1a0
[ 1019.881594]  ? ksys_write+0x1a9/0x260
[ 1019.882350]  ? __ia32_sys_read+0xb0/0xb0
[ 1019.883170]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1019.884211]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1019.885245]  do_syscall_64+0x33/0x40
01:24:56 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

[ 1019.885995]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1019.887285] RIP: 0033:0x7f5b150fcb19
[ 1019.888016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1019.891646] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1019.893154] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1019.894566] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1019.895969] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1019.897373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.898773] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:24:56 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:11 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:11 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:11 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:11 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 3)

01:25:11 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:25:11 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:11 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

01:25:11 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

[ 1034.447290] FAULT_INJECTION: forcing a failure.
[ 1034.447290] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.449014] CPU: 1 PID: 6850 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1034.449920] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1034.451000] Call Trace:
[ 1034.451350]  dump_stack+0x107/0x167
[ 1034.451828]  should_fail.cold+0x5/0xa
[ 1034.452320]  ? create_object.isra.0+0x3a/0xa30
[ 1034.452920]  should_failslab+0x5/0x20
[ 1034.453428]  kmem_cache_alloc+0x5b/0x310
[ 1034.453966]  ? mark_held_locks+0x9e/0xe0
[ 1034.454494]  create_object.isra.0+0x3a/0xa30
[ 1034.455063]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1034.455718]  kmem_cache_alloc_bulk+0x168/0x320
[ 1034.456310]  io_submit_sqes+0x6fe4/0x8610
[ 1034.456854]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1034.457519]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.458158]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.458780]  ? find_held_lock+0x2c/0x110
[ 1034.459316]  ? io_submit_sqes+0x8610/0x8610
[ 1034.459886]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1034.460501]  ? wait_for_completion_io+0x270/0x270
[ 1034.461119]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1034.461764]  ? vfs_write+0x354/0xb10
[ 1034.462251]  ? fput_many+0x2f/0x1a0
[ 1034.462719]  ? ksys_write+0x1a9/0x260
[ 1034.463222]  ? __ia32_sys_read+0xb0/0xb0
[ 1034.463745]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1034.464424]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1034.465089]  do_syscall_64+0x33/0x40
[ 1034.465595]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1034.466275] RIP: 0033:0x7f2d08327b19
[ 1034.466757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1034.469149] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1034.470159] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1034.471090] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1034.472005] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1034.472927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.473226] FAULT_INJECTION: forcing a failure.
[ 1034.473226] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.473877] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1034.478113] CPU: 0 PID: 6852 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1034.479535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1034.481214] Call Trace:
[ 1034.481764]  dump_stack+0x107/0x167
[ 1034.482505]  should_fail.cold+0x5/0xa
[ 1034.483281]  ? create_object.isra.0+0x3a/0xa30
[ 1034.484209]  should_failslab+0x5/0x20
[ 1034.484981]  kmem_cache_alloc+0x5b/0x310
[ 1034.485826]  create_object.isra.0+0x3a/0xa30
[ 1034.486728]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1034.487770]  kmem_cache_alloc_trace+0x151/0x320
[ 1034.488737]  io_uring_setup+0x258/0x2980
01:25:11 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1034.489592]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1034.490743]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1034.491823]  ? wait_for_completion_io+0x270/0x270
[ 1034.492866]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1034.493992]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1034.495089]  do_syscall_64+0x33/0x40
[ 1034.495877]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1034.496969] RIP: 0033:0x7f488da58b19
[ 1034.497105] FAULT_INJECTION: forcing a failure.
[ 1034.497105] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.497764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1034.497774] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1034.504714] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1034.506232] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1034.507748] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1034.509259] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1034.510777] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1034.512307] CPU: 1 PID: 6856 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1034.513296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1034.514393] Call Trace:
[ 1034.514731]  dump_stack+0x107/0x167
[ 1034.515188]  should_fail.cold+0x5/0xa
[ 1034.515669]  ? create_object.isra.0+0x3a/0xa30
[ 1034.516259]  should_failslab+0x5/0x20
[ 1034.516761]  kmem_cache_alloc+0x5b/0x310
[ 1034.517276]  create_object.isra.0+0x3a/0xa30
[ 1034.517861]  kmemleak_alloc_percpu+0xa0/0x100
[ 1034.518438]  pcpu_alloc+0x4e2/0x1240
[ 1034.518918]  __percpu_counter_init+0x10d/0x2d0
[ 1034.519488]  io_uring_alloc_task_context+0xcc/0x6a0
[ 1034.520123]  ? io_import_iovec+0x1120/0x1120
[ 1034.520679]  ? find_held_lock+0x2c/0x110
[ 1034.521191]  ? percpu_ref_tryget_many+0x166/0x2d0
[ 1034.521834]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1034.522438]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1034.523105]  __do_sys_io_uring_enter+0x146f/0x1890
[ 1034.523735]  ? find_held_lock+0x2c/0x110
[ 1034.524246]  ? io_submit_sqes+0x8610/0x8610
[ 1034.524798]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1034.525424]  ? wait_for_completion_io+0x270/0x270
[ 1034.526036]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1034.526627]  ? vfs_write+0x354/0xb10
[ 1034.527095]  ? fput_many+0x2f/0x1a0
[ 1034.527548]  ? ksys_write+0x1a9/0x260
[ 1034.528027]  ? __ia32_sys_read+0xb0/0xb0
[ 1034.528543]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1034.529201]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1034.529865]  do_syscall_64+0x33/0x40
[ 1034.530347]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1034.531001] RIP: 0033:0x7fb6c80a6b19
[ 1034.531333] FAULT_INJECTION: forcing a failure.
[ 1034.531333] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.531481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1034.531487] RSP: 002b:00007fb6c55fb188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1034.531499] RAX: ffffffffffffffda RBX: 00007fb6c81ba020 RCX: 00007fb6c80a6b19
[ 1034.531505] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1034.531511] RBP: 00007fb6c55fb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1034.531517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.531523] R13: 00007ffea31d513f R14: 00007fb6c55fb300 R15: 0000000000022000
[ 1034.549056] CPU: 0 PID: 6857 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1034.550529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1034.552318] Call Trace:
[ 1034.552896]  dump_stack+0x107/0x167
[ 1034.553680]  should_fail.cold+0x5/0xa
[ 1034.554484]  ? create_object.isra.0+0x3a/0xa30
[ 1034.555447]  should_failslab+0x5/0x20
[ 1034.556253]  kmem_cache_alloc+0x5b/0x310
[ 1034.557109]  ? mark_held_locks+0x9e/0xe0
[ 1034.557985]  create_object.isra.0+0x3a/0xa30
[ 1034.558909]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1034.559975]  kmem_cache_alloc_bulk+0x168/0x320
[ 1034.560933]  io_submit_sqes+0x6fe4/0x8610
[ 1034.561835]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1034.562882]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.563925]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.564938]  ? find_held_lock+0x2c/0x110
[ 1034.565811]  ? io_submit_sqes+0x8610/0x8610
[ 1034.566721]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1034.567735]  ? wait_for_completion_io+0x270/0x270
[ 1034.568761]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1034.569736]  ? vfs_write+0x354/0xb10
[ 1034.570513]  ? fput_many+0x2f/0x1a0
[ 1034.571280]  ? ksys_write+0x1a9/0x260
[ 1034.572090]  ? __ia32_sys_read+0xb0/0xb0
[ 1034.572942]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1034.574047]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1034.575138]  do_syscall_64+0x33/0x40
[ 1034.575921]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1034.577000] RIP: 0033:0x7f5b150fcb19
01:25:11 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

[ 1034.577800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1034.581785] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1034.583424] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1034.584919] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1034.586434] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1034.587950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.589455] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:25:11 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:25:11 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:11 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:25:11 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[ 1034.724773] FAULT_INJECTION: forcing a failure.
[ 1034.724773] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.727278] CPU: 0 PID: 6873 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1034.728719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1034.730478] Call Trace:
[ 1034.731037]  dump_stack+0x107/0x167
[ 1034.731806]  should_fail.cold+0x5/0xa
[ 1034.732610]  ? create_object.isra.0+0x3a/0xa30
[ 1034.733585]  should_failslab+0x5/0x20
[ 1034.734386]  kmem_cache_alloc+0x5b/0x310
[ 1034.735241]  ? mark_held_locks+0x9e/0xe0
[ 1034.736105]  create_object.isra.0+0x3a/0xa30
[ 1034.737036]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1034.738129]  kmem_cache_alloc_bulk+0x168/0x320
[ 1034.739086]  io_submit_sqes+0x6fe4/0x8610
[ 1034.739975]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1034.741020]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.742084]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1034.743104]  ? find_held_lock+0x2c/0x110
[ 1034.743966]  ? io_submit_sqes+0x8610/0x8610
[ 1034.744898]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1034.746174]  ? wait_for_completion_io+0x270/0x270
[ 1034.747465]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1034.748696]  ? vfs_write+0x354/0xb10
[ 1034.749637]  ? fput_many+0x2f/0x1a0
[ 1034.750410]  ? ksys_write+0x1a9/0x260
[ 1034.751208]  ? __ia32_sys_read+0xb0/0xb0
[ 1034.752059]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1034.753160]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1034.754251]  do_syscall_64+0x33/0x40
[ 1034.755030]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1034.756102] RIP: 0033:0x7f2d08327b19
[ 1034.756880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1034.760737] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1034.762336] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1034.763843] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1034.765358] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1034.766852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.768353] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
01:25:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

01:25:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

01:25:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:25:25 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 4)

01:25:25 executing program 6:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:25 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

01:25:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1048.556787] FAULT_INJECTION: forcing a failure.
[ 1048.556787] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1048.559379] CPU: 1 PID: 6893 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1048.560778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.562507] Call Trace:
[ 1048.563052]  dump_stack+0x107/0x167
[ 1048.563800]  should_fail.cold+0x5/0xa
[ 1048.564585]  __alloc_pages_nodemask+0x182/0x600
[ 1048.565563]  ? lock_release+0x680/0x680
[ 1048.566385]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1048.567616]  ? lock_downgrade+0x6d0/0x6d0
[ 1048.568473]  alloc_pages_current+0x187/0x280
[ 1048.569373]  kmalloc_order+0x35/0x160
[ 1048.570179]  kmalloc_order_trace+0x14/0xa0
[ 1048.571050]  io_uring_setup+0x33c/0x2980
[ 1048.571887]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.572883]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1048.573962]  ? wait_for_completion_io+0x270/0x270
[ 1048.574953]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.576021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.577065]  do_syscall_64+0x33/0x40
[ 1048.577852]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.578898] RIP: 0033:0x7f488da58b19
[ 1048.579651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.583408] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1048.584342] FAULT_INJECTION: forcing a failure.
[ 1048.584342] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.584947] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1048.584958] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1048.584967] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1048.584977] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1048.584986] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1048.597115] CPU: 0 PID: 6891 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1048.598780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.600779] Call Trace:
[ 1048.601416]  dump_stack+0x107/0x167
[ 1048.602300]  should_fail.cold+0x5/0xa
[ 1048.603213]  ? create_object.isra.0+0x3a/0xa30
[ 1048.604301]  should_failslab+0x5/0x20
[ 1048.605212]  kmem_cache_alloc+0x5b/0x310
[ 1048.606209]  ? mark_held_locks+0x9e/0xe0
[ 1048.607201]  create_object.isra.0+0x3a/0xa30
[ 1048.608252]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1048.609501]  kmem_cache_alloc_bulk+0x168/0x320
[ 1048.610606]  io_submit_sqes+0x6fe4/0x8610
[ 1048.611617]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1048.612818]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.613912]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.615065]  ? find_held_lock+0x2c/0x110
[ 1048.616051]  ? io_submit_sqes+0x8610/0x8610
[ 1048.617099]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.618283]  ? wait_for_completion_io+0x270/0x270
[ 1048.619456]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1048.620586]  ? vfs_write+0x354/0xb10
[ 1048.621509]  ? fput_many+0x2f/0x1a0
[ 1048.622399]  ? ksys_write+0x1a9/0x260
[ 1048.623333]  ? __ia32_sys_read+0xb0/0xb0
[ 1048.624328]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.625622]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.626896]  do_syscall_64+0x33/0x40
[ 1048.627809]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.629075] RIP: 0033:0x7fb6c80a6b19
[ 1048.629995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.634551] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1048.636435] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1048.638209] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1048.639975] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1048.641747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.643510] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1048.660428] FAULT_INJECTION: forcing a failure.
01:25:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

[ 1048.660428] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.664161] CPU: 0 PID: 6895 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1048.665884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.667956] Call Trace:
[ 1048.668616]  dump_stack+0x107/0x167
[ 1048.669538]  should_fail.cold+0x5/0xa
[ 1048.670493]  ? create_object.isra.0+0x3a/0xa30
[ 1048.671633]  should_failslab+0x5/0x20
[ 1048.672587]  kmem_cache_alloc+0x5b/0x310
[ 1048.673611]  ? mark_held_locks+0x9e/0xe0
[ 1048.674629]  create_object.isra.0+0x3a/0xa30
[ 1048.675727]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1048.677004]  kmem_cache_alloc_bulk+0x168/0x320
[ 1048.678162]  io_submit_sqes+0x6fe4/0x8610
[ 1048.679185]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1048.680425]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.681652]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.682850]  ? find_held_lock+0x2c/0x110
[ 1048.683841]  ? io_submit_sqes+0x8610/0x8610
[ 1048.684915]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.686093]  ? wait_for_completion_io+0x270/0x270
[ 1048.687292]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1048.688414]  ? vfs_write+0x354/0xb10
[ 1048.689333]  ? fput_many+0x2f/0x1a0
[ 1048.690224]  ? ksys_write+0x1a9/0x260
[ 1048.691168]  ? __ia32_sys_read+0xb0/0xb0
[ 1048.692162]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.693464]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.694726]  do_syscall_64+0x33/0x40
[ 1048.695650]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.696894] RIP: 0033:0x7f2d08327b19
[ 1048.697824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.702385] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1048.704274] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1048.706064] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1048.707825] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1048.709588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.711338] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1048.724384] FAULT_INJECTION: forcing a failure.
[ 1048.724384] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.727814] CPU: 0 PID: 6896 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1048.729502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.731506] Call Trace:
[ 1048.732147]  dump_stack+0x107/0x167
[ 1048.733037]  should_fail.cold+0x5/0xa
[ 1048.733970]  ? create_object.isra.0+0x3a/0xa30
[ 1048.735080]  should_failslab+0x5/0x20
[ 1048.736003]  kmem_cache_alloc+0x5b/0x310
[ 1048.736994]  ? mark_held_locks+0x9e/0xe0
[ 1048.737992]  create_object.isra.0+0x3a/0xa30
[ 1048.739058]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1048.740296]  kmem_cache_alloc_bulk+0x168/0x320
[ 1048.741411]  io_submit_sqes+0x6fe4/0x8610
[ 1048.742433]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1048.743642]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.744830]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.746001]  ? find_held_lock+0x2c/0x110
[ 1048.746975]  ? io_submit_sqes+0x8610/0x8610
[ 1048.748024]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.749186]  ? wait_for_completion_io+0x270/0x270
[ 1048.750353]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1048.751456]  ? vfs_write+0x354/0xb10
01:25:25 executing program 6:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1048.752359]  ? fput_many+0x2f/0x1a0
[ 1048.753372]  ? ksys_write+0x1a9/0x260
[ 1048.754289]  ? __ia32_sys_read+0xb0/0xb0
[ 1048.755254]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.756500]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.757729]  do_syscall_64+0x33/0x40
[ 1048.758601]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.759805] RIP: 0033:0x7f5b150fcb19
[ 1048.760676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.765046] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1048.766855] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1048.768554] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1048.770230] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1048.771923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.773613] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:25:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

01:25:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

01:25:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:25 executing program 6:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:25 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 5)

01:25:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1048.895926] FAULT_INJECTION: forcing a failure.
[ 1048.895926] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.898339] CPU: 1 PID: 6912 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1048.899587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.901095] Call Trace:
[ 1048.901606]  dump_stack+0x107/0x167
[ 1048.902269]  should_fail.cold+0x5/0xa
[ 1048.902962]  ? create_object.isra.0+0x3a/0xa30
[ 1048.903788]  should_failslab+0x5/0x20
[ 1048.904485]  kmem_cache_alloc+0x5b/0x310
[ 1048.905224]  ? mark_held_locks+0x9e/0xe0
[ 1048.905992]  create_object.isra.0+0x3a/0xa30
[ 1048.906784]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1048.907704]  kmem_cache_alloc_bulk+0x168/0x320
[ 1048.908538]  io_submit_sqes+0x6fe4/0x8610
[ 1048.909301]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1048.910236]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.911146]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1048.912018]  ? find_held_lock+0x2c/0x110
[ 1048.912766]  ? io_submit_sqes+0x8610/0x8610
[ 1048.913575]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.914446]  ? wait_for_completion_io+0x270/0x270
[ 1048.915322]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1048.916150]  ? vfs_write+0x354/0xb10
[ 1048.916817]  ? fput_many+0x2f/0x1a0
[ 1048.917466]  ? ksys_write+0x1a9/0x260
[ 1048.918181]  ? __ia32_sys_read+0xb0/0xb0
[ 1048.918914]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.919853]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.920786]  do_syscall_64+0x33/0x40
[ 1048.921454]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.922398] RIP: 0033:0x7fb6c80a6b19
[ 1048.923065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.926388] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1048.927751] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1048.929023] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1048.930333] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1048.931632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.932892] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
01:25:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

01:25:25 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

01:25:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

[ 1048.959888] FAULT_INJECTION: forcing a failure.
[ 1048.959888] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.962449] CPU: 0 PID: 6919 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1048.963953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1048.965783] Call Trace:
[ 1048.966364]  dump_stack+0x107/0x167
[ 1048.967168]  should_fail.cold+0x5/0xa
[ 1048.967994]  ? create_object.isra.0+0x3a/0xa30
[ 1048.968991]  should_failslab+0x5/0x20
[ 1048.969820]  kmem_cache_alloc+0x5b/0x310
[ 1048.970698]  create_object.isra.0+0x3a/0xa30
[ 1048.971642]  ? kasan_unpoison_shadow+0x33/0x50
[ 1048.972633]  kmalloc_order+0xfe/0x160
[ 1048.973454]  kmalloc_order_trace+0x14/0xa0
[ 1048.974374]  io_uring_setup+0x33c/0x2980
[ 1048.975253]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1048.976300]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1048.977390]  ? wait_for_completion_io+0x270/0x270
[ 1048.978462]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1048.979595]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1048.980709]  do_syscall_64+0x33/0x40
[ 1048.980897] FAULT_INJECTION: forcing a failure.
[ 1048.980897] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.981521]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1048.981534] RIP: 0033:0x7f488da58b19
[ 1048.981550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1048.981560] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1048.981579] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1048.981589] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1048.981599] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1048.981609] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1048.981619] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1048.997593] CPU: 1 PID: 6924 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1048.998766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1049.000203] Call Trace:
[ 1049.000652]  dump_stack+0x107/0x167
[ 1049.001276]  should_fail.cold+0x5/0xa
[ 1049.001948]  ? create_object.isra.0+0x3a/0xa30
[ 1049.002725]  should_failslab+0x5/0x20
[ 1049.003370]  kmem_cache_alloc+0x5b/0x310
[ 1049.004063]  ? mark_held_locks+0x9e/0xe0
[ 1049.004750]  create_object.isra.0+0x3a/0xa30
[ 1049.005516]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1049.006395]  kmem_cache_alloc_bulk+0x168/0x320
[ 1049.006796] FAULT_INJECTION: forcing a failure.
[ 1049.006796] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.007188]  io_submit_sqes+0x6fe4/0x8610
[ 1049.010240]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1049.011085]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.011930]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.012751]  ? find_held_lock+0x2c/0x110
[ 1049.013451]  ? io_submit_sqes+0x8610/0x8610
[ 1049.014221]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1049.015043]  ? wait_for_completion_io+0x270/0x270
[ 1049.015871]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1049.016654]  ? vfs_write+0x354/0xb10
[ 1049.017287]  ? fput_many+0x2f/0x1a0
[ 1049.017921]  ? ksys_write+0x1a9/0x260
[ 1049.018567]  ? __ia32_sys_read+0xb0/0xb0
[ 1049.019254]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1049.020138]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1049.021009]  do_syscall_64+0x33/0x40
[ 1049.021654]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1049.022518] RIP: 0033:0x7f2d08327b19
[ 1049.023137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1049.026283] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1049.027575] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1049.028776] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1049.030010] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1049.031214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1049.032411] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1049.033647] CPU: 0 PID: 6926 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1049.035369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1049.037437] Call Trace:
[ 1049.038103]  dump_stack+0x107/0x167
[ 1049.039012]  should_fail.cold+0x5/0xa
[ 1049.039958]  ? create_object.isra.0+0x3a/0xa30
[ 1049.041090]  should_failslab+0x5/0x20
[ 1049.042052]  kmem_cache_alloc+0x5b/0x310
[ 1049.043058]  ? mark_held_locks+0x9e/0xe0
[ 1049.044067]  create_object.isra.0+0x3a/0xa30
[ 1049.045157]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1049.046439]  kmem_cache_alloc_bulk+0x168/0x320
[ 1049.047577]  io_submit_sqes+0x6fe4/0x8610
[ 1049.048610]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1049.049842]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.051066]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.052255]  ? find_held_lock+0x2c/0x110
[ 1049.053259]  ? io_submit_sqes+0x8610/0x8610
[ 1049.054336]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1049.055522]  ? wait_for_completion_io+0x270/0x270
[ 1049.056706]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1049.057866]  ? vfs_write+0x354/0xb10
[ 1049.058778]  ? fput_many+0x2f/0x1a0
[ 1049.059667]  ? ksys_write+0x1a9/0x260
[ 1049.060602]  ? __ia32_sys_read+0xb0/0xb0
[ 1049.061616]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1049.062894]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1049.064156]  do_syscall_64+0x33/0x40
[ 1049.065059]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1049.066318] RIP: 0033:0x7f5b150fcb19
[ 1049.067217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1049.071734] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1049.073593] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1049.075324] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1049.077054] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1049.078791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1049.080512] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:25:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:25:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:25:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:25 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 6)

[ 1049.194206] FAULT_INJECTION: forcing a failure.
[ 1049.194206] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.198814] CPU: 0 PID: 6936 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1049.200330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1049.202157] Call Trace:
[ 1049.202737]  dump_stack+0x107/0x167
[ 1049.203542]  should_fail.cold+0x5/0xa
[ 1049.204379]  ? create_object.isra.0+0x3a/0xa30
[ 1049.205375]  should_failslab+0x5/0x20
[ 1049.206217]  kmem_cache_alloc+0x5b/0x310
[ 1049.207108]  ? mark_held_locks+0x9e/0xe0
[ 1049.207998]  create_object.isra.0+0x3a/0xa30
[ 1049.208956]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1049.210081]  kmem_cache_alloc_bulk+0x168/0x320
[ 1049.211085]  io_submit_sqes+0x6fe4/0x8610
[ 1049.212000]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1049.213091]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.214190]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1049.215236]  ? find_held_lock+0x2c/0x110
[ 1049.216128]  ? io_submit_sqes+0x8610/0x8610
[ 1049.217069]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1049.218125]  ? wait_for_completion_io+0x270/0x270
[ 1049.219172]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1049.220176]  ? vfs_write+0x354/0xb10
[ 1049.220982]  ? fput_many+0x2f/0x1a0
[ 1049.221786]  ? ksys_write+0x1a9/0x260
[ 1049.222609]  ? __ia32_sys_read+0xb0/0xb0
[ 1049.223493]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1049.224628]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1049.225750]  do_syscall_64+0x33/0x40
[ 1049.226565]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1049.227670] RIP: 0033:0x7fb6c80a6b19
[ 1049.228466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1049.232435] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1049.234072] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1049.235609] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1049.237143] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1049.238678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1049.240200] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1049.244744] FAULT_INJECTION: forcing a failure.
[ 1049.244744] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.246448] CPU: 1 PID: 6943 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1049.247399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1049.248569] Call Trace:
[ 1049.248949]  dump_stack+0x107/0x167
[ 1049.249460]  should_fail.cold+0x5/0xa
[ 1049.250017]  ? io_uring_setup+0x40b/0x2980
[ 1049.250606]  should_failslab+0x5/0x20
[ 1049.251143]  kmem_cache_alloc_trace+0x55/0x320
[ 1049.251782]  io_uring_setup+0x40b/0x2980
[ 1049.252351]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1049.253026]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1049.253773]  ? wait_for_completion_io+0x270/0x270
[ 1049.254450]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1049.255173]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1049.255886]  do_syscall_64+0x33/0x40
[ 1049.256400]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1049.257107] RIP: 0033:0x7f488da58b19
[ 1049.257668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1049.260227] RSP: 002b:00007f488afad108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1049.261273] RAX: ffffffffffffffda RBX: 00007f488db6c020 RCX: 00007f488da58b19
[ 1049.262288] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1049.263283] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1049.264272] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1049.265248] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:25:38 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:25:38 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 7)

01:25:38 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:25:38 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:38 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

01:25:38 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

01:25:38 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:38 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

[ 1061.514376] FAULT_INJECTION: forcing a failure.
[ 1061.514376] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.517280] CPU: 1 PID: 6958 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1061.518715] FAULT_INJECTION: forcing a failure.
[ 1061.518715] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.518856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.518873] Call Trace:
[ 1061.524258]  dump_stack+0x107/0x167
[ 1061.525109]  should_fail.cold+0x5/0xa
[ 1061.526011]  ? create_object.isra.0+0x3a/0xa30
[ 1061.527067]  should_failslab+0x5/0x20
[ 1061.527953]  kmem_cache_alloc+0x5b/0x310
[ 1061.528901]  create_object.isra.0+0x3a/0xa30
[ 1061.529928]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1061.531108]  kmem_cache_alloc_trace+0x151/0x320
[ 1061.532177]  io_uring_setup+0x40b/0x2980
[ 1061.533124]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.534302]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1061.535478]  ? wait_for_completion_io+0x270/0x270
[ 1061.536621]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.537843]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.539040]  do_syscall_64+0x33/0x40
[ 1061.539906]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.541085] RIP: 0033:0x7f488da58b19
[ 1061.541952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.546212] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1061.547980] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1061.549648] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1061.551301] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1061.552963] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1061.554629] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1061.556312] CPU: 0 PID: 6960 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1061.557857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.559712] Call Trace:
[ 1061.560311]  dump_stack+0x107/0x167
[ 1061.561121]  should_fail.cold+0x5/0xa
[ 1061.561977]  ? create_object.isra.0+0x3a/0xa30
[ 1061.563006]  should_failslab+0x5/0x20
[ 1061.563857]  kmem_cache_alloc+0x5b/0x310
[ 1061.564643] FAULT_INJECTION: forcing a failure.
[ 1061.564643] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.564782]  ? mark_held_locks+0x9e/0xe0
[ 1061.568224]  create_object.isra.0+0x3a/0xa30
[ 1061.569204]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1061.570349]  kmem_cache_alloc_bulk+0x168/0x320
[ 1061.571368]  io_submit_sqes+0x6fe4/0x8610
[ 1061.572313]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1061.573435]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.574548]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.575641]  ? find_held_lock+0x2c/0x110
[ 1061.576578]  ? io_submit_sqes+0x8610/0x8610
[ 1061.577554]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.578655]  ? wait_for_completion_io+0x270/0x270
[ 1061.579730]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1061.580760]  ? vfs_write+0x354/0xb10
[ 1061.581605]  ? fput_many+0x2f/0x1a0
[ 1061.582416]  ? ksys_write+0x1a9/0x260
[ 1061.583267]  ? __ia32_sys_read+0xb0/0xb0
[ 1061.584175]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.585384]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.586550]  do_syscall_64+0x33/0x40
[ 1061.587380]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.588547] RIP: 0033:0x7f2d08327b19
[ 1061.589409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.593561] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1061.595336] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1061.596993] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1061.598600] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1061.600184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1061.601796] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1061.603459] CPU: 1 PID: 6964 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1061.605070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.607002] Call Trace:
[ 1061.607618]  dump_stack+0x107/0x167
[ 1061.608463]  should_fail.cold+0x5/0xa
[ 1061.609346]  ? create_object.isra.0+0x3a/0xa30
[ 1061.610399]  should_failslab+0x5/0x20
[ 1061.611279]  kmem_cache_alloc+0x5b/0x310
[ 1061.612206]  ? mark_held_locks+0x9e/0xe0
[ 1061.613149]  create_object.isra.0+0x3a/0xa30
[ 1061.614163]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1061.615342]  kmem_cache_alloc_bulk+0x168/0x320
[ 1061.616396]  io_submit_sqes+0x6fe4/0x8610
[ 1061.617356]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1061.618518]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.619674]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.620788]  ? find_held_lock+0x2c/0x110
[ 1061.621746]  ? io_submit_sqes+0x8610/0x8610
[ 1061.622732]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.623846]  ? wait_for_completion_io+0x270/0x270
[ 1061.624973]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1061.626049]  ? vfs_write+0x354/0xb10
[ 1061.626913]  ? fput_many+0x2f/0x1a0
[ 1061.627753]  ? ksys_write+0x1a9/0x260
[ 1061.628642]  ? __ia32_sys_read+0xb0/0xb0
[ 1061.629587]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.630798]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.631984]  do_syscall_64+0x33/0x40
[ 1061.632844]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.634021] RIP: 0033:0x7fb6c80a6b19
[ 1061.634876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.639078] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1061.640797] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1061.642404] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1061.643996] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1061.645610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1061.647245] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1061.665016] FAULT_INJECTION: forcing a failure.
[ 1061.665016] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.667918] CPU: 1 PID: 6965 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1061.669489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.671398] Call Trace:
[ 1061.672014]  dump_stack+0x107/0x167
[ 1061.672863]  should_fail.cold+0x5/0xa
[ 1061.673747]  ? create_object.isra.0+0x3a/0xa30
[ 1061.674797]  should_failslab+0x5/0x20
[ 1061.675674]  kmem_cache_alloc+0x5b/0x310
[ 1061.676609]  ? mark_held_locks+0x9e/0xe0
[ 1061.677541]  create_object.isra.0+0x3a/0xa30
[ 1061.678548]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1061.679717]  kmem_cache_alloc_bulk+0x168/0x320
[ 1061.680769]  io_submit_sqes+0x6fe4/0x8610
[ 1061.681736]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1061.682875]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.684019]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.685129]  ? find_held_lock+0x2c/0x110
[ 1061.686078]  ? io_submit_sqes+0x8610/0x8610
[ 1061.687073]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.688176]  ? wait_for_completion_io+0x270/0x270
[ 1061.689282]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1061.690331]  ? vfs_write+0x354/0xb10
[ 1061.691168]  ? fput_many+0x2f/0x1a0
[ 1061.691993]  ? ksys_write+0x1a9/0x260
[ 1061.692854]  ? __ia32_sys_read+0xb0/0xb0
[ 1061.693778]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.694969]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.696155]  do_syscall_64+0x33/0x40
[ 1061.697009]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.698183] RIP: 0033:0x7f5b150fcb19
[ 1061.699033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.703254] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1061.704996] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1061.706649] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1061.708279] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1061.709928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1061.711557] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:25:38 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))

01:25:38 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:38 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

01:25:38 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 8)

01:25:38 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:25:38 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

01:25:38 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

[ 1061.865431] FAULT_INJECTION: forcing a failure.
[ 1061.865431] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.868538] CPU: 1 PID: 6978 Comm: syz-executor.5 Not tainted 5.10.247 #1
[ 1061.870115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.872014] Call Trace:
[ 1061.872624]  dump_stack+0x107/0x167
[ 1061.873460]  should_fail.cold+0x5/0xa
[ 1061.874368]  ? create_object.isra.0+0x3a/0xa30
[ 1061.875426]  should_failslab+0x5/0x20
[ 1061.876307]  kmem_cache_alloc+0x5b/0x310
[ 1061.877240]  ? mark_held_locks+0x9e/0xe0
[ 1061.878182]  create_object.isra.0+0x3a/0xa30
[ 1061.879188]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1061.880354]  kmem_cache_alloc_bulk+0x168/0x320
[ 1061.881413]  io_submit_sqes+0x6fe4/0x8610
[ 1061.882386]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1061.883553]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.884698]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1061.885818]  ? find_held_lock+0x2c/0x110
[ 1061.886773]  ? io_submit_sqes+0x8610/0x8610
[ 1061.887769]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.888865]  ? wait_for_completion_io+0x270/0x270
[ 1061.890035]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1061.891001] FAULT_INJECTION: forcing a failure.
[ 1061.891001] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.891122]  ? vfs_write+0x354/0xb10
[ 1061.891146]  ? fput_many+0x2f/0x1a0
[ 1061.895126]  ? ksys_write+0x1a9/0x260
[ 1061.896012]  ? __ia32_sys_read+0xb0/0xb0
[ 1061.896949]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.898162]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.899336]  do_syscall_64+0x33/0x40
[ 1061.900201]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.901378] RIP: 0033:0x7f2d08327b19
[ 1061.902249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.906526] RSP: 002b:00007f2d0589d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1061.908285] RAX: ffffffffffffffda RBX: 00007f2d0843af60 RCX: 00007f2d08327b19
[ 1061.909939] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1061.911587] RBP: 00007f2d0589d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1061.913236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1061.914893] R13: 00007ffea649c71f R14: 00007f2d0589d300 R15: 0000000000022000
[ 1061.916590] CPU: 0 PID: 6984 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1061.918045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1061.919791] Call Trace:
01:25:38 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1061.920331]  dump_stack+0x107/0x167
[ 1061.921230]  should_fail.cold+0x5/0xa
[ 1061.922025]  ? create_object.isra.0+0x3a/0xa30
[ 1061.922953]  should_failslab+0x5/0x20
[ 1061.923732]  kmem_cache_alloc+0x5b/0x310
[ 1061.924598]  create_object.isra.0+0x3a/0xa30
[ 1061.925552]  kmemleak_alloc_percpu+0xa0/0x100
[ 1061.926496]  pcpu_alloc+0x4e2/0x1240
[ 1061.927305]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1061.928174]  percpu_ref_init+0x31/0x3d0
[ 1061.929030]  io_uring_setup+0x47a/0x2980
[ 1061.929915]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1061.930960]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1061.932048]  ? wait_for_completion_io+0x270/0x270
[ 1061.933131]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1061.934217]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1061.935279]  do_syscall_64+0x33/0x40
[ 1061.936066]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1061.937116] RIP: 0033:0x7f488da58b19
[ 1061.937905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1061.941787] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1061.943338] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1061.944832] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1061.946317] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1061.947823] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1061.949313] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:25:38 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

[ 1073.735810] FAULT_INJECTION: forcing a failure.
[ 1073.735810] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.737279] CPU: 1 PID: 7007 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1073.738165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.739174] Call Trace:
[ 1073.739509]  dump_stack+0x107/0x167
[ 1073.739954]  should_fail.cold+0x5/0xa
[ 1073.740426]  ? create_object.isra.0+0x3a/0xa30
[ 1073.740976]  should_failslab+0x5/0x20
[ 1073.741450]  kmem_cache_alloc+0x5b/0x310
[ 1073.741962]  create_object.isra.0+0x3a/0xa30
[ 1073.742673]  kmemleak_alloc_percpu+0xa0/0x100
01:25:50 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 9)

01:25:50 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:25:50 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

01:25:50 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

01:25:50 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:25:50 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:25:50 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

[ 1073.743257]  pcpu_alloc+0x4e2/0x1240
[ 1073.743834]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1073.744329]  percpu_ref_init+0x31/0x3d0
[ 1073.744814]  io_uring_setup+0x47a/0x2980
[ 1073.745316]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.745923]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1073.746534]  ? wait_for_completion_io+0x270/0x270
[ 1073.747120]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.747730]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.748331]  do_syscall_64+0x33/0x40
[ 1073.748783]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.749402] RIP: 0033:0x7f488da58b19
[ 1073.749860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.752105] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1073.753028] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1073.753909] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1073.754771] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1073.755648] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1073.756056] FAULT_INJECTION: forcing a failure.
[ 1073.756056] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.756508] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1073.761363] CPU: 0 PID: 7006 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1073.762835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.764613] Call Trace:
[ 1073.765175]  dump_stack+0x107/0x167
[ 1073.765976]  should_fail.cold+0x5/0xa
[ 1073.766805]  ? create_object.isra.0+0x3a/0xa30
[ 1073.767788]  should_failslab+0x5/0x20
[ 1073.768604]  kmem_cache_alloc+0x5b/0x310
[ 1073.769469]  ? mark_held_locks+0x9e/0xe0
[ 1073.770350]  create_object.isra.0+0x3a/0xa30
[ 1073.771293]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1073.772386]  kmem_cache_alloc_bulk+0x168/0x320
[ 1073.773363]  io_submit_sqes+0x6fe4/0x8610
[ 1073.774263]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1073.775328]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.776390]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.777424]  ? find_held_lock+0x2c/0x110
[ 1073.778326]  ? io_submit_sqes+0x8610/0x8610
[ 1073.779393]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.780508]  ? wait_for_completion_io+0x270/0x270
[ 1073.781535]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1073.782709]  ? vfs_write+0x354/0xb10
[ 1073.783515]  ? fput_many+0x2f/0x1a0
[ 1073.784458]  ? ksys_write+0x1a9/0x260
[ 1073.785277]  ? __ia32_sys_read+0xb0/0xb0
[ 1073.786329]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.787553]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.788666]  do_syscall_64+0x33/0x40
[ 1073.789465]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.790602] RIP: 0033:0x7fb6c80a6b19
[ 1073.791412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.795479] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1073.797105] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1073.798653] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1073.798673] FAULT_INJECTION: forcing a failure.
[ 1073.798673] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.800178] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1073.800191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1073.800203] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1073.804320] CPU: 1 PID: 7021 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1073.805138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.806113] Call Trace:
[ 1073.806434]  dump_stack+0x107/0x167
[ 1073.806889]  should_fail.cold+0x5/0xa
[ 1073.807361]  should_failslab+0x5/0x20
[ 1073.807822]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1073.808369]  io_submit_sqes+0x6fe4/0x8610
[ 1073.808880]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1073.809475]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.810104]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.810689]  ? find_held_lock+0x2c/0x110
[ 1073.811181]  ? io_submit_sqes+0x8610/0x8610
[ 1073.811703]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.812284]  ? wait_for_completion_io+0x270/0x270
[ 1073.812872]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1073.813430]  ? vfs_write+0x354/0xb10
[ 1073.813888]  ? fput_many+0x2f/0x1a0
[ 1073.814304]  ? ksys_write+0x1a9/0x260
[ 1073.814762]  ? __ia32_sys_read+0xb0/0xb0
[ 1073.815252]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.815880]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.816475]  do_syscall_64+0x33/0x40
[ 1073.816922]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.817537] RIP: 0033:0x7fd722410b19
[ 1073.817988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.820154] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1073.821059] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1073.821943] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1073.822803] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1073.823658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1073.824516] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:25:50 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:50 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

01:25:50 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:25:50 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 10)

[ 1073.855307] FAULT_INJECTION: forcing a failure.
[ 1073.855307] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.858686] CPU: 0 PID: 7013 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1073.860314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.860807] FAULT_INJECTION: forcing a failure.
[ 1073.860807] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.862281] Call Trace:
[ 1073.862309]  dump_stack+0x107/0x167
[ 1073.862333]  should_fail.cold+0x5/0xa
[ 1073.865924]  ? create_object.isra.0+0x3a/0xa30
[ 1073.867003]  should_failslab+0x5/0x20
[ 1073.867986]  kmem_cache_alloc+0x5b/0x310
[ 1073.868932]  ? mark_held_locks+0x9e/0xe0
[ 1073.869923]  create_object.isra.0+0x3a/0xa30
[ 1073.870959]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1073.872165]  kmem_cache_alloc_bulk+0x168/0x320
[ 1073.873259]  io_submit_sqes+0x6fe4/0x8610
[ 1073.874277]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1073.875457]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.876773]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.877953]  ? find_held_lock+0x2c/0x110
[ 1073.878909]  ? io_submit_sqes+0x8610/0x8610
[ 1073.879932]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.881057]  ? wait_for_completion_io+0x270/0x270
[ 1073.882206]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1073.883280]  ? vfs_write+0x354/0xb10
[ 1073.884138]  ? fput_many+0x2f/0x1a0
[ 1073.884968]  ? ksys_write+0x1a9/0x260
[ 1073.885878]  ? __ia32_sys_read+0xb0/0xb0
[ 1073.886823]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.888028]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.889209]  do_syscall_64+0x33/0x40
[ 1073.890108]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.891284] RIP: 0033:0x7f5b150fcb19
[ 1073.892136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.896429] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1073.898198] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1073.899846] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1073.901481] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1073.903131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1073.904769] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1073.906433] CPU: 1 PID: 7025 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1073.907226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.908180] Call Trace:
[ 1073.908485]  dump_stack+0x107/0x167
[ 1073.908903]  should_fail.cold+0x5/0xa
[ 1073.909341]  ? percpu_ref_init+0xd8/0x3d0
[ 1073.909823]  should_failslab+0x5/0x20
[ 1073.910261]  kmem_cache_alloc_trace+0x55/0x320
[ 1073.910793]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1073.911259]  percpu_ref_init+0xd8/0x3d0
[ 1073.911714]  io_uring_setup+0x47a/0x2980
[ 1073.912181]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.912741]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1073.913326]  ? wait_for_completion_io+0x270/0x270
[ 1073.913911]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.914504]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.915093]  do_syscall_64+0x33/0x40
[ 1073.915508]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.916086] RIP: 0033:0x7f488da58b19
[ 1073.916489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.918585] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1073.919454] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1073.920264] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1073.921079] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1073.921903] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1073.922726] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:25:50 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), 0x0)

01:25:50 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

01:25:50 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1073.962896] FAULT_INJECTION: forcing a failure.
[ 1073.962896] name failslab, interval 1, probability 0, space 0, times 0
[ 1073.964371] CPU: 1 PID: 7030 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1073.965157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1073.966073] Call Trace:
[ 1073.966372]  dump_stack+0x107/0x167
[ 1073.966789]  should_fail.cold+0x5/0xa
[ 1073.967223]  ? create_object.isra.0+0x3a/0xa30
[ 1073.967743]  should_failslab+0x5/0x20
[ 1073.968164]  kmem_cache_alloc+0x5b/0x310
[ 1073.968610]  create_object.isra.0+0x3a/0xa30
[ 1073.969108]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1073.969668]  kmem_cache_alloc_bulk+0x168/0x320
[ 1073.970181]  io_submit_sqes+0x6fe4/0x8610
[ 1073.970639]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1073.971177]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.971743]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1073.972286]  ? find_held_lock+0x2c/0x110
[ 1073.972750]  ? io_submit_sqes+0x8610/0x8610
[ 1073.973247]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1073.973809]  ? wait_for_completion_io+0x270/0x270
[ 1073.974370]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1073.974904]  ? vfs_write+0x354/0xb10
[ 1073.975338]  ? fput_many+0x2f/0x1a0
[ 1073.975751]  ? ksys_write+0x1a9/0x260
[ 1073.976185]  ? __ia32_sys_read+0xb0/0xb0
[ 1073.976651]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1073.977219]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1073.977795]  do_syscall_64+0x33/0x40
[ 1073.978212]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1073.978790] RIP: 0033:0x7fd722410b19
[ 1073.979215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1073.981284] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1073.982124] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1073.982925] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1073.983709] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1073.984473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1073.985247] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:26:04 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

01:26:04 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 1)

01:26:04 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:04 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:04 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

01:26:04 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 11)

01:26:04 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:04 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

[ 1087.969047] FAULT_INJECTION: forcing a failure.
[ 1087.969047] name failslab, interval 1, probability 0, space 0, times 0
[ 1087.970658] CPU: 1 PID: 7047 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1087.971525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1087.972563] Call Trace:
[ 1087.972900]  dump_stack+0x107/0x167
[ 1087.973361]  should_fail.cold+0x5/0xa
[ 1087.973831]  ? create_object.isra.0+0x3a/0xa30
[ 1087.974415]  should_failslab+0x5/0x20
[ 1087.974878]  kmem_cache_alloc+0x5b/0x310
[ 1087.975374]  create_object.isra.0+0x3a/0xa30
[ 1087.975906]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1087.976524]  kmem_cache_alloc_trace+0x151/0x320
[ 1087.977096]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1087.977593]  percpu_ref_init+0xd8/0x3d0
[ 1087.978084]  io_uring_setup+0x47a/0x2980
[ 1087.978577]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1087.979165]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1087.979776]  ? wait_for_completion_io+0x270/0x270
[ 1087.980380]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1087.981023]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1087.981651]  do_syscall_64+0x33/0x40
[ 1087.982111]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1087.982732] RIP: 0033:0x7f488da58b19
[ 1087.983183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1087.985412] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1087.986344] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1087.987220] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1087.988077] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1087.988933] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1087.989794] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1087.998249] FAULT_INJECTION: forcing a failure.
[ 1087.998249] name failslab, interval 1, probability 0, space 0, times 0
[ 1087.999764] CPU: 1 PID: 7048 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1088.000594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.001590] Call Trace:
[ 1088.001913]  dump_stack+0x107/0x167
[ 1088.002380]  should_fail.cold+0x5/0xa
[ 1088.002860]  ? create_object.isra.0+0x3a/0xa30
[ 1088.003429]  should_failslab+0x5/0x20
[ 1088.003902]  kmem_cache_alloc+0x5b/0x310
[ 1088.004420]  ? mark_held_locks+0x9e/0xe0
[ 1088.004932]  create_object.isra.0+0x3a/0xa30
[ 1088.005477]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1088.006121]  kmem_cache_alloc_bulk+0x168/0x320
[ 1088.006696]  io_submit_sqes+0x6fe4/0x8610
[ 1088.007221]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1088.007843]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.008458]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.009081]  ? find_held_lock+0x2c/0x110
[ 1088.009599]  ? io_submit_sqes+0x8610/0x8610
[ 1088.009853] FAULT_INJECTION: forcing a failure.
[ 1088.009853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1088.010156]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1088.010169]  ? wait_for_completion_io+0x270/0x270
[ 1088.010191]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1088.014691]  ? vfs_write+0x354/0xb10
[ 1088.015175]  ? fput_many+0x2f/0x1a0
[ 1088.015653]  ? ksys_write+0x1a9/0x260
[ 1088.016144]  ? __ia32_sys_read+0xb0/0xb0
[ 1088.016683]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.017367]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.018057]  do_syscall_64+0x33/0x40
[ 1088.018544]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.019218] RIP: 0033:0x7fd722410b19
[ 1088.019709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.022155] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1088.023152] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1088.024087] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1088.025017] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1088.025949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1088.026891] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
[ 1088.027852] CPU: 0 PID: 7056 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1088.029433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.031357] Call Trace:
[ 1088.031968]  dump_stack+0x107/0x167
[ 1088.032803]  should_fail.cold+0x5/0xa
[ 1088.033687]  _copy_from_user+0x2e/0x1b0
[ 1088.034627]  io_uring_setup+0x9b/0x2980
[ 1088.035541]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1088.036645]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1088.037801]  ? wait_for_completion_io+0x270/0x270
[ 1088.038930]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1088.039993]  ? vfs_write+0x354/0xb10
[ 1088.040844]  ? fput_many+0x2f/0x1a0
[ 1088.041675]  ? ksys_write+0x1a9/0x260
[ 1088.042550]  ? __ia32_sys_read+0xb0/0xb0
[ 1088.043473]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.044650]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.045837]  do_syscall_64+0x33/0x40
[ 1088.046720]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.047865] RIP: 0033:0x7f006db87b19
[ 1088.048703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.052864] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1088.054624] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
01:26:04 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 12)

[ 1088.056225] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1088.058026] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1088.059644] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1088.061249] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1088.073403] FAULT_INJECTION: forcing a failure.
[ 1088.073403] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.076389] CPU: 0 PID: 7052 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1088.077915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.079779] Call Trace:
[ 1088.080368]  dump_stack+0x107/0x167
[ 1088.081182]  should_fail.cold+0x5/0xa
[ 1088.082060]  ? create_object.isra.0+0x3a/0xa30
[ 1088.083093]  should_failslab+0x5/0x20
[ 1088.083941]  kmem_cache_alloc+0x5b/0x310
[ 1088.084854]  ? mark_held_locks+0x9e/0xe0
[ 1088.085757]  create_object.isra.0+0x3a/0xa30
[ 1088.086766]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1088.087904]  kmem_cache_alloc_bulk+0x168/0x320
[ 1088.088931]  io_submit_sqes+0x6fe4/0x8610
[ 1088.089866]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1088.090997]  ? __do_sys_io_uring_enter+0x6b2/0x1890
01:26:04 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[ 1088.092110]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.093323]  ? find_held_lock+0x2c/0x110
[ 1088.093989] FAULT_INJECTION: forcing a failure.
[ 1088.093989] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1088.094295]  ? io_submit_sqes+0x8610/0x8610
[ 1088.096759]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1088.097871]  ? wait_for_completion_io+0x270/0x270
[ 1088.099005]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1088.100075]  ? vfs_write+0x354/0xb10
[ 1088.100937]  ? fput_many+0x2f/0x1a0
[ 1088.101778]  ? ksys_write+0x1a9/0x260
[ 1088.102683]  ? __ia32_sys_read+0xb0/0xb0
[ 1088.103627]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.104826]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.106028]  do_syscall_64+0x33/0x40
[ 1088.106889]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.108046] RIP: 0033:0x7fb6c80a6b19
[ 1088.108896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.113029] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1088.114766] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1088.116356] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1088.117948] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1088.119583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1088.121189] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1088.122848] CPU: 1 PID: 7061 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1088.123692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.124647] Call Trace:
[ 1088.124954]  dump_stack+0x107/0x167
[ 1088.125371]  should_fail.cold+0x5/0xa
[ 1088.125846]  __alloc_pages_nodemask+0x182/0x600
[ 1088.126392]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1088.127087]  ? cap_capable+0x1cd/0x230
[ 1088.127541]  alloc_pages_current+0x187/0x280
[ 1088.128046]  __get_free_pages+0xc/0xa0
[ 1088.128497]  io_uring_setup+0xe27/0x2980
[ 1088.128968]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1088.129553]  ? wait_for_completion_io+0x270/0x270
[ 1088.130138]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.130746]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.131338]  do_syscall_64+0x33/0x40
[ 1088.131770]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.132353] RIP: 0033:0x7f488da58b19
[ 1088.132777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.134914] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1088.135780] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1088.136595] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1088.137406] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1088.138224] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1088.139046] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1088.143882] FAULT_INJECTION: forcing a failure.
[ 1088.143882] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.145218] CPU: 1 PID: 7058 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1088.146003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.146952] Call Trace:
[ 1088.147254]  dump_stack+0x107/0x167
[ 1088.147676]  should_fail.cold+0x5/0xa
[ 1088.148111]  ? create_object.isra.0+0x3a/0xa30
[ 1088.148633]  should_failslab+0x5/0x20
[ 1088.149068]  kmem_cache_alloc+0x5b/0x310
[ 1088.149531]  ? mark_held_locks+0x9e/0xe0
[ 1088.150004]  create_object.isra.0+0x3a/0xa30
[ 1088.150504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1088.151089]  kmem_cache_alloc_bulk+0x168/0x320
[ 1088.151613]  io_submit_sqes+0x6fe4/0x8610
[ 1088.152090]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1088.152658]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.153221]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.153772]  ? find_held_lock+0x2c/0x110
[ 1088.154242]  ? io_submit_sqes+0x8610/0x8610
[ 1088.154735]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1088.155285]  ? wait_for_completion_io+0x270/0x270
[ 1088.155834]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1088.156363]  ? vfs_write+0x354/0xb10
[ 1088.156795]  ? fput_many+0x2f/0x1a0
[ 1088.157207]  ? ksys_write+0x1a9/0x260
[ 1088.157643]  ? __ia32_sys_read+0xb0/0xb0
[ 1088.158114]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.158711]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.159299]  do_syscall_64+0x33/0x40
[ 1088.159722]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.160304] RIP: 0033:0x7f5b150fcb19
[ 1088.160727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.162825] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1088.163693] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1088.164499] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1088.165296] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1088.166107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1088.166913] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:26:04 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

[ 1088.205351] FAULT_INJECTION: forcing a failure.
[ 1088.205351] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.206767] CPU: 1 PID: 7068 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1088.207535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1088.208477] Call Trace:
[ 1088.208780]  dump_stack+0x107/0x167
[ 1088.209188]  should_fail.cold+0x5/0xa
[ 1088.209621]  ? create_object.isra.0+0x3a/0xa30
[ 1088.210142]  should_failslab+0x5/0x20
[ 1088.210575]  kmem_cache_alloc+0x5b/0x310
[ 1088.211045]  ? mark_held_locks+0x9e/0xe0
[ 1088.211505]  create_object.isra.0+0x3a/0xa30
[ 1088.211997]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1088.212571]  kmem_cache_alloc_bulk+0x168/0x320
[ 1088.213087]  io_submit_sqes+0x6fe4/0x8610
[ 1088.213564]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1088.214130]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.214692]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1088.215237]  ? find_held_lock+0x2c/0x110
[ 1088.215698]  ? io_submit_sqes+0x8610/0x8610
[ 1088.216200]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1088.216759]  ? wait_for_completion_io+0x270/0x270
[ 1088.217304]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1088.217830]  ? vfs_write+0x354/0xb10
[ 1088.218255]  ? fput_many+0x2f/0x1a0
[ 1088.218665]  ? ksys_write+0x1a9/0x260
[ 1088.219092]  ? __ia32_sys_read+0xb0/0xb0
[ 1088.219552]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1088.220146]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1088.220729]  do_syscall_64+0x33/0x40
[ 1088.221148]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1088.221741] RIP: 0033:0x7fd722410b19
[ 1088.222170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1088.224245] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1088.225102] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1088.225906] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1088.226717] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1088.227521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1088.228333] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:26:20 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:20 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 13)

01:26:20 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:20 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 2)

01:26:20 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

01:26:20 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

01:26:20 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

01:26:20 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

[ 1103.525798] FAULT_INJECTION: forcing a failure.
[ 1103.525798] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.528265] CPU: 1 PID: 7091 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1103.529657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.531359] Call Trace:
[ 1103.531902]  dump_stack+0x107/0x167
[ 1103.532300] FAULT_INJECTION: forcing a failure.
[ 1103.532300] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1103.532635]  should_fail.cold+0x5/0xa
[ 1103.532656]  ? io_uring_setup+0x258/0x2980
[ 1103.532672]  should_failslab+0x5/0x20
[ 1103.532690]  kmem_cache_alloc_trace+0x55/0x320
[ 1103.532712]  io_uring_setup+0x258/0x2980
[ 1103.532730]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1103.532761]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1103.541572]  ? wait_for_completion_io+0x270/0x270
[ 1103.542581]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.543640]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.544682]  do_syscall_64+0x33/0x40
[ 1103.545432]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.546481] RIP: 0033:0x7f006db87b19
[ 1103.547228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.550944] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1103.552461] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1103.553879] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1103.555317] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1103.556739] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1103.558169] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1103.559639] CPU: 0 PID: 7081 Comm: syz-executor.2 Not tainted 5.10.247 #1
[ 1103.561303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.563318] Call Trace:
[ 1103.563956]  dump_stack+0x107/0x167
[ 1103.564839]  should_fail.cold+0x5/0xa
[ 1103.565772]  _copy_from_user+0x2e/0x1b0
[ 1103.566736]  iovec_from_user+0x141/0x400
[ 1103.567698]  __import_iovec+0x67/0x590
[ 1103.568617]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1103.569860]  io_import_iovec+0x581/0x1120
[ 1103.570856]  ? io_complete_rw+0x230/0x230
[ 1103.571849]  ? lock_downgrade+0x6d0/0x6d0
[ 1103.572834]  ? unwind_next_frame+0x13ef/0x1a90
[ 1103.573930]  io_read+0xe14/0x11e0
[ 1103.574782]  ? kiocb_done+0xc90/0xc90
[ 1103.575690]  ? mark_lock+0xf5/0x2df0
[ 1103.576580]  ? lock_chain_count+0x20/0x20
[ 1103.577569]  ? lock_chain_count+0x20/0x20
[ 1103.578563]  ? stack_trace_save+0x8c/0xc0
[ 1103.579557]  ? stack_trace_consume_entry+0x160/0x160
[ 1103.580769]  ? lock_acquire+0x197/0x470
[ 1103.581720]  ? __lock_acquire+0xbb1/0x5b00
[ 1103.582747]  io_issue_sqe+0x2e8a/0x77d0
[ 1103.583702]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1103.584940]  ? lock_chain_count+0x20/0x20
[ 1103.585923]  ? __is_insn_slot_addr+0x14c/0x290
[ 1103.587015]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1103.588258]  ? io_connect+0x610/0x610
[ 1103.589167]  ? lock_acquire+0x197/0x470
[ 1103.590111]  ? find_held_lock+0x2c/0x110
[ 1103.591088]  ? __fget_files+0x2cf/0x520
[ 1103.592031]  ? lock_downgrade+0x6d0/0x6d0
[ 1103.593017]  __io_queue_sqe+0x90/0x9d0
[ 1103.593946]  ? io_issue_sqe+0x77d0/0x77d0
[ 1103.594934]  ? __fget_files+0x2f8/0x520
[ 1103.595880]  ? io_prep_rw+0x7f5/0x1050
[ 1103.596799]  io_submit_sqes+0x44a8/0x8610
[ 1103.597807]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1103.598985]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1103.600126]  ? find_held_lock+0x2c/0x110
[ 1103.601088]  ? io_submit_sqes+0x8610/0x8610
[ 1103.602101]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1103.603253]  ? wait_for_completion_io+0x270/0x270
[ 1103.604387]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1103.605475]  ? vfs_write+0x354/0xb10
[ 1103.606354]  ? fput_many+0x2f/0x1a0
[ 1103.607210]  ? ksys_write+0x1a9/0x260
[ 1103.608101]  ? __ia32_sys_read+0xb0/0xb0
[ 1103.609057]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.610291]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.611502]  do_syscall_64+0x33/0x40
[ 1103.612376]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.613579] RIP: 0033:0x7fb6c80a6b19
[ 1103.614455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.618732] RSP: 002b:00007fb6c561c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1103.620492] RAX: ffffffffffffffda RBX: 00007fb6c81b9f60 RCX: 00007fb6c80a6b19
[ 1103.622140] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1103.623806] RBP: 00007fb6c561c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1103.625453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1103.627112] R13: 00007ffea31d513f R14: 00007fb6c561c300 R15: 0000000000022000
[ 1103.631456] FAULT_INJECTION: forcing a failure.
[ 1103.631456] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.633677] CPU: 1 PID: 7096 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1103.635010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.636603] Call Trace:
[ 1103.637110]  dump_stack+0x107/0x167
[ 1103.637808]  should_fail.cold+0x5/0xa
[ 1103.638548]  ? io_wq_create+0xeb/0xc00
[ 1103.639289]  should_failslab+0x5/0x20
[ 1103.640017]  __kmalloc+0x72/0x390
[ 1103.640687]  io_wq_create+0xeb/0xc00
[ 1103.641022] FAULT_INJECTION: forcing a failure.
[ 1103.641022] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1103.641405]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1103.641427]  ? io_import_iovec+0x1120/0x1120
[ 1103.645880]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1103.646740]  ? __io_req_find_next+0x300/0x300
[ 1103.647603]  ? percpu_ref_tryget_many+0x166/0x2d0
[ 1103.648523]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1103.649443]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1103.650462]  __do_sys_io_uring_enter+0x146f/0x1890
[ 1103.651400]  ? find_held_lock+0x2c/0x110
[ 1103.652182]  ? io_submit_sqes+0x8610/0x8610
[ 1103.653008]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1103.653930]  ? wait_for_completion_io+0x270/0x270
[ 1103.654873]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1103.655756]  ? vfs_write+0x354/0xb10
[ 1103.656461]  ? fput_many+0x2f/0x1a0
[ 1103.657147]  ? ksys_write+0x1a9/0x260
[ 1103.657867]  ? __ia32_sys_read+0xb0/0xb0
[ 1103.658652]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.659642]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.660615]  do_syscall_64+0x33/0x40
[ 1103.661319]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.662294] RIP: 0033:0x7fd722410b19
[ 1103.662997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.666496] RSP: 002b:00007fd71f965188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1103.667940] RAX: ffffffffffffffda RBX: 00007fd722524020 RCX: 00007fd722410b19
[ 1103.669260] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1103.670601] RBP: 00007fd71f9651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1103.671909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1103.673239] R13: 00007ffd196a724f R14: 00007fd71f965300 R15: 0000000000022000
[ 1103.674803] CPU: 0 PID: 7094 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1103.676439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.678395] Call Trace:
[ 1103.679015]  dump_stack+0x107/0x167
[ 1103.679870]  should_fail.cold+0x5/0xa
[ 1103.680770]  __alloc_pages_nodemask+0x182/0x600
[ 1103.681870]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1103.683279]  ? cap_capable+0x1cd/0x230
[ 1103.684193]  alloc_pages_current+0x187/0x280
[ 1103.685224]  __get_free_pages+0xc/0xa0
[ 1103.686132]  io_uring_setup+0xf9a/0x2980
[ 1103.687098]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1103.688284]  ? wait_for_completion_io+0x270/0x270
[ 1103.689432]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.690671]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.691887]  do_syscall_64+0x33/0x40
[ 1103.692762]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.693961] RIP: 0033:0x7f488da58b19
[ 1103.694844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.699165] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1103.700921] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1103.702585] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1103.704235] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1103.705881] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1103.707530] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:26:20 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

[ 1103.728121] FAULT_INJECTION: forcing a failure.
[ 1103.728121] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.730289] CPU: 1 PID: 7097 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1103.731539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.733065] Call Trace:
[ 1103.733554]  dump_stack+0x107/0x167
[ 1103.734231]  should_fail.cold+0x5/0xa
[ 1103.734927]  ? create_object.isra.0+0x3a/0xa30
[ 1103.735767]  should_failslab+0x5/0x20
[ 1103.736463]  kmem_cache_alloc+0x5b/0x310
[ 1103.737215]  ? mark_held_locks+0x9e/0xe0
[ 1103.737965]  create_object.isra.0+0x3a/0xa30
[ 1103.738771]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1103.739704]  kmem_cache_alloc_bulk+0x168/0x320
[ 1103.740541]  io_submit_sqes+0x6fe4/0x8610
[ 1103.741301]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1103.742214]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1103.743115]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1103.743987]  ? find_held_lock+0x2c/0x110
[ 1103.744729]  ? io_submit_sqes+0x8610/0x8610
[ 1103.745516]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1103.746393]  ? wait_for_completion_io+0x270/0x270
[ 1103.747275]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1103.748122]  ? vfs_write+0x354/0xb10
[ 1103.748796]  ? fput_many+0x2f/0x1a0
[ 1103.749448]  ? ksys_write+0x1a9/0x260
[ 1103.750142]  ? __ia32_sys_read+0xb0/0xb0
[ 1103.750893]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.751852]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.752799]  do_syscall_64+0x33/0x40
[ 1103.753476]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.754416] RIP: 0033:0x7f5b150fcb19
[ 1103.755087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.758405] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1103.759780] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1103.761053] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1103.762346] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1103.763630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1103.764898] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:26:20 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:20 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

01:26:20 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 3)

01:26:20 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

01:26:20 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

01:26:20 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 14)

01:26:20 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

01:26:20 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1103.927911] FAULT_INJECTION: forcing a failure.
[ 1103.927911] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.929883] CPU: 1 PID: 7111 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1103.931010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.932367] Call Trace:
[ 1103.932796]  dump_stack+0x107/0x167
[ 1103.933399]  should_fail.cold+0x5/0xa
[ 1103.934023]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1103.934926]  should_failslab+0x5/0x20
[ 1103.935548]  kmem_cache_alloc_trace+0x55/0x320
[ 1103.936306]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1103.937167]  io_uring_setup+0x14f6/0x2980
[ 1103.937842]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1103.938691]  ? wait_for_completion_io+0x270/0x270
[ 1103.939491]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.940347]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.941185]  do_syscall_64+0x33/0x40
[ 1103.941778]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.942615] RIP: 0033:0x7f488da58b19
[ 1103.943229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.946207] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1103.947440] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1103.948605] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1103.949768] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1103.950945] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1103.951942] FAULT_INJECTION: forcing a failure.
[ 1103.951942] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.952084] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1103.956773] CPU: 0 PID: 7118 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1103.958391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.960334] Call Trace:
[ 1103.960951]  dump_stack+0x107/0x167
[ 1103.961213] FAULT_INJECTION: forcing a failure.
[ 1103.961213] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.961801]  should_fail.cold+0x5/0xa
[ 1103.961823]  ? create_object.isra.0+0x3a/0xa30
[ 1103.961843]  should_failslab+0x5/0x20
[ 1103.966385]  kmem_cache_alloc+0x5b/0x310
[ 1103.967330]  create_object.isra.0+0x3a/0xa30
[ 1103.968344]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1103.969521]  kmem_cache_alloc_trace+0x151/0x320
[ 1103.970612]  io_uring_setup+0x258/0x2980
[ 1103.971556]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1103.972675]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1103.973842]  ? wait_for_completion_io+0x270/0x270
[ 1103.975008]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1103.976219]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1103.977431]  do_syscall_64+0x33/0x40
[ 1103.978298]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1103.979467] RIP: 0033:0x7f006db87b19
[ 1103.980303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1103.984520] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1103.986271] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1103.987900] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1103.989532] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1103.991173] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1103.992811] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1103.994569] CPU: 1 PID: 7119 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1103.995623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1103.996863] Call Trace:
[ 1103.997274]  dump_stack+0x107/0x167
[ 1103.997817]  should_fail.cold+0x5/0xa
[ 1103.998413]  ? io_setup_async_rw+0x180/0x580
[ 1103.999080]  should_failslab+0x5/0x20
[ 1103.999666]  __kmalloc+0x72/0x390
[ 1104.000190]  io_setup_async_rw+0x180/0x580
[ 1104.000830]  io_read+0xe98/0x11e0
[ 1104.001356]  ? kiocb_done+0xc90/0xc90
[ 1104.001424] FAULT_INJECTION: forcing a failure.
[ 1104.001424] name failslab, interval 1, probability 0, space 0, times 0
[ 1104.001932]  ? mark_lock+0xf5/0x2df0
[ 1104.001950]  ? lock_chain_count+0x20/0x20
[ 1104.001971]  ? stack_trace_consume_entry+0x160/0x160
[ 1104.001992]  ? lock_acquire+0x197/0x470
[ 1104.006954]  ? __lock_acquire+0xbb1/0x5b00
[ 1104.007579]  io_issue_sqe+0x2e8a/0x77d0
[ 1104.008173]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1104.008945]  ? lock_chain_count+0x20/0x20
[ 1104.009556]  ? __is_insn_slot_addr+0x14c/0x290
[ 1104.010248]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1104.011039]  ? io_connect+0x610/0x610
[ 1104.011610]  ? lock_acquire+0x197/0x470
[ 1104.012193]  ? find_held_lock+0x2c/0x110
[ 1104.012795]  ? __fget_files+0x2cf/0x520
[ 1104.013382]  ? lock_downgrade+0x6d0/0x6d0
[ 1104.014004]  __io_queue_sqe+0x90/0x9d0
[ 1104.014590]  ? io_issue_sqe+0x77d0/0x77d0
[ 1104.015198]  ? __fget_files+0x2f8/0x520
[ 1104.015799]  ? io_prep_rw+0x7f5/0x1050
[ 1104.016377]  io_submit_sqes+0x44a8/0x8610
[ 1104.017010]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1104.017750]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1104.018483]  ? find_held_lock+0x2c/0x110
[ 1104.019094]  ? io_submit_sqes+0x8610/0x8610
[ 1104.019731]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1104.020437]  ? wait_for_completion_io+0x270/0x270
[ 1104.021142]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1104.021821]  ? vfs_write+0x354/0xb10
[ 1104.022375]  ? fput_many+0x2f/0x1a0
[ 1104.022907]  ? ksys_write+0x1a9/0x260
[ 1104.023462]  ? __ia32_sys_read+0xb0/0xb0
[ 1104.024057]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1104.024825]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1104.025578]  do_syscall_64+0x33/0x40
[ 1104.026126]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1104.026881] RIP: 0033:0x7f5b150fcb19
[ 1104.027423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1104.030112] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1104.031243] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1104.032280] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1104.033332] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1104.034389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1104.035417] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1104.036640] CPU: 0 PID: 7117 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1104.038165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1104.039988] Call Trace:
[ 1104.040567]  dump_stack+0x107/0x167
[ 1104.041371]  should_fail.cold+0x5/0xa
[ 1104.042218]  ? create_object.isra.0+0x3a/0xa30
[ 1104.043221]  should_failslab+0x5/0x20
[ 1104.044061]  kmem_cache_alloc+0x5b/0x310
[ 1104.044957]  ? mark_held_locks+0x9e/0xe0
[ 1104.045854]  create_object.isra.0+0x3a/0xa30
[ 1104.046816]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1104.047929]  kmem_cache_alloc_bulk+0x168/0x320
[ 1104.048931]  io_submit_sqes+0x6fe4/0x8610
[ 1104.049842]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1104.050934]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1104.052019]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1104.053069]  ? find_held_lock+0x2c/0x110
[ 1104.053958]  ? io_submit_sqes+0x8610/0x8610
[ 1104.054913]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1104.055965]  ? wait_for_completion_io+0x270/0x270
[ 1104.057015]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1104.058027]  ? vfs_write+0x354/0xb10
[ 1104.058846]  ? fput_many+0x2f/0x1a0
[ 1104.059634]  ? ksys_write+0x1a9/0x260
[ 1104.060456]  ? __ia32_sys_read+0xb0/0xb0
[ 1104.061338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1104.062484]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1104.063603]  do_syscall_64+0x33/0x40
[ 1104.064409]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1104.065516] RIP: 0033:0x7fd722410b19
[ 1104.066329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1104.070309] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1104.071956] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1104.073493] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1104.075035] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1104.076568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1104.078097] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:26:32 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:32 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 4)

01:26:32 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:32 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

01:26:32 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:26:32 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

01:26:32 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 15)

01:26:32 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

[ 1115.991410] FAULT_INJECTION: forcing a failure.
[ 1115.991410] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.993049] FAULT_INJECTION: forcing a failure.
[ 1115.993049] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.993071] CPU: 0 PID: 7139 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1115.993085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1115.998234] Call Trace:
[ 1115.998923]  dump_stack+0x107/0x167
[ 1115.999843]  should_fail.cold+0x5/0xa
[ 1116.000787]  ? create_object.isra.0+0x3a/0xa30
[ 1116.001940]  should_failslab+0x5/0x20
[ 1116.002893]  kmem_cache_alloc+0x5b/0x310
[ 1116.003910]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1116.005401]  create_object.isra.0+0x3a/0xa30
[ 1116.006518]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1116.007791]  kmem_cache_alloc_trace+0x151/0x320
[ 1116.008961]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1116.010338]  io_uring_setup+0x14f6/0x2980
[ 1116.011384]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1116.012650]  ? wait_for_completion_io+0x270/0x270
[ 1116.013879]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.015221]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.016521]  do_syscall_64+0x33/0x40
[ 1116.017468]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.018771] RIP: 0033:0x7f488da58b19
[ 1116.019706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.024365] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1116.026263] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1116.028058] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1116.029849] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1116.031551] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1116.033000] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1116.034506] CPU: 1 PID: 7137 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1116.035299] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.036211] Call Trace:
[ 1116.036530]  dump_stack+0x107/0x167
[ 1116.036937]  should_fail.cold+0x5/0xa
[ 1116.037355]  ? create_object.isra.0+0x3a/0xa30
[ 1116.037873]  should_failslab+0x5/0x20
[ 1116.038322]  kmem_cache_alloc+0x5b/0x310
[ 1116.038813]  create_object.isra.0+0x3a/0xa30
[ 1116.039293]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1116.039860]  __kmalloc+0x16e/0x390
[ 1116.040267]  io_setup_async_rw+0x180/0x580
[ 1116.040740]  io_read+0xe98/0x11e0
[ 1116.041131]  ? kiocb_done+0xc90/0xc90
[ 1116.041550]  ? mark_lock+0xf5/0x2df0
[ 1116.041972]  ? lock_chain_count+0x20/0x20
[ 1116.042454]  ? stack_trace_consume_entry+0x160/0x160
[ 1116.043014]  ? lock_acquire+0x197/0x470
[ 1116.043467]  ? __lock_acquire+0xbb1/0x5b00
[ 1116.043938]  io_issue_sqe+0x2e8a/0x77d0
[ 1116.044374]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1116.044959]  ? lock_chain_count+0x20/0x20
[ 1116.045408]  ? __is_insn_slot_addr+0x14c/0x290
[ 1116.045905]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1116.046498]  ? io_connect+0x610/0x610
[ 1116.046955]  ? lock_acquire+0x197/0x470
[ 1116.047390]  ? find_held_lock+0x2c/0x110
[ 1116.047853]  ? __fget_files+0x2cf/0x520
[ 1116.048296]  ? lock_downgrade+0x6d0/0x6d0
[ 1116.048748]  __io_queue_sqe+0x90/0x9d0
[ 1116.049189]  ? io_issue_sqe+0x77d0/0x77d0
[ 1116.049647]  ? __fget_files+0x2f8/0x520
[ 1116.050092]  ? io_prep_rw+0x7f5/0x1050
[ 1116.050543]  io_submit_sqes+0x44a8/0x8610
[ 1116.051008]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.051577]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.052113]  ? find_held_lock+0x2c/0x110
[ 1116.052575]  ? io_submit_sqes+0x8610/0x8610
[ 1116.053057]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.053601]  ? wait_for_completion_io+0x270/0x270
[ 1116.054139]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1116.054651]  ? vfs_write+0x354/0xb10
[ 1116.055053]  ? fput_many+0x2f/0x1a0
[ 1116.055457]  ? ksys_write+0x1a9/0x260
[ 1116.055875]  ? __ia32_sys_read+0xb0/0xb0
[ 1116.056325]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.056895]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.057465]  do_syscall_64+0x33/0x40
[ 1116.057907]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.058101] FAULT_INJECTION: forcing a failure.
[ 1116.058101] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1116.058469] RIP: 0033:0x7f5b150fcb19
[ 1116.058480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.058485] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1116.058496] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1116.058502] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1116.058508] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.058514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1116.058529] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1116.068708] CPU: 0 PID: 7148 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1116.070179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.071953] Call Trace:
[ 1116.072521]  dump_stack+0x107/0x167
[ 1116.073301]  should_fail.cold+0x5/0xa
[ 1116.074123]  __alloc_pages_nodemask+0x182/0x600
[ 1116.075139]  ? lock_release+0x680/0x680
[ 1116.075926] FAULT_INJECTION: forcing a failure.
[ 1116.075926] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.075999]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1116.078582]  ? lock_downgrade+0x6d0/0x6d0
[ 1116.079480]  alloc_pages_current+0x187/0x280
[ 1116.080421]  kmalloc_order+0x35/0x160
[ 1116.081244]  kmalloc_order_trace+0x14/0xa0
[ 1116.082157]  io_uring_setup+0x33c/0x2980
[ 1116.083043]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.084081]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1116.085169]  ? wait_for_completion_io+0x270/0x270
[ 1116.086222]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.087369]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.088485]  do_syscall_64+0x33/0x40
[ 1116.089282]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.090400] RIP: 0033:0x7f006db87b19
[ 1116.091201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.095164] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1116.096808] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1116.098351] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1116.099893] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1116.101427] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1116.102977] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1116.104541] CPU: 1 PID: 7149 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1116.105339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.106310] Call Trace:
[ 1116.106614]  dump_stack+0x107/0x167
[ 1116.107031]  should_fail.cold+0x5/0xa
[ 1116.107494]  ? create_object.isra.0+0x3a/0xa30
[ 1116.108026]  should_failslab+0x5/0x20
[ 1116.108468]  kmem_cache_alloc+0x5b/0x310
[ 1116.108943]  ? mark_held_locks+0x9e/0xe0
[ 1116.109408]  create_object.isra.0+0x3a/0xa30
[ 1116.109930]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1116.110527]  kmem_cache_alloc_bulk+0x168/0x320
[ 1116.111071]  io_submit_sqes+0x6fe4/0x8610
[ 1116.111548]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1116.112124]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.112701]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.113251]  ? find_held_lock+0x2c/0x110
[ 1116.113729]  ? io_submit_sqes+0x8610/0x8610
[ 1116.114238]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.114830]  ? wait_for_completion_io+0x270/0x270
[ 1116.115406]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1116.115961]  ? vfs_write+0x354/0xb10
[ 1116.116402]  ? fput_many+0x2f/0x1a0
[ 1116.116836]  ? ksys_write+0x1a9/0x260
[ 1116.117276]  ? __ia32_sys_read+0xb0/0xb0
[ 1116.117748]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.118375]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.118978]  do_syscall_64+0x33/0x40
[ 1116.119411]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.120001] RIP: 0033:0x7fd722410b19
[ 1116.120431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.122590] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1116.123480] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1116.124308] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1116.125133] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.125964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1116.126804] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:26:32 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

01:26:32 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

[ 1116.178773] FAULT_INJECTION: forcing a failure.
[ 1116.178773] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.180255] CPU: 1 PID: 7156 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1116.181040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.181992] Call Trace:
[ 1116.182300]  dump_stack+0x107/0x167
[ 1116.182727]  should_fail.cold+0x5/0xa
[ 1116.183166]  ? __io_queue_sqe+0x666/0x9d0
[ 1116.183646]  should_failslab+0x5/0x20
[ 1116.184085]  kmem_cache_alloc_trace+0x55/0x320
[ 1116.184610]  ? lock_downgrade+0x6d0/0x6d0
[ 1116.185085]  __io_queue_sqe+0x666/0x9d0
[ 1116.185544]  ? io_issue_sqe+0x77d0/0x77d0
[ 1116.186024]  ? __fget_files+0x2f8/0x520
[ 1116.186495]  ? io_prep_rw+0x7f5/0x1050
[ 1116.186948]  io_submit_sqes+0x44a8/0x8610
[ 1116.187438]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.188009]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.188563]  ? find_held_lock+0x2c/0x110
[ 1116.189030]  ? io_submit_sqes+0x8610/0x8610
[ 1116.189529]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.190084]  ? wait_for_completion_io+0x270/0x270
[ 1116.190648]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1116.191180]  ? vfs_write+0x354/0xb10
[ 1116.191608]  ? fput_many+0x2f/0x1a0
[ 1116.192023]  ? ksys_write+0x1a9/0x260
[ 1116.192461]  ? __ia32_sys_read+0xb0/0xb0
[ 1116.192929]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.193532]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.194128]  do_syscall_64+0x33/0x40
[ 1116.194573]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.195163] RIP: 0033:0x7f5b150fcb19
[ 1116.195595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.197713] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1116.198598] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1116.199415] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1116.200232] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.201052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1116.201870] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:26:32 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:32 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 16)

[ 1116.245956] FAULT_INJECTION: forcing a failure.
[ 1116.245956] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.247363] CPU: 1 PID: 7158 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1116.248158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.249108] Call Trace:
[ 1116.249420]  dump_stack+0x107/0x167
[ 1116.249845]  should_fail.cold+0x5/0xa
[ 1116.250289]  ? create_object.isra.0+0x3a/0xa30
[ 1116.250828]  should_failslab+0x5/0x20
[ 1116.251269]  kmem_cache_alloc+0x5b/0x310
[ 1116.251743]  create_object.isra.0+0x3a/0xa30
[ 1116.252256]  kmemleak_alloc_percpu+0xa0/0x100
[ 1116.252788]  pcpu_alloc+0x4e2/0x1240
[ 1116.253234]  ? io_async_queue_proc+0x80/0x80
[ 1116.253745]  percpu_ref_init+0x31/0x3d0
[ 1116.254205]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1116.254838]  io_uring_setup+0x14f6/0x2980
[ 1116.255315]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1116.255897]  ? wait_for_completion_io+0x270/0x270
[ 1116.256466]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.257074]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.257672]  do_syscall_64+0x33/0x40
[ 1116.258106]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.258714] RIP: 0033:0x7f488da58b19
[ 1116.259149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.261272] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1116.262162] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1116.262995] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1116.263817] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1116.264641] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1116.265455] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1116.269898] FAULT_INJECTION: forcing a failure.
[ 1116.269898] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.272818] CPU: 0 PID: 7161 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1116.274284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.276069] Call Trace:
[ 1116.276641]  dump_stack+0x107/0x167
[ 1116.277420]  should_fail.cold+0x5/0xa
[ 1116.278242]  ? create_object.isra.0+0x3a/0xa30
[ 1116.278365] FAULT_INJECTION: forcing a failure.
[ 1116.278365] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.279208]  should_failslab+0x5/0x20
[ 1116.279229]  kmem_cache_alloc+0x5b/0x310
[ 1116.279255]  create_object.isra.0+0x3a/0xa30
[ 1116.283083]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1116.284182]  kmem_cache_alloc_bulk+0x168/0x320
[ 1116.285179]  io_submit_sqes+0x6fe4/0x8610
[ 1116.286071]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1116.287139]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.288197]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1116.289228]  ? find_held_lock+0x2c/0x110
[ 1116.290099]  ? io_submit_sqes+0x8610/0x8610
[ 1116.291037]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.292064]  ? wait_for_completion_io+0x270/0x270
[ 1116.293093]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1116.294082]  ? vfs_write+0x354/0xb10
[ 1116.294897]  ? fput_many+0x2f/0x1a0
[ 1116.295670]  ? ksys_write+0x1a9/0x260
[ 1116.296484]  ? __ia32_sys_read+0xb0/0xb0
[ 1116.297352]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.298488]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.299589]  do_syscall_64+0x33/0x40
[ 1116.300398]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.301489] RIP: 0033:0x7fd722410b19
[ 1116.302289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.306259] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1116.307901] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1116.309431] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1116.310975] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.312507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1116.314042] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
[ 1116.315606] CPU: 1 PID: 7164 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1116.316416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.317373] Call Trace:
[ 1116.317674]  dump_stack+0x107/0x167
[ 1116.318093]  should_fail.cold+0x5/0xa
[ 1116.318538]  ? create_object.isra.0+0x3a/0xa30
[ 1116.319057]  should_failslab+0x5/0x20
[ 1116.319493]  kmem_cache_alloc+0x5b/0x310
[ 1116.319962]  create_object.isra.0+0x3a/0xa30
[ 1116.320433]  ? kasan_unpoison_shadow+0x33/0x50
[ 1116.320962]  kmalloc_order+0xfe/0x160
[ 1116.321400]  kmalloc_order_trace+0x14/0xa0
[ 1116.321859]  io_uring_setup+0x33c/0x2980
[ 1116.322333]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1116.322854]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1116.323438]  ? wait_for_completion_io+0x270/0x270
[ 1116.323966]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.324530]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.325123]  do_syscall_64+0x33/0x40
[ 1116.325549]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.326132] RIP: 0033:0x7f006db87b19
[ 1116.326542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.328516] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1116.329329] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1116.330091] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1116.330868] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
01:26:32 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 5)

01:26:32 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

[ 1116.331631] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1116.332605] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:26:32 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

01:26:33 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 17)

01:26:33 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:33 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

[ 1116.397705] FAULT_INJECTION: forcing a failure.
[ 1116.397705] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.399008] CPU: 1 PID: 7176 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1116.399742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1116.400635] Call Trace:
[ 1116.400923]  dump_stack+0x107/0x167
[ 1116.401315]  should_fail.cold+0x5/0xa
[ 1116.401732]  ? create_object.isra.0+0x3a/0xa30
[ 1116.402227]  should_failslab+0x5/0x20
[ 1116.402679]  kmem_cache_alloc+0x5b/0x310
[ 1116.403119]  create_object.isra.0+0x3a/0xa30
[ 1116.403596]  kmemleak_alloc_percpu+0xa0/0x100
[ 1116.404083]  pcpu_alloc+0x4e2/0x1240
[ 1116.404521]  ? io_async_queue_proc+0x80/0x80
[ 1116.404999]  percpu_ref_init+0x31/0x3d0
[ 1116.405465]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1116.406049]  io_uring_setup+0x14f6/0x2980
[ 1116.406539]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1116.407082]  ? wait_for_completion_io+0x270/0x270
[ 1116.407661]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1116.408229]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1116.408826]  do_syscall_64+0x33/0x40
[ 1116.409230]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1116.409825] RIP: 0033:0x7f488da58b19
[ 1116.410224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1116.412349] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1116.413167] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1116.413932] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1116.414702] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1116.415467] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1116.416230] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:26:46 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

01:26:46 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

01:26:46 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:46 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 6)

01:26:46 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:46 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

01:26:46 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 18)

01:26:46 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

[ 1129.542249] FAULT_INJECTION: forcing a failure.
[ 1129.542249] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.544895] CPU: 1 PID: 7195 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1129.546289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1129.547998] Call Trace:
[ 1129.548546]  dump_stack+0x107/0x167
[ 1129.549291]  should_fail.cold+0x5/0xa
[ 1129.550077]  ? io_uring_setup+0x40b/0x2980
[ 1129.550974]  should_failslab+0x5/0x20
[ 1129.551752]  kmem_cache_alloc_trace+0x55/0x320
[ 1129.552702]  io_uring_setup+0x40b/0x2980
[ 1129.553532]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1129.554528]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1129.555575]  ? wait_for_completion_io+0x270/0x270
[ 1129.556580]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1129.557679]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1129.558774]  do_syscall_64+0x33/0x40
[ 1129.559556]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1129.560643] RIP: 0033:0x7f006db87b19
[ 1129.561441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1129.565691] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1129.567504] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1129.569259] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1129.571045] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1129.572753] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1129.574354] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1129.583387] FAULT_INJECTION: forcing a failure.
[ 1129.583387] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.584761] FAULT_INJECTION: forcing a failure.
[ 1129.584761] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.586078] CPU: 1 PID: 7197 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1129.586089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1129.586094] Call Trace:
[ 1129.586119]  dump_stack+0x107/0x167
[ 1129.586149]  should_fail.cold+0x5/0xa
[ 1129.594659]  ? percpu_ref_init+0xd8/0x3d0
[ 1129.595540]  should_failslab+0x5/0x20
[ 1129.596498]  kmem_cache_alloc_trace+0x55/0x320
[ 1129.597573]  ? io_async_queue_proc+0x80/0x80
[ 1129.598515]  percpu_ref_init+0xd8/0x3d0
[ 1129.599593]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1129.600815]  io_uring_setup+0x14f6/0x2980
[ 1129.601897]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1129.602979]  ? wait_for_completion_io+0x270/0x270
[ 1129.604037]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1129.605146]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1129.606361]  do_syscall_64+0x33/0x40
[ 1129.607203]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1129.608287] RIP: 0033:0x7f488da58b19
[ 1129.609083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1129.613102] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1129.614804] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1129.616319] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1129.617831] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1129.619347] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1129.620865] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1129.622413] CPU: 0 PID: 7202 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1129.624060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1129.625985] Call Trace:
[ 1129.626637]  dump_stack+0x107/0x167
[ 1129.627485]  should_fail.cold+0x5/0xa
[ 1129.628379]  ? create_object.isra.0+0x3a/0xa30
[ 1129.629462]  should_failslab+0x5/0x20
[ 1129.630358]  kmem_cache_alloc+0x5b/0x310
[ 1129.631316]  ? mark_held_locks+0x9e/0xe0
[ 1129.632265]  create_object.isra.0+0x3a/0xa30
[ 1129.633296]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1129.633868] FAULT_INJECTION: forcing a failure.
[ 1129.633868] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.634503]  kmem_cache_alloc_bulk+0x168/0x320
[ 1129.634534]  io_submit_sqes+0x6fe4/0x8610
[ 1129.634565]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1129.634603]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1129.634622]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1129.634656]  ? io_submit_sqes+0x8610/0x8610
[ 1129.634680]  ? recalibrate_cpu_khz+0x10/0x10
[ 1129.634699]  ? ktime_get+0x158/0x1f0
[ 1129.634729]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1129.646498]  ? clockevents_program_event+0x131/0x360
[ 1129.647681]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1129.648885]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1129.650394]  ? trace_hardirqs_on+0x5b/0x180
[ 1129.651417]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1129.652685]  ? __io_uring_cancel+0x20/0x20
[ 1129.653680]  do_syscall_64+0x33/0x40
[ 1129.654542]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1129.655736] RIP: 0033:0x7fd722410b19
[ 1129.656613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1129.660781] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1129.662552] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1129.664173] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1129.665776] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1129.667371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1129.669054] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
[ 1129.670698] CPU: 1 PID: 7201 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1129.672154] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1129.673895] Call Trace:
[ 1129.674456]  dump_stack+0x107/0x167
[ 1129.675248]  should_fail.cold+0x5/0xa
[ 1129.676071]  ? create_object.isra.0+0x3a/0xa30
[ 1129.677027]  should_failslab+0x5/0x20
[ 1129.677822]  kmem_cache_alloc+0x5b/0x310
[ 1129.678688]  create_object.isra.0+0x3a/0xa30
[ 1129.679618]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1129.680694]  kmem_cache_alloc_trace+0x151/0x320
[ 1129.681672]  ? lock_downgrade+0x6d0/0x6d0
[ 1129.682559]  __io_queue_sqe+0x666/0x9d0
[ 1129.683397]  ? io_issue_sqe+0x77d0/0x77d0
[ 1129.684261]  ? __fget_files+0x2f8/0x520
[ 1129.685112]  ? io_prep_rw+0x7f5/0x1050
[ 1129.685933]  io_submit_sqes+0x44a8/0x8610
[ 1129.686846]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1129.687886]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1129.688895]  ? find_held_lock+0x2c/0x110
[ 1129.689750]  ? io_submit_sqes+0x8610/0x8610
[ 1129.690671]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1129.691687]  ? wait_for_completion_io+0x270/0x270
[ 1129.692698]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1129.693675]  ? vfs_write+0x354/0xb10
[ 1129.694465]  ? fput_many+0x2f/0x1a0
[ 1129.695233]  ? ksys_write+0x1a9/0x260
[ 1129.696030]  ? __ia32_sys_read+0xb0/0xb0
[ 1129.696887]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1129.697981]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1129.699066]  do_syscall_64+0x33/0x40
[ 1129.699845]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1129.700917] RIP: 0033:0x7f5b150fcb19
[ 1129.701698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1129.705625] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1129.707237] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1129.708807] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1129.710357] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1129.711914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1129.713474] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:26:46 executing program 1:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:46 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e, 0x0, 0x0, 0x0)

01:26:46 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

01:26:46 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:46 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 7)

[ 1129.895950] FAULT_INJECTION: forcing a failure.
[ 1129.895950] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.898727] CPU: 1 PID: 7224 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1129.900149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1129.901898] Call Trace:
[ 1129.902460]  dump_stack+0x107/0x167
[ 1129.903237]  should_fail.cold+0x5/0xa
[ 1129.904035]  ? create_object.isra.0+0x3a/0xa30
[ 1129.904986]  should_failslab+0x5/0x20
[ 1129.905782]  kmem_cache_alloc+0x5b/0x310
[ 1129.906662]  create_object.isra.0+0x3a/0xa30
[ 1129.907581]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1129.908647]  kmem_cache_alloc_trace+0x151/0x320
[ 1129.909632]  io_uring_setup+0x40b/0x2980
[ 1129.910531]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1129.911547]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1129.912605]  ? wait_for_completion_io+0x270/0x270
[ 1129.913644]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1129.914759]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1129.915838]  do_syscall_64+0x33/0x40
[ 1129.916631]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1129.917697] RIP: 0033:0x7f006db87b19
[ 1129.918483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1129.922338] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1129.923945] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1129.925443] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1129.926940] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1129.928432] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1129.929915] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:26:58 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 19)

01:26:58 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

01:26:58 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

01:26:58 executing program 1:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:26:58 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

01:26:58 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

01:26:58 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:58 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 8)

[ 1141.844790] FAULT_INJECTION: forcing a failure.
[ 1141.844790] name failslab, interval 1, probability 0, space 0, times 0
[ 1141.847680] CPU: 1 PID: 7237 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1141.848860] FAULT_INJECTION: forcing a failure.
[ 1141.848860] name failslab, interval 1, probability 0, space 0, times 0
[ 1141.849122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1141.849140] Call Trace:
[ 1141.854347]  dump_stack+0x107/0x167
[ 1141.855295]  should_fail.cold+0x5/0xa
[ 1141.856272]  ? create_object.isra.0+0x3a/0xa30
[ 1141.857437]  should_failslab+0x5/0x20
[ 1141.858408]  kmem_cache_alloc+0x5b/0x310
[ 1141.859469]  create_object.isra.0+0x3a/0xa30
[ 1141.860594]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1141.861903]  kmem_cache_alloc_trace+0x151/0x320
[ 1141.863111]  ? io_async_queue_proc+0x80/0x80
[ 1141.864224]  percpu_ref_init+0xd8/0x3d0
[ 1141.865243]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1141.866633]  io_uring_setup+0x14f6/0x2980
[ 1141.867542]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1141.868612]  ? wait_for_completion_io+0x270/0x270
[ 1141.869656]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1141.870767]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1141.871860]  do_syscall_64+0x33/0x40
[ 1141.872651]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1141.873729] RIP: 0033:0x7f488da58b19
[ 1141.874508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1141.878396] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1141.879988] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1141.881467] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1141.882971] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1141.884473] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1141.885953] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1141.887461] CPU: 0 PID: 7244 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1141.888930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1141.890699] Call Trace:
[ 1141.891279]  dump_stack+0x107/0x167
[ 1141.892065]  should_fail.cold+0x5/0xa
[ 1141.892893]  ? create_object.isra.0+0x3a/0xa30
[ 1141.893864]  should_failslab+0x5/0x20
[ 1141.894690]  kmem_cache_alloc+0x5b/0x310
[ 1141.895557]  create_object.isra.0+0x3a/0xa30
[ 1141.896305] FAULT_INJECTION: forcing a failure.
[ 1141.896305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1141.896498]  kmemleak_alloc_percpu+0xa0/0x100
[ 1141.896522]  pcpu_alloc+0x4e2/0x1240
[ 1141.896552]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1141.896571]  percpu_ref_init+0x31/0x3d0
[ 1141.896593]  io_uring_setup+0x47a/0x2980
[ 1141.896612]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1141.896633]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1141.896648]  ? wait_for_completion_io+0x270/0x270
[ 1141.896688]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1141.907849]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1141.909105]  do_syscall_64+0x33/0x40
[ 1141.910012]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1141.911274] RIP: 0033:0x7f006db87b19
[ 1141.912178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1141.916685] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1141.918529] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1141.920279] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1141.922003] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1141.923738] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1141.925461] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1141.927220] CPU: 1 PID: 7242 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1141.928681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1141.930431] Call Trace:
[ 1141.931003]  dump_stack+0x107/0x167
[ 1141.931770]  should_fail.cold+0x5/0xa
[ 1141.932575]  _copy_from_user+0x2e/0x1b0
[ 1141.933416]  iovec_from_user+0x141/0x400
[ 1141.934274]  __import_iovec+0x67/0x590
[ 1141.935113]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1141.936221]  io_import_iovec+0x581/0x1120
[ 1141.937103]  ? io_complete_rw+0x230/0x230
[ 1141.937975]  ? lock_downgrade+0x6d0/0x6d0
[ 1141.938860]  ? unwind_next_frame+0x13ef/0x1a90
[ 1141.939837]  io_read+0xe14/0x11e0
[ 1141.940577]  ? kiocb_done+0xc90/0xc90
[ 1141.941387]  ? mark_lock+0xf5/0x2df0
[ 1141.942180]  ? lock_chain_count+0x20/0x20
[ 1141.943077]  ? lock_chain_count+0x20/0x20
[ 1141.943946]  ? stack_trace_save+0x8c/0xc0
[ 1141.944816]  ? stack_trace_consume_entry+0x160/0x160
[ 1141.945897]  ? lock_acquire+0x197/0x470
[ 1141.946745]  ? __lock_acquire+0xbb1/0x5b00
[ 1141.947635]  io_issue_sqe+0x2e8a/0x77d0
[ 1141.948483]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1141.949582]  ? lock_chain_count+0x20/0x20
[ 1141.950457]  ? __is_insn_slot_addr+0x14c/0x290
[ 1141.951437]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1141.952550]  ? io_connect+0x610/0x610
[ 1141.953352]  ? lock_acquire+0x197/0x470
[ 1141.954183]  ? find_held_lock+0x2c/0x110
[ 1141.955050]  ? __fget_files+0x2cf/0x520
[ 1141.955891]  ? lock_downgrade+0x6d0/0x6d0
[ 1141.956764]  __io_queue_sqe+0x90/0x9d0
[ 1141.957585]  ? io_issue_sqe+0x77d0/0x77d0
[ 1141.958456]  ? __fget_files+0x2f8/0x520
[ 1141.959311]  ? io_prep_rw+0x7f5/0x1050
[ 1141.960133]  io_submit_sqes+0x44a8/0x8610
[ 1141.961042]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1141.962087]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1141.963111]  ? find_held_lock+0x2c/0x110
[ 1141.963966]  ? io_submit_sqes+0x8610/0x8610
[ 1141.964877]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1141.965888]  ? wait_for_completion_io+0x270/0x270
[ 1141.966911]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1141.967888]  ? vfs_write+0x354/0xb10
[ 1141.968674]  ? fput_many+0x2f/0x1a0
[ 1141.969433]  ? ksys_write+0x1a9/0x260
[ 1141.970233]  ? __ia32_sys_read+0xb0/0xb0
[ 1141.971097]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1141.972199]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1141.973272]  do_syscall_64+0x33/0x40
[ 1141.974056]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1141.975146] RIP: 0033:0x7fd722410b19
[ 1141.975922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1141.979803] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1141.981371] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1141.982849] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1141.984299] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1141.985778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1141.987268] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:26:58 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

[ 1142.012911] FAULT_INJECTION: forcing a failure.
[ 1142.012911] name failslab, interval 1, probability 0, space 0, times 0
[ 1142.015777] CPU: 0 PID: 7234 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1142.017378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1142.019329] Call Trace:
[ 1142.019952]  dump_stack+0x107/0x167
[ 1142.020773]  should_fail.cold+0x5/0xa
[ 1142.021639]  ? create_io_worker+0xe8/0x690
[ 1142.022606]  should_failslab+0x5/0x20
[ 1142.023491]  kmem_cache_alloc_node_trace+0x59/0x340
[ 1142.024686]  create_io_worker+0xe8/0x690
[ 1142.025613]  io_wqe_enqueue+0x69e/0xbe0
[ 1142.026498]  ? create_worker_cb+0x260/0x260
[ 1142.027486]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1142.028489]  ? io_prep_async_work+0x34e/0x550
[ 1142.029518]  io_queue_async_work+0x26b/0x4f0
[ 1142.030520]  __io_queue_sqe+0x5cc/0x9d0
[ 1142.031444]  ? io_issue_sqe+0x77d0/0x77d0
[ 1142.032358]  ? __fget_files+0x2f8/0x520
[ 1142.033272]  ? io_poll_queue_proc+0x50/0x50
[ 1142.034244]  ? io_prep_rw+0x7f5/0x1050
[ 1142.035136]  io_submit_sqes+0x44a8/0x8610
[ 1142.036070]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1142.037211]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1142.038273]  ? find_held_lock+0x2c/0x110
[ 1142.039195]  ? io_submit_sqes+0x8610/0x8610
[ 1142.040166]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1142.041242]  ? wait_for_completion_io+0x270/0x270
[ 1142.042326]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1142.043389]  ? vfs_write+0x354/0xb10
[ 1142.044212]  ? fput_many+0x2f/0x1a0
[ 1142.045039]  ? ksys_write+0x1a9/0x260
[ 1142.045873]  ? __ia32_sys_read+0xb0/0xb0
[ 1142.046752]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1142.047890]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1142.049003]  do_syscall_64+0x33/0x40
[ 1142.049805]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1142.050953] RIP: 0033:0x7f5b150fcb19
[ 1142.051754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1142.055729] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1142.057363] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1142.058896] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1142.060416] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1142.061936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1142.063474] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:26:58 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

01:26:58 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:26:58 executing program 1:
syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:27:12 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 9)

01:27:12 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

01:27:12 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

01:27:12 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:27:12 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:27:12 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

01:27:12 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 20)

01:27:12 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

[ 1156.312197] FAULT_INJECTION: forcing a failure.
[ 1156.312197] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.314727] CPU: 0 PID: 7287 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1156.316189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.317965] Call Trace:
[ 1156.318539]  dump_stack+0x107/0x167
[ 1156.319320]  should_fail.cold+0x5/0xa
[ 1156.320134]  ? create_object.isra.0+0x3a/0xa30
[ 1156.321101]  should_failslab+0x5/0x20
[ 1156.321910]  kmem_cache_alloc+0x5b/0x310
[ 1156.322788]  create_object.isra.0+0x3a/0xa30
[ 1156.323733]  kmemleak_alloc_percpu+0xa0/0x100
[ 1156.324686]  pcpu_alloc+0x4e2/0x1240
[ 1156.325496]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1156.326357]  percpu_ref_init+0x31/0x3d0
[ 1156.327224]  io_uring_setup+0x47a/0x2980
[ 1156.327376] FAULT_INJECTION: forcing a failure.
[ 1156.327376] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.328080]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.328106]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1156.328123]  ? wait_for_completion_io+0x270/0x270
[ 1156.328164]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.328183]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.328205]  do_syscall_64+0x33/0x40
[ 1156.328224]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.328236] RIP: 0033:0x7f006db87b19
[ 1156.328263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.342380] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1156.344002] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1156.345515] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1156.347041] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1156.348560] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1156.350077] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1156.351638] CPU: 1 PID: 7278 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1156.353110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.354885] Call Trace:
[ 1156.355458]  dump_stack+0x107/0x167
[ 1156.356231]  should_fail.cold+0x5/0xa
[ 1156.357040]  ? create_object.isra.0+0x3a/0xa30
[ 1156.358011]  should_failslab+0x5/0x20
[ 1156.358838]  kmem_cache_alloc+0x5b/0x310
[ 1156.359710]  ? lock_acquire+0x197/0x470
[ 1156.360566]  create_object.isra.0+0x3a/0xa30
[ 1156.361508]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1156.362589]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 1156.363265] FAULT_INJECTION: forcing a failure.
[ 1156.363265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1156.363693]  create_io_worker+0xe8/0x690
[ 1156.363724]  io_wqe_enqueue+0x69e/0xbe0
[ 1156.367834]  ? create_worker_cb+0x260/0x260
[ 1156.368756]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1156.369702]  ? io_prep_async_work+0x34e/0x550
[ 1156.370661]  io_queue_async_work+0x26b/0x4f0
[ 1156.371597]  __io_queue_sqe+0x5cc/0x9d0
[ 1156.372442]  ? io_issue_sqe+0x77d0/0x77d0
[ 1156.373312]  ? __fget_files+0x2f8/0x520
[ 1156.374151]  ? io_poll_queue_proc+0x50/0x50
[ 1156.375076]  ? io_prep_rw+0x7f5/0x1050
[ 1156.375904]  io_submit_sqes+0x44a8/0x8610
[ 1156.376804]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.377862]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.378894]  ? find_held_lock+0x2c/0x110
[ 1156.379760]  ? io_submit_sqes+0x8610/0x8610
[ 1156.380672]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.381697]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.382810]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1156.383953]  ? trace_hardirqs_on+0x5b/0x180
[ 1156.384879]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1156.386039]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.387136]  do_syscall_64+0x33/0x40
[ 1156.387932]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.389009] RIP: 0033:0x7f5b150fcb19
[ 1156.389797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.394043] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1156.395899] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1156.397616] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1156.399360] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1156.401094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1156.402811] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1156.404605] CPU: 0 PID: 7285 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1156.406064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.407818] Call Trace:
[ 1156.408385]  dump_stack+0x107/0x167
[ 1156.409171]  should_fail.cold+0x5/0xa
[ 1156.409994]  _copy_to_user+0x2e/0x180
[ 1156.410048] FAULT_INJECTION: forcing a failure.
[ 1156.410048] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.410814]  io_uring_setup+0x11b5/0x2980
[ 1156.410841]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1156.410858]  ? wait_for_completion_io+0x270/0x270
[ 1156.410898]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.410918]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.410940]  do_syscall_64+0x33/0x40
[ 1156.410967]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.420697] RIP: 0033:0x7f488da58b19
[ 1156.421486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.425410] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1156.427044] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1156.428563] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1156.430073] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1156.431593] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1156.433100] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1156.434652] CPU: 1 PID: 7286 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1156.436352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.438376] Call Trace:
[ 1156.439019]  dump_stack+0x107/0x167
[ 1156.439914]  should_fail.cold+0x5/0xa
[ 1156.440830]  ? kvmalloc_node+0x119/0x170
[ 1156.441824]  should_failslab+0x5/0x20
[ 1156.442739]  __kmalloc_node+0x76/0x420
[ 1156.443703]  kvmalloc_node+0x119/0x170
[ 1156.444635]  ? traverse.part.0+0x620/0x620
[ 1156.445660]  seq_read_iter+0x81c/0x12b0
[ 1156.446610]  ? fsnotify_perm.part.0+0x22d/0x620
[ 1156.447762]  ? traverse.part.0+0x620/0x620
[ 1156.448777]  io_read+0x2dc/0x11e0
[ 1156.449625]  ? kiocb_done+0xc90/0xc90
[ 1156.450530]  ? mark_lock+0xf5/0x2df0
[ 1156.451435]  ? lock_chain_count+0x20/0x20
[ 1156.452437]  ? stack_trace_consume_entry+0x160/0x160
[ 1156.453624]  ? lock_acquire+0x197/0x470
[ 1156.454470]  ? __lock_acquire+0xbb1/0x5b00
[ 1156.455373]  io_issue_sqe+0x2e8a/0x77d0
[ 1156.456215]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1156.457314]  ? lock_chain_count+0x20/0x20
[ 1156.458187]  ? __is_insn_slot_addr+0x14c/0x290
[ 1156.459160]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1156.460275]  ? io_connect+0x610/0x610
[ 1156.461088]  ? lock_acquire+0x197/0x470
[ 1156.462010]  ? find_held_lock+0x2c/0x110
[ 1156.463000]  ? __fget_files+0x2cf/0x520
[ 1156.463949]  ? lock_downgrade+0x6d0/0x6d0
[ 1156.464941]  __io_queue_sqe+0x90/0x9d0
[ 1156.465893]  ? io_issue_sqe+0x77d0/0x77d0
[ 1156.466832]  ? __fget_files+0x2f8/0x520
[ 1156.467684]  ? io_prep_rw+0x7f5/0x1050
[ 1156.468507]  io_submit_sqes+0x44a8/0x8610
[ 1156.469408]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.470453]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.471483]  ? find_held_lock+0x2c/0x110
[ 1156.472352]  ? io_submit_sqes+0x8610/0x8610
[ 1156.473280]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.474295]  ? wait_for_completion_io+0x270/0x270
[ 1156.475332]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1156.476321]  ? vfs_write+0x354/0xb10
[ 1156.477110]  ? fput_many+0x2f/0x1a0
[ 1156.477884]  ? ksys_write+0x1a9/0x260
[ 1156.478703]  ? __ia32_sys_read+0xb0/0xb0
[ 1156.479589]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.480705]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.481823]  do_syscall_64+0x33/0x40
[ 1156.482622]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.483742] RIP: 0033:0x7fd722410b19
[ 1156.484537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.488465] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1156.490105] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1156.491653] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1156.493196] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1156.494741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1156.496283] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
01:27:13 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:27:13 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

01:27:13 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 21)

01:27:13 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 10)

01:27:13 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

01:27:13 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

01:27:13 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

[ 1156.675907] FAULT_INJECTION: forcing a failure.
[ 1156.675907] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.678582] CPU: 1 PID: 7301 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1156.680022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.681774] Call Trace:
[ 1156.682329]  dump_stack+0x107/0x167
[ 1156.683107]  should_fail.cold+0x5/0xa
[ 1156.683909]  ? __d_alloc+0x2a/0x990
[ 1156.684670]  should_failslab+0x5/0x20
[ 1156.685467]  kmem_cache_alloc+0x5b/0x310
[ 1156.686321]  __d_alloc+0x2a/0x990
[ 1156.687069]  ? find_held_lock+0x2c/0x110
[ 1156.687933]  d_alloc_pseudo+0x19/0x70
[ 1156.688730]  alloc_file_pseudo+0xce/0x250
[ 1156.689596]  ? trace_hardirqs_on+0x5b/0x180
[ 1156.690532]  ? alloc_file+0x5a0/0x5a0
[ 1156.691354]  anon_inode_getfile+0xc8/0x1f0
[ 1156.692255]  io_uring_setup+0x138b/0x2980
[ 1156.693134]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1156.694211]  ? wait_for_completion_io+0x270/0x270
[ 1156.694949] FAULT_INJECTION: forcing a failure.
[ 1156.694949] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.695261]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.695289]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.699866]  do_syscall_64+0x33/0x40
[ 1156.700685]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.701804] RIP: 0033:0x7f488da58b19
[ 1156.702615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.706669] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1156.708353] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1156.709921] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1156.711493] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1156.713053] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1156.714633] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1156.716973] CPU: 0 PID: 7302 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1156.718485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.720304] Call Trace:
[ 1156.720883]  dump_stack+0x107/0x167
[ 1156.721674]  should_fail.cold+0x5/0xa
[ 1156.722503]  ? percpu_ref_init+0xd8/0x3d0
[ 1156.723406]  should_failslab+0x5/0x20
[ 1156.724227]  kmem_cache_alloc_trace+0x55/0x320
[ 1156.725217]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1156.726095]  percpu_ref_init+0xd8/0x3d0
[ 1156.726967]  io_uring_setup+0x47a/0x2980
[ 1156.727845]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.728889]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1156.729981]  ? wait_for_completion_io+0x270/0x270
[ 1156.731050]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.732187]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.733297]  do_syscall_64+0x33/0x40
[ 1156.734103]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.735224] RIP: 0033:0x7f006db87b19
[ 1156.736031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.740041] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1156.741693] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1156.743250] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1156.744782] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1156.746328] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1156.747881] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:13 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1156.788388] FAULT_INJECTION: forcing a failure.
[ 1156.788388] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.791235] CPU: 1 PID: 7304 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1156.792745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.794551] Call Trace:
[ 1156.795141]  dump_stack+0x107/0x167
[ 1156.795934]  should_fail.cold+0x5/0xa
[ 1156.796765]  ? copy_process+0x5e5/0x78b0
[ 1156.797647]  should_failslab+0x5/0x20
[ 1156.798486]  kmem_cache_alloc_node+0x55/0x330
[ 1156.799477]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.800635]  copy_process+0x5e5/0x78b0
[ 1156.801487]  ? stack_trace_save+0x8c/0xc0
[ 1156.802393]  ? stack_trace_consume_entry+0x160/0x160
[ 1156.803510]  ? kasan_save_stack+0x32/0x40
[ 1156.804416]  ? __cleanup_sighand+0xb0/0xb0
[ 1156.805340]  ? do_syscall_64+0x33/0x40
[ 1156.806183]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.807356]  ? lock_acquire+0x197/0x470
[ 1156.808220]  ? create_object.isra.0+0x3ad/0xa30
[ 1156.809231]  ? lock_release+0x680/0x680
[ 1156.810100]  ? find_held_lock+0x2c/0x110
[ 1156.811015]  ? io_wqe_dec_running+0x220/0x220
[ 1156.811989]  create_io_thread+0xb6/0xf0
[ 1156.812855]  ? pidfd_prepare+0x80/0x80
[ 1156.813698]  ? mark_held_locks+0x9e/0xe0
[ 1156.814580]  ? io_wqe_dec_running+0x220/0x220
[ 1156.815584]  ? __init_swait_queue_head+0xc6/0x150
01:27:13 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1156.816635]  create_io_worker+0x23a/0x690
[ 1156.817738]  io_wqe_enqueue+0x69e/0xbe0
[ 1156.818623]  ? create_worker_cb+0x260/0x260
[ 1156.819562]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1156.820537]  ? io_prep_async_work+0x34e/0x550
[ 1156.821517]  io_queue_async_work+0x26b/0x4f0
[ 1156.822479]  __io_queue_sqe+0x5cc/0x9d0
[ 1156.823355]  ? io_issue_sqe+0x77d0/0x77d0
[ 1156.824247]  ? __fget_files+0x2f8/0x520
[ 1156.825104]  ? io_poll_queue_proc+0x50/0x50
[ 1156.826043]  ? io_prep_rw+0x7f5/0x1050
[ 1156.826899]  io_submit_sqes+0x44a8/0x8610
[ 1156.827818]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.828895]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1156.829936]  ? find_held_lock+0x2c/0x110
[ 1156.830829]  ? io_submit_sqes+0x8610/0x8610
[ 1156.831769]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.832813]  ? wait_for_completion_io+0x270/0x270
[ 1156.833858]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1156.834870]  ? vfs_write+0x354/0xb10
[ 1156.835691]  ? fput_many+0x2f/0x1a0
[ 1156.836471]  ? ksys_write+0x1a9/0x260
[ 1156.837300]  ? __ia32_sys_read+0xb0/0xb0
[ 1156.838180]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.839321]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.840439]  do_syscall_64+0x33/0x40
[ 1156.841242]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.842351] RIP: 0033:0x7f5b150fcb19
[ 1156.843160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.847152] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1156.848800] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1156.850337] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1156.851847] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1156.853399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1156.854952] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1156.860921] FAULT_INJECTION: forcing a failure.
[ 1156.860921] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.863569] CPU: 1 PID: 7315 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1156.865058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.866866] Call Trace:
[ 1156.867435]  dump_stack+0x107/0x167
[ 1156.868225]  should_fail.cold+0x5/0xa
[ 1156.869052]  ? create_object.isra.0+0x3a/0xa30
[ 1156.870041]  should_failslab+0x5/0x20
[ 1156.870874]  kmem_cache_alloc+0x5b/0x310
[ 1156.871760]  create_object.isra.0+0x3a/0xa30
[ 1156.872709]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1156.873812]  kmem_cache_alloc+0x159/0x310
[ 1156.874719]  xas_alloc+0x336/0x440
[ 1156.875502]  xas_create+0x34a/0x10d0
[ 1156.876315]  ? kernel_text_address+0xf2/0x120
[ 1156.877286]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1156.878420]  xas_store+0x8c/0x1c40
[ 1156.879208]  __xa_store+0x164/0x2d0
[ 1156.879997]  ? xa_delete_node+0x280/0x280
[ 1156.880901]  ? trace_hardirqs_on+0x5b/0x180
[ 1156.881843]  xa_store+0x31/0x50
[ 1156.882560]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1156.883613]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1156.884759]  __do_sys_io_uring_enter+0x146f/0x1890
[ 1156.885830]  ? find_held_lock+0x2c/0x110
[ 1156.886718]  ? io_submit_sqes+0x8610/0x8610
[ 1156.887662]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1156.888706]  ? wait_for_completion_io+0x270/0x270
[ 1156.889748]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1156.890749]  ? vfs_write+0x354/0xb10
[ 1156.891562]  ? fput_many+0x2f/0x1a0
01:27:13 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

[ 1156.892347]  ? ksys_write+0x1a9/0x260
[ 1156.893405]  ? __ia32_sys_read+0xb0/0xb0
[ 1156.894294]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1156.895423]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1156.896509]  do_syscall_64+0x33/0x40
[ 1156.897290]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1156.898374] RIP: 0033:0x7fd722410b19
[ 1156.899171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1156.903058] RSP: 002b:00007fd71f965188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1156.904670] RAX: ffffffffffffffda RBX: 00007fd722524020 RCX: 00007fd722410b19
[ 1156.906169] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1156.907681] RBP: 00007fd71f9651d0 R08: 0000000000000000 R09: 0000000000000000
[ 1156.909175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1156.910669] R13: 00007ffd196a724f R14: 00007fd71f965300 R15: 0000000000022000
01:27:13 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

01:27:13 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 22)

01:27:13 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1156.982733] FAULT_INJECTION: forcing a failure.
[ 1156.982733] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.985368] CPU: 1 PID: 7323 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1156.986880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1156.988698] Call Trace:
[ 1156.989426]  dump_stack+0x107/0x167
[ 1156.990211]  should_fail.cold+0x5/0xa
[ 1156.991036]  ? create_object.isra.0+0x3a/0xa30
[ 1156.992000]  should_failslab+0x5/0x20
[ 1156.992813]  kmem_cache_alloc+0x5b/0x310
[ 1156.993698]  create_object.isra.0+0x3a/0xa30
[ 1156.994625]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1156.995847]  kmem_cache_alloc+0x159/0x310
[ 1156.996731]  __d_alloc+0x2a/0x990
[ 1156.997467]  ? find_held_lock+0x2c/0x110
[ 1156.998328]  d_alloc_pseudo+0x19/0x70
[ 1156.999142]  alloc_file_pseudo+0xce/0x250
[ 1157.000015]  ? alloc_file+0x5a0/0x5a0
[ 1157.000841]  anon_inode_getfile+0xc8/0x1f0
[ 1157.001741]  io_uring_setup+0x138b/0x2980
[ 1157.002625]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1157.003698]  ? wait_for_completion_io+0x270/0x270
[ 1157.004737]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1157.005846]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1157.006946]  do_syscall_64+0x33/0x40
[ 1157.007729]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1157.008812] RIP: 0033:0x7f488da58b19
[ 1157.009595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1157.013668] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1157.015309] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1157.016872] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1157.018438] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1157.020004] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1157.021567] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:13 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 11)

[ 1157.115156] FAULT_INJECTION: forcing a failure.
[ 1157.115156] name failslab, interval 1, probability 0, space 0, times 0
[ 1157.117862] CPU: 1 PID: 7330 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1157.119372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1157.121205] Call Trace:
[ 1157.121784]  dump_stack+0x107/0x167
[ 1157.122581]  should_fail.cold+0x5/0xa
[ 1157.123434]  ? create_object.isra.0+0x3a/0xa30
[ 1157.124449]  should_failslab+0x5/0x20
[ 1157.125278]  kmem_cache_alloc+0x5b/0x310
[ 1157.126169]  create_object.isra.0+0x3a/0xa30
[ 1157.127128]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1157.128243]  kmem_cache_alloc_trace+0x151/0x320
[ 1157.129270]  ? io_tctx_exit_cb+0xf0/0xf0
[ 1157.130167]  percpu_ref_init+0xd8/0x3d0
[ 1157.131050]  io_uring_setup+0x47a/0x2980
[ 1157.131933]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1157.132980]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1157.134082]  ? wait_for_completion_io+0x270/0x270
[ 1157.135152]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1157.136289]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1157.137412]  do_syscall_64+0x33/0x40
[ 1157.138219]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1157.139336] RIP: 0033:0x7f006db87b19
[ 1157.140148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1157.144155] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1157.145842] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1157.147407] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1157.148950] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1157.150496] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1157.152050] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:26 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

01:27:26 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 23)

01:27:26 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

[ 1169.982057] FAULT_INJECTION: forcing a failure.
[ 1169.982057] name failslab, interval 1, probability 0, space 0, times 0
[ 1169.984915] CPU: 1 PID: 7341 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1169.986416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1169.988940] Call Trace:
[ 1169.989757]  dump_stack+0x107/0x167
[ 1169.990856]  should_fail.cold+0x5/0xa
[ 1169.992065]  ? __alloc_file+0x21/0x320
[ 1169.993231]  should_failslab+0x5/0x20
[ 1169.994364]  kmem_cache_alloc+0x5b/0x310
[ 1169.995591]  __alloc_file+0x21/0x320
[ 1169.996678]  alloc_empty_file+0x6d/0x170
[ 1169.997842]  alloc_file+0x5e/0x5a0
[ 1169.998903]  alloc_file_pseudo+0x16a/0x250
[ 1170.000158]  ? alloc_file+0x5a0/0x5a0
[ 1170.001301]  anon_inode_getfile+0xc8/0x1f0
[ 1170.002553]  io_uring_setup+0x138b/0x2980
[ 1170.003806]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1170.005288]  ? wait_for_completion_io+0x270/0x270
[ 1170.006740]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1170.008299]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1170.009822]  do_syscall_64+0x33/0x40
[ 1170.010919]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1170.012451] RIP: 0033:0x7f488da58b19
[ 1170.013554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1170.018985] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1170.021217] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1170.023201] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1170.024995] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1170.025296] FAULT_INJECTION: forcing a failure.
[ 1170.025296] name failslab, interval 1, probability 0, space 0, times 0
[ 1170.026680] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
01:27:26 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 12)

01:27:26 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

01:27:26 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

01:27:26 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

01:27:26 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1170.026692] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1170.036832] CPU: 0 PID: 7351 Comm: syz-executor.1 Not tainted 5.10.247 #1
[ 1170.038313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1170.040116] Call Trace:
[ 1170.040692]  dump_stack+0x107/0x167
[ 1170.041480]  should_fail.cold+0x5/0xa
[ 1170.042305]  should_failslab+0x5/0x20
[ 1170.043138]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1170.044120]  io_submit_sqes+0x6fe4/0x8610
[ 1170.045056]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1170.045252] FAULT_INJECTION: forcing a failure.
[ 1170.045252] name failslab, interval 1, probability 0, space 0, times 0
[ 1170.046127]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1170.046151]  ? find_held_lock+0x2c/0x110
[ 1170.046175]  ? io_submit_sqes+0x8610/0x8610
[ 1170.046200]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1170.046225]  ? wait_for_completion_io+0x270/0x270
[ 1170.053717]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1170.054711]  ? vfs_write+0x354/0xb10
[ 1170.055512]  ? fput_many+0x2f/0x1a0
[ 1170.056289]  ? ksys_write+0x1a9/0x260
[ 1170.057106]  ? __ia32_sys_read+0xb0/0xb0
[ 1170.057981]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1170.059115]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1170.060223]  do_syscall_64+0x33/0x40
[ 1170.061023]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1170.062125] RIP: 0033:0x7fe5c6305b19
[ 1170.062922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1170.066839] RSP: 002b:00007fe5c387b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1170.068445] RAX: ffffffffffffffda RBX: 00007fe5c6418f60 RCX: 00007fe5c6305b19
[ 1170.069942] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1170.071447] RBP: 00007fe5c387b1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1170.072947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1170.074430] R13: 00007ffc0ae37aff R14: 00007fe5c387b300 R15: 0000000000022000
[ 1170.075950] CPU: 1 PID: 7346 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1170.077554] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1170.079469] Call Trace:
[ 1170.080086]  dump_stack+0x107/0x167
[ 1170.080932]  should_fail.cold+0x5/0xa
[ 1170.081802]  ? memcg_alloc_page_obj_cgroups+0x73/0x100
[ 1170.082998]  should_failslab+0x5/0x20
[ 1170.083886]  __kmalloc_node+0x76/0x420
[ 1170.084779]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 1170.085951]  memcg_slab_post_alloc_hook+0x1f0/0x430
[ 1170.087088]  ? trace_hardirqs_on+0x5b/0x180
[ 1170.088078]  __kmalloc_node+0x1c6/0x420
[ 1170.088982]  kvmalloc_node+0x119/0x170
[ 1170.089866]  ? traverse.part.0+0x620/0x620
[ 1170.090818]  seq_read_iter+0x81c/0x12b0
[ 1170.091732]  ? fsnotify_perm.part.0+0x22d/0x620
[ 1170.092800]  ? traverse.part.0+0x620/0x620
[ 1170.093756]  io_read+0x2dc/0x11e0
[ 1170.094570]  ? kiocb_done+0xc90/0xc90
[ 1170.095444]  ? mark_lock+0xf5/0x2df0
[ 1170.096294]  ? lock_chain_count+0x20/0x20
[ 1170.097244]  ? stack_trace_consume_entry+0x160/0x160
[ 1170.098400]  ? lock_acquire+0x197/0x470
[ 1170.099331]  ? __lock_acquire+0xbb1/0x5b00
[ 1170.100295]  io_issue_sqe+0x2e8a/0x77d0
[ 1170.101208]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1170.102392]  ? lock_chain_count+0x20/0x20
[ 1170.103332]  ? __is_insn_slot_addr+0x14c/0x290
[ 1170.104366]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1170.105551]  ? io_connect+0x610/0x610
[ 1170.106418]  ? lock_acquire+0x197/0x470
[ 1170.107322]  ? find_held_lock+0x2c/0x110
[ 1170.108243]  ? __fget_files+0x2cf/0x520
[ 1170.109141]  ? lock_downgrade+0x6d0/0x6d0
[ 1170.110083]  __io_queue_sqe+0x90/0x9d0
[ 1170.110979]  ? io_issue_sqe+0x77d0/0x77d0
[ 1170.111916]  ? __fget_files+0x2f8/0x520
[ 1170.112818]  ? io_prep_rw+0x7f5/0x1050
[ 1170.113697]  io_submit_sqes+0x44a8/0x8610
[ 1170.114650]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1170.115780]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1170.116863]  ? find_held_lock+0x2c/0x110
[ 1170.117770]  ? io_submit_sqes+0x8610/0x8610
[ 1170.118739]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1170.119830]  ? wait_for_completion_io+0x270/0x270
[ 1170.120912]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1170.121951]  ? vfs_write+0x354/0xb10
[ 1170.122785]  ? fput_many+0x2f/0x1a0
[ 1170.123610]  ? ksys_write+0x1a9/0x260
[ 1170.124465]  ? __ia32_sys_read+0xb0/0xb0
[ 1170.125352]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1170.126491]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1170.127654]  do_syscall_64+0x33/0x40
[ 1170.128489]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1170.129657] RIP: 0033:0x7fd722410b19
[ 1170.130518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1170.135387] RSP: 002b:00007fd71f986188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1170.137183] RAX: ffffffffffffffda RBX: 00007fd722523f60 RCX: 00007fd722410b19
[ 1170.137973] FAULT_INJECTION: forcing a failure.
[ 1170.137973] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1170.138794] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1170.138806] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1170.138816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1170.138827] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
[ 1170.143495] FAULT_INJECTION: forcing a failure.
[ 1170.143495] name failslab, interval 1, probability 0, space 0, times 0
[ 1170.144017] CPU: 0 PID: 7358 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1170.153392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1170.155417] Call Trace:
[ 1170.156061]  dump_stack+0x107/0x167
[ 1170.156941]  should_fail.cold+0x5/0xa
[ 1170.157867]  __alloc_pages_nodemask+0x182/0x600
[ 1170.158997]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1170.160463]  ? cap_capable+0x1cd/0x230
[ 1170.161410]  alloc_pages_current+0x187/0x280
[ 1170.162480]  __get_free_pages+0xc/0xa0
[ 1170.163430]  io_uring_setup+0xe27/0x2980
[ 1170.164424]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1170.165659]  ? wait_for_completion_io+0x270/0x270
[ 1170.166852]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1170.168136]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1170.169376]  do_syscall_64+0x33/0x40
[ 1170.170272]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1170.171512] RIP: 0033:0x7f006db87b19
[ 1170.172407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1170.176836] RSP: 002b:00007f006b0dc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1170.178660] RAX: ffffffffffffffda RBX: 00007f006dc9b020 RCX: 00007f006db87b19
[ 1170.180365] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1170.182057] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1170.183765] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1170.185463] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1170.187206] CPU: 1 PID: 7359 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1170.188780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1170.190663] Call Trace:
[ 1170.191284]  dump_stack+0x107/0x167
[ 1170.192110]  should_fail.cold+0x5/0xa
[ 1170.192972]  ? create_object.isra.0+0x3a/0xa30
[ 1170.194016]  should_failslab+0x5/0x20
[ 1170.194886]  kmem_cache_alloc+0x5b/0x310
[ 1170.195812]  ? mark_held_locks+0x9e/0xe0
[ 1170.196732]  create_object.isra.0+0x3a/0xa30
[ 1170.197727]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1170.198875]  kmem_cache_alloc+0x159/0x310
[ 1170.199827]  xas_alloc+0x336/0x440
[ 1170.200631]  xas_create+0x34a/0x10d0
[ 1170.201485]  ? kernel_text_address+0xf2/0x120
[ 1170.202499]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1170.203695]  xas_store+0x8c/0x1c40
[ 1170.204521]  __xa_store+0x164/0x2d0
[ 1170.205351]  ? xa_delete_node+0x280/0x280
[ 1170.206292]  ? trace_hardirqs_on+0x5b/0x180
[ 1170.207286]  xa_store+0x31/0x50
[ 1170.208034]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1170.209116]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1170.210314]  __do_sys_io_uring_enter+0x146f/0x1890
[ 1170.211438]  ? find_held_lock+0x2c/0x110
[ 1170.212362]  ? io_submit_sqes+0x8610/0x8610
[ 1170.213369]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1170.214607]  ? wait_for_completion_io+0x270/0x270
[ 1170.215706]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1170.216759]  ? vfs_write+0x354/0xb10
[ 1170.217600]  ? fput_many+0x2f/0x1a0
[ 1170.218416]  ? ksys_write+0x1a9/0x260
[ 1170.219293]  ? __ia32_sys_read+0xb0/0xb0
[ 1170.220215]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1170.221395]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1170.222563]  do_syscall_64+0x33/0x40
[ 1170.223416]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1170.224574] RIP: 0033:0x7f5b150fcb19
[ 1170.225414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1170.229590] RSP: 002b:00007f5b12651188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1170.231317] RAX: ffffffffffffffda RBX: 00007f5b15210020 RCX: 00007f5b150fcb19
[ 1170.232928] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1170.234534] RBP: 00007f5b126511d0 R08: 0000000000000000 R09: 0000000000000000
[ 1170.236152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1170.237765] R13: 00007ffd6a14604f R14: 00007f5b12651300 R15: 0000000000022000
01:27:26 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

01:27:26 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e, 0x0, 0x0, 0x0)

01:27:41 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 24)

01:27:41 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:27:41 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

01:27:41 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

01:27:41 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

01:27:41 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

01:27:41 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 13)

01:27:41 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

[ 1185.380789] FAULT_INJECTION: forcing a failure.
[ 1185.380789] name failslab, interval 1, probability 0, space 0, times 0
[ 1185.383671] CPU: 0 PID: 7378 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1185.385102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.386828] Call Trace:
[ 1185.387397]  dump_stack+0x107/0x167
[ 1185.388166]  should_fail.cold+0x5/0xa
[ 1185.388964]  ? __alloc_file+0x21/0x320
[ 1185.389790]  should_failslab+0x5/0x20
[ 1185.390590]  kmem_cache_alloc+0x5b/0x310
[ 1185.391461]  __alloc_file+0x21/0x320
[ 1185.392236]  alloc_empty_file+0x6d/0x170
[ 1185.393077]  alloc_file+0x5e/0x5a0
[ 1185.393827]  alloc_file_pseudo+0x16a/0x250
[ 1185.394701]  ? alloc_file+0x5a0/0x5a0
[ 1185.395517]  anon_inode_getfile+0xc8/0x1f0
[ 1185.396400]  io_uring_setup+0x138b/0x2980
[ 1185.397268]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1185.398321]  ? wait_for_completion_io+0x270/0x270
[ 1185.399356]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
01:27:42 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1185.400458]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.401730]  do_syscall_64+0x33/0x40
[ 1185.402509]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.403591] RIP: 0033:0x7f488da58b19
[ 1185.404364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1185.408194] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1185.409777] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1185.411268] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1185.412763] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1185.414249] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1185.415761] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:42 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

[ 1185.430204] FAULT_INJECTION: forcing a failure.
[ 1185.430204] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1185.432990] CPU: 0 PID: 7385 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1185.434434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.436169] Call Trace:
[ 1185.436734]  dump_stack+0x107/0x167
[ 1185.437490]  should_fail.cold+0x5/0xa
[ 1185.438292]  __alloc_pages_nodemask+0x182/0x600
[ 1185.439267]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1185.440520]  ? cap_capable+0x1cd/0x230
[ 1185.441344]  alloc_pages_current+0x187/0x280
[ 1185.442258]  __get_free_pages+0xc/0xa0
[ 1185.443067]  io_uring_setup+0xf9a/0x2980
[ 1185.443928]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1185.444981]  ? wait_for_completion_io+0x270/0x270
[ 1185.446014]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.447104]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.448188]  do_syscall_64+0x33/0x40
[ 1185.448967]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.450032] RIP: 0033:0x7f006db87b19
[ 1185.450805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1185.454664] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1185.456255] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1185.457750] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1185.459246] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1185.460732] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1185.462219] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:42 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 25)

[ 1185.472334] FAULT_INJECTION: forcing a failure.
[ 1185.472334] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1185.475050] CPU: 0 PID: 7382 Comm: syz-executor.6 Not tainted 5.10.247 #1
[ 1185.476494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.478256] Call Trace:
[ 1185.478807]  dump_stack+0x107/0x167
[ 1185.479581]  should_fail.cold+0x5/0xa
[ 1185.480378]  _copy_to_user+0x2e/0x180
[ 1185.481185]  simple_read_from_buffer+0xcc/0x160
[ 1185.482164]  proc_fail_nth_read+0x198/0x230
[ 1185.483071]  ? proc_sessionid_read+0x230/0x230
[ 1185.484032]  ? security_file_permission+0xb1/0xe0
[ 1185.485051]  ? proc_sessionid_read+0x230/0x230
[ 1185.486005]  vfs_read+0x228/0x620
[ 1185.486744]  ksys_read+0x12d/0x260
[ 1185.487508]  ? vfs_write+0xb10/0xb10
[ 1185.488295]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.489391]  ? syscall_enter_from_user_mode+0x1d/0x50
01:27:42 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1185.490472]  do_syscall_64+0x33/0x40
[ 1185.491421]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.492500] RIP: 0033:0x7fd7223c369c
[ 1185.493270] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1185.497132] RSP: 002b:00007fd71f986170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1185.498722] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd7223c369c
[ 1185.500217] RDX: 000000000000000f RSI: 00007fd71f9861e0 RDI: 000000000000000b
[ 1185.501706] RBP: 00007fd71f9861d0 R08: 0000000000000000 R09: 0000000000000000
[ 1185.503216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1185.504699] R13: 00007ffd196a724f R14: 00007fd71f986300 R15: 0000000000022000
[ 1185.511027] FAULT_INJECTION: forcing a failure.
[ 1185.511027] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1185.513694] CPU: 0 PID: 7384 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1185.515123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.515501] FAULT_INJECTION: forcing a failure.
[ 1185.515501] name failslab, interval 1, probability 0, space 0, times 0
[ 1185.516874] Call Trace:
[ 1185.516895]  dump_stack+0x107/0x167
[ 1185.516926]  should_fail.cold+0x5/0xa
[ 1185.520439]  __alloc_pages_nodemask+0x182/0x600
[ 1185.521414]  ? lock_downgrade+0x6d0/0x6d0
[ 1185.522289]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1185.523575]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 1185.524677]  ? kmem_cache_alloc_node+0x2bc/0x330
[ 1185.525673]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.526780]  copy_process+0x62b/0x78b0
[ 1185.527614]  ? stack_trace_save+0x8c/0xc0
[ 1185.528481]  ? stack_trace_consume_entry+0x160/0x160
[ 1185.529554]  ? kasan_save_stack+0x32/0x40
[ 1185.530422]  ? __cleanup_sighand+0xb0/0xb0
[ 1185.531320]  ? do_syscall_64+0x33/0x40
[ 1185.532137]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.533261]  ? lock_acquire+0x197/0x470
[ 1185.534095]  ? create_object.isra.0+0x3ad/0xa30
[ 1185.535077]  ? lock_release+0x680/0x680
[ 1185.535922]  ? find_held_lock+0x2c/0x110
[ 1185.536793]  ? io_wqe_dec_running+0x220/0x220
[ 1185.537740]  create_io_thread+0xb6/0xf0
[ 1185.538576]  ? pidfd_prepare+0x80/0x80
[ 1185.539398]  ? mark_held_locks+0x9e/0xe0
[ 1185.540261]  ? io_wqe_dec_running+0x220/0x220
[ 1185.541222]  ? __init_swait_queue_head+0xc6/0x150
[ 1185.542239]  create_io_worker+0x23a/0x690
[ 1185.543118]  io_wqe_enqueue+0x69e/0xbe0
[ 1185.543969]  ? create_worker_cb+0x260/0x260
[ 1185.544874]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1185.545818]  ? io_prep_async_work+0x34e/0x550
[ 1185.546769]  io_queue_async_work+0x26b/0x4f0
[ 1185.547712]  __io_queue_sqe+0x5cc/0x9d0
[ 1185.548553]  ? io_issue_sqe+0x77d0/0x77d0
[ 1185.549422]  ? __fget_files+0x2f8/0x520
[ 1185.550258]  ? io_poll_queue_proc+0x50/0x50
[ 1185.551179]  ? io_prep_rw+0x7f5/0x1050
[ 1185.552008]  io_submit_sqes+0x44a8/0x8610
[ 1185.552906]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1185.553954]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1185.554970]  ? find_held_lock+0x2c/0x110
[ 1185.555846]  ? io_submit_sqes+0x8610/0x8610
[ 1185.556758]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1185.557779]  ? wait_for_completion_io+0x270/0x270
[ 1185.558800]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1185.559791]  ? vfs_write+0x354/0xb10
[ 1185.560574]  ? fput_many+0x2f/0x1a0
[ 1185.561335]  ? ksys_write+0x1a9/0x260
[ 1185.562131]  ? __ia32_sys_read+0xb0/0xb0
[ 1185.562993]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.564097]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.565179]  do_syscall_64+0x33/0x40
[ 1185.565961]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.567038] RIP: 0033:0x7f5b150fcb19
[ 1185.567826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1185.571701] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1185.573291] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1185.574789] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1185.576297] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1185.577810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1185.579318] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1185.580858] CPU: 1 PID: 7400 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1185.581759] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.582760] Call Trace:
[ 1185.583087]  dump_stack+0x107/0x167
[ 1185.583540]  should_fail.cold+0x5/0xa
[ 1185.584005]  ? security_file_alloc+0x34/0x170
[ 1185.584543]  should_failslab+0x5/0x20
[ 1185.584998]  kmem_cache_alloc+0x5b/0x310
[ 1185.585488]  security_file_alloc+0x34/0x170
[ 1185.586003]  __alloc_file+0xb7/0x320
[ 1185.586449]  alloc_empty_file+0x6d/0x170
[ 1185.586938]  alloc_file+0x5e/0x5a0
[ 1185.587378]  alloc_file_pseudo+0x16a/0x250
[ 1185.587885]  ? alloc_file+0x5a0/0x5a0
[ 1185.588349]  anon_inode_getfile+0xc8/0x1f0
[ 1185.588874]  io_uring_setup+0x138b/0x2980
[ 1185.589389]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1185.590035]  ? wait_for_completion_io+0x270/0x270
[ 1185.590088] FAULT_INJECTION: forcing a failure.
[ 1185.590088] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1185.590624]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.590636]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.590649]  do_syscall_64+0x33/0x40
[ 1185.590660]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.590669] RIP: 0033:0x7f488da58b19
[ 1185.590682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1185.590687] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1185.590709] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1185.590715] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1185.600785] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1185.601647] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1185.602495] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1185.603377] CPU: 0 PID: 7397 Comm: syz-executor.1 Not tainted 5.10.247 #1
[ 1185.604836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.606603] Call Trace:
[ 1185.607181]  dump_stack+0x107/0x167
[ 1185.607975]  should_fail.cold+0x5/0xa
[ 1185.608809]  _copy_from_user+0x2e/0x1b0
[ 1185.609671]  kstrtouint_from_user+0xbd/0x220
[ 1185.610616]  ? kstrtou8_from_user+0x210/0x210
[ 1185.611602]  ? lock_acquire+0x197/0x470
[ 1185.612452]  ? ksys_write+0x12d/0x260
[ 1185.613284]  proc_fail_nth_write+0x78/0x220
[ 1185.614210]  ? proc_task_getattr+0x1f0/0x1f0
[ 1185.615178]  ? proc_task_getattr+0x1f0/0x1f0
[ 1185.616120]  vfs_write+0x29a/0xb10
01:27:42 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

[ 1185.616897]  ksys_write+0x12d/0x260
[ 1185.617826]  ? __ia32_sys_read+0xb0/0xb0
[ 1185.618698]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.619861]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.620970]  do_syscall_64+0x33/0x40
[ 1185.621767]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.622871] RIP: 0033:0x7fe5c62b85ff
[ 1185.623681] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1185.627673] RSP: 002b:00007fe5c387b170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1185.629313] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe5c62b85ff
[ 1185.630847] RDX: 0000000000000001 RSI: 00007fe5c387b1e0 RDI: 000000000000000a
[ 1185.632392] RBP: 00007fe5c387b1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1185.633926] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1185.635472] R13: 00007ffc0ae37aff R14: 00007fe5c387b300 R15: 0000000000022000
01:27:42 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:27:42 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

01:27:42 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

01:27:42 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 14)

01:27:42 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

01:27:42 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1185.806866] FAULT_INJECTION: forcing a failure.
[ 1185.806866] name failslab, interval 1, probability 0, space 0, times 0
[ 1185.809682] CPU: 0 PID: 7426 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1185.811111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1185.812876] Call Trace:
[ 1185.813430]  dump_stack+0x107/0x167
[ 1185.814188]  should_fail.cold+0x5/0xa
[ 1185.814981]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1185.816149]  should_failslab+0x5/0x20
[ 1185.816941]  kmem_cache_alloc_trace+0x55/0x320
[ 1185.817897]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1185.819032]  io_uring_setup+0x14f6/0x2980
[ 1185.819918]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1185.820969]  ? wait_for_completion_io+0x270/0x270
[ 1185.821998]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1185.823091]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1185.824191]  do_syscall_64+0x33/0x40
[ 1185.824962]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1185.826024] RIP: 0033:0x7f006db87b19
[ 1185.826796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1185.830666] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1185.832265] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1185.833749] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1185.835246] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1185.836740] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1185.838228] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:55 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

01:27:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:27:56 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 26)

01:27:56 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 15)

01:27:56 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

01:27:56 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:27:56 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:27:56 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

[ 1199.410355] FAULT_INJECTION: forcing a failure.
[ 1199.410355] name failslab, interval 1, probability 0, space 0, times 0
[ 1199.413048] CPU: 0 PID: 7441 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1199.414493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1199.416251] Call Trace:
[ 1199.416806]  dump_stack+0x107/0x167
[ 1199.417580]  should_fail.cold+0x5/0xa
[ 1199.418384]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1199.419575]  should_failslab+0x5/0x20
[ 1199.420373]  kmem_cache_alloc_trace+0x55/0x320
[ 1199.421349]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 1199.422495]  io_uring_setup+0x14f6/0x2980
[ 1199.423390]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1199.424451]  ? wait_for_completion_io+0x270/0x270
[ 1199.425484]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1199.426595]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1199.427704]  do_syscall_64+0x33/0x40
[ 1199.428492]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1199.429577] RIP: 0033:0x7f006db87b19
[ 1199.430356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1199.434261] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1199.435883] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1199.437392] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1199.438898] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1199.440426] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1199.441934] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1199.446923] FAULT_INJECTION: forcing a failure.
[ 1199.446923] name failslab, interval 1, probability 0, space 0, times 0
[ 1199.449614] CPU: 1 PID: 7442 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1199.451058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1199.452803] Call Trace:
[ 1199.453359]  dump_stack+0x107/0x167
[ 1199.454132]  should_fail.cold+0x5/0xa
[ 1199.454935]  ? __delayacct_tsk_init+0x1b/0x80
[ 1199.455886]  should_failslab+0x5/0x20
[ 1199.456680]  kmem_cache_alloc+0x5b/0x310
[ 1199.457542]  __delayacct_tsk_init+0x1b/0x80
[ 1199.458446]  copy_process+0x3399/0x78b0
[ 1199.459296]  ? stack_trace_save+0x8c/0xc0
[ 1199.460177]  ? stack_trace_consume_entry+0x160/0x160
[ 1199.461257]  ? __cleanup_sighand+0xb0/0xb0
[ 1199.462158]  ? do_syscall_64+0x33/0x40
[ 1199.462970]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1199.464100]  ? lock_acquire+0x197/0x470
[ 1199.464940]  ? create_object.isra.0+0x3ad/0xa30
[ 1199.465916]  ? lock_release+0x680/0x680
[ 1199.466756]  ? find_held_lock+0x2c/0x110
[ 1199.467638]  ? io_wqe_dec_running+0x220/0x220
[ 1199.468575]  create_io_thread+0xb6/0xf0
[ 1199.469383]  ? pidfd_prepare+0x80/0x80
[ 1199.470197]  ? mark_held_locks+0x9e/0xe0
[ 1199.471053]  ? io_wqe_dec_running+0x220/0x220
[ 1199.472017]  ? __init_swait_queue_head+0xc6/0x150
[ 1199.473038]  create_io_worker+0x23a/0x690
[ 1199.473912]  io_wqe_enqueue+0x69e/0xbe0
[ 1199.474747]  ? create_worker_cb+0x260/0x260
[ 1199.475677]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1199.476629]  ? io_prep_async_work+0x34e/0x550
[ 1199.477571]  io_queue_async_work+0x26b/0x4f0
[ 1199.478496]  __io_queue_sqe+0x5cc/0x9d0
[ 1199.479350]  ? io_issue_sqe+0x77d0/0x77d0
[ 1199.480224]  ? __fget_files+0x2f8/0x520
[ 1199.481056]  ? io_poll_queue_proc+0x50/0x50
[ 1199.481965]  ? io_prep_rw+0x7f5/0x1050
[ 1199.482789]  io_submit_sqes+0x44a8/0x8610
[ 1199.483689]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1199.484733]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1199.485761]  ? find_held_lock+0x2c/0x110
[ 1199.486633]  ? io_submit_sqes+0x8610/0x8610
[ 1199.487557]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1199.488572]  ? wait_for_completion_io+0x270/0x270
[ 1199.489590]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1199.490573]  ? vfs_write+0x354/0xb10
[ 1199.491364]  ? fput_many+0x2f/0x1a0
[ 1199.492126]  ? ksys_write+0x1a9/0x260
[ 1199.492938]  ? __ia32_sys_read+0xb0/0xb0
[ 1199.493033] FAULT_INJECTION: forcing a failure.
[ 1199.493033] name failslab, interval 1, probability 0, space 0, times 0
[ 1199.493793]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1199.493812]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1199.493833]  do_syscall_64+0x33/0x40
[ 1199.493865]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1199.500203] RIP: 0033:0x7f5b150fcb19
[ 1199.500986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1199.504874] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1199.506489] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1199.508001] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1199.509500] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1199.511014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1199.512530] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1199.514058] CPU: 0 PID: 7446 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1199.515516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1199.517268] Call Trace:
[ 1199.517827]  dump_stack+0x107/0x167
[ 1199.518598]  should_fail.cold+0x5/0xa
[ 1199.519406]  ? security_file_alloc+0x34/0x170
[ 1199.520348]  should_failslab+0x5/0x20
[ 1199.521157]  kmem_cache_alloc+0x5b/0x310
[ 1199.522013]  security_file_alloc+0x34/0x170
[ 1199.522921]  __alloc_file+0xb7/0x320
[ 1199.523711]  alloc_empty_file+0x6d/0x170
[ 1199.524565]  alloc_file+0x5e/0x5a0
[ 1199.525318]  alloc_file_pseudo+0x16a/0x250
[ 1199.526206]  ? alloc_file+0x5a0/0x5a0
[ 1199.527020]  anon_inode_getfile+0xc8/0x1f0
[ 1199.527914]  io_uring_setup+0x138b/0x2980
[ 1199.528795]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1199.529864]  ? wait_for_completion_io+0x270/0x270
[ 1199.530890]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1199.532033]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1199.533114]  do_syscall_64+0x33/0x40
[ 1199.533896]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1199.534970] RIP: 0033:0x7f488da58b19
[ 1199.535771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1199.539662] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1199.541251] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1199.542749] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1199.544255] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1199.545759] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1199.547252] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:27:56 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:27:56 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

01:27:56 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

01:27:56 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:27:56 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

01:27:56 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

01:27:56 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 16)

01:27:56 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

[ 1199.815875] FAULT_INJECTION: forcing a failure.
[ 1199.815875] name failslab, interval 1, probability 0, space 0, times 0
[ 1199.818403] CPU: 1 PID: 7479 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1199.819867] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1199.821642] Call Trace:
[ 1199.822218]  dump_stack+0x107/0x167
[ 1199.823012]  should_fail.cold+0x5/0xa
[ 1199.823851]  ? create_object.isra.0+0x3a/0xa30
[ 1199.824838]  should_failslab+0x5/0x20
[ 1199.825660]  kmem_cache_alloc+0x5b/0x310
[ 1199.826546]  create_object.isra.0+0x3a/0xa30
[ 1199.827514]  kmemleak_alloc_percpu+0xa0/0x100
[ 1199.828490]  pcpu_alloc+0x4e2/0x1240
[ 1199.829309]  ? io_async_queue_proc+0x80/0x80
[ 1199.830262]  percpu_ref_init+0x31/0x3d0
[ 1199.831123]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1199.832310]  io_uring_setup+0x14f6/0x2980
[ 1199.833212]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1199.834418]  ? wait_for_completion_io+0x270/0x270
[ 1199.835790]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1199.837221]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1199.838638]  do_syscall_64+0x33/0x40
[ 1199.839684]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1199.840946] RIP: 0033:0x7f006db87b19
[ 1199.841803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1199.846029] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1199.847751] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1199.849327] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1199.850894] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1199.852487] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1199.854051] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:11 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 17)

01:28:11 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

01:28:11 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:28:11 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

01:28:11 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:11 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

01:28:11 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 27)

01:28:11 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

[ 1215.356929] FAULT_INJECTION: forcing a failure.
[ 1215.356929] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.359921] CPU: 1 PID: 7501 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1215.361357] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.363108] Call Trace:
[ 1215.363678]  dump_stack+0x107/0x167
[ 1215.364445]  should_fail.cold+0x5/0xa
[ 1215.365250]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 1215.366328]  should_failslab+0x5/0x20
[ 1215.367130]  kmem_cache_alloc_trace+0x55/0x320
[ 1215.368106]  io_uring_alloc_task_context+0x99/0x6a0
[ 1215.369154]  ? io_import_iovec+0x1120/0x1120
[ 1215.370078]  ? lock_downgrade+0x6d0/0x6d0
[ 1215.370945]  ? do_raw_spin_lock+0x121/0x260
[ 1215.371863]  ? rwlock_bug.part.0+0x90/0x90
[ 1215.372755]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1215.373765]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1215.374874]  ? alloc_fd+0x2e7/0x670
[ 1215.375652]  io_uring_setup+0x1fbb/0x2980
[ 1215.376531]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1215.377594]  ? wait_for_completion_io+0x270/0x270
[ 1215.378622]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.379736]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.380818]  do_syscall_64+0x33/0x40
[ 1215.381602]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.382674] RIP: 0033:0x7f488da58b19
[ 1215.383450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.387338] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1215.388958] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1215.390461] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1215.391967] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1215.393466] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1215.394965] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1215.413037] FAULT_INJECTION: forcing a failure.
[ 1215.413037] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.415600] CPU: 0 PID: 7509 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1215.417047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.418802] Call Trace:
[ 1215.419365]  dump_stack+0x107/0x167
[ 1215.420145]  should_fail.cold+0x5/0xa
[ 1215.420952]  ? create_object.isra.0+0x3a/0xa30
[ 1215.421912]  should_failslab+0x5/0x20
[ 1215.422716]  kmem_cache_alloc+0x5b/0x310
[ 1215.423586]  create_object.isra.0+0x3a/0xa30
[ 1215.424522]  kmemleak_alloc_percpu+0xa0/0x100
[ 1215.425477]  pcpu_alloc+0x4e2/0x1240
[ 1215.426272]  ? io_async_queue_proc+0x80/0x80
[ 1215.427205]  percpu_ref_init+0x31/0x3d0
[ 1215.428056]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1215.429199]  io_uring_setup+0x14f6/0x2980
[ 1215.430080]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1215.431064] FAULT_INJECTION: forcing a failure.
[ 1215.431064] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.431145]  ? wait_for_completion_io+0x270/0x270
[ 1215.431185]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.435605]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.436687]  do_syscall_64+0x33/0x40
[ 1215.437472]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.438545] RIP: 0033:0x7f006db87b19
[ 1215.439329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.443217] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1215.444825] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1215.446328] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1215.447838] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1215.449335] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1215.450833] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1215.452363] CPU: 1 PID: 7514 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1215.453821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.455597] Call Trace:
[ 1215.456159]  dump_stack+0x107/0x167
[ 1215.456926]  should_fail.cold+0x5/0xa
[ 1215.457730]  ? create_object.isra.0+0x3a/0xa30
[ 1215.458688]  should_failslab+0x5/0x20
[ 1215.459485]  kmem_cache_alloc+0x5b/0x310
[ 1215.460382]  create_object.isra.0+0x3a/0xa30
[ 1215.461303]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1215.462373]  kmem_cache_alloc+0x159/0x310
[ 1215.463254]  __delayacct_tsk_init+0x1b/0x80
[ 1215.464188]  copy_process+0x3399/0x78b0
[ 1215.465035]  ? stack_trace_save+0x8c/0xc0
[ 1215.465912]  ? stack_trace_consume_entry+0x160/0x160
[ 1215.466999]  ? __cleanup_sighand+0xb0/0xb0
[ 1215.467912]  ? do_syscall_64+0x33/0x40
[ 1215.468729]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.469848]  ? lock_acquire+0x197/0x470
[ 1215.470687]  ? create_object.isra.0+0x3ad/0xa30
[ 1215.471701]  ? lock_release+0x680/0x680
[ 1215.472536]  ? find_held_lock+0x2c/0x110
[ 1215.473399]  ? io_wqe_dec_running+0x220/0x220
[ 1215.474339]  create_io_thread+0xb6/0xf0
[ 1215.475174]  ? pidfd_prepare+0x80/0x80
[ 1215.476018]  ? mark_held_locks+0x9e/0xe0
[ 1215.476874]  ? io_wqe_dec_running+0x220/0x220
[ 1215.477822]  ? __init_swait_queue_head+0xc6/0x150
[ 1215.478823]  create_io_worker+0x23a/0x690
[ 1215.479723]  io_wqe_enqueue+0x69e/0xbe0
[ 1215.480560]  ? create_worker_cb+0x260/0x260
[ 1215.481460]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1215.482399]  ? io_prep_async_work+0x34e/0x550
[ 1215.483345]  io_queue_async_work+0x26b/0x4f0
[ 1215.484299]  __io_queue_sqe+0x5cc/0x9d0
[ 1215.485145]  ? io_issue_sqe+0x77d0/0x77d0
[ 1215.486009]  ? __fget_files+0x2f8/0x520
[ 1215.486840]  ? io_poll_queue_proc+0x50/0x50
[ 1215.487782]  ? io_prep_rw+0x7f5/0x1050
[ 1215.488611]  io_submit_sqes+0x44a8/0x8610
[ 1215.489505]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1215.490559]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1215.491608]  ? find_held_lock+0x2c/0x110
[ 1215.492472]  ? io_submit_sqes+0x8610/0x8610
[ 1215.493381]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1215.494399]  ? wait_for_completion_io+0x270/0x270
[ 1215.495424]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1215.496430]  ? vfs_write+0x354/0xb10
01:28:12 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

[ 1215.497211]  ? fput_many+0x2f/0x1a0
[ 1215.498304]  ? ksys_write+0x1a9/0x260
[ 1215.499284]  ? __ia32_sys_read+0xb0/0xb0
[ 1215.500349]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.501710]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.503036]  do_syscall_64+0x33/0x40
[ 1215.504010]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.505320] RIP: 0033:0x7f5b150fcb19
[ 1215.506276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.510966] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1215.512935] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1215.514752] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1215.516591] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1215.518419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1215.520253] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:28:12 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

01:28:12 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 28)

01:28:12 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

01:28:12 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

01:28:12 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:12 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:28:12 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 18)

[ 1215.681328] FAULT_INJECTION: forcing a failure.
[ 1215.681328] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.682699] CPU: 0 PID: 7532 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1215.683472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.684414] Call Trace:
[ 1215.684736]  dump_stack+0x107/0x167
[ 1215.685147]  should_fail.cold+0x5/0xa
[ 1215.685601]  ? create_object.isra.0+0x3a/0xa30
[ 1215.686112]  should_failslab+0x5/0x20
[ 1215.686539]  kmem_cache_alloc+0x5b/0x310
[ 1215.686995]  create_object.isra.0+0x3a/0xa30
[ 1215.687520]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1215.688095]  kmem_cache_alloc_trace+0x151/0x320
[ 1215.688652]  io_uring_alloc_task_context+0x99/0x6a0
[ 1215.689239]  ? io_import_iovec+0x1120/0x1120
[ 1215.689765]  ? lock_downgrade+0x6d0/0x6d0
[ 1215.690250]  ? do_raw_spin_lock+0x121/0x260
[ 1215.690759]  ? rwlock_bug.part.0+0x90/0x90
[ 1215.691263]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1215.691838]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1215.692455]  ? alloc_fd+0x2e7/0x670
[ 1215.692868]  io_uring_setup+0x1fbb/0x2980
[ 1215.693363]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1215.693930]  ? wait_for_completion_io+0x270/0x270
[ 1215.694477]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.695057]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.695640]  do_syscall_64+0x33/0x40
[ 1215.696053]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.696626] RIP: 0033:0x7f488da58b19
[ 1215.697041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.699209] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1215.700067] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1215.700864] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1215.701707] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1215.702548] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1215.703388] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:12 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e00, 0x0, 0x0, 0x0)

01:28:12 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

[ 1215.739113] FAULT_INJECTION: forcing a failure.
[ 1215.739113] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.740449] CPU: 0 PID: 7540 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1215.741194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.742157] Call Trace:
[ 1215.742460]  dump_stack+0x107/0x167
[ 1215.742868]  should_fail.cold+0x5/0xa
[ 1215.743295]  ? percpu_ref_init+0xd8/0x3d0
[ 1215.743764]  should_failslab+0x5/0x20
[ 1215.744186]  kmem_cache_alloc_trace+0x55/0x320
[ 1215.744699]  ? io_async_queue_proc+0x80/0x80
[ 1215.745183]  percpu_ref_init+0xd8/0x3d0
[ 1215.745654]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1215.746251]  io_uring_setup+0x14f6/0x2980
[ 1215.746745]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1215.747313]  ? wait_for_completion_io+0x270/0x270
[ 1215.747909]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.748527]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.749135]  do_syscall_64+0x33/0x40
[ 1215.749570]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.750168] RIP: 0033:0x7f006db87b19
[ 1215.750605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.752752] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1215.753636] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1215.754454] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1215.755282] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1215.756116] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1215.756944] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:12 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x60, 0x0, 0x0, 0x0)

01:28:12 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:12 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

[ 1215.886616] FAULT_INJECTION: forcing a failure.
[ 1215.886616] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.888172] CPU: 0 PID: 7558 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1215.888907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.889801] Call Trace:
[ 1215.890108]  dump_stack+0x107/0x167
[ 1215.890526]  should_fail.cold+0x5/0xa
[ 1215.890961]  ? alloc_pid+0xd7/0xd30
[ 1215.891353]  should_failslab+0x5/0x20
[ 1215.891772]  kmem_cache_alloc+0x5b/0x310
[ 1215.892211]  alloc_pid+0xd7/0xd30
[ 1215.892589]  ? copy_namespaces+0x1ca/0x4f0
[ 1215.893043]  copy_process+0x3b8b/0x78b0
[ 1215.893485]  ? stack_trace_save+0x8c/0xc0
[ 1215.893935]  ? stack_trace_consume_entry+0x160/0x160
[ 1215.894491]  ? __cleanup_sighand+0xb0/0xb0
[ 1215.894970]  ? do_syscall_64+0x33/0x40
[ 1215.895387]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.896007]  ? lock_acquire+0x197/0x470
[ 1215.896437]  ? create_object.isra.0+0x3ad/0xa30
[ 1215.896939]  ? lock_release+0x680/0x680
[ 1215.897364]  ? find_held_lock+0x2c/0x110
[ 1215.897835]  ? io_wqe_dec_running+0x220/0x220
[ 1215.898322]  create_io_thread+0xb6/0xf0
[ 1215.898748]  ? pidfd_prepare+0x80/0x80
[ 1215.899166]  ? mark_held_locks+0x9e/0xe0
[ 1215.899610]  ? io_wqe_dec_running+0x220/0x220
[ 1215.900095]  ? __init_swait_queue_head+0xc6/0x150
[ 1215.900614]  create_io_worker+0x23a/0x690
[ 1215.901086]  io_wqe_enqueue+0x69e/0xbe0
[ 1215.901515]  ? create_worker_cb+0x260/0x260
[ 1215.902011]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1215.902528]  ? io_prep_async_work+0x34e/0x550
[ 1215.903043]  io_queue_async_work+0x26b/0x4f0
[ 1215.903555]  __io_queue_sqe+0x5cc/0x9d0
[ 1215.904016]  ? io_issue_sqe+0x77d0/0x77d0
[ 1215.904492]  ? __fget_files+0x2f8/0x520
[ 1215.904943]  ? io_poll_queue_proc+0x50/0x50
[ 1215.905441]  ? io_prep_rw+0x7f5/0x1050
[ 1215.905887]  io_submit_sqes+0x44a8/0x8610
[ 1215.906380]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1215.906950]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1215.907501]  ? find_held_lock+0x2c/0x110
[ 1215.907983]  ? io_submit_sqes+0x8610/0x8610
[ 1215.908458]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1215.909013]  ? wait_for_completion_io+0x270/0x270
[ 1215.909532]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1215.910074]  ? vfs_write+0x354/0xb10
[ 1215.910477]  ? fput_many+0x2f/0x1a0
[ 1215.910906]  ? ksys_write+0x1a9/0x260
[ 1215.911327]  ? __ia32_sys_read+0xb0/0xb0
[ 1215.911800]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1215.912402]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1215.912995]  do_syscall_64+0x33/0x40
[ 1215.913424]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1215.914029] RIP: 0033:0x7f5b150fcb19
[ 1215.914455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.916570] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1215.917446] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1215.918266] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1215.919083] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1215.919909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1215.920729] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
01:28:28 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 29)

01:28:28 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

01:28:28 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18c, 0x0, 0x0, 0x0)

01:28:28 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

01:28:28 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 19)

01:28:28 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:28 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

01:28:28 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

[ 1231.526392] FAULT_INJECTION: forcing a failure.
[ 1231.526392] name failslab, interval 1, probability 0, space 0, times 0
[ 1231.526418] FAULT_INJECTION: forcing a failure.
[ 1231.526418] name failslab, interval 1, probability 0, space 0, times 0
[ 1231.529209] CPU: 0 PID: 7583 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1231.529220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1231.529226] Call Trace:
[ 1231.529253]  dump_stack+0x107/0x167
[ 1231.529280]  should_fail.cold+0x5/0xa
[ 1231.537633]  ? create_object.isra.0+0x3a/0xa30
[ 1231.538768]  should_failslab+0x5/0x20
[ 1231.539701]  kmem_cache_alloc+0x5b/0x310
[ 1231.540742]  create_object.isra.0+0x3a/0xa30
[ 1231.541840]  kmemleak_alloc_percpu+0xa0/0x100
[ 1231.542960]  pcpu_alloc+0x4e2/0x1240
[ 1231.543923]  __percpu_counter_init+0x10d/0x2d0
[ 1231.545067]  io_uring_alloc_task_context+0xcc/0x6a0
[ 1231.546297]  ? io_import_iovec+0x1120/0x1120
[ 1231.547392]  ? lock_downgrade+0x6d0/0x6d0
[ 1231.548430]  ? do_raw_spin_lock+0x121/0x260
[ 1231.549506]  ? rwlock_bug.part.0+0x90/0x90
[ 1231.550575]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1231.551771]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1231.553075]  ? alloc_fd+0x2e7/0x670
[ 1231.553994]  io_uring_setup+0x1fbb/0x2980
[ 1231.555036]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1231.556263]  ? wait_for_completion_io+0x270/0x270
[ 1231.557446]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1231.558699]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1231.559998]  do_syscall_64+0x33/0x40
[ 1231.560905]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1231.562126] RIP: 0033:0x7f488da58b19
[ 1231.563039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1231.567493] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1231.569358] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1231.571099] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1231.572839] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1231.574563] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1231.576295] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1231.578040] CPU: 1 PID: 7570 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1231.579392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1231.581000] Call Trace:
[ 1231.581509]  dump_stack+0x107/0x167
[ 1231.582202]  should_fail.cold+0x5/0xa
[ 1231.582925]  ? create_object.isra.0+0x3a/0xa30
[ 1231.583807]  should_failslab+0x5/0x20
[ 1231.584547]  kmem_cache_alloc+0x5b/0x310
[ 1231.585334]  create_object.isra.0+0x3a/0xa30
[ 1231.586170]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1231.587132]  kmem_cache_alloc+0x159/0x310
[ 1231.587933]  alloc_pid+0xd7/0xd30
[ 1231.588597]  ? copy_namespaces+0x1ca/0x4f0
[ 1231.589396]  copy_process+0x3b8b/0x78b0
[ 1231.590160]  ? stack_trace_save+0x8c/0xc0
[ 1231.590977]  ? stack_trace_consume_entry+0x160/0x160
[ 1231.591984]  ? __cleanup_sighand+0xb0/0xb0
[ 1231.592791]  ? do_syscall_64+0x33/0x40
[ 1231.593533]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1231.594552]  ? lock_acquire+0x197/0x470
[ 1231.595301]  ? create_object.isra.0+0x3ad/0xa30
[ 1231.596195]  ? lock_release+0x680/0x680
[ 1231.596955]  ? find_held_lock+0x2c/0x110
[ 1231.597731]  ? io_wqe_dec_running+0x220/0x220
[ 1231.598594]  create_io_thread+0xb6/0xf0
[ 1231.599355]  ? pidfd_prepare+0x80/0x80
[ 1231.600096]  ? mark_held_locks+0x9e/0xe0
[ 1231.600869]  ? io_wqe_dec_running+0x220/0x220
[ 1231.601750]  ? __init_swait_queue_head+0xc6/0x150
[ 1231.602666]  create_io_worker+0x23a/0x690
[ 1231.603457]  io_wqe_enqueue+0x69e/0xbe0
[ 1231.604230]  ? create_worker_cb+0x260/0x260
[ 1231.605043]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1231.605897]  ? io_prep_async_work+0x34e/0x550
[ 1231.606747]  io_queue_async_work+0x26b/0x4f0
[ 1231.607578]  __io_queue_sqe+0x5cc/0x9d0
[ 1231.608345]  ? io_issue_sqe+0x77d0/0x77d0
[ 1231.609128]  ? __fget_files+0x2f8/0x520
[ 1231.609877]  ? io_poll_queue_proc+0x50/0x50
[ 1231.610688]  ? io_prep_rw+0x7f5/0x1050
[ 1231.611419]  io_submit_sqes+0x44a8/0x8610
[ 1231.612225]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1231.613158]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1231.614067]  ? find_held_lock+0x2c/0x110
[ 1231.614840]  ? io_submit_sqes+0x8610/0x8610
[ 1231.615656]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1231.616571]  ? wait_for_completion_io+0x270/0x270
[ 1231.617485]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1231.618346]  ? vfs_write+0x354/0xb10
[ 1231.619046]  ? fput_many+0x2f/0x1a0
[ 1231.619746]  ? ksys_write+0x1a9/0x260
[ 1231.620456]  ? __ia32_sys_read+0xb0/0xb0
[ 1231.621223]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1231.622197]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1231.623171]  do_syscall_64+0x33/0x40
[ 1231.623877]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1231.624824] RIP: 0033:0x7f5b150fcb19
[ 1231.625515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1231.628938] RSP: 002b:00007f5b12672188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1231.630344] RAX: ffffffffffffffda RBX: 00007f5b1520ff60 RCX: 00007f5b150fcb19
[ 1231.631660] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1231.633005] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1231.634319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1231.635652] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1231.640744] FAULT_INJECTION: forcing a failure.
[ 1231.640744] name failslab, interval 1, probability 0, space 0, times 0
[ 1231.643827] CPU: 0 PID: 7587 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1231.645480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1231.647469] Call Trace:
[ 1231.648135]  dump_stack+0x107/0x167
[ 1231.649008]  should_fail.cold+0x5/0xa
[ 1231.649938]  ? create_object.isra.0+0x3a/0xa30
[ 1231.651036]  should_failslab+0x5/0x20
[ 1231.651969]  kmem_cache_alloc+0x5b/0x310
[ 1231.652953]  create_object.isra.0+0x3a/0xa30
[ 1231.654009]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1231.655243]  kmem_cache_alloc_trace+0x151/0x320
[ 1231.656371]  ? io_async_queue_proc+0x80/0x80
[ 1231.657433]  percpu_ref_init+0xd8/0x3d0
[ 1231.658393]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 1231.659748]  io_uring_setup+0x14f6/0x2980
[ 1231.660739]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1231.661946]  ? wait_for_completion_io+0x270/0x270
[ 1231.663128]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1231.664387]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1231.665627]  do_syscall_64+0x33/0x40
[ 1231.666528]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1231.667762] RIP: 0033:0x7f006db87b19
[ 1231.668655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1231.673067] RSP: 002b:00007f006b0dc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1231.674906] RAX: ffffffffffffffda RBX: 00007f006dc9b020 RCX: 00007f006db87b19
[ 1231.676624] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1231.678335] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1231.680050] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1231.681742] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:28 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

01:28:28 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

01:28:41 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 20)

01:28:41 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:41 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

01:28:41 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

01:28:41 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

01:28:41 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

01:28:41 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 30)

01:28:41 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

[ 1244.862274] FAULT_INJECTION: forcing a failure.
[ 1244.862274] name failslab, interval 1, probability 0, space 0, times 0
[ 1244.864780] CPU: 1 PID: 7617 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1244.866210] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.867943] Call Trace:
[ 1244.868502]  dump_stack+0x107/0x167
[ 1244.869259]  should_fail.cold+0x5/0xa
[ 1244.870053]  ? create_object.isra.0+0x3a/0xa30
[ 1244.871002]  should_failslab+0x5/0x20
[ 1244.871790]  kmem_cache_alloc+0x5b/0x310
[ 1244.872644]  create_object.isra.0+0x3a/0xa30
[ 1244.873568]  kmemleak_alloc_percpu+0xa0/0x100
[ 1244.874503]  pcpu_alloc+0x4e2/0x1240
[ 1244.875291]  __percpu_counter_init+0x10d/0x2d0
[ 1244.876253]  io_uring_alloc_task_context+0xcc/0x6a0
[ 1244.877296]  ? io_import_iovec+0x1120/0x1120
[ 1244.878223]  ? lock_downgrade+0x6d0/0x6d0
[ 1244.879085]  ? do_raw_spin_lock+0x121/0x260
[ 1244.879990]  ? rwlock_bug.part.0+0x90/0x90
[ 1244.880877]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1244.881889]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1244.882977]  ? alloc_fd+0x2e7/0x670
[ 1244.883759]  io_uring_setup+0x1fbb/0x2980
[ 1244.884659]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1244.885736]  ? wait_for_completion_io+0x270/0x270
[ 1244.886763]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1244.887878]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1244.888953]  do_syscall_64+0x33/0x40
[ 1244.889734]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1244.890709] FAULT_INJECTION: forcing a failure.
[ 1244.890709] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1244.890808] RIP: 0033:0x7f488da58b19
[ 1244.890829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.896796] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1244.898395] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1244.899899] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1244.901395] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1244.902894] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1244.904396] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1244.905908] CPU: 0 PID: 7625 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1244.906680] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.907574] Call Trace:
[ 1244.907876]  dump_stack+0x107/0x167
[ 1244.908272]  should_fail.cold+0x5/0xa
[ 1244.908688]  _copy_to_user+0x2e/0x180
[ 1244.909101]  io_uring_setup+0x11b5/0x2980
[ 1244.909554]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1244.910101]  ? wait_for_completion_io+0x270/0x270
[ 1244.910633]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1244.911248]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1244.911804]  do_syscall_64+0x33/0x40
[ 1244.912242]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1244.912793] RIP: 0033:0x7f006db87b19
[ 1244.913227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.915333] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1244.916209] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1244.917028] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1244.917844] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1244.918665] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1244.919479] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1244.961806] FAULT_INJECTION: forcing a failure.
[ 1244.961806] name fail_usercopy, interval 1, probability 0, space 0, times 0
01:28:41 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

01:28:41 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 31)

[ 1244.964438] CPU: 1 PID: 7627 Comm: syz-executor.0 Not tainted 5.10.247 #1
[ 1244.966092] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.967838] Call Trace:
[ 1244.968423]  dump_stack+0x107/0x167
[ 1244.969206]  should_fail.cold+0x5/0xa
[ 1244.970023]  _copy_to_user+0x2e/0x180
[ 1244.970836]  simple_read_from_buffer+0xcc/0x160
[ 1244.971824]  proc_fail_nth_read+0x198/0x230
[ 1244.972747]  ? proc_sessionid_read+0x230/0x230
[ 1244.973723]  ? security_file_permission+0xb1/0xe0
[ 1244.974744]  ? proc_sessionid_read+0x230/0x230
[ 1244.975714]  vfs_read+0x228/0x620
[ 1244.976461]  ksys_read+0x12d/0x260
[ 1244.977222]  ? vfs_write+0xb10/0xb10
[ 1244.978007]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
01:28:41 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xcc0, 0x0, 0x0, 0x0)

[ 1244.979100]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1244.980293]  do_syscall_64+0x33/0x40
[ 1244.981083]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1244.982167] RIP: 0033:0x7f5b150af69c
[ 1244.982954] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1244.986871] RSP: 002b:00007f5b12672170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1244.988505] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f5b150af69c
[ 1244.988802] FAULT_INJECTION: forcing a failure.
[ 1244.988802] name failslab, interval 1, probability 0, space 0, times 0
[ 1244.990000] RDX: 000000000000000f RSI: 00007f5b126721e0 RDI: 000000000000000a
[ 1244.990012] RBP: 00007f5b126721d0 R08: 0000000000000000 R09: 0000000000000000
[ 1244.990022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.990037] R13: 00007ffd6a14604f R14: 00007f5b12672300 R15: 0000000000022000
[ 1244.997335] CPU: 0 PID: 7638 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1244.998138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.999108] Call Trace:
[ 1244.999420]  dump_stack+0x107/0x167
[ 1244.999845]  should_fail.cold+0x5/0xa
[ 1245.000295]  ? io_uring_alloc_task_context+0x4a3/0x6a0
[ 1245.000897]  should_failslab+0x5/0x20
[ 1245.001338]  kmem_cache_alloc_trace+0x55/0x320
[ 1245.001868]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 1245.002450]  ? io_import_iovec+0x1120/0x1120
[ 1245.002957]  ? lock_downgrade+0x6d0/0x6d0
[ 1245.003436]  ? do_raw_spin_lock+0x121/0x260
[ 1245.003940]  ? rwlock_bug.part.0+0x90/0x90
[ 1245.004428]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1245.004982]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1245.005585]  ? alloc_fd+0x2e7/0x670
[ 1245.006008]  io_uring_setup+0x1fbb/0x2980
[ 1245.006491]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1245.007072]  ? wait_for_completion_io+0x270/0x270
[ 1245.007645]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1245.008258]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1245.008849]  do_syscall_64+0x33/0x40
[ 1245.009279]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1245.009871] RIP: 0033:0x7f488da58b19
[ 1245.010296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1245.012419] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1245.013243] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1245.014066] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1245.014889] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1245.015708] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1245.016540] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:41 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

01:28:41 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:41 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 21)

01:28:41 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

01:28:41 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1c1d, 0x0, 0x0, 0x0)

01:28:41 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

[ 1245.103342] FAULT_INJECTION: forcing a failure.
[ 1245.103342] name failslab, interval 1, probability 0, space 0, times 0
[ 1245.104714] CPU: 0 PID: 7651 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1245.105466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1245.106425] Call Trace:
[ 1245.106742]  dump_stack+0x107/0x167
[ 1245.107167]  should_fail.cold+0x5/0xa
[ 1245.107611]  ? __d_alloc+0x2a/0x990
[ 1245.108037]  should_failslab+0x5/0x20
[ 1245.108479]  kmem_cache_alloc+0x5b/0x310
[ 1245.108964]  __d_alloc+0x2a/0x990
[ 1245.109376]  ? find_held_lock+0x2c/0x110
[ 1245.109861]  d_alloc_pseudo+0x19/0x70
[ 1245.110297]  alloc_file_pseudo+0xce/0x250
[ 1245.110780]  ? trace_hardirqs_on+0x5b/0x180
[ 1245.111260]  ? alloc_file+0x5a0/0x5a0
[ 1245.111710]  anon_inode_getfile+0xc8/0x1f0
[ 1245.112208]  io_uring_setup+0x138b/0x2980
[ 1245.112695]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1245.113285]  ? wait_for_completion_io+0x270/0x270
[ 1245.113819]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1245.114427]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1245.115018]  do_syscall_64+0x33/0x40
[ 1245.115454]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1245.116064] RIP: 0033:0x7f006db87b19
[ 1245.116473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1245.118587] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1245.119470] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1245.120251] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1245.121069] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1245.121846] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1245.122633] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:41 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

01:28:54 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

01:28:54 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 32)

01:28:54 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)

01:28:54 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 22)

01:28:54 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:28:54 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

01:28:54 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1d1c, 0x0, 0x0, 0x0)

01:28:54 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1257.504185] FAULT_INJECTION: forcing a failure.
[ 1257.504185] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.506799] CPU: 1 PID: 7679 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1257.508253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1257.509989] Call Trace:
[ 1257.510546]  dump_stack+0x107/0x167
[ 1257.511316]  should_fail.cold+0x5/0xa
[ 1257.512125]  ? create_object.isra.0+0x3a/0xa30
[ 1257.513084]  should_failslab+0x5/0x20
[ 1257.513878]  kmem_cache_alloc+0x5b/0x310
[ 1257.514727]  create_object.isra.0+0x3a/0xa30
[ 1257.515643]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1257.516733]  kmem_cache_alloc+0x159/0x310
[ 1257.517603]  __d_alloc+0x2a/0x990
[ 1257.518325]  ? find_held_lock+0x2c/0x110
[ 1257.519185]  d_alloc_pseudo+0x19/0x70
[ 1257.519980]  alloc_file_pseudo+0xce/0x250
[ 1257.520857]  ? trace_hardirqs_on+0x5b/0x180
[ 1257.521757]  ? alloc_file+0x5a0/0x5a0
[ 1257.522566]  anon_inode_getfile+0xc8/0x1f0
[ 1257.523465]  io_uring_setup+0x138b/0x2980
[ 1257.524351]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1257.525420]  ? wait_for_completion_io+0x270/0x270
[ 1257.526448]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1257.527538]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1257.528654]  do_syscall_64+0x33/0x40
[ 1257.529430]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1257.530510] RIP: 0033:0x7f006db87b19
[ 1257.531298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.535275] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1257.536933] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1257.538472] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1257.539993] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1257.541531] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1257.543060] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1257.556830] FAULT_INJECTION: forcing a failure.
[ 1257.556830] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.559511] CPU: 0 PID: 7696 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1257.561101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1257.563009] Call Trace:
[ 1257.563618]  dump_stack+0x107/0x167
[ 1257.564478]  should_fail.cold+0x5/0xa
[ 1257.565355]  ? create_object.isra.0+0x3a/0xa30
[ 1257.566408]  should_failslab+0x5/0x20
[ 1257.567290]  kmem_cache_alloc+0x5b/0x310
[ 1257.568238]  create_object.isra.0+0x3a/0xa30
[ 1257.569253]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1257.570425]  kmem_cache_alloc_trace+0x151/0x320
[ 1257.571508]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 1257.572686]  ? io_import_iovec+0x1120/0x1120
[ 1257.573704]  ? lock_downgrade+0x6d0/0x6d0
[ 1257.574660]  ? do_raw_spin_lock+0x121/0x260
[ 1257.575653]  ? rwlock_bug.part.0+0x90/0x90
[ 1257.576640]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1257.577748]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1257.578949]  ? alloc_fd+0x2e7/0x670
[ 1257.579799]  io_uring_setup+0x1fbb/0x2980
[ 1257.580768]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1257.581928]  ? wait_for_completion_io+0x270/0x270
[ 1257.583063]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1257.584278]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1257.585475]  do_syscall_64+0x33/0x40
[ 1257.586335]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1257.587515] RIP: 0033:0x7f488da58b19
[ 1257.588385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.592643] RSP: 002b:00007f488afad108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1257.594406] RAX: ffffffffffffffda RBX: 00007f488db6c020 RCX: 00007f488da58b19
[ 1257.596055] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1257.597698] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1257.599337] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1257.601001] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:54 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

01:28:54 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)

01:28:54 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 23)

01:28:54 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

01:28:54 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

01:28:54 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1257.759352] FAULT_INJECTION: forcing a failure.
[ 1257.759352] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.762288] CPU: 0 PID: 7708 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1257.763870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1257.765795] Call Trace:
[ 1257.766407]  dump_stack+0x107/0x167
[ 1257.767252]  should_fail.cold+0x5/0xa
[ 1257.768154]  ? __alloc_file+0x21/0x320
[ 1257.769047]  should_failslab+0x5/0x20
[ 1257.769924]  kmem_cache_alloc+0x5b/0x310
[ 1257.770862]  __alloc_file+0x21/0x320
[ 1257.771718]  alloc_empty_file+0x6d/0x170
[ 1257.772664]  alloc_file+0x5e/0x5a0
[ 1257.773486]  alloc_file_pseudo+0x16a/0x250
[ 1257.774431]  ? alloc_file+0x5a0/0x5a0
[ 1257.775327]  anon_inode_getfile+0xc8/0x1f0
[ 1257.776320]  io_uring_setup+0x138b/0x2980
[ 1257.777285]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1257.778453]  ? wait_for_completion_io+0x270/0x270
[ 1257.779583]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1257.780808]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1257.781995]  do_syscall_64+0x33/0x40
[ 1257.782854]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1257.784045] RIP: 0033:0x7f006db87b19
[ 1257.784905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.789164] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1257.790923] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1257.792571] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1257.794206] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1257.795856] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1257.797502] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:28:54 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e00, 0x0, 0x0, 0x0)

01:28:54 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 33)

01:28:54 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

[ 1257.901908] FAULT_INJECTION: forcing a failure.
[ 1257.901908] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.904678] CPU: 1 PID: 7727 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1257.906132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1257.907881] Call Trace:
[ 1257.908450]  dump_stack+0x107/0x167
[ 1257.909226]  should_fail.cold+0x5/0xa
[ 1257.910032]  ? io_wq_create+0xeb/0xc00
[ 1257.910856]  should_failslab+0x5/0x20
[ 1257.911653]  __kmalloc+0x72/0x390
[ 1257.912406]  io_wq_create+0xeb/0xc00
[ 1257.913206]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1257.914274]  ? io_import_iovec+0x1120/0x1120
[ 1257.915200]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1257.916158]  ? __io_req_find_next+0x300/0x300
[ 1257.917103]  ? do_raw_spin_lock+0x121/0x260
[ 1257.918011]  ? rwlock_bug.part.0+0x90/0x90
[ 1257.918909]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1257.919929]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1257.921043]  ? alloc_fd+0x2e7/0x670
[ 1257.921817]  io_uring_setup+0x1fbb/0x2980
[ 1257.922696]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1257.923760]  ? wait_for_completion_io+0x270/0x270
[ 1257.924806]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1257.925913]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1257.926996]  do_syscall_64+0x33/0x40
[ 1257.927781]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1257.928877] RIP: 0033:0x7f488da58b19
[ 1257.929673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1257.933563] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1257.935179] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1257.936698] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1257.938198] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1257.939691] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1257.941190] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:09 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3f00, 0x0, 0x0, 0x0)

01:29:09 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

01:29:09 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 34)

01:29:09 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

01:29:09 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:09 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

01:29:09 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 24)

01:29:09 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

[ 1272.912914] FAULT_INJECTION: forcing a failure.
[ 1272.912914] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.915669] CPU: 1 PID: 7745 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1272.916846] FAULT_INJECTION: forcing a failure.
[ 1272.916846] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.917159] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.917174] Call Trace:
[ 1272.922332]  dump_stack+0x107/0x167
[ 1272.923125]  should_fail.cold+0x5/0xa
[ 1272.923951]  ? create_object.isra.0+0x3a/0xa30
[ 1272.924949]  should_failslab+0x5/0x20
[ 1272.925771]  kmem_cache_alloc+0x5b/0x310
[ 1272.926636]  create_object.isra.0+0x3a/0xa30
[ 1272.927576]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1272.928662]  __kmalloc+0x16e/0x390
[ 1272.929427]  io_wq_create+0xeb/0xc00
[ 1272.930237]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1272.931328]  ? io_import_iovec+0x1120/0x1120
[ 1272.932282]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1272.933243]  ? __io_req_find_next+0x300/0x300
[ 1272.934204]  ? do_raw_spin_lock+0x121/0x260
[ 1272.935138]  ? rwlock_bug.part.0+0x90/0x90
[ 1272.936056]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1272.937105]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1272.938237]  ? alloc_fd+0x2e7/0x670
[ 1272.939028]  io_uring_setup+0x1fbb/0x2980
[ 1272.939929]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1272.941030]  ? wait_for_completion_io+0x270/0x270
[ 1272.942096]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1272.943227]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1272.944349]  do_syscall_64+0x33/0x40
[ 1272.945154]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1272.946257] RIP: 0033:0x7f488da58b19
[ 1272.947065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.951924] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1272.953956] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1272.955858] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1272.957740] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1272.959335] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1272.961058] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1272.962638] CPU: 0 PID: 7751 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1272.964224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.966006] Call Trace:
[ 1272.966577]  dump_stack+0x107/0x167
[ 1272.967361]  should_fail.cold+0x5/0xa
[ 1272.968227]  ? create_object.isra.0+0x3a/0xa30
[ 1272.969260]  should_failslab+0x5/0x20
[ 1272.970077]  kmem_cache_alloc+0x5b/0x310
[ 1272.970952]  create_object.isra.0+0x3a/0xa30
[ 1272.971904]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1272.973008]  kmem_cache_alloc+0x159/0x310
[ 1272.973899]  __alloc_file+0x21/0x320
[ 1272.974696]  alloc_empty_file+0x6d/0x170
[ 1272.975563]  alloc_file+0x5e/0x5a0
[ 1272.976339]  alloc_file_pseudo+0x16a/0x250
[ 1272.977245]  ? alloc_file+0x5a0/0x5a0
[ 1272.978076]  anon_inode_getfile+0xc8/0x1f0
[ 1272.978993]  io_uring_setup+0x138b/0x2980
[ 1272.979890]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1272.981047]  ? wait_for_completion_io+0x270/0x270
[ 1272.982142]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1272.983266]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1272.984392]  do_syscall_64+0x33/0x40
[ 1272.985240]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1272.986346] RIP: 0033:0x7f006db87b19
[ 1272.987184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.991235] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1272.992928] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1272.994489] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1272.996066] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1272.997594] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1272.999196] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:09 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e, 0x0, 0x0, 0x0)

01:29:09 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

01:29:09 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

01:29:09 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:09 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

01:29:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

01:29:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6000, 0x0, 0x0, 0x0)

01:29:25 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

01:29:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 25)

01:29:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

01:29:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

01:29:25 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 35)

[ 1288.754454] FAULT_INJECTION: forcing a failure.
[ 1288.754454] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.755858] CPU: 1 PID: 7800 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1288.756696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1288.757683] Call Trace:
[ 1288.758011]  dump_stack+0x107/0x167
[ 1288.758437]  should_fail.cold+0x5/0xa
[ 1288.758898]  ? security_file_alloc+0x34/0x170
[ 1288.759424]  should_failslab+0x5/0x20
[ 1288.759871]  kmem_cache_alloc+0x5b/0x310
[ 1288.760345]  security_file_alloc+0x34/0x170
[ 1288.760867]  __alloc_file+0xb7/0x320
[ 1288.761300]  alloc_empty_file+0x6d/0x170
[ 1288.761777]  alloc_file+0x5e/0x5a0
[ 1288.762192]  alloc_file_pseudo+0x16a/0x250
[ 1288.762688]  ? alloc_file+0x5a0/0x5a0
[ 1288.763141]  anon_inode_getfile+0xc8/0x1f0
[ 1288.763641]  io_uring_setup+0x138b/0x2980
[ 1288.764126]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1288.764745]  ? wait_for_completion_io+0x270/0x270
[ 1288.765319]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1288.765928]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1288.766528]  do_syscall_64+0x33/0x40
[ 1288.766964]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1288.767558] RIP: 0033:0x7f006db87b19
[ 1288.767986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.770156] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1288.771042] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1288.771872] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1288.772725] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1288.773552] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1288.774388] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1288.783959] FAULT_INJECTION: forcing a failure.
[ 1288.783959] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.786613] CPU: 0 PID: 7808 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1288.788064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1288.789841] Call Trace:
[ 1288.790429]  dump_stack+0x107/0x167
[ 1288.791216]  should_fail.cold+0x5/0xa
[ 1288.792041]  ? io_wq_create+0x6ef/0xc00
[ 1288.792959]  should_failslab+0x5/0x20
[ 1288.793778]  kmem_cache_alloc_node_trace+0x59/0x340
[ 1288.794852]  io_wq_create+0x6ef/0xc00
[ 1288.795678]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1288.796778]  ? io_import_iovec+0x1120/0x1120
[ 1288.797716]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1288.798667]  ? __io_req_find_next+0x300/0x300
[ 1288.799618]  ? do_raw_spin_lock+0x121/0x260
[ 1288.800556]  ? rwlock_bug.part.0+0x90/0x90
[ 1288.801472]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1288.802498]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1288.803625]  ? alloc_fd+0x2e7/0x670
[ 1288.804426]  io_uring_setup+0x1fbb/0x2980
[ 1288.805325]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1288.806407]  ? wait_for_completion_io+0x270/0x270
[ 1288.807458]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1288.808587]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1288.809687]  do_syscall_64+0x33/0x40
[ 1288.810495]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1288.811583] RIP: 0033:0x7f488da58b19
[ 1288.812383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.816307] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1288.817935] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1288.819475] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1288.821015] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1288.822626] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1288.824329] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 26)

[ 1288.881344] FAULT_INJECTION: forcing a failure.
[ 1288.881344] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.884089] CPU: 0 PID: 7822 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1288.885637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
01:29:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

[ 1288.887619] Call Trace:
[ 1288.888416]  dump_stack+0x107/0x167
[ 1288.889258]  should_fail.cold+0x5/0xa
[ 1288.890079]  ? create_object.isra.0+0x3a/0xa30
[ 1288.891058]  should_failslab+0x5/0x20
[ 1288.891875]  kmem_cache_alloc+0x5b/0x310
[ 1288.892756]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 1288.893949]  create_object.isra.0+0x3a/0xa30
[ 1288.894888]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1288.895983]  kmem_cache_alloc+0x159/0x310
[ 1288.896873]  security_file_alloc+0x34/0x170
[ 1288.897994]  __alloc_file+0xb7/0x320
[ 1288.898847]  alloc_empty_file+0x6d/0x170
[ 1288.899911]  alloc_file+0x5e/0x5a0
[ 1288.900716]  alloc_file_pseudo+0x16a/0x250
01:29:25 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8c01, 0x0, 0x0, 0x0)

01:29:25 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1288.901809]  ? alloc_file+0x5a0/0x5a0
[ 1288.902721]  anon_inode_getfile+0xc8/0x1f0
[ 1288.903626]  io_uring_setup+0x138b/0x2980
[ 1288.904527]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1288.905602]  ? wait_for_completion_io+0x270/0x270
[ 1288.906631]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1288.907706]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1288.908809]  do_syscall_64+0x33/0x40
[ 1288.909599]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1288.910686] RIP: 0033:0x7f006db87b19
[ 1288.911475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.915364] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1288.916985] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1288.918493] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1288.920016] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1288.921537] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1288.923047] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

01:29:25 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)

01:29:25 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

01:29:25 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 36)

01:29:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

01:29:25 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 27)

[ 1289.034330] FAULT_INJECTION: forcing a failure.
[ 1289.034330] name failslab, interval 1, probability 0, space 0, times 0
[ 1289.037120] CPU: 0 PID: 7843 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1289.038588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1289.040362] Call Trace:
[ 1289.040945]  dump_stack+0x107/0x167
[ 1289.041746]  should_fail.cold+0x5/0xa
[ 1289.042562]  ? create_object.isra.0+0x3a/0xa30
[ 1289.043544]  should_failslab+0x5/0x20
[ 1289.044362]  kmem_cache_alloc+0x5b/0x310
[ 1289.045238]  ? io_wq_create+0x114/0xc00
[ 1289.046096]  create_object.isra.0+0x3a/0xa30
[ 1289.047046]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1289.048351]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 1289.049505]  io_wq_create+0x6ef/0xc00
[ 1289.050329]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1289.051638]  ? io_import_iovec+0x1120/0x1120
[ 1289.052610]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1289.053565]  ? __io_req_find_next+0x300/0x300
[ 1289.054515]  ? do_raw_spin_lock+0x121/0x260
[ 1289.055447]  ? rwlock_bug.part.0+0x90/0x90
[ 1289.056558]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1289.057565]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1289.058681]  ? alloc_fd+0x2e7/0x670
[ 1289.059464]  io_uring_setup+0x1fbb/0x2980
[ 1289.060538]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1289.061468]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1289.062551]  ? tick_program_event+0xa8/0x140
[ 1289.063508]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1289.064638]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1289.065740]  do_syscall_64+0x33/0x40
[ 1289.066535]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1289.067627] RIP: 0033:0x7f488da58b19
[ 1289.068438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1289.073161] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1289.075121] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1289.076953] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1289.078802] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1289.080656] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1289.082488] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1289.085565] FAULT_INJECTION: forcing a failure.
[ 1289.085565] name failslab, interval 1, probability 0, space 0, times 0
[ 1289.086929] CPU: 1 PID: 7849 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1289.087708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1289.088679] Call Trace:
[ 1289.088991]  dump_stack+0x107/0x167
[ 1289.089420]  should_fail.cold+0x5/0xa
[ 1289.089878]  ? create_object.isra.0+0x3a/0xa30
[ 1289.090401]  should_failslab+0x5/0x20
[ 1289.090840]  kmem_cache_alloc+0x5b/0x310
[ 1289.091305]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 1289.091943]  create_object.isra.0+0x3a/0xa30
[ 1289.092469]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1289.093069]  kmem_cache_alloc+0x159/0x310
[ 1289.093561]  security_file_alloc+0x34/0x170
[ 1289.094055]  __alloc_file+0xb7/0x320
[ 1289.094481]  alloc_empty_file+0x6d/0x170
[ 1289.094960]  alloc_file+0x5e/0x5a0
[ 1289.095377]  alloc_file_pseudo+0x16a/0x250
[ 1289.095884]  ? alloc_file+0x5a0/0x5a0
[ 1289.096332]  anon_inode_getfile+0xc8/0x1f0
[ 1289.096848]  io_uring_setup+0x138b/0x2980
[ 1289.097330]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1289.097920]  ? wait_for_completion_io+0x270/0x270
[ 1289.098489]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1289.099100]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1289.099692]  do_syscall_64+0x33/0x40
[ 1289.100121]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1289.100723] RIP: 0033:0x7f006db87b19
[ 1289.101143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1289.103223] RSP: 002b:00007f006b0dc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1289.104083] RAX: ffffffffffffffda RBX: 00007f006dc9b020 RCX: 00007f006db87b19
[ 1289.104917] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1289.105727] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1289.106532] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1289.107338] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:25 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)

01:29:25 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

[ 1300.947157] FAULT_INJECTION: forcing a failure.
[ 1300.947157] name failslab, interval 1, probability 0, space 0, times 0
[ 1300.948629] CPU: 1 PID: 7867 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1300.949471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1300.950471] Call Trace:
[ 1300.950794]  dump_stack+0x107/0x167
[ 1300.951233]  should_fail.cold+0x5/0xa
[ 1300.951698]  ? __io_uring_add_tctx_node+0x15c/0x520
[ 1300.952295]  should_failslab+0x5/0x20
[ 1300.952761]  kmem_cache_alloc_trace+0x55/0x320
[ 1300.953283]  __io_uring_add_tctx_node+0x15c/0x520
[ 1300.953831]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1300.954425]  ? alloc_fd+0x2e7/0x670
[ 1300.954846]  io_uring_setup+0x1fbb/0x2980
[ 1300.955322]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1300.955935]  ? wait_for_completion_io+0x270/0x270
[ 1300.956502]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1300.957107]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1300.957696]  do_syscall_64+0x33/0x40
[ 1300.958122]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1300.958735] RIP: 0033:0x7f488da58b19
[ 1300.959169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1300.961304] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
01:29:37 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:37 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)

01:29:37 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

01:29:37 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

01:29:37 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 37)

01:29:37 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)

01:29:37 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 28)

01:29:37 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00c, 0x0, 0x0, 0x0)

[ 1300.962476] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1300.963568] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1300.964424] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1300.965307] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1300.966199] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1300.976948] FAULT_INJECTION: forcing a failure.
[ 1300.976948] name failslab, interval 1, probability 0, space 0, times 0
[ 1300.980011] CPU: 0 PID: 7869 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1300.981671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1300.983658] Call Trace:
[ 1300.984295]  dump_stack+0x107/0x167
[ 1300.985177]  should_fail.cold+0x5/0xa
[ 1300.986093]  ? create_object.isra.0+0x3a/0xa30
[ 1300.987230]  should_failslab+0x5/0x20
[ 1300.988155]  kmem_cache_alloc+0x5b/0x310
[ 1300.989161]  create_object.isra.0+0x3a/0xa30
[ 1300.990218]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1300.991441]  kmem_cache_alloc_trace+0x151/0x320
[ 1300.992561]  __io_uring_add_tctx_node+0x15c/0x520
[ 1300.993724]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1300.994979]  ? alloc_fd+0x2e7/0x670
[ 1300.995858]  io_uring_setup+0x1fbb/0x2980
[ 1300.996857]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1300.998062]  ? wait_for_completion_io+0x270/0x270
[ 1300.999240]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1301.000494]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1301.001742]  do_syscall_64+0x33/0x40
[ 1301.002643]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1301.003871] RIP: 0033:0x7f006db87b19
[ 1301.004779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1301.009209] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1301.011009] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1301.012695] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1301.014376] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1301.016064] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
01:29:37 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 38)

01:29:37 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

[ 1301.017761] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1301.057149] FAULT_INJECTION: forcing a failure.
[ 1301.057149] name failslab, interval 1, probability 0, space 0, times 0
[ 1301.058564] CPU: 1 PID: 7893 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1301.059381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1301.060351] Call Trace:
[ 1301.060677]  dump_stack+0x107/0x167
[ 1301.061119]  should_fail.cold+0x5/0xa
[ 1301.061566]  ? create_object.isra.0+0x3a/0xa30
[ 1301.062092]  should_failslab+0x5/0x20
[ 1301.062537]  kmem_cache_alloc+0x5b/0x310
[ 1301.063021]  create_object.isra.0+0x3a/0xa30
[ 1301.063530]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1301.064122]  kmem_cache_alloc_trace+0x151/0x320
[ 1301.064680]  __io_uring_add_tctx_node+0x15c/0x520
[ 1301.065242]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1301.065880]  ? alloc_fd+0x2e7/0x670
[ 1301.066404]  io_uring_setup+0x1fbb/0x2980
[ 1301.066994]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1301.067702]  ? wait_for_completion_io+0x270/0x270
[ 1301.068391]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1301.069140]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1301.069857]  do_syscall_64+0x33/0x40
[ 1301.070381]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1301.071105] RIP: 0033:0x7f488da58b19
[ 1301.071627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1301.074127] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1301.075112] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1301.075936] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1301.076776] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1301.077767] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1301.078755] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:37 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

01:29:49 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 29)

01:29:49 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

01:29:49 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

01:29:49 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:49 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

01:29:49 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

01:29:49 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

01:29:49 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 39)

[ 1312.748086] FAULT_INJECTION: forcing a failure.
[ 1312.748086] name failslab, interval 1, probability 0, space 0, times 0
[ 1312.751260] CPU: 0 PID: 7917 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1312.752989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1312.755078] Call Trace:
[ 1312.755748]  dump_stack+0x107/0x167
[ 1312.756673]  should_fail.cold+0x5/0xa
[ 1312.757648]  ? xas_alloc+0x336/0x440
[ 1312.758575]  should_failslab+0x5/0x20
[ 1312.759529]  kmem_cache_alloc+0x5b/0x310
[ 1312.760536]  ? stack_trace_consume_entry+0x160/0x160
[ 1312.761822]  xas_alloc+0x336/0x440
[ 1312.762709]  xas_create+0x34a/0x10d0
[ 1312.763653]  ? kernel_text_address+0xf2/0x120
[ 1312.764806]  xas_store+0x8c/0x1c40
[ 1312.765713]  __xa_store+0x164/0x2d0
[ 1312.766623]  ? xa_delete_node+0x280/0x280
[ 1312.767658]  ? trace_hardirqs_on+0x5b/0x180
[ 1312.768758]  xa_store+0x31/0x50
[ 1312.769573]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1312.770771]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1312.772078]  ? alloc_fd+0x2e7/0x670
[ 1312.773007]  io_uring_setup+0x1fbb/0x2980
[ 1312.774049]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1312.775333]  ? wait_for_completion_io+0x270/0x270
[ 1312.776561]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1312.777877]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1312.779146]  do_syscall_64+0x33/0x40
[ 1312.780071]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1312.781358] RIP: 0033:0x7f006db87b19
[ 1312.782276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1312.786851] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1312.788757] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1312.790556] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1312.792338] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1312.793834] FAULT_INJECTION: forcing a failure.
[ 1312.793834] name failslab, interval 1, probability 0, space 0, times 0
[ 1312.794139] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1312.794157] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1312.799098] CPU: 1 PID: 7923 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1312.799921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1312.800914] Call Trace:
[ 1312.801232]  dump_stack+0x107/0x167
[ 1312.801664]  should_fail.cold+0x5/0xa
[ 1312.802136]  ? xas_alloc+0x336/0x440
[ 1312.802580]  should_failslab+0x5/0x20
[ 1312.803047]  kmem_cache_alloc+0x5b/0x310
[ 1312.803551]  ? stack_trace_consume_entry+0x160/0x160
[ 1312.804170]  xas_alloc+0x336/0x440
[ 1312.804594]  xas_create+0x34a/0x10d0
[ 1312.805064]  ? kernel_text_address+0xf2/0x120
[ 1312.805614]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1312.806249]  xas_store+0x8c/0x1c40
[ 1312.806689]  __xa_store+0x164/0x2d0
[ 1312.807130]  ? xa_delete_node+0x280/0x280
[ 1312.807643]  ? trace_hardirqs_on+0x5b/0x180
[ 1312.808169]  xa_store+0x31/0x50
[ 1312.808575]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1312.809175]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1312.809820]  ? alloc_fd+0x2e7/0x670
[ 1312.810267]  io_uring_setup+0x1fbb/0x2980
[ 1312.810786]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1312.811399]  ? wait_for_completion_io+0x270/0x270
[ 1312.812005]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1312.812662]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1312.813281]  do_syscall_64+0x33/0x40
[ 1312.813734]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1312.814361] RIP: 0033:0x7f488da58b19
01:29:49 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

01:29:49 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600000, 0x0, 0x0, 0x0)

[ 1312.814812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1312.817320] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1312.818211] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1312.819050] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1312.819891] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1312.820736] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1312.821569] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:49 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x80ffff, 0x0, 0x0, 0x0)

01:29:49 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

01:29:49 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:29:49 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 30)

01:29:49 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

01:29:49 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)

01:29:49 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

[ 1312.992545] FAULT_INJECTION: forcing a failure.
[ 1312.992545] name failslab, interval 1, probability 0, space 0, times 0
[ 1312.993964] CPU: 1 PID: 7962 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1312.994766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1312.995747] Call Trace:
[ 1312.996058]  dump_stack+0x107/0x167
[ 1312.996487]  should_fail.cold+0x5/0xa
[ 1312.996934]  ? create_object.isra.0+0x3a/0xa30
[ 1312.997471]  should_failslab+0x5/0x20
[ 1312.997908]  kmem_cache_alloc+0x5b/0x310
[ 1312.998382]  create_object.isra.0+0x3a/0xa30
[ 1312.998887]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1312.999480]  kmem_cache_alloc+0x159/0x310
[ 1312.999962]  xas_alloc+0x336/0x440
[ 1313.000375]  xas_create+0x34a/0x10d0
[ 1313.000828]  ? kernel_text_address+0xf2/0x120
[ 1313.001346]  xas_store+0x8c/0x1c40
[ 1313.001766]  __xa_store+0x164/0x2d0
[ 1313.002185]  ? xa_delete_node+0x280/0x280
[ 1313.002668]  ? trace_hardirqs_on+0x5b/0x180
[ 1313.003172]  xa_store+0x31/0x50
[ 1313.003555]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1313.004124]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1313.004763]  ? alloc_fd+0x2e7/0x670
[ 1313.005195]  io_uring_setup+0x1fbb/0x2980
[ 1313.005677]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1313.006258]  ? wait_for_completion_io+0x270/0x270
[ 1313.006837]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1313.007464]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1313.008064]  do_syscall_64+0x33/0x40
[ 1313.008496]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1313.009103] RIP: 0033:0x7f006db87b19
[ 1313.009548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1313.011742] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1313.012664] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1313.013527] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1313.014345] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1313.015161] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1313.016008] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:49 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 40)

[ 1313.040811] FAULT_INJECTION: forcing a failure.
[ 1313.040811] name failslab, interval 1, probability 0, space 0, times 0
[ 1313.043790] CPU: 0 PID: 7973 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1313.045425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1313.047388] Call Trace:
[ 1313.048015]  dump_stack+0x107/0x167
[ 1313.048892]  should_fail.cold+0x5/0xa
[ 1313.049799]  ? create_object.isra.0+0x3a/0xa30
[ 1313.050879]  should_failslab+0x5/0x20
[ 1313.051783]  kmem_cache_alloc+0x5b/0x310
[ 1313.052760]  create_object.isra.0+0x3a/0xa30
[ 1313.053799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1313.055003]  kmem_cache_alloc+0x159/0x310
[ 1313.055991]  xas_alloc+0x336/0x440
[ 1313.056851]  xas_create+0x34a/0x10d0
[ 1313.057740]  ? kernel_text_address+0xf2/0x120
[ 1313.058810]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1313.060043]  xas_store+0x8c/0x1c40
[ 1313.060897]  __xa_store+0x164/0x2d0
[ 1313.061752]  ? xa_delete_node+0x280/0x280
[ 1313.062733]  ? trace_hardirqs_on+0x5b/0x180
[ 1313.063746]  xa_store+0x31/0x50
[ 1313.064519]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1313.065663]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1313.066882]  ? alloc_fd+0x2e7/0x670
[ 1313.067740]  io_uring_setup+0x1fbb/0x2980
[ 1313.068727]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1313.069890]  ? wait_for_completion_io+0x270/0x270
[ 1313.071037]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1313.072257]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1313.073462]  do_syscall_64+0x33/0x40
[ 1313.074333]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1313.075526] RIP: 0033:0x7f488da58b19
[ 1313.076399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1313.080635] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1313.082397] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1313.084020] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1313.085646] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1313.087262] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1313.088895] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:49 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc0ffff, 0x0, 0x0, 0x0)

01:29:49 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 31)

[ 1313.129367] FAULT_INJECTION: forcing a failure.
[ 1313.129367] name failslab, interval 1, probability 0, space 0, times 0
[ 1313.132291] CPU: 0 PID: 7983 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1313.133850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1313.135692] Call Trace:
[ 1313.136281]  dump_stack+0x107/0x167
[ 1313.137107]  should_fail.cold+0x5/0xa
[ 1313.137956]  ? xas_alloc+0x336/0x440
[ 1313.138786]  should_failslab+0x5/0x20
[ 1313.139631]  kmem_cache_alloc+0x5b/0x310
[ 1313.140537]  xas_alloc+0x336/0x440
[ 1313.141341]  xas_create+0x34a/0x10d0
[ 1313.142183]  ? kernel_text_address+0xf2/0x120
[ 1313.143189]  xas_store+0x8c/0x1c40
[ 1313.143994]  __xa_store+0x164/0x2d0
[ 1313.144830]  ? xa_delete_node+0x280/0x280
[ 1313.145762]  ? trace_hardirqs_on+0x5b/0x180
[ 1313.146727]  xa_store+0x31/0x50
[ 1313.147464]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1313.148537]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1313.149704]  ? alloc_fd+0x2e7/0x670
[ 1313.150514]  io_uring_setup+0x1fbb/0x2980
[ 1313.151437]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1313.152552]  ? wait_for_completion_io+0x270/0x270
[ 1313.153651]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1313.154808]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1313.155944]  do_syscall_64+0x33/0x40
[ 1313.156781]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1313.157920] RIP: 0033:0x7f006db87b19
[ 1313.158742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1313.162808] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1313.164483] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1313.166063] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1313.167619] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1313.169182] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1313.170734] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:29:49 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

01:29:49 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

01:29:49 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 41)

01:29:49 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

01:29:49 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)

[ 1313.297822] FAULT_INJECTION: forcing a failure.
[ 1313.297822] name failslab, interval 1, probability 0, space 0, times 0
[ 1313.299212] CPU: 1 PID: 8005 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1313.299982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1313.300929] Call Trace:
[ 1313.301232]  dump_stack+0x107/0x167
[ 1313.301647]  should_fail.cold+0x5/0xa
[ 1313.302082]  ? xas_alloc+0x336/0x440
[ 1313.302504]  should_failslab+0x5/0x20
[ 1313.302935]  kmem_cache_alloc+0x5b/0x310
[ 1313.303396]  xas_alloc+0x336/0x440
[ 1313.303802]  xas_create+0x34a/0x10d0
[ 1313.304229]  ? kernel_text_address+0xf2/0x120
[ 1313.304749]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1313.305340]  xas_store+0x8c/0x1c40
[ 1313.305749]  __xa_store+0x164/0x2d0
[ 1313.306162]  ? xa_delete_node+0x280/0x280
[ 1313.306635]  ? trace_hardirqs_on+0x5b/0x180
[ 1313.307122]  xa_store+0x31/0x50
[ 1313.307498]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1313.308043]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1313.308645]  ? alloc_fd+0x2e7/0x670
[ 1313.309069]  io_uring_setup+0x1fbb/0x2980
[ 1313.309543]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1313.310111]  ? wait_for_completion_io+0x270/0x270
[ 1313.310667]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1313.311257]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1313.311840]  do_syscall_64+0x33/0x40
[ 1313.312258]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1313.312860] RIP: 0033:0x7f488da58b19
[ 1313.313283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1313.315353] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1313.316217] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1313.317026] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1313.317826] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1313.318627] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1313.319430] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:05 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 32)

01:30:05 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)

01:30:05 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

01:30:05 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

01:30:05 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

01:30:05 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

01:30:05 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 42)

[ 1329.326200] FAULT_INJECTION: forcing a failure.
[ 1329.326200] name failslab, interval 1, probability 0, space 0, times 0
[ 1329.329232] CPU: 0 PID: 8018 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1329.330982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1329.333113] Call Trace:
[ 1329.333788]  dump_stack+0x107/0x167
[ 1329.334717]  should_fail.cold+0x5/0xa
[ 1329.335686]  ? xas_alloc+0x336/0x440
[ 1329.336630]  should_failslab+0x5/0x20
[ 1329.337610]  kmem_cache_alloc+0x5b/0x310
[ 1329.338647]  xas_alloc+0x336/0x440
[ 1329.339552]  xas_create+0x34a/0x10d0
[ 1329.340509]  ? kernel_text_address+0xf2/0x120
[ 1329.341675]  xas_store+0x8c/0x1c40
[ 1329.342596]  __xa_store+0x164/0x2d0
[ 1329.343526]  ? xa_delete_node+0x280/0x280
[ 1329.344590]  ? trace_hardirqs_on+0x5b/0x180
[ 1329.345711]  xa_store+0x31/0x50
[ 1329.346561]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1329.347789]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1329.349130]  ? alloc_fd+0x2e7/0x670
[ 1329.350071]  io_uring_setup+0x1fbb/0x2980
[ 1329.351136]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1329.352424]  ? wait_for_completion_io+0x270/0x270
[ 1329.353636]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1329.354831]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1329.356004]  do_syscall_64+0x33/0x40
01:30:05 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e00, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1329.356851]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1329.358172] RIP: 0033:0x7f006db87b19
[ 1329.358185] FAULT_INJECTION: forcing a failure.
[ 1329.358185] name failslab, interval 1, probability 0, space 0, times 0
[ 1329.359009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1329.359019] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1329.366060] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1329.367650] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1329.369248] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1329.370861] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1329.372453] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1329.374080] CPU: 1 PID: 8026 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1329.374884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1329.375819] Call Trace:
[ 1329.376120]  dump_stack+0x107/0x167
[ 1329.376571]  should_fail.cold+0x5/0xa
[ 1329.377018]  ? create_object.isra.0+0x3a/0xa30
[ 1329.377531]  should_failslab+0x5/0x20
[ 1329.377958]  kmem_cache_alloc+0x5b/0x310
[ 1329.378415]  ? mark_held_locks+0x9e/0xe0
[ 1329.378871]  create_object.isra.0+0x3a/0xa30
[ 1329.379363]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1329.379934]  kmem_cache_alloc+0x159/0x310
[ 1329.380401]  xas_alloc+0x336/0x440
[ 1329.380802]  xas_create+0x34a/0x10d0
[ 1329.381241]  ? kernel_text_address+0xf2/0x120
[ 1329.381752]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1329.382340]  xas_store+0x8c/0x1c40
[ 1329.382744]  __xa_store+0x164/0x2d0
[ 1329.383152]  ? xa_delete_node+0x280/0x280
[ 1329.383619]  ? trace_hardirqs_on+0x5b/0x180
[ 1329.384107]  xa_store+0x31/0x50
[ 1329.384478]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1329.385020]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1329.385607]  ? alloc_fd+0x2e7/0x670
[ 1329.386021]  io_uring_setup+0x1fbb/0x2980
[ 1329.386492]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1329.387069]  ? wait_for_completion_io+0x270/0x270
[ 1329.387619]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1329.388204]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1329.388781]  do_syscall_64+0x33/0x40
[ 1329.389201]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1329.389774] RIP: 0033:0x7f488da58b19
[ 1329.390188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1329.392245] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1329.393097] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1329.393897] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1329.394696] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1329.395493] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1329.396291] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:06 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)

01:30:18 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 33)

01:30:18 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)

01:30:18 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

01:30:18 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)

01:30:18 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8000000, 0x0, 0x0, 0x0)

01:30:18 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:18 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

01:30:18 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 43)

[ 1342.189397] FAULT_INJECTION: forcing a failure.
[ 1342.189397] name failslab, interval 1, probability 0, space 0, times 0
[ 1342.190779] FAULT_INJECTION: forcing a failure.
[ 1342.190779] name failslab, interval 1, probability 0, space 0, times 0
[ 1342.192172] CPU: 1 PID: 8064 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1342.195883] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.197619] Call Trace:
[ 1342.198176]  dump_stack+0x107/0x167
[ 1342.198942]  should_fail.cold+0x5/0xa
[ 1342.199742]  ? xas_alloc+0x336/0x440
[ 1342.200520]  should_failslab+0x5/0x20
[ 1342.201324]  kmem_cache_alloc+0x5b/0x310
[ 1342.202181]  xas_alloc+0x336/0x440
[ 1342.202927]  xas_create+0x34a/0x10d0
[ 1342.203721]  ? kernel_text_address+0xf2/0x120
[ 1342.204670]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1342.205771]  xas_store+0x8c/0x1c40
[ 1342.206525]  __xa_store+0x164/0x2d0
[ 1342.207287]  ? xa_delete_node+0x280/0x280
[ 1342.208161]  ? trace_hardirqs_on+0x5b/0x180
[ 1342.209075]  xa_store+0x31/0x50
[ 1342.209769]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1342.210772]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1342.211864]  ? alloc_fd+0x2e7/0x670
[ 1342.212640]  io_uring_setup+0x1fbb/0x2980
[ 1342.213525]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1342.214588]  ? wait_for_completion_io+0x270/0x270
[ 1342.215611]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1342.216708]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1342.217792]  do_syscall_64+0x33/0x40
[ 1342.218570]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1342.219640] RIP: 0033:0x7f488da58b19
[ 1342.220414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.224271] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1342.225891] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1342.227375] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1342.228864] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1342.230362] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1342.231849] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1342.233373] CPU: 0 PID: 8068 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1342.234807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.236535] Call Trace:
[ 1342.237102]  dump_stack+0x107/0x167
[ 1342.237865]  should_fail.cold+0x5/0xa
[ 1342.238661]  ? create_object.isra.0+0x3a/0xa30
[ 1342.239608]  should_failslab+0x5/0x20
[ 1342.240399]  kmem_cache_alloc+0x5b/0x310
[ 1342.241253]  ? mark_held_locks+0x9e/0xe0
[ 1342.242107]  create_object.isra.0+0x3a/0xa30
[ 1342.243016]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1342.244074]  kmem_cache_alloc+0x159/0x310
[ 1342.244941]  xas_alloc+0x336/0x440
[ 1342.245700]  xas_create+0x34a/0x10d0
[ 1342.246482]  ? kernel_text_address+0xf2/0x120
[ 1342.247427]  xas_store+0x8c/0x1c40
[ 1342.248179]  __xa_store+0x164/0x2d0
[ 1342.248939]  ? xa_delete_node+0x280/0x280
[ 1342.249818]  ? trace_hardirqs_on+0x5b/0x180
[ 1342.250722]  xa_store+0x31/0x50
[ 1342.251422]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1342.252425]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1342.253539]  ? alloc_fd+0x2e7/0x670
[ 1342.254306]  io_uring_setup+0x1fbb/0x2980
[ 1342.255178]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1342.256237]  ? wait_for_completion_io+0x270/0x270
[ 1342.257269]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1342.258365]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1342.259442]  do_syscall_64+0x33/0x40
[ 1342.260220]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1342.261297] RIP: 0033:0x7f006db87b19
[ 1342.262071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.265920] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1342.267516] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1342.269015] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1342.270514] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1342.272002] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1342.273491] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:18 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)

01:30:18 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:18 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)

01:30:18 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

01:30:18 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

01:30:19 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1c1d0000, 0x0, 0x0, 0x0)

01:30:19 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

01:30:19 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:30 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24000000, 0x0, 0x0, 0x0)

01:30:30 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

01:30:30 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 44)

01:30:30 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

01:30:30 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

01:30:30 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x60, 0x0, 0x0, 0x0)

01:30:30 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 34)

01:30:30 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1354.176933] FAULT_INJECTION: forcing a failure.
[ 1354.176933] name failslab, interval 1, probability 0, space 0, times 0
[ 1354.178931] CPU: 1 PID: 8116 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1354.179799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.180808] Call Trace:
[ 1354.181142]  dump_stack+0x107/0x167
[ 1354.181606]  should_fail.cold+0x5/0xa
[ 1354.182089]  ? create_object.isra.0+0x3a/0xa30
[ 1354.182663]  should_failslab+0x5/0x20
[ 1354.183142]  kmem_cache_alloc+0x5b/0x310
[ 1354.183655]  ? mark_held_locks+0x9e/0xe0
[ 1354.184164]  create_object.isra.0+0x3a/0xa30
[ 1354.184691]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1354.185330]  kmem_cache_alloc+0x159/0x310
[ 1354.185856]  xas_alloc+0x336/0x440
[ 1354.186308]  xas_create+0x34a/0x10d0
[ 1354.186779]  ? kernel_text_address+0xf2/0x120
[ 1354.187338]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1354.187986]  xas_store+0x8c/0x1c40
[ 1354.188438]  __xa_store+0x164/0x2d0
[ 1354.188884]  ? xa_delete_node+0x280/0x280
[ 1354.189408]  ? trace_hardirqs_on+0x5b/0x180
[ 1354.189953]  xa_store+0x31/0x50
[ 1354.190368]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1354.190953]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1354.191597]  ? alloc_fd+0x2e7/0x670
[ 1354.192041]  io_uring_setup+0x1fbb/0x2980
[ 1354.192545]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1354.193166]  ? wait_for_completion_io+0x270/0x270
[ 1354.193767]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1354.194400]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1354.195020]  do_syscall_64+0x33/0x40
[ 1354.195468]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1354.196084] RIP: 0033:0x7f488da58b19
[ 1354.196545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.198790] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1354.199711] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1354.200602] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1354.201473] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1354.202331] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1354.203197] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1354.223241] FAULT_INJECTION: forcing a failure.
[ 1354.223241] name failslab, interval 1, probability 0, space 0, times 0
[ 1354.226263] CPU: 0 PID: 8127 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1354.227915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.229930] Call Trace:
[ 1354.230573]  dump_stack+0x107/0x167
[ 1354.231463]  should_fail.cold+0x5/0xa
[ 1354.232390]  ? create_object.isra.0+0x3a/0xa30
[ 1354.233502]  should_failslab+0x5/0x20
[ 1354.234425]  kmem_cache_alloc+0x5b/0x310
[ 1354.235406]  ? mark_held_locks+0x9e/0xe0
[ 1354.236391]  create_object.isra.0+0x3a/0xa30
[ 1354.237458]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1354.238667]  kmem_cache_alloc+0x159/0x310
[ 1354.239670]  xas_alloc+0x336/0x440
[ 1354.240510]  xas_create+0x34a/0x10d0
[ 1354.241424]  ? kernel_text_address+0xf2/0x120
[ 1354.242506]  xas_store+0x8c/0x1c40
[ 1354.243376]  __xa_store+0x164/0x2d0
[ 1354.244253]  ? xa_delete_node+0x280/0x280
[ 1354.245265]  ? trace_hardirqs_on+0x5b/0x180
[ 1354.246306]  xa_store+0x31/0x50
[ 1354.247103]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1354.248259]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1354.249505]  ? alloc_fd+0x2e7/0x670
[ 1354.250370]  io_uring_setup+0x1fbb/0x2980
[ 1354.251373]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1354.252589]  ? wait_for_completion_io+0x270/0x270
[ 1354.253766]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1354.254998]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1354.256238]  do_syscall_64+0x33/0x40
[ 1354.257120]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1354.258338] RIP: 0033:0x7f006db87b19
[ 1354.259224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.263625] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1354.265448] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1354.267120] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1354.268779] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1354.270476] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1354.272216] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:30 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 45)

01:30:30 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1354.300734] FAULT_INJECTION: forcing a failure.
[ 1354.300734] name failslab, interval 1, probability 0, space 0, times 0
[ 1354.302140] CPU: 1 PID: 8137 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1354.302935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.303889] Call Trace:
[ 1354.304199]  dump_stack+0x107/0x167
[ 1354.304618]  should_fail.cold+0x5/0xa
[ 1354.305061]  ? xas_alloc+0x336/0x440
[ 1354.305497]  should_failslab+0x5/0x20
[ 1354.305935]  kmem_cache_alloc+0x5b/0x310
[ 1354.306408]  xas_alloc+0x336/0x440
[ 1354.306819]  xas_create+0x34a/0x10d0
[ 1354.307252]  ? kernel_text_address+0xf2/0x120
[ 1354.307774]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1354.308382]  xas_store+0x8c/0x1c40
[ 1354.308812]  __xa_store+0x164/0x2d0
[ 1354.309255]  ? xa_delete_node+0x280/0x280
[ 1354.309758]  ? trace_hardirqs_on+0x5b/0x180
[ 1354.310289]  xa_store+0x31/0x50
[ 1354.310686]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1354.311249]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1354.311866]  ? alloc_fd+0x2e7/0x670
[ 1354.312306]  io_uring_setup+0x1fbb/0x2980
[ 1354.312798]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1354.313407]  ? wait_for_completion_io+0x270/0x270
[ 1354.313992]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1354.314620]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1354.315229]  do_syscall_64+0x33/0x40
[ 1354.315668]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1354.316278] RIP: 0033:0x7f488da58b19
[ 1354.316719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.318907] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1354.319791] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1354.320634] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1354.321469] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1354.322293] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1354.323112] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:30 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

01:30:30 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a000000, 0x0, 0x0, 0x0)

01:30:31 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3f000000, 0x0, 0x0, 0x0)

01:30:31 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)

01:30:31 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:31 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x17b, 0x0, 0x0, 0x0)

01:30:31 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

01:30:43 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x40000000, 0x0, 0x0, 0x0)

01:30:43 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

01:30:43 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)

01:30:43 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

01:30:43 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e000000, 0x0, 0x0, 0x0)

01:30:43 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 35)

01:30:43 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 46)

01:30:43 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1367.097743] FAULT_INJECTION: forcing a failure.
[ 1367.097743] name failslab, interval 1, probability 0, space 0, times 0
[ 1367.100297] CPU: 1 PID: 8186 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1367.101753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1367.103496] Call Trace:
[ 1367.104060]  dump_stack+0x107/0x167
[ 1367.104898]  should_fail.cold+0x5/0xa
[ 1367.105826]  ? create_object.isra.0+0x3a/0xa30
[ 1367.106929]  should_failslab+0x5/0x20
[ 1367.107837]  kmem_cache_alloc+0x5b/0x310
[ 1367.108828]  ? mark_held_locks+0x9e/0xe0
[ 1367.109815]  create_object.isra.0+0x3a/0xa30
[ 1367.110869]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1367.112092]  kmem_cache_alloc+0x159/0x310
[ 1367.113076]  xas_alloc+0x336/0x440
[ 1367.113944]  xas_create+0x34a/0x10d0
[ 1367.114842]  ? kernel_text_address+0xf2/0x120
[ 1367.115938]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1367.117195]  xas_store+0x8c/0x1c40
[ 1367.118076]  __xa_store+0x164/0x2d0
[ 1367.118945]  ? xa_delete_node+0x280/0x280
01:30:43 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

[ 1367.119947]  ? trace_hardirqs_on+0x5b/0x180
[ 1367.121206]  xa_store+0x31/0x50
[ 1367.122009]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1367.123167]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1367.124417]  ? alloc_fd+0x2e7/0x670
[ 1367.125297]  io_uring_setup+0x1fbb/0x2980
[ 1367.126422]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1367.127640]  ? wait_for_completion_io+0x270/0x270
[ 1367.128841]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1367.130107]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1367.131318]  do_syscall_64+0x33/0x40
[ 1367.132208]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1367.133442] RIP: 0033:0x7f488da58b19
[ 1367.134331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1367.138741] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1367.140533] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1367.142248] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1367.143943] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1367.145646] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1367.147336] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1367.163846] FAULT_INJECTION: forcing a failure.
[ 1367.163846] name failslab, interval 1, probability 0, space 0, times 0
[ 1367.166789] CPU: 1 PID: 8184 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1367.168397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1367.170368] Call Trace:
[ 1367.170992]  dump_stack+0x107/0x167
[ 1367.171856]  should_fail.cold+0x5/0xa
[ 1367.172755]  ? xas_alloc+0x336/0x440
[ 1367.173631]  should_failslab+0x5/0x20
[ 1367.174523]  kmem_cache_alloc+0x5b/0x310
[ 1367.175477]  xas_alloc+0x336/0x440
[ 1367.176305]  xas_create+0x34a/0x10d0
[ 1367.177185]  ? kernel_text_address+0xf2/0x120
[ 1367.178248]  xas_store+0x8c/0x1c40
[ 1367.179095]  __xa_store+0x164/0x2d0
[ 1367.179946]  ? xa_delete_node+0x280/0x280
[ 1367.180911]  ? trace_hardirqs_on+0x5b/0x180
[ 1367.181923]  xa_store+0x31/0x50
[ 1367.182682]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1367.183794]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1367.184999]  ? alloc_fd+0x2e7/0x670
[ 1367.185860]  io_uring_setup+0x1fbb/0x2980
[ 1367.186826]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1367.187992]  ? wait_for_completion_io+0x270/0x270
01:30:43 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)

01:30:43 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 47)

[ 1367.189125]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1367.190537]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1367.191738]  do_syscall_64+0x33/0x40
[ 1367.192615]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1367.193811] RIP: 0033:0x7f006db87b19
[ 1367.194674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1367.198942] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1367.200683] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1367.202329] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1367.203967] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1367.205610] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1367.207241] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1367.210749] FAULT_INJECTION: forcing a failure.
[ 1367.210749] name failslab, interval 1, probability 0, space 0, times 0
[ 1367.212365] CPU: 0 PID: 8207 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1367.213161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1367.214121] Call Trace:
[ 1367.214432]  dump_stack+0x107/0x167
[ 1367.214857]  should_fail.cold+0x5/0xa
[ 1367.215297]  ? xas_alloc+0x336/0x440
[ 1367.215732]  should_failslab+0x5/0x20
[ 1367.216166]  kmem_cache_alloc+0x5b/0x310
[ 1367.216635]  xas_alloc+0x336/0x440
[ 1367.217043]  xas_create+0x34a/0x10d0
[ 1367.217481]  ? kernel_text_address+0xf2/0x120
[ 1367.217999]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1367.218603]  xas_store+0x8c/0x1c40
[ 1367.219022]  __xa_store+0x164/0x2d0
[ 1367.219440]  ? xa_delete_node+0x280/0x280
[ 1367.219921]  ? trace_hardirqs_on+0x5b/0x180
[ 1367.220420]  xa_store+0x31/0x50
[ 1367.220801]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1367.221362]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1367.221967]  ? alloc_fd+0x2e7/0x670
[ 1367.222392]  io_uring_setup+0x1fbb/0x2980
[ 1367.222872]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1367.223369]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1367.223951]  ? tick_program_event+0xa8/0x140
[ 1367.224468]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1367.225073]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1367.225677]  do_syscall_64+0x33/0x40
[ 1367.226104]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1367.226693] RIP: 0033:0x7f488da58b19
[ 1367.227121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1367.229239] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1367.230124] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1367.230938] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1367.231750] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1367.232564] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1367.233387] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:43 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x8c010000, 0x0, 0x0, 0x0)

01:30:43 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30000000, 0x0, 0x0, 0x0)

01:30:55 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 48)

01:30:55 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 36)

01:30:55 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)

01:30:55 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xb1e, 0x0, 0x0, 0x0)

01:30:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:55 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

01:30:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00c0000, 0x0, 0x0, 0x0)

01:30:55 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36000000, 0x0, 0x0, 0x0)

[ 1378.739530] FAULT_INJECTION: forcing a failure.
[ 1378.739530] name failslab, interval 1, probability 0, space 0, times 0
[ 1378.741005] CPU: 1 PID: 8233 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1378.741856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1378.742882] Call Trace:
[ 1378.743211]  dump_stack+0x107/0x167
[ 1378.743667]  should_fail.cold+0x5/0xa
[ 1378.744138]  ? xas_alloc+0x336/0x440
[ 1378.744597]  should_failslab+0x5/0x20
[ 1378.745069]  kmem_cache_alloc+0x5b/0x310
[ 1378.745577]  xas_alloc+0x336/0x440
[ 1378.746018]  xas_create+0x34a/0x10d0
[ 1378.746481]  ? kernel_text_address+0xf2/0x120
[ 1378.747058]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1378.747704]  xas_store+0x8c/0x1c40
[ 1378.748156]  __xa_store+0x164/0x2d0
[ 1378.748602]  ? xa_delete_node+0x280/0x280
[ 1378.749121]  ? trace_hardirqs_on+0x5b/0x180
[ 1378.749664]  xa_store+0x31/0x50
[ 1378.750076]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1378.750667]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1378.751311]  ? alloc_fd+0x2e7/0x670
[ 1378.751765]  io_uring_setup+0x1fbb/0x2980
[ 1378.752282]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1378.752906]  ? wait_for_completion_io+0x270/0x270
[ 1378.753526]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1378.754164]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1378.754798]  do_syscall_64+0x33/0x40
[ 1378.755254]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1378.755879] RIP: 0033:0x7f488da58b19
[ 1378.756342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1378.758599] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1378.759537] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1378.760402] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1378.761274] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1378.762164] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1378.763039] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1378.801075] FAULT_INJECTION: forcing a failure.
[ 1378.801075] name failslab, interval 1, probability 0, space 0, times 0
[ 1378.803818] CPU: 0 PID: 8244 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1378.805276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1378.807034] Call Trace:
[ 1378.807600]  dump_stack+0x107/0x167
[ 1378.808373]  should_fail.cold+0x5/0xa
[ 1378.809184]  ? create_object.isra.0+0x3a/0xa30
[ 1378.810161]  should_failslab+0x5/0x20
[ 1378.810966]  kmem_cache_alloc+0x5b/0x310
[ 1378.811830]  ? mark_held_locks+0x9e/0xe0
[ 1378.812700]  create_object.isra.0+0x3a/0xa30
[ 1378.813648]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1378.814734]  kmem_cache_alloc+0x159/0x310
[ 1378.815615]  xas_alloc+0x336/0x440
[ 1378.816367]  xas_create+0x34a/0x10d0
[ 1378.817164]  ? kernel_text_address+0xf2/0x120
[ 1378.818122]  xas_store+0x8c/0x1c40
[ 1378.818883]  __xa_store+0x164/0x2d0
[ 1378.819657]  ? xa_delete_node+0x280/0x280
[ 1378.820535]  ? trace_hardirqs_on+0x5b/0x180
[ 1378.821453]  xa_store+0x31/0x50
[ 1378.822164]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1378.823177]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1378.824291]  ? alloc_fd+0x2e7/0x670
[ 1378.825068]  io_uring_setup+0x1fbb/0x2980
[ 1378.825955]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1378.827020]  ? wait_for_completion_io+0x270/0x270
[ 1378.828056]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1378.829156]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1378.830254]  do_syscall_64+0x33/0x40
[ 1378.831040]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1378.832129] RIP: 0033:0x7f006db87b19
[ 1378.832918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1378.836817] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1378.838435] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1378.839949] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1378.841459] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1378.842982] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1378.844484] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:55 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

01:30:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:55 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 49)

[ 1378.913975] FAULT_INJECTION: forcing a failure.
[ 1378.913975] name failslab, interval 1, probability 0, space 0, times 0
[ 1378.915552] CPU: 1 PID: 8264 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1378.916338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1378.917307] Call Trace:
[ 1378.917637]  dump_stack+0x107/0x167
[ 1378.918063]  should_fail.cold+0x5/0xa
[ 1378.918500]  ? xas_alloc+0x336/0x440
[ 1378.918926]  should_failslab+0x5/0x20
[ 1378.919364]  kmem_cache_alloc+0x5b/0x310
[ 1378.919829]  xas_alloc+0x336/0x440
[ 1378.920237]  xas_create+0x34a/0x10d0
[ 1378.920694]  ? kernel_text_address+0xf2/0x120
[ 1378.921215]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1378.921824]  xas_store+0x8c/0x1c40
[ 1378.922238]  __xa_store+0x164/0x2d0
[ 1378.922657]  ? xa_delete_node+0x280/0x280
[ 1378.923136]  ? trace_hardirqs_on+0x5b/0x180
[ 1378.923637]  xa_store+0x31/0x50
[ 1378.924021]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1378.924575]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1378.925180]  ? alloc_fd+0x2e7/0x670
[ 1378.925613]  io_uring_setup+0x1fbb/0x2980
[ 1378.926088]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1378.926671]  ? wait_for_completion_io+0x270/0x270
[ 1378.927232]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1378.927832]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1378.928427]  do_syscall_64+0x33/0x40
[ 1378.928854]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1378.929444] RIP: 0033:0x7f488da58b19
[ 1378.929882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1378.931981] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1378.932856] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1378.933677] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1378.934496] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1378.935312] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1378.936144] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:55 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c000000, 0x0, 0x0, 0x0)

01:30:55 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)

01:30:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xe4ffffff, 0x0, 0x0, 0x0)

01:30:55 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

01:30:55 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 37)

01:30:55 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e00, 0x0, 0x0, 0x0)

01:30:55 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:30:55 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 50)

[ 1379.061932] FAULT_INJECTION: forcing a failure.
[ 1379.061932] name failslab, interval 1, probability 0, space 0, times 0
[ 1379.063303] CPU: 1 PID: 8278 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1379.064090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1379.065045] Call Trace:
[ 1379.065350]  dump_stack+0x107/0x167
[ 1379.065779]  should_fail.cold+0x5/0xa
[ 1379.066218]  ? xas_alloc+0x336/0x440
[ 1379.066644]  should_failslab+0x5/0x20
[ 1379.067079]  kmem_cache_alloc+0x5b/0x310
[ 1379.067550]  xas_alloc+0x336/0x440
[ 1379.067955]  xas_create+0x34a/0x10d0
[ 1379.068383]  ? kernel_text_address+0xf2/0x120
[ 1379.068902]  xas_store+0x8c/0x1c40
[ 1379.069315]  __xa_store+0x164/0x2d0
[ 1379.069744]  ? xa_delete_node+0x280/0x280
[ 1379.070227]  xa_store+0x31/0x50
[ 1379.070608]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1379.071162]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1379.071760]  ? alloc_fd+0x2e7/0x670
[ 1379.072179]  io_uring_setup+0x1fbb/0x2980
[ 1379.072658]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1379.073237]  ? wait_for_completion_io+0x270/0x270
[ 1379.073805]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1379.074403]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1379.074994]  do_syscall_64+0x33/0x40
[ 1379.075421]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1379.076007] RIP: 0033:0x7f006db87b19
[ 1379.076434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1379.078564] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1379.079458] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1379.080277] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1379.081098] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1379.081932] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1379.082767] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1379.104056] FAULT_INJECTION: forcing a failure.
[ 1379.104056] name failslab, interval 1, probability 0, space 0, times 0
[ 1379.105468] CPU: 1 PID: 8289 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1379.106260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1379.107217] Call Trace:
[ 1379.107524]  dump_stack+0x107/0x167
[ 1379.107940]  should_fail.cold+0x5/0xa
[ 1379.108390]  ? create_object.isra.0+0x3a/0xa30
[ 1379.108920]  should_failslab+0x5/0x20
[ 1379.109356]  kmem_cache_alloc+0x5b/0x310
[ 1379.109838]  ? mark_held_locks+0x9e/0xe0
[ 1379.110302]  create_object.isra.0+0x3a/0xa30
[ 1379.110806]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1379.111401]  kmem_cache_alloc+0x159/0x310
[ 1379.111900]  xas_alloc+0x336/0x440
[ 1379.112323]  xas_create+0x34a/0x10d0
[ 1379.112757]  ? kernel_text_address+0xf2/0x120
[ 1379.113271]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1379.113883]  xas_store+0x8c/0x1c40
[ 1379.114305]  __xa_store+0x164/0x2d0
[ 1379.114724]  ? xa_delete_node+0x280/0x280
[ 1379.115201]  ? trace_hardirqs_on+0x5b/0x180
[ 1379.115702]  xa_store+0x31/0x50
[ 1379.116079]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1379.116642]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1379.117251]  ? alloc_fd+0x2e7/0x670
[ 1379.117676]  io_uring_setup+0x1fbb/0x2980
[ 1379.118158]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1379.118737]  ? wait_for_completion_io+0x270/0x270
[ 1379.119329]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1379.119952]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1379.120561]  do_syscall_64+0x33/0x40
[ 1379.120988]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1379.121583] RIP: 0033:0x7f488da58b19
[ 1379.122006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1379.124113] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1379.124987] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1379.125823] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1379.126633] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1379.127451] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1379.128266] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:30:55 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xffff8000, 0x0, 0x0, 0x0)

01:31:09 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 51)

01:31:09 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:09 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)

01:31:09 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 38)

01:31:09 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xffffc000, 0x0, 0x0, 0x0)

01:31:09 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xcc0, 0x0, 0x0, 0x0)

01:31:09 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

01:31:09 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfeffffff, 0x0, 0x0, 0x0)

[ 1392.786076] FAULT_INJECTION: forcing a failure.
[ 1392.786076] name failslab, interval 1, probability 0, space 0, times 0
[ 1392.788833] CPU: 1 PID: 8308 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1392.790476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1392.792446] Call Trace:
[ 1392.793012]  dump_stack+0x107/0x167
[ 1392.793794]  should_fail.cold+0x5/0xa
[ 1392.794592]  ? xas_alloc+0x336/0x440
[ 1392.795375]  should_failslab+0x5/0x20
[ 1392.796181]  kmem_cache_alloc+0x5b/0x310
[ 1392.797037]  xas_alloc+0x336/0x440
[ 1392.797793]  xas_create+0x34a/0x10d0
[ 1392.798592]  ? kernel_text_address+0xf2/0x120
[ 1392.799535]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1392.800647]  xas_store+0x8c/0x1c40
[ 1392.801410]  __xa_store+0x164/0x2d0
[ 1392.802190]  ? xa_delete_node+0x280/0x280
[ 1392.803076]  ? trace_hardirqs_on+0x5b/0x180
[ 1392.804001]  xa_store+0x31/0x50
[ 1392.804717]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1392.805752]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1392.806877]  ? alloc_fd+0x2e7/0x670
[ 1392.807679]  io_uring_setup+0x1fbb/0x2980
[ 1392.808573]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1392.809667]  ? wait_for_completion_io+0x270/0x270
[ 1392.810709]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1392.811820]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1392.812919]  do_syscall_64+0x33/0x40
[ 1392.813724]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1392.814810] RIP: 0033:0x7f488da58b19
[ 1392.815605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1392.819526] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1392.821148] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1392.822688] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1392.824198] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1392.825718] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1392.827229] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1392.862091] FAULT_INJECTION: forcing a failure.
[ 1392.862091] name failslab, interval 1, probability 0, space 0, times 0
[ 1392.864932] CPU: 0 PID: 8318 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1392.866386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1392.868134] Call Trace:
[ 1392.868711]  dump_stack+0x107/0x167
[ 1392.869493]  should_fail.cold+0x5/0xa
[ 1392.870314]  ? create_object.isra.0+0x3a/0xa30
[ 1392.871268]  should_failslab+0x5/0x20
[ 1392.872067]  kmem_cache_alloc+0x5b/0x310
[ 1392.872924]  ? mark_held_locks+0x9e/0xe0
[ 1392.873785]  create_object.isra.0+0x3a/0xa30
[ 1392.874711]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1392.875776]  kmem_cache_alloc+0x159/0x310
[ 1392.876645]  xas_alloc+0x336/0x440
[ 1392.877389]  xas_create+0x34a/0x10d0
[ 1392.878185]  ? kernel_text_address+0xf2/0x120
[ 1392.879131]  xas_store+0x8c/0x1c40
[ 1392.879887]  __xa_store+0x164/0x2d0
[ 1392.880659]  ? xa_delete_node+0x280/0x280
[ 1392.881533]  ? trace_hardirqs_on+0x5b/0x180
[ 1392.882454]  xa_store+0x31/0x50
[ 1392.883149]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1392.884154]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1392.885252]  ? alloc_fd+0x2e7/0x670
[ 1392.886031]  io_uring_setup+0x1fbb/0x2980
[ 1392.886900]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1392.887954]  ? wait_for_completion_io+0x270/0x270
[ 1392.888983]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1392.890088]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1392.891178]  do_syscall_64+0x33/0x40
[ 1392.891973]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1392.893040] RIP: 0033:0x7f006db87b19
[ 1392.893841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1392.897710] RSP: 002b:00007f006b0fd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1392.899307] RAX: ffffffffffffffda RBX: 00007f006dc9af60 RCX: 00007f006db87b19
[ 1392.900801] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1392.902310] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1392.903799] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1392.905294] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:09 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xffffffe4, 0x0, 0x0, 0x0)

01:31:09 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

01:31:09 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 52)

01:31:09 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffffe, 0x0, 0x0, 0x0)

01:31:09 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:09 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

01:31:09 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

[ 1393.047207] FAULT_INJECTION: forcing a failure.
[ 1393.047207] name failslab, interval 1, probability 0, space 0, times 0
[ 1393.049882] CPU: 1 PID: 8342 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1393.051336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1393.053105] Call Trace:
[ 1393.053683]  dump_stack+0x107/0x167
[ 1393.054455]  should_fail.cold+0x5/0xa
[ 1393.055267]  ? create_object.isra.0+0x3a/0xa30
[ 1393.056228]  should_failslab+0x5/0x20
[ 1393.057033]  kmem_cache_alloc+0x5b/0x310
[ 1393.057906]  ? mark_held_locks+0x9e/0xe0
[ 1393.058778]  create_object.isra.0+0x3a/0xa30
[ 1393.059714]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1393.060802]  kmem_cache_alloc+0x159/0x310
[ 1393.061706]  xas_alloc+0x336/0x440
[ 1393.062458]  xas_create+0x34a/0x10d0
[ 1393.063253]  ? kernel_text_address+0xf2/0x120
[ 1393.064198]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1393.065314]  xas_store+0x8c/0x1c40
[ 1393.066085]  __xa_store+0x164/0x2d0
[ 1393.066858]  ? xa_delete_node+0x280/0x280
[ 1393.067736]  ? trace_hardirqs_on+0x5b/0x180
[ 1393.068656]  xa_store+0x31/0x50
[ 1393.069352]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1393.070380]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1393.071486]  ? alloc_fd+0x2e7/0x670
[ 1393.072258]  io_uring_setup+0x1fbb/0x2980
[ 1393.073139]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1393.074212]  ? wait_for_completion_io+0x270/0x270
[ 1393.075250]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1393.076348]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1393.077440]  do_syscall_64+0x33/0x40
[ 1393.078241]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1393.079330] RIP: 0033:0x7f488da58b19
[ 1393.080115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1393.084003] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1393.085621] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1393.087166] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1393.088683] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1393.090217] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1393.091713] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:09 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xffffffff, 0x0, 0x0, 0x0)

01:31:22 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 53)

01:31:22 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

01:31:22 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x24000000, 0x0, 0x0, 0x0)

01:31:22 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

01:31:22 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

01:31:22 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:22 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

01:31:22 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 39)

[ 1405.872075] FAULT_INJECTION: forcing a failure.
[ 1405.872075] name failslab, interval 1, probability 0, space 0, times 0
[ 1405.874743] CPU: 0 PID: 8373 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1405.876176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1405.877932] Call Trace:
[ 1405.878497]  dump_stack+0x107/0x167
[ 1405.879261]  should_fail.cold+0x5/0xa
[ 1405.880061]  ? xas_alloc+0x336/0x440
[ 1405.880841]  should_failslab+0x5/0x20
[ 1405.881665]  kmem_cache_alloc+0x5b/0x310
[ 1405.882532]  xas_alloc+0x336/0x440
[ 1405.883299]  xas_create+0x34a/0x10d0
[ 1405.884109]  ? kernel_text_address+0xf2/0x120
[ 1405.885048]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1405.886154]  xas_store+0x8c/0x1c40
[ 1405.886911]  __xa_store+0x164/0x2d0
[ 1405.887682]  ? xa_delete_node+0x280/0x280
[ 1405.888560]  ? trace_hardirqs_on+0x5b/0x180
[ 1405.889468]  xa_store+0x31/0x50
[ 1405.890177]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1405.891186]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1405.892286]  ? alloc_fd+0x2e7/0x670
[ 1405.893069]  io_uring_setup+0x1fbb/0x2980
[ 1405.893974]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1405.895032]  ? wait_for_completion_io+0x270/0x270
[ 1405.896062]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1405.897162]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1405.898267]  do_syscall_64+0x33/0x40
[ 1405.899057]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1405.900127] RIP: 0033:0x7f488da58b19
[ 1405.900904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1405.903291] FAULT_INJECTION: forcing a failure.
[ 1405.903291] name failslab, interval 1, probability 0, space 0, times 0
[ 1405.904774] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1405.904796] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1405.904808] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1405.904819] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1405.904831] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1405.904840] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1405.919789] CPU: 1 PID: 8380 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1405.921502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1405.923566] Call Trace:
[ 1405.924211]  dump_stack+0x107/0x167
[ 1405.925096]  should_fail.cold+0x5/0xa
[ 1405.926052]  ? anon_vma_clone+0xdc/0x590
[ 1405.927051]  should_failslab+0x5/0x20
[ 1405.927982]  kmem_cache_alloc+0x5b/0x310
[ 1405.929003]  anon_vma_clone+0xdc/0x590
[ 1405.930003]  __split_vma+0x17c/0x4e0
[ 1405.930939]  __do_munmap+0x365/0x1260
[ 1405.931893]  ? arch_get_unmapped_area+0x450/0x450
[ 1405.933100]  ? lock_release+0x680/0x680
[ 1405.934117]  mmap_region+0x7cc/0x1500
[ 1405.935088]  do_mmap+0x868/0x1370
[ 1405.935965]  vm_mmap_pgoff+0x198/0x1f0
[ 1405.936936]  ? randomize_page+0xb0/0xb0
[ 1405.937952]  ksys_mmap_pgoff+0x41c/0x560
[ 1405.938955]  ? find_mergeable_anon_vma+0x250/0x250
[ 1405.940167]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1405.941457]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1405.942746]  do_syscall_64+0x33/0x40
[ 1405.943664]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1405.944928] RIP: 0033:0x7f006db87b62
[ 1405.945858] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1405.950362] RSP: 002b:00007f006b0fd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1405.952224] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f006db87b62
[ 1405.953974] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000
[ 1405.955715] RBP: 0000000020ffb000 R08: 0000000000000007 R09: 0000000000000000
[ 1405.957444] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140
[ 1405.959197] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:22 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

01:31:22 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:22 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a000000, 0x0, 0x0, 0x0)

01:31:22 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0)

01:31:22 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x5, 0x0, 0x0)

01:31:22 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

01:31:22 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 54)

01:31:22 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 40)

[ 1406.236166] FAULT_INJECTION: forcing a failure.
[ 1406.236166] name failslab, interval 1, probability 0, space 0, times 0
[ 1406.238908] CPU: 0 PID: 8413 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1406.240362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1406.242106] Call Trace:
[ 1406.242667]  dump_stack+0x107/0x167
[ 1406.243443]  should_fail.cold+0x5/0xa
[ 1406.244267]  ? create_object.isra.0+0x3a/0xa30
[ 1406.245232]  should_failslab+0x5/0x20
[ 1406.246042]  kmem_cache_alloc+0x5b/0x310
[ 1406.246905]  ? mark_held_locks+0x9e/0xe0
[ 1406.247771]  create_object.isra.0+0x3a/0xa30
[ 1406.248699]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1406.249748]  kmem_cache_alloc+0x159/0x310
[ 1406.250646]  xas_alloc+0x336/0x440
[ 1406.251391]  xas_create+0x34a/0x10d0
[ 1406.252188]  ? kernel_text_address+0xf2/0x120
[ 1406.253125]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1406.254241]  xas_store+0x8c/0x1c40
[ 1406.254998]  __xa_store+0x164/0x2d0
[ 1406.255775]  ? xa_delete_node+0x280/0x280
[ 1406.256662]  ? trace_hardirqs_on+0x5b/0x180
[ 1406.257575]  xa_store+0x31/0x50
[ 1406.258268]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1406.259287]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1406.260382]  ? alloc_fd+0x2e7/0x670
[ 1406.261157]  io_uring_setup+0x1fbb/0x2980
[ 1406.262046]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1406.263109]  ? wait_for_completion_io+0x270/0x270
[ 1406.264147]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1406.265246]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1406.266336]  do_syscall_64+0x33/0x40
[ 1406.267116]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1406.268197] RIP: 0033:0x7f488da58b19
[ 1406.268984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1406.272859] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1406.274470] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1406.275967] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1406.277463] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1406.278990] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1406.280461] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1406.306132] FAULT_INJECTION: forcing a failure.
[ 1406.306132] name failslab, interval 1, probability 0, space 0, times 0
[ 1406.308868] CPU: 0 PID: 8416 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1406.310331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1406.312079] Call Trace:
[ 1406.312646]  dump_stack+0x107/0x167
[ 1406.313419]  should_fail.cold+0x5/0xa
[ 1406.314232]  ? create_object.isra.0+0x3a/0xa30
[ 1406.315204]  should_failslab+0x5/0x20
[ 1406.316006]  kmem_cache_alloc+0x5b/0x310
[ 1406.316872]  create_object.isra.0+0x3a/0xa30
[ 1406.317793]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1406.318898]  kmem_cache_alloc+0x159/0x310
[ 1406.319793]  anon_vma_clone+0xdc/0x590
[ 1406.320626]  __split_vma+0x17c/0x4e0
[ 1406.321386]  __do_munmap+0x365/0x1260
[ 1406.322201]  ? arch_get_unmapped_area+0x450/0x450
[ 1406.323228]  ? lock_release+0x680/0x680
[ 1406.324077]  mmap_region+0x7cc/0x1500
[ 1406.324900]  do_mmap+0x868/0x1370
[ 1406.325643]  vm_mmap_pgoff+0x198/0x1f0
[ 1406.326474]  ? randomize_page+0xb0/0xb0
[ 1406.327324]  ksys_mmap_pgoff+0x41c/0x560
[ 1406.328178]  ? find_mergeable_anon_vma+0x250/0x250
[ 1406.329218]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1406.330307]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1406.331416]  do_syscall_64+0x33/0x40
[ 1406.332202]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1406.333291] RIP: 0033:0x7f006db87b62
[ 1406.334080] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1406.337951] RSP: 002b:00007f006b0fd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1406.339556] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f006db87b62
[ 1406.341054] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000
[ 1406.342581] RBP: 0000000020ffb000 R08: 0000000000000007 R09: 0000000000000000
[ 1406.344104] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140
[ 1406.345608] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:38 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 41)

01:31:38 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)

01:31:38 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 55)

01:31:38 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2e000000, 0x0, 0x0, 0x0)

01:31:38 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:38 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x8, 0x0, 0x0)

01:31:38 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4, 0x0, 0x0)

01:31:38 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e0b, 0x0, 0x0, 0x0)

[ 1421.463785] FAULT_INJECTION: forcing a failure.
[ 1421.463785] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.466487] CPU: 0 PID: 8436 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1421.467976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.469779] Call Trace:
[ 1421.470365]  dump_stack+0x107/0x167
[ 1421.471156]  should_fail.cold+0x5/0xa
[ 1421.471988]  ? xas_alloc+0x336/0x440
[ 1421.472798]  should_failslab+0x5/0x20
[ 1421.473627]  kmem_cache_alloc+0x5b/0x310
[ 1421.474523]  xas_alloc+0x336/0x440
[ 1421.475293]  xas_create+0x34a/0x10d0
[ 1421.476117]  xas_store+0x8c/0x1c40
[ 1421.476900]  __xa_store+0x164/0x2d0
01:31:38 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x5, 0x0, 0x0)

[ 1421.477690]  ? xa_delete_node+0x280/0x280
[ 1421.478765]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1421.479955]  xa_store+0x31/0x50
[ 1421.480670]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1421.481712]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1421.482845]  ? alloc_fd+0x2e7/0x670
[ 1421.483639]  io_uring_setup+0x1fbb/0x2980
[ 1421.484544]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1421.485632]  ? wait_for_completion_io+0x270/0x270
[ 1421.486714]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1421.487837]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1421.488950]  do_syscall_64+0x33/0x40
[ 1421.489749]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1421.490855] RIP: 0033:0x7f488da58b19
[ 1421.491650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.495630] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1421.497272] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1421.498808] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1421.500345] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1421.501871] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1421.503411] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1421.509046] FAULT_INJECTION: forcing a failure.
[ 1421.509046] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.510646] CPU: 1 PID: 8451 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1421.511486] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.512503] Call Trace:
[ 1421.512829]  dump_stack+0x107/0x167
[ 1421.513277]  should_fail.cold+0x5/0xa
[ 1421.513742]  ? xas_alloc+0x336/0x440
[ 1421.514202]  should_failslab+0x5/0x20
[ 1421.514664]  kmem_cache_alloc+0x5b/0x310
[ 1421.515167]  xas_alloc+0x336/0x440
[ 1421.515605]  xas_create+0x34a/0x10d0
[ 1421.516063]  ? kernel_text_address+0xf2/0x120
[ 1421.516613]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1421.517250]  xas_store+0x8c/0x1c40
[ 1421.517689]  __xa_store+0x164/0x2d0
[ 1421.518140]  ? xa_delete_node+0x280/0x280
[ 1421.518661]  ? trace_hardirqs_on+0x5b/0x180
[ 1421.519189]  xa_store+0x31/0x50
[ 1421.519592]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1421.520178]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1421.520815]  ? alloc_fd+0x2e7/0x670
[ 1421.521261]  io_uring_setup+0x1fbb/0x2980
[ 1421.521793]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1421.522415]  ? wait_for_completion_io+0x270/0x270
[ 1421.523014]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1421.523651]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1421.524284]  do_syscall_64+0x33/0x40
[ 1421.524738]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1421.525363] RIP: 0033:0x7f006db87b19
[ 1421.525814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.528107] RSP: 002b:00007f006b0dc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1421.529030] RAX: ffffffffffffffda RBX: 00007f006dc9b020 RCX: 00007f006db87b19
[ 1421.529902] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1421.530770] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1421.531634] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1421.532498] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:38 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x30000000, 0x0, 0x0, 0x0)

01:31:38 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 42)

01:31:38 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x60, 0x0, 0x0)

01:31:38 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:38 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)

01:31:38 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 56)

01:31:38 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

[ 1421.704314] FAULT_INJECTION: forcing a failure.
[ 1421.704314] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.705727] CPU: 1 PID: 8475 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1421.706521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.707460] Call Trace:
[ 1421.707765]  dump_stack+0x107/0x167
[ 1421.708178]  should_fail.cold+0x5/0xa
[ 1421.708618]  ? create_object.isra.0+0x3a/0xa30
[ 1421.709134]  should_failslab+0x5/0x20
[ 1421.709569]  kmem_cache_alloc+0x5b/0x310
[ 1421.710054]  ? mark_held_locks+0x9e/0xe0
[ 1421.710523]  create_object.isra.0+0x3a/0xa30
[ 1421.711021]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1421.711608]  kmem_cache_alloc+0x159/0x310
[ 1421.712087]  xas_alloc+0x336/0x440
[ 1421.712283] FAULT_INJECTION: forcing a failure.
[ 1421.712283] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.712496]  xas_create+0x34a/0x10d0
[ 1421.712511]  ? kernel_text_address+0xf2/0x120
[ 1421.712522]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1421.712543]  xas_store+0x8c/0x1c40
[ 1421.716919]  __xa_store+0x164/0x2d0
[ 1421.717340]  ? xa_delete_node+0x280/0x280
[ 1421.717816]  ? trace_hardirqs_on+0x5b/0x180
[ 1421.718318]  xa_store+0x31/0x50
[ 1421.718697]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1421.719252]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1421.719849]  ? alloc_fd+0x2e7/0x670
[ 1421.720271]  io_uring_setup+0x1fbb/0x2980
[ 1421.720749]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1421.721328]  ? wait_for_completion_io+0x270/0x270
[ 1421.721893]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1421.722508]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1421.723096]  do_syscall_64+0x33/0x40
[ 1421.723521]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1421.724108] RIP: 0033:0x7f488da58b19
[ 1421.724542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.726653] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1421.727523] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1421.728339] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1421.729161] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1421.729973] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1421.730801] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1421.731650] CPU: 0 PID: 8469 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1421.733199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.735076] Call Trace:
[ 1421.735670]  dump_stack+0x107/0x167
[ 1421.736492]  should_fail.cold+0x5/0xa
[ 1421.737358]  ? create_object.isra.0+0x3a/0xa30
[ 1421.738392]  should_failslab+0x5/0x20
[ 1421.739249]  kmem_cache_alloc+0x5b/0x310
[ 1421.740176]  create_object.isra.0+0x3a/0xa30
[ 1421.741164]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1421.742331]  kmem_cache_alloc+0x159/0x310
[ 1421.743269]  anon_vma_clone+0xdc/0x590
[ 1421.744171]  __split_vma+0x17c/0x4e0
[ 1421.745011]  __do_munmap+0x365/0x1260
[ 1421.745879]  ? arch_get_unmapped_area+0x450/0x450
[ 1421.746988]  ? lock_release+0x680/0x680
[ 1421.747884]  mmap_region+0x7cc/0x1500
[ 1421.748756]  do_mmap+0x868/0x1370
[ 1421.749552]  vm_mmap_pgoff+0x198/0x1f0
[ 1421.750443]  ? randomize_page+0xb0/0xb0
[ 1421.751352]  ksys_mmap_pgoff+0x41c/0x560
[ 1421.752275]  ? find_mergeable_anon_vma+0x250/0x250
[ 1421.753391]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1421.754580]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1421.755759]  do_syscall_64+0x33/0x40
[ 1421.756602]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1421.757768] RIP: 0033:0x7f006db87b62
[ 1421.758621] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1421.762766] RSP: 002b:00007f006b0fd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1421.764481] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f006db87b62
[ 1421.766090] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000
[ 1421.767697] RBP: 0000000020ffb000 R08: 0000000000000007 R09: 0000000000000000
[ 1421.769296] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140
[ 1421.770900] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:52 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x6, 0x0, 0x0)

01:31:52 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:52 executing program 3:
syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)=<r0=>0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x1}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 43)

01:31:52 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x18c, 0x0, 0x0)

01:31:52 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x36000000, 0x0, 0x0, 0x0)

01:31:52 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

01:31:52 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 57)

01:31:52 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

[ 1436.211200] FAULT_INJECTION: forcing a failure.
[ 1436.211200] name failslab, interval 1, probability 0, space 0, times 0
[ 1436.213782] CPU: 0 PID: 8495 Comm: syz-executor.4 Not tainted 5.10.247 #1
[ 1436.215219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1436.216958] Call Trace:
[ 1436.217514]  dump_stack+0x107/0x167
[ 1436.218287]  should_fail.cold+0x5/0xa
[ 1436.219093]  ? xas_alloc+0x336/0x440
[ 1436.219872]  should_failslab+0x5/0x20
[ 1436.220668]  kmem_cache_alloc+0x5b/0x310
[ 1436.221529]  xas_alloc+0x336/0x440
[ 1436.222289]  xas_create+0x34a/0x10d0
[ 1436.223090]  ? kernel_text_address+0xf2/0x120
[ 1436.224030]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1436.225129]  xas_store+0x8c/0x1c40
[ 1436.225894]  __xa_store+0x164/0x2d0
[ 1436.226727]  ? xa_delete_node+0x280/0x280
[ 1436.227607]  ? trace_hardirqs_on+0x5b/0x180
[ 1436.228518]  xa_store+0x31/0x50
[ 1436.229209]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1436.230242]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1436.230618] FAULT_INJECTION: forcing a failure.
[ 1436.230618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1436.231342]  ? alloc_fd+0x2e7/0x670
[ 1436.231379]  io_uring_setup+0x1fbb/0x2980
[ 1436.235445]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1436.236515]  ? wait_for_completion_io+0x270/0x270
[ 1436.237551]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1436.238666]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1436.239745]  do_syscall_64+0x33/0x40
[ 1436.240539]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1436.241606] RIP: 0033:0x7f488da58b19
[ 1436.242398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1436.246260] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1436.247856] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1436.249352] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1436.250874] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1436.252360] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1436.253855] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1436.255378] CPU: 1 PID: 8503 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1436.256840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1436.258591] Call Trace:
[ 1436.259150]  dump_stack+0x107/0x167
[ 1436.259918]  should_fail.cold+0x5/0xa
[ 1436.260730]  __alloc_pages_nodemask+0x182/0x600
[ 1436.261713]  ? mark_held_locks+0x9e/0xe0
[ 1436.262575]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1436.263834]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1436.264933]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1436.266080]  alloc_pages_current+0x187/0x280
[ 1436.267012]  ? __sanitizer_cov_trace_pc+0x3c/0x60
[ 1436.268018]  pte_alloc_one+0x16/0x1a0
[ 1436.268820]  __pte_alloc+0x1d/0x330
[ 1436.269598]  remap_pfn_range_internal+0x9a3/0xf60
[ 1436.270618]  ? lookup_memtype+0x5b/0x200
[ 1436.271481]  ? apply_to_existing_page_range+0x40/0x40
[ 1436.272573]  remap_pfn_range+0xcd/0x160
[ 1436.273404]  ? remap_pfn_range_notrack+0x70/0x70
[ 1436.274403]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 1436.275484]  io_uring_mmap+0x398/0x530
[ 1436.276301]  mmap_file+0x5e/0xe0
[ 1436.277014]  mmap_region+0xc4d/0x1500
[ 1436.277819]  do_mmap+0x868/0x1370
[ 1436.278561]  vm_mmap_pgoff+0x198/0x1f0
[ 1436.279383]  ? randomize_page+0xb0/0xb0
[ 1436.280226]  ksys_mmap_pgoff+0x41c/0x560
[ 1436.281088]  ? find_mergeable_anon_vma+0x250/0x250
[ 1436.282114]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1436.283230]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1436.284317]  do_syscall_64+0x33/0x40
[ 1436.285094]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1436.286176] RIP: 0033:0x7f006db87b62
[ 1436.286951] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1436.290815] RSP: 002b:00007f006b0fd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1436.292422] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f006db87b62
[ 1436.293906] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000
[ 1436.295413] RBP: 0000000020ffb000 R08: 0000000000000007 R09: 0000000000000000
[ 1436.296918] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140
[ 1436.298410] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
01:31:52 executing program 1:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x500, 0x0, 0x0)

01:31:53 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

01:31:53 executing program 2:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0x731f, 0x2}, 0x0)

01:31:53 executing program 7:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7, 0x0, 0x0)

01:31:53 executing program 5:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x3c000000, 0x0, 0x0, 0x0)

[ 1436.415298] ------------[ cut here ]------------
[ 1436.416522] WARNING: CPU: 0 PID: 8503 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270
[ 1436.418570] Modules linked in:
[ 1436.419402] CPU: 0 PID: 8503 Comm: syz-executor.3 Not tainted 5.10.247 #1
[ 1436.421024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1436.422944] RIP: 0010:get_pat_info+0x216/0x270
[ 1436.424039] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 f5 a2 5a 00 e9
[ 1436.428253] RSP: 0018:ffff8880429bf890 EFLAGS: 00010246
[ 1436.432160] RAX: 0000000000040000 RBX: ffff88800cfabb00 RCX: ffffc90000dea000
[ 1436.436559] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007
[ 1436.438196] RBP: ffff8880429bf948 R08: 0000000000000000 R09: ffff8880429bf818
[ 1436.439899] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028
[ 1436.441544] R13: 1ffff11008537f12 R14: 0000000000000000 R15: ffff88800cfabb50
[ 1436.443182] FS:  00007f006b0fd700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[ 1436.445218] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1436.446584] CR2: 00007fb6c90f33a4 CR3: 000000001fcba000 CR4: 0000000000350ef0
[ 1436.448379] Call Trace:
[ 1436.449130]  ? pgprot_writethrough+0xc0/0xc0
[ 1436.450369]  untrack_pfn+0xdc/0x240
[ 1436.451341]  ? track_pfn_insert+0x150/0x150
[ 1436.452493]  ? lock_downgrade+0x6d0/0x6d0
[ 1436.453513]  ? uprobe_munmap+0x1c/0x560
[ 1436.454653]  unmap_single_vma+0x1bc/0x300
[ 1436.455823]  zap_page_range_single+0x2ce/0x450
[ 1436.457045]  ? unmap_single_vma+0x300/0x300
[ 1436.458048]  ? remap_pfn_range_internal+0xc56/0xf60
[ 1436.459613]  ? lookup_memtype+0x5b/0x200
[ 1436.460787]  ? apply_to_existing_page_range+0x40/0x40
[ 1436.462179]  remap_pfn_range+0x139/0x160
[ 1436.463302]  ? remap_pfn_range_notrack+0x70/0x70
[ 1436.464448]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 1436.465892]  io_uring_mmap+0x398/0x530
[ 1436.467002]  mmap_file+0x5e/0xe0
[ 1436.467923]  mmap_region+0xc4d/0x1500
[ 1436.469080]  do_mmap+0x868/0x1370
[ 1436.470102]  vm_mmap_pgoff+0x198/0x1f0
[ 1436.471222]  ? randomize_page+0xb0/0xb0
[ 1436.472361]  ksys_mmap_pgoff+0x41c/0x560
[ 1436.473379]  ? find_mergeable_anon_vma+0x250/0x250
[ 1436.474786]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1436.476004]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1436.477661]  do_syscall_64+0x33/0x40
[ 1436.478889]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1436.480438] RIP: 0033:0x7f006db87b62
[ 1436.481616] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1436.486392] RSP: 002b:00007f006b0fd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1436.488553] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f006db87b62
[ 1436.490658] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000
[ 1436.492799] RBP: 0000000020ffb000 R08: 0000000000000007 R09: 0000000000000000
[ 1436.494781] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140
[ 1436.496743] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000
[ 1436.498956] irq event stamp: 3317
[ 1436.499889] hardirqs last  enabled at (3327): [<ffffffff8129b04d>] console_unlock+0x92d/0xb40
[ 1436.502178] hardirqs last disabled at (3342): [<ffffffff8129af59>] console_unlock+0x839/0xb40
[ 1436.504497] softirqs last  enabled at (1798): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
01:31:53 executing program 0:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

[ 1436.506880] softirqs last disabled at (1479): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 1436.509720] ---[ end trace f9bf6a3c517cc913 ]---
01:31:53 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (fail_nth: 58)

01:31:53 executing program 6:
r0 = syz_io_uring_setup(0x26c6, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f00000000c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

[ 1436.638079] FAULT_INJECTION: forcing a failure.
[ 1436.638079] name failslab, interval 1, probability 0, space 0, times 0
[ 1436.640771] CPU: 1 PID: 8539 Comm: syz-executor.4 Tainted: G        W         5.10.247 #1
[ 1436.642443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1436.644103] Call Trace:
[ 1436.644638]  dump_stack+0x107/0x167
[ 1436.645373]  should_fail.cold+0x5/0xa
[ 1436.646140]  ? create_object.isra.0+0x3a/0xa30
[ 1436.647063]  should_failslab+0x5/0x20
[ 1436.647828]  kmem_cache_alloc+0x5b/0x310
[ 1436.648642]  ? mark_held_locks+0x9e/0xe0
[ 1436.649457]  create_object.isra.0+0x3a/0xa30
[ 1436.650349]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1436.651375]  kmem_cache_alloc+0x159/0x310
[ 1436.652215]  xas_alloc+0x336/0x440
[ 1436.652932]  xas_create+0x34a/0x10d0
[ 1436.653688]  ? kernel_text_address+0xf2/0x120
[ 1436.654596]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1436.655649]  xas_store+0x8c/0x1c40
[ 1436.656376]  __xa_store+0x164/0x2d0
[ 1436.657112]  ? xa_delete_node+0x280/0x280
[ 1436.657964]  ? trace_hardirqs_on+0x5b/0x180
[ 1436.658844]  xa_store+0x31/0x50
[ 1436.659511]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1436.660470]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1436.661510]  ? alloc_fd+0x2e7/0x670
[ 1436.662252]  io_uring_setup+0x1fbb/0x2980
[ 1436.663084]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 1436.664088]  ? wait_for_completion_io+0x270/0x270
[ 1436.665067]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1436.666110]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1436.667147]  do_syscall_64+0x33/0x40
[ 1436.667891]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1436.668909] RIP: 0033:0x7f488da58b19
[ 1436.669647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1436.673365] RSP: 002b:00007f488afce108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1436.674916] RAX: ffffffffffffffda RBX: 00007f488db6bf60 RCX: 00007f488da58b19
[ 1436.676353] RDX: 0000000020ffc000 RSI: 0000000020000180 RDI: 000000000000620e
[ 1436.677785] RBP: 0000000020000180 R08: 0000000020000140 R09: 0000000020000140
[ 1436.679227] R10: 0000000020000100 R11: 0000000000000202 R12: 0000000020000140
[ 1436.680661] R13: 0000000020ffc000 R14: 0000000020000100 R15: 0000000020ffb000

VM DIAGNOSIS:
01:31:53  Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff822e5d4c RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff8880429bf2f0
R8 =0000000000000001 R9 =0000000000000003 R10=ffffed1008537e4f R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000001 R15=ffffffff879f8250
RIP=ffffffff822e5da0 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f006b0fd700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb6c90f33a4 CR3=000000001fcba000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273
XMM02=000000000000000000ffffffff000000 XMM03=00007f006dc6e7c800007f006dc6e7c0
XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=80000000352a1007 RCX=ffffffff81611b3d RDX=0000000000000000
RSI=ffffffff81611b4b RDI=0000000000000007 RBP=ffff88803cd24100 RSP=ffff88803c537890
R8 =0000000000000001 R9 =ffffea0000d4a873 R10=0000000000000000 R11=0000000000000001
R12=00000000100400fb R13=ffffea0000d4a840 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff8140cd84 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055559199b400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020001d80 CR3=000000003cd32000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffff000000000000ffff0000ff000000
XMM02=00007f8bb5c69be00000559a00716d2f XMM03=7269762f736563697665642f7379732f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000559ae5c00eb00000559ae5c057b0
XMM06=000000000000000000000004ffffffff XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000